r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8997
Expires: Fri, 03 Feb 2023 00:44:47 GMT
Date: Thu, 02 Feb 2023 22:14:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11033
Expires: Fri, 03 Feb 2023 01:18:43 GMT
Date: Thu, 02 Feb 2023 22:14:50 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 21:43:32 GMT
content-type: application/json
age: 1878
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12004
Expires: Fri, 03 Feb 2023 01:34:54 GMT
Date: Thu, 02 Feb 2023 22:14:50 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PBv4t++X9sqrrTbFzsgi1075nyyZgtUvxdOxakr3/bV756QENfgzNaIMdZz6Dm/p64mn5OvozZE=
x-amz-request-id: 40YQNVQ86TTNFDJ0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 21:52:08 GMT
age: 1362
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/3Ix0Zv
104.21.94.136200 OK 9.0 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/3Ix0Zv
IP 104.21.94.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2970), with CRLF, LF line terminators
Hash 148304ff5d6f64ab26aa18df24cabb86
138d85899963b663d3312c6b310a93a376b41d1a
b02a13dfb69fa899d362335ef04337fbf613edab1101ae43d857b1818b3082f2
GET /3Ix0Zv HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
X-Robots-Tag: noindex, nofollow
Set-Cookie: lang=en_US; expires=Sun, 28-Jan-2024 22:14:50 GMT; Max-Age=31104000; path=/
AppSession=4f2b6975740afd6d32512eb162d207ac; path=/; HttpOnly
csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725; path=/; HttpOnly
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XJdoS3h6UYC74tz40fOYhL6YAx6YCzab5yiHNFa4yIYdIKD4xFcuZSWoxmsfmxR8jpN76FS%2FbA6auQZjz8fegCzbMtpSASdU87aINxH3lGa4xQybTrWPk98Vnos4qZ8zFTi4CFpUirF8AYoEUjp4bJQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364832c8300b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/zshorte_theme/css/bootstrap.min.css
104.21.94.136200 OK 24 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/bootstrap.min.css
IP 104.21.94.136:0
File type ASCII text, with very long lines (65324)
Hash d8b8037e618e0918d03629a24a43a355
7077dc2c260d5f0d65986a308a38f3053c290458
acbb0054514eb6bd2c1abf982c5a077e8e2b1feaf59beb0dfc4ccec937f16bef
GET /zshorte_theme/css/bootstrap.min.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: text/css
Content-Length: 23845
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:09 GMT
Cache-Control: max-age=2592000
Expires: Tue, 21 Feb 2023 11:18:42 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 989768
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rX7v4fEfublZgVMOFC5xCYF%2BakB1PWFIXKL2LxoPymSnhR94we%2F4l1dKVp7YDhHADtPdLKwIiXt77Jmk6HBtyiUYAINVND9SRIHNEuTXkCMN1Z6HJR4jg25lv5hNEEVVGOdR1K1inUHJh8YnQqc%2FDhA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364835babf0b31-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/style-dark.css
104.21.94.136200 OK 18 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/style-dark.css
IP 104.21.94.136:0
File type assembler source, ASCII text
Hash 2fc9d9ff40827e61fc7f51892735e720
d9d394e53cc2031d5e21420392f9cd72736dfe0e
30d118c410b1ae35f7dddb1d35a22966a356c7ec3b80359e30b47a1a84d08067
GET /zshorte_theme/css/style-dark.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: text/css
Content-Length: 18195
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:10 GMT
Cache-Control: max-age=2592000
Expires: Fri, 17 Feb 2023 20:46:46 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1301284
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rt8AJ4%2FyaEEpw3EU6YcxFkS%2BzV70vcLgTmAmrsHdRedD%2B%2BwUD3w2h3mhJMPvNphA5f6mrd0X9P%2B%2FlqeHhdVnlkSw90tI3F8sJ%2FuBoEVjRkvx2soeJN8IvyGP36BWjLh1HHI%2B1yFD3yXsiTnwWc9gK88%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364835cad20b31-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/owl.carousel.min.css
104.21.94.136200 OK 1.1 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/owl.carousel.min.css
IP 104.21.94.136:0
File type ASCII text, with very long lines (3184)
Hash 8864ff6a1198eecf45821c602593ff9a
c6097cea47ac44fcec94781f2af0110cb677ab0a
19eaae3fdfe574cd1b1cfd78d30633a4527bde9711dde88b467fe43ca854cda5
GET /zshorte_theme/css/owl.carousel.min.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: text/css
Content-Length: 1068
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:07 GMT
Cache-Control: max-age=2592000
Expires: Tue, 21 Feb 2023 11:18:42 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 989768
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wr%2FBnIjDHy2vXxTwLvd3ELRSPQvFxTVpkV1YhTHHuUIof%2BYyWnNBGkWHIFUg8ftZNK0w7kWzT3%2FmIjCTSYhKYMgIH1Wdz8osPEJDnHJMJ9j3Bwpx1%2B4CwWepjMdDWfsbTfqBnLNJ4C7wwEPKa2U8jMM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364835b97b0b61-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/magnific-popup.css
104.21.94.136200 OK 1.9 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/magnific-popup.css
IP 104.21.94.136:0
Hash 17122c906dd1a862f96624fd2e672e7a
f14c3934989971cb348262fe16c8a846ad2ae224
fd821f975c1022810af8626972a55610a1a7bea8e05d8f3d5494fc1e8acb3c8e
GET /zshorte_theme/css/magnific-popup.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: text/css
Content-Length: 1938
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:06 GMT
Cache-Control: max-age=2592000
Expires: Wed, 15 Feb 2023 01:55:29 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1541961
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U75lfw3etXM%2FZ3d8GLkHau2w1wjQvmEfdDGgDw8b7GuMd75%2Bfe9vtNG68y5347wIGg73Dbi9NW0K92I8oSeaU0MMOa6V7mYKVcZ8zGhcUKINZR267cFxuSJsJr74QxwggQLKBJ7XZELSNQgdX%2Bc3hPE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364835bdfc0b45-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/materialdesignicons.min.css
104.21.94.136200 OK 40 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/materialdesignicons.min.css
IP 104.21.94.136:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1c13974888b04609978ba00d6861f6f9
e86980ee488c614cf4d8b3acbc361ce00739d270
1d563a9838ae252a4de14e821cb64fee3d8e757c995c7bfae6d3a94011dc4e82
GET /zshorte_theme/css/materialdesignicons.min.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: text/css
Content-Length: 39896
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:10 GMT
Cache-Control: max-age=2592000
Expires: Sat, 18 Feb 2023 07:24:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1263035
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=njjo0d8Y5XXQe92%2B9%2Fj%2BPGYuV5cn9EhGKsE50idK9TxmoQBhGmFVYhiwO2uQN4d%2FL11tFK6jA9NnCkpPM4X8zzO2nC7Kp6WhuTh%2FgU5zhz0lC1Qv96xnviXJyAHeEnzbOB91%2BkfN%2FS2fSShVW5LZ%2FWA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364835becd0b51-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/owl.theme.default.min.css
104.21.94.136200 OK 479 B URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/owl.theme.default.min.css
IP 104.21.94.136:0
File type ASCII text, with very long lines (846)
Hash ed01e339cf287cc8556f302210540fc9
4d4319bfb04d9a9939d387c7ff44dfa29b3772ef
4fdb569f083e05758aa13c7dc42c4b83c7c191ebc0c267c4afe926a81d4109fe
GET /zshorte_theme/css/owl.theme.default.min.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: text/css
Content-Length: 479
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:07 GMT
Cache-Control: max-age=2592000
Expires: Wed, 15 Feb 2023 01:55:29 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1541961
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gQhUY9nzEFtP3u29GomYb2be39d%2FtoqNeau7pHjQMhc%2BlMiOPdV7rQlCyjpQPDVD7oYYTB2ucPvhN9VRQpRxfzW3AsGv1pRGnfyHcbUPUza7YfN9%2B%2FFcCvwyPndubJUZUbex3pzjLd7SBke6AcqsRks%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364835bd91b4ee-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/aos.css
104.21.94.136200 OK 2.3 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/aos.css
IP 104.21.94.136:0
File type ASCII text, with very long lines (25948)
Hash 8fc87e71c70b219e7d44152acf9a4e06
29b03c24a2abc1d40f6f2a5c3f171e511ca9cb3b
19a7b180bf5722c8541da27f3ebbf046c764830bbc5e5432798897e5f527f022
GET /zshorte_theme/css/aos.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: text/css
Content-Length: 2260
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:05 GMT
Cache-Control: max-age=2592000
Expires: Fri, 03 Feb 2023 23:49:59 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 2499891
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ynKKvdVvJb9jn2mYyySqMd5fCiT41btfvzQ9LUgRIyY0N3nqqwcIytcWbZy8%2FBw0ntH2LW1I3eQk2u9w19A%2BM0tOfuEz45pT5Mjlv6jieGjXMoUrX1YY82MKLRdvFALD9LofAiy6%2FBLPNhXZ7RtoFpY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364835bd94b4ee-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/colors/skyblue.css
104.21.94.136200 OK 1.6 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/colors/skyblue.css
IP 104.21.94.136:0
File type CSV text\012- assembler source text\012- assembler source, ASCII text
Hash 048a5c45178a2765d40e8899e7ec366d
8371c17b5c81b2e7390cf1da3175324265a55e4c
441515df9d10403ad43e63867d185ac25c99d30f1859b8b4b45dcdc9cec781ba
GET /zshorte_theme/css/colors/skyblue.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: text/css
Content-Length: 1559
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:09:38 GMT
Cache-Control: max-age=2592000
Expires: Tue, 21 Feb 2023 11:18:42 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 989768
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TANwDZtyXxhOJ5k%2FuS52Q7TxlbDasFQ7avceU8chfggWg3pu9AXqmFRbVLPaepJcinfBtVG4OVS7HsMiYdYDwPY89mBc2bDdbZxd6G5J%2FJetkgi3A5R6hg6yykbWJSRrOiohcvfhJ%2FA9aAK1%2BLZxzh0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793648360af60b31-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/bootstrap.bundle.min.js
104.21.94.136200 OK 22 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/bootstrap.bundle.min.js
IP 104.21.94.136:0
File type ASCII text, with very long lines (65297)
Hash e0d6bd060ae45edfcf1426b1cf67930c
1a28940ee80d86a3d326239e2d9f974cac657f5b
ee7a5c9ac9eb841e8ad7ff86dc6fb9126c4cf850922618e9c7b650b327565ae0
GET /zshorte_theme/js/bootstrap.bundle.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: application/javascript
Content-Length: 21724
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:42 GMT
Cache-Control: max-age=2592000
Expires: Sat, 18 Feb 2023 07:24:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1263035
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ljE1GisRj0cCOlEvV3kOEr62UapBrRVyDRv9IwFcJdj5Gy0hE%2Bh7TLq6Cv9oQJuFB%2FP3nHUr1FTB573%2BS3T2czFgkPWSIXbWFwLibjUYMdNJcx0DNoDCSXV0ZjWjvBYv%2FWxKMcx1XrIxX1bjm1AeWuA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793648360f3a0b51-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/scrollspy.min.js
104.21.94.136200 OK 654 B URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/scrollspy.min.js
IP 104.21.94.136:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1310), with no line terminators
Hash 52eb89a8cb5d149605707452a5b121ed
93a275664a44bc9eadc52740ba10b5b69ed153fb
b1fc99a4dd46cb4f26c6422a5f5bb57f9ba240637477a2f57dcdca96e1e39d08
GET /zshorte_theme/js/scrollspy.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: application/javascript
Content-Length: 654
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:46 GMT
Cache-Control: max-age=2592000
Expires: Sat, 18 Feb 2023 07:24:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1263035
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jVFpCtyo5R3fe0vcWKPOAGqXTV5BA99lGPORYGmADU4%2FN8qhNquzlDmwZqd3NMO4g%2Fnl%2BNE%2FL1ERh%2B9C7RQWSGHJuQwgse83K7dERowIZPAUk%2Fit0OHx0ZZs2cLpTP6lL6YzFLvwt%2BhSuUxAFPicdXo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793648360e360b45-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/jquery.easing.min.js
104.21.94.136200 OK 817 B URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/jquery.easing.min.js
IP 104.21.94.136:0
File type ASCII text, with very long lines (2532), with no line terminators
Hash d1a8f2ab3b6408f68a4f01d31ac90bc1
42b49a5c362f0cc5ca31dab43a8b98d499cdbf78
17368cc18bda01725115cb1ea484fe4059f425c73ec69fdbc3708fb4a597d1a3
GET /zshorte_theme/js/jquery.easing.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: application/javascript
Content-Length: 817
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:44 GMT
Cache-Control: max-age=2592000
Expires: Wed, 15 Feb 2023 01:55:34 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1541956
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6ErZBxV7QSIqyk%2By8yvKSiYolOZsfBYycIKZWs%2BTIVC8eosRKRPFIHLsRcryN%2BaTsJNkl%2BnxSP5%2FR6n2YsKfDR8JWsHuxP5gXRQ8w7Yxa1B%2FP1XCOSPUqYQ2e%2FU8A9eGUSMLSTxIi%2FGXQEjNXaGVoMo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793648360e01b4ee-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/owl.carousel.min.js
104.21.94.136200 OK 11 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/owl.carousel.min.js
IP 104.21.94.136:0
File type ASCII text, with very long lines (31997)
Hash 147ac1c530c19c721f2f08015355831f
36666c04ebfd91eb34a2bccfd77d5921f149719e
ad388396f2600caf304c74c3255d0cb91ec3eb6979eece045c096b4b8f0e0f3c
GET /zshorte_theme/js/owl.carousel.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: application/javascript
Content-Length: 11412
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:46 GMT
Cache-Control: max-age=2592000
Expires: Thu, 02 Mar 2023 15:10:57 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 198233
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vilxv48Rs5XGgnOAsIpK0MA%2BpDDXmF%2BV%2B2p4ZehK4o7YXRJKKV%2FScBUvbrf5CwVv5qQ9rFbrTWq1ra4VeIEYaKRn7BwPLJc4eUirvVdSQvEj3Sxs8l2orZqi7PFqL2Dh7ORXH%2FcVDvgQQPmulbYCnKQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793648361b020b31-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/jquery.magnific-popup.min.js
104.21.94.136200 OK 7.6 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/jquery.magnific-popup.min.js
IP 104.21.94.136:0
File type ASCII text, with very long lines (20818)
Hash d3369104b2439ab727a1e8b6cb361d2a
0c99633f0c742643a13a66aed4ad22c39cbb5d0c
52a6ae90714006abcdec4e137b978d3c846025e6ae8c20bbb05f1929dad6383f
GET /zshorte_theme/js/jquery.magnific-popup.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: application/javascript
Content-Length: 7594
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:45 GMT
Cache-Control: max-age=2592000
Expires: Sat, 18 Feb 2023 07:24:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1263035
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=opPPmmufZRvoZqHu2y75vgR8CrPsuSa8u0PKW7i7FPDa0mM1azVJcSUhCS98FlCdf%2B3QA9CoGDc6%2FMDfVHSe5EpJf7VhPy0VNa7bATBEfYloJh%2FXe%2FTlJHCjCrWeI4%2BXgpQ0XTP9n%2BsdnLFirLcDoZg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7936483619d10b61-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/owl.init.js
104.21.94.136200 OK 249 B URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/owl.init.js
IP 104.21.94.136:0
Hash 1178357de405dc512ad0141d032d4f7f
6bfbde16bb45c61844e8203ab1cc9792b2f40e68
3e75659a73869029299e5c33792296ee0905c097347dbc92d93b6a78efb25fbc
GET /zshorte_theme/js/owl.init.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: application/javascript
Content-Length: 249
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:46 GMT
Cache-Control: max-age=2592000
Expires: Thu, 02 Mar 2023 15:10:57 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 198233
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cf0%2B%2FKJDsVnC3JIIBLWL8TsX2FuP1plcLg9%2BDNcZp2BFY3L8nuwuxlq8ZHwU4L3OHCwpQYlZ%2BnxVUhzhY9bsZRx0YV1z5kFmKs6Mtykm9pL9ULsTNXwE%2Bp67ABSZAkHCo%2F4korxTlVPTWpCDoyx7xwc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793648361f480b51-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/magnific.init.js
104.21.94.136200 OK 166 B URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/magnific.init.js
IP 104.21.94.136:0
Hash 40cec554fbaaf74145b9780c26962cd7
026dd27f403947cb0aecd23240e198018aaad910
bf1ebcf850056eabbb1d9657ed32008a7e1e841efc3e20145c3d73d21aeb32d3
GET /zshorte_theme/js/magnific.init.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: application/javascript
Content-Length: 166
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:45 GMT
Cache-Control: max-age=2592000
Expires: Sat, 18 Feb 2023 19:31:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1219375
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QVFFnWvOPdVoP2VPr%2FqLPqZ3SPqwLkarEuOfJwprqNpAQg7j6AKBXtr7lgW%2F9pzMRoKGgd8wqniv5MuPIRK2hIF8eyEr3LY4ZOeLMsNJE3O7ydtP4xu6ge8yqJVzfeTUmxbSn8yXn6K0r8dDoNp9oYo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793648361e08b4ee-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/aos.js
104.21.94.136200 OK 4.3 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/aos.js
IP 104.21.94.136:0
File type ASCII text, with very long lines (12414)
Hash 9ee5eee0094f091319e52462de5aef97
a7c8daf227ad5486c29192ccb257093e0fc55072
a4901c10ad16602dd2df5ab175c58b82d1545e3f1b46dfed819c6de191e178a6
GET /zshorte_theme/js/aos.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: application/javascript
Content-Length: 4296
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:40 GMT
Cache-Control: max-age=2592000
Expires: Fri, 03 Feb 2023 23:50:05 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 2499885
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M%2BqhFBKjnFdGQ2%2BjWA%2Bp400vaZOr%2F3z%2BTTIs6X3EuP1YocygLv0C5518Fu%2BXx5OJISwq8SKkTz2LaGxZl8wfNmHihXpzGUJAYPRnHQUh7Cm3KJ2tcNvy3dl%2FOol45GnpVLo9%2FhsFqpw2w8CuAt1edeg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793648364e6b0b45-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/feather.min.js
104.21.94.136200 OK 20 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/feather.min.js
IP 104.21.94.136:0
File type Unicode text, UTF-8 text, with very long lines (61490)
Hash f9a0e93e4d3e9da3a0ff9e3c7c887e6b
5c269e6f3860110826cb284c491c3e765a8e824f
a02a93d1a33fe837780f076fa0bff00b752d29d284f3e0d3a6c49460bb00bd89
GET /zshorte_theme/js/feather.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: application/javascript
Content-Length: 20514
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:42 GMT
Cache-Control: max-age=2592000
Expires: Tue, 21 Feb 2023 11:18:51 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 989759
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=obGmWkPB5%2FlybzPB8y4kviDaoXDFB16XcnP2Bab4Ox%2FmhewWLiG8L4NoJCo7Rdd8iw2ySmyJgS5on2r9xhCyzMZPyVoKcRBEo7%2B%2F%2FY6iA93Wwc0F82WMO5b3qgmUKYrkLySKr3FobD1cQO14XRUJfxI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793648364e37b4ee-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/app.js
104.21.94.136200 OK 1.1 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/app.js
IP 104.21.94.136:0
Hash b9e4d33520dc7d4923312ea7fa86be17
9903ed1c790dee38ccd18d39413cde0f1502ba07
22e17b2197c2664879557f334ef825037e57db88bbaa2b4955c95b3d13b1fe9d
GET /zshorte_theme/js/app.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: application/javascript
Content-Length: 1059
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:40 GMT
Cache-Control: max-age=2592000
Expires: Wed, 15 Feb 2023 01:55:35 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1541955
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8SD8GmcyxsroBywLVx7HZm4KK%2Fy1mhquklUcOoOApRBHYkOoJKT7S1chJ3hAwV3Iy3v51SdX5Qk0FH8Ky4BpE1YuNa8c3I9d6%2B0tSD7XsKuFq2rSWRf7dba%2BwHz7NjilZWZNCm%2Fvebtu5nWPe06OYGs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793648369b650b31-OSL
alt-svc: h2=":443"; ma=60
ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=11
185.76.9.21200 OK 19 kB URL HTTP/1.1 ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=11
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (31679)
Hash 67c3150ee455a4d427c8ad97527e51be
11c8a505eebe7dd4318c3ac12c5802abdef8439b
08da491882a59961ea2dd496ad00a0b51f5386ea05f9224c22149476493cbc83
GET /s/requestform.js?siteId=52788&formatId=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=604800
X-Accel-Expires: @1675951016
Server: CDN77-Turbo
X-77-NZT: AblMCRREzVn/snQAAA
X-77-NZT-Ray: af585630f3b675b2da35dc6366c1922a
X-Cache: HIT
X-Age: 29874
X-77-POP: stockholmSE
X-77-Cache: HIT
Content-Encoding: gzip
ads.themoneytizer.com/s/gen.js?type=11
185.76.9.21200 OK 2.4 kB URL HTTP/1.1 ads.themoneytizer.com/s/gen.js?type=11
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (2659)
Hash f22118ed811a9321e75253b291d41b4a
525e21af604773b0d321eb8c5eb14c3a3814a7a9
a388a3461ccd5caba8f178e9f0f4ee84a759a08388d5b85915637b2832ca86dc
GET /s/gen.js?type=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=604800
X-Accel-Expires: @1675919035
Server: CDN77-Turbo
X-77-NZT: AblMCRSQbev/n/EAAA
X-77-NZT-Ray: af585630c2b576b2da35dc63aed6942a
X-Cache: HIT
X-Age: 61855
X-77-POP: stockholmSE
X-77-Cache: HIT
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5d8806397d1ed8a9c78f9e7996b70181
afa67bdac68060ac3560cadaab63a3d6a0fe3e3a
baac69c977ce94e09e057043b4f5ce50eeb84d5e6242163628bf379d887470a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4406
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:50 GMT
Last-Modified: Thu, 02 Feb 2023 21:01:24 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280
iononetravoy.com/1clkn/33405
142.91.159.185200 OK 26 B URL HTTP/1.1 iononetravoy.com/1clkn/33405
IP 142.91.159.185:0
File type ASCII text, with no line terminators
Hash 414a242a6fee8464282857e475d3ef61
f669890350347f53aa9bd19c1a355692e8d17d2f
d4914e81dd0b4c1d8ee8e789f6b369d107b93ac886f862930e1a98580e79aafa
GET /1clkn/33405 HTTP/1.1
Host: iononetravoy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Fri, 03-Feb-2023 22:14:50 GMT; Max-Age=86400; path=/
GL_GI10=eJw9i7sOgkAURAENEQXMJH6APyA%2BgoWtWhoojPUG8Wo2wl7Crg%2F8elETq5mcOWNZljMK4cgK%2FmoerWZRvIjmyxidCzGcJIWf802ZuhEqKwluwvUja%2BDWdJGsAgx%2BReR8IvSTdHJQV8UP9R8%2BtwDdXJomgPeJrxv20JG6Qrgu5HO85%2BJmWlvDU2SErohO8DbZsaDpdr9D%2BKffs2ujJ7Woan42bR8aWdKLFQk%2BnzWZFtl313kDsc5BIg%3D%3D; expires=Fri, 03-Feb-2023 22:14:50 GMT; Max-Age=86400; path=/
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
ads.themoneytizer.com/s/gen.js?type=19
185.76.9.21200 OK 2.9 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=19
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash 6fe7485ecfbf7361df8c1502cc0d0b34
13d36db7ff64bfcfff76fc131eca4f775b2109eb
0c93b60f3e18ff2bbddff16a82b18adc905bac37328b419516cab240bcc4c329
GET /s/gen.js?type=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675919032
server: CDN77-Turbo
x-77-nzt: AblMCRQHTuL/ovEAAA
x-77-nzt-ray: af5856309eb572b2da35dc639994542e
x-cache: HIT
x-age: 61858
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 97e79b9a8260aacb5d44156444f57771
fc8ca0d0603aafb66546a7d6c1df478b641c0de6
b2c28e327a38389789dccab0fef72b302b87fb5da8dc07e660d829968f6b1abb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3561
Cache-Control: max-age=169019
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:50 GMT
Etag: "63dc192c-117"
Expires: Sat, 04 Feb 2023 21:11:49 GMT
Last-Modified: Thu, 02 Feb 2023 20:12:28 GMT
Server: ECS (amb/6B77)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5d8806397d1ed8a9c78f9e7996b70181
afa67bdac68060ac3560cadaab63a3d6a0fe3e3a
baac69c977ce94e09e057043b4f5ce50eeb84d5e6242163628bf379d887470a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:50 GMT
Etag: "63dacd4b-116"
Server: ECS (amb/6BB3)
Content-Length: 280
www.googletagmanager.com/gtag/js?id=UA-77394287-2
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-77394287-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 22189f963f4efa336a8c0009ccaae49b
052b7e545c852919fa6d05f249fcfba594c6b0e4
7ac8a2f63e1624bf2cc9200b4b54490ad5536685bf2899cbc0dc6afd8b63dc2b
GET /gtag/js?id=UA-77394287-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 22:14:50 GMT
expires: Thu, 02 Feb 2023 22:14:50 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 21:21:20 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43878
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/zshorte_theme/images/illustrator/Startup_SVG.svg
104.21.94.136200 OK 7.3 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/images/illustrator/Startup_SVG.svg
IP 104.21.94.136:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (19895), with no line terminators
Hash 427943d2300981717c994360d8568b72
ec958f6ab8fd3266262e778436f518611b732977
140ce571749413f2d23ec657b47e6025e3fd81b91d1b0439dbdae69cd8b4abda
GET /zshorte_theme/images/illustrator/Startup_SVG.svg HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: image/svg+xml
Content-Length: 7290
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:12:35 GMT
Cache-Control: max-age=31536000
Expires: Fri, 17 Nov 2023 01:45:14 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 6726576
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GMHjC5et8FCKYln%2F8RvCNMMXd0BGSulFVH%2BMI2t2gmI%2Bp8WtydBmSAbgExjrzH6CJVPj0VRNTwRCDGAJ7vzoMVXi%2B4qxuvjIJPuW9p2qTe2msF1U9Xv0fhlgGCmxk0g39ME6oIsVJhOVhea%2FawrzQy0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364837dba80b61-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/images/logo-dark-2.png
104.21.94.136200 OK 45 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/images/logo-dark-2.png
IP 104.21.94.136:0
File type PNG image data, 857 x 155, 8-bit/color RGBA, non-interlaced\012- data
Hash 28ed5694cb52b688df8f6cb9d3c38e9c
2ec4b679e43cd8bf66919b860bfd830f2b23c7d9
0541ab488abc3b9fcc067d1085aae4fadba1c42910207a8260a909dbf489ed31
GET /zshorte_theme/images/logo-dark-2.png HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: image/png
Content-Length: 44788
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:34 GMT
Cache-Control: max-age=31536000
Expires: Thu, 28 Sep 2023 19:19:37 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Vary: User-Agent, Accept-Encoding
CF-Cache-Status: HIT
Age: 10983313
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bULRZnjtUuYOA5TA767jeBDIrPhcSeuPfZQEM5BlhYz0Uis%2FDNochoWyUJFQw1T%2FWZDiuakVtnW3lvO6DYN9uip%2Ba8AOTPbE0whavbZ0X34s5jJV3Gqe8O1k057jITGNLhHlGblm56IQm46gjAZW8ws%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364837dfa70b45-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/img/banner300x250.png?v=2
104.21.94.136200 OK 22 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/img/banner300x250.png?v=2
IP 104.21.94.136:0
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Hash 4dd187d299becdea20c32d192f53ffa3
8c5a9ccd16ce767b02e7bb73cee89a5f68603769
a3049a20cd7d731f0ba6ffe3d7dde64728068c971bb913077bd6383978bb35b7
GET /img/banner300x250.png?v=2 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: image/png
Content-Length: 22442
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 22 Jun 2020 20:22:42 GMT
Cache-Control: max-age=31536000
Expires: Mon, 23 Oct 2023 21:46:31 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Vary: User-Agent, Accept-Encoding
CF-Cache-Status: HIT
Age: 8814499
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AXDraN8IXKuqj6H6W%2FrMqZkYv%2FWa%2BvhuORNbpSwqaLQ7932ulLRMX6F2yt2xg6%2BeQRJwMT1kuIr%2BNF8Xt9EQLkMYhARpCYUwIpCiqDjNCm2QIvVL5%2FNnA6gAOeEHzw5GdDGQjLUc35sSf9%2BJQ0zjtL4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364837d8960b51-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/images/illustrator/Marketing_strategy_SVG.svg
104.21.94.136200 OK 4.4 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/images/illustrator/Marketing_strategy_SVG.svg
IP 104.21.94.136:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (11474), with no line terminators
Hash b0a442730d51099bd296582a33752941
bfc11997a02571df978e1924408668b290e9177b
87d8d2fa765a20cf746844b634c4ff948fc3cf82ec6780c1a50e97714b57ccd7
GET /zshorte_theme/images/illustrator/Marketing_strategy_SVG.svg HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:50 GMT
Content-Type: image/svg+xml
Content-Length: 4373
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:12:33 GMT
Cache-Control: max-age=31536000
Expires: Mon, 23 Oct 2023 21:46:31 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 8814499
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aJ5QNsfmOB4z6ew%2B5bPr0TVwAtjnOE1FRqPS4rGRzHS62FR4Lb%2BOx%2BGc9DtY5YfoLzxXuP%2FMtcOhuRTEWgjAGKMPxWt1X9pK1WwBiM4eYTMNiiFIZUTS1eKJC0ommSH7cHirsbfw6mpkvAmas2wBmX8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364837d824b4ee-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5d8806397d1ed8a9c78f9e7996b70181
afa67bdac68060ac3560cadaab63a3d6a0fe3e3a
baac69c977ce94e09e057043b4f5ce50eeb84d5e6242163628bf379d887470a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4406
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:50 GMT
Last-Modified: Thu, 02 Feb 2023 21:01:24 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 97e79b9a8260aacb5d44156444f57771
fc8ca0d0603aafb66546a7d6c1df478b641c0de6
b2c28e327a38389789dccab0fef72b302b87fb5da8dc07e660d829968f6b1abb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5927
Cache-Control: max-age=171385
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:50 GMT
Etag: "63dc192c-117"
Expires: Sat, 04 Feb 2023 21:51:15 GMT
Last-Modified: Thu, 02 Feb 2023 20:12:28 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
m.imagenesderopaparaperros.com/vendor/owl/owl.carousel.min.js?ver=6.4.0
104.21.94.136200 OK 12 kB URL HTTP/2 m.imagenesderopaparaperros.com/vendor/owl/owl.carousel.min.js?ver=6.4.0
IP 104.21.94.136:0
File type ASCII text, with very long lines (31997)
Hash f204012d23c043d84973de59af2dc82e
c138c041969777df6412074d210281836cc4ebd0
e81233e0443c932c8671795c035c983299940d75c50e608666db94904c345ade
GET /vendor/owl/owl.carousel.min.js?ver=6.4.0 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Sat, 20 Jun 2020 00:08:03 GMT
cache-control: max-age=2592000
expires: Tue, 21 Feb 2023 11:18:46 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 989764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m097gx6TWuWx51%2Fpd1Q63Bwm7wX%2FdEOmMZeY2CziYuBgg2zipHJFcPK1IedmXfRCbiQRJkF%2FM8ARCzB2haeyKBfWOW96WiT9YoVfFx2JGGMfoEINiVMh0cxjwDzgFkQgjscm1iccuOr3I%2B74j82KCrY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79364836efe30b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/zshorte_theme/images/marketing/marketing-shape.png
104.21.94.136200 OK 25 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/images/marketing/marketing-shape.png
IP 104.21.94.136:0
File type PNG image data, 2000 x 1333, 8-bit/color RGBA, non-interlaced\012- data
Hash 5eed74255fa67e5173ba6228cbbd9526
ef9724a6d2dbbb351754e00d9eff520a9577b8d2
bfd1e4251879dbb016cdc9efe9c85b21759d4d49d05c469f2dd0b556215402af
GET /zshorte_theme/images/marketing/marketing-shape.png HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/3Ix0Zv
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: image/png
Content-Length: 24960
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:12:47 GMT
Cache-Control: max-age=31536000
Expires: Fri, 19 Jan 2024 07:24:15 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Vary: User-Agent, Accept-Encoding
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1263036
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IZpVQeRFbevYfnhHy6vr%2F9xH6WdgRVTXhCPoWyrAjsD9%2FgfK%2FkiDYcy8VUR%2F0JVGLA2qkTWP%2FWzKMP3KEIBwOlEKv8CtzqCR7OP4j0inxI%2FoGe4QRSoWLTiE3c7GEPD0IqN%2FyaMN2SW1KsxCrwKc8kY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79364838d8b10b45-OSL
alt-svc: h2=":443"; ma=60
ads.themoneytizer.com/moneybid7_28/build/dist/prebid.js
185.76.9.21200 OK 186 kB URL HTTP/2 ads.themoneytizer.com/moneybid7_28/build/dist/prebid.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Size 186 kB (186549 bytes)
Hash 26c85c70165d6cb5484fb5daffd59bd3
e31b2a0f0aa85c7a424d3f97833029f6dfd2de19
a11ecb0d1c61b8de5c79d687d3df832f678eddf6982ff223ec50747304790119
GET /moneybid7_28/build/dist/prebid.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:51 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 21:13:00 GMT
expires: Fri, 03 Feb 2023 05:03:49 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400629
server: CDN77-Turbo
x-77-nzt: AblMCRSncGX/pvEAAA
x-77-nzt-ray: af5856309eb572b2db35dc6350eaa600
x-cache: HIT
x-age: 61862
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash dff38dffeadd71c065a1ae8e702ff586
531575a2687ab048a09d8518ecebe6eaf1bf925a
5ec4a452f9f49ba07aab0c7b1d20a5d0d8aef755a2ebf0d28474be5bb7f5bce8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5368
Cache-Control: max-age=147447
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:51 GMT
Etag: "63dbbdda-138"
Expires: Sat, 04 Feb 2023 15:12:18 GMT
Last-Modified: Thu, 02 Feb 2023 13:42:50 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 312
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c7b84738ecc4c957dd526bb04245d67c
2f0158e29600270789f5893ece7c1effcd650dba
dac7086d533de13bb6a7ace203f33530359e60690a0510aeec24853dd4a90837
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAC7086D533DE13BB6A7ACE203F33530359E60690A0510AEEC24853DD4A90837"
Last-Modified: Wed, 01 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7209
Expires: Fri, 03 Feb 2023 00:15:00 GMT
Date: Thu, 02 Feb 2023 22:14:51 GMT
Connection: keep-alive
arbourrenewal.com/cf/62/1e/cf621eb24aa5b4a128894819698170b8.js
192.243.61.227200 OK 11 kB URL HTTP/1.1 arbourrenewal.com/cf/62/1e/cf621eb24aa5b4a128894819698170b8.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (32135), with no line terminators
Hash dbe883bd30e852e79bc7b5d3a2c758fe
4be113ae38b11c9cb1afb7d390e0338639605ebb
48b0397594ea9d71b941fd8ba2425db8855c8bd6c62209a9115b14d38c51c61f
GET /cf/62/1e/cf621eb24aa5b4a128894819698170b8.js HTTP/1.1
Host: arbourrenewal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 41961d2d026657be6d729e9441d78114
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1675376118985
51.38.120.206204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1675376118985
IP 51.38.120.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=2a897e3f18e6769&cb=1675376118985 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c7b84738ecc4c957dd526bb04245d67c
2f0158e29600270789f5893ece7c1effcd650dba
dac7086d533de13bb6a7ace203f33530359e60690a0510aeec24853dd4a90837
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAC7086D533DE13BB6A7ACE203F33530359E60690A0510AEEC24853DD4A90837"
Last-Modified: Wed, 01 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7209
Expires: Fri, 03 Feb 2023 00:15:00 GMT
Date: Thu, 02 Feb 2023 22:14:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 22:07:19 GMT
age: 452
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
unicons.iconscout.com/release/v2.1.7/css/unicons.css
104.18.28.243200 OK 46 kB URL HTTP/2 unicons.iconscout.com/release/v2.1.7/css/unicons.css
IP 104.18.28.243:0
File type ASCII text, with very long lines (55387), with no line terminators
Hash 1f2cf3fff83a5e94cdfb56c531a6edeb
1f0ac0277649cef97ebec889279ac27aa0257e10
6fdadb2fec6314541e662224fe7ed92587f6ec124e6fe1247328d9fdbe944d77
GET /release/v2.1.7/css/unicons.css HTTP/1.1
Host: unicons.iconscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=63509
etag: W/"aaeb6aed7a9c71959a3b51e937c363f0"
last-modified: Tue, 28 Apr 2020 10:01:21 GMT
x-amz-id-2: rcJA3EZsi9KbGCo05mlWqv1GCHlLjYeYOVrL/d/OisA8fCuk9lUH0qQdM55mTUbyAf+VjUKwpUE=
x-amz-request-id: 6ECBC3MR51FJHGSM
cf-cache-status: HIT
age: 658190
expires: Fri, 02 Feb 2024 22:14:50 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 79364837cf5f0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6af84a68c4efa67a4c0b3ee67dd4b7f1
509d17ebf5b93a27a0c9f5cb50d29e72268ee093
a7be754f712823037cc169c8a9bb4b7d149a9184fe83c98ba2cb855e6170d3b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A7BE754F712823037CC169C8A9BB4B7D149A9184FE83C98BA2CB855E6170D3B3"
Last-Modified: Tue, 31 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3870
Expires: Thu, 02 Feb 2023 23:19:21 GMT
Date: Thu, 02 Feb 2023 22:14:51 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 27275417e72eb0a44edaf50b0bdd0b07
a002073d3d31c1a4110b5f64c00e50053688d0f1
274a447d4ea38382f7876b0d8cb7e80b305cf9cd29164430ef57a06af0f80404
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 10:16:02 GMT
Expires: Wed, 08 Feb 2023 10:16:01 GMT
Etag: "a002073d3d31c1a4110b5f64c00e50053688d0f1"
Cache-Control: max-age=474669,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793648385ebab509-OSL
c.tmyzer.com/c/?s=52788&f=6&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=52788&f=6&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=52788&f=6&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:77DE_36264064:01BB_63DC35DB_2052B9D:23B58
X-IPLB-Instance: 24858
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tag.leadplace.fr/libJsLP.js
145.239.192.166200 OK 5.5 kB URL HTTP/1.1 tag.leadplace.fr/libJsLP.js
IP 145.239.192.166:0
Hash a0c24f993bc0901cfe62d1e801cb2b45
7eb2bdce06161ae486bc8e7ecd0b5c9c4f7b2984
80fccb00db57a177d26368cda09f8a540cf1aa641b8b6837047e86d3bd8d6333
GET /libJsLP.js HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: application/javascript
Content-Length: 5547
Last-Modified: Mon, 18 Oct 2021 12:21:41 GMT
ETag: "616d66d5-15ab"
Accept-Ranges: bytes
X-IPLB-Request-ID: 5B5A2A9A:B943_91EFC0A6:01BB_63DC35DB_69F299D0:6041
X-IPLB-Instance: 30196
c.tmyzer.com/c/?s=52788&f=1&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=52788&f=1&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=52788&f=1&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:0A39_36264064:01BB_63DC35DB_204E720:1C64A
X-IPLB-Instance: 38438
arbourrenewal.com/2a/6d/fa/2a6dfa22c42f41c1c5d4b95b66a5509c.js
192.243.61.227200 OK 21 kB URL HTTP/1.1 arbourrenewal.com/2a/6d/fa/2a6dfa22c42f41c1c5d4b95b66a5509c.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (60145), with no line terminators
Hash b8b0f0b22b8189a34bd54fcfd9fb46fd
97e4298d50d8d02e46e4eb31920c014408552578
03fae7f542e3030e3f5477658218728b8a49670893f02b5c3b0169466cd1f530
GET /2a/6d/fa/2a6dfa22c42f41c1c5d4b95b66a5509c.js HTTP/1.1
Host: arbourrenewal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 45086ce00560f415648a39edf62f4d93
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
zshorte.net/js/app.js?ver=6.4.0
104.21.89.60200 OK 5.2 kB URL HTTP/2 zshorte.net/js/app.js?ver=6.4.0
IP 104.21.89.60:0
File type Palm OS operating system patch data "var captchaShort;var captchaContact;var captchaSignin;var captchaSignup;var captchaForgotpassword;var captchaShortlink;var invi"\012- , ASCII text, with very long lines (1488)
Hash 4e2754fd6380e4c4fba5677e089282fa
614b798b8b2ce62f382865033a2670e7004ec609
aad0ef1cd489932eadb687b9bb0f94d1056ac74a46ce706b81eea5a2d0f0688c
GET /js/app.js?ver=6.4.0 HTTP/1.1
Host: zshorte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: application/javascript
cache-control: max-age=2592000
cf-bgj: minify
cf-polished: origSize=30407
expires: Mon, 20 Feb 2023 23:46:49 GMT
last-modified: Sat, 20 Jun 2020 00:07:31 GMT
vary: Accept-Encoding,User-Agent
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 1031281
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F%2Fw4j5HTbPMEaJD5FcSw1%2FffzC6bom70H6N38ZWxWIEAGmW8mT5E23SVtw4ROqw2rUdGfjfVJSmSOpuDY9cifAOSTCiaS%2BOv%2Fv2L4HseZNB7aM7060CQwh6zGXKcNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79364837bb9ab503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/IIQUniversalID.js
185.76.9.21200 OK 14 kB URL HTTP/2 ads.themoneytizer.com/IIQUniversalID.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash e0b6c3e76d47c6ef13597e3beb014070
9c266fad4fc027f723bccdec95f59dabe32acc70
fb3cadf0bf2f78ca656d3d34d10649c6a9535c73ef9e788ee74fac0ce4a5b3cd
GET /IIQUniversalID.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 18:48:43 GMT
expires: Fri, 03 Feb 2023 05:03:48 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400628
server: CDN77-Turbo
x-77-nzt: AblMCRTkj2f/pvEAAA
x-77-nzt-ray: af5856309eb572b2da35dc6383fc4d3a
x-cache: HIT
x-age: 61862
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9850
Expires: Fri, 03 Feb 2023 00:59:01 GMT
Date: Thu, 02 Feb 2023 22:14:51 GMT
Connection: keep-alive
ads.vidoomy.com/imagenesderopaparaperros_14871.js
3.19.54.139200 OK 4.8 kB URL HTTP/1.1 ads.vidoomy.com/imagenesderopaparaperros_14871.js
IP 3.19.54.139:0
File type ASCII text, with very long lines (4753)
Hash dca7d770c45a86e8ed98a1a70b16b30a
8d09f9f86cd4dd3f0cf8cef950e4e1ade9ce9c1b
3cfd562889f90c112dadbb1d22fcc0a37235cb8a95484d4c285a13ae670042c9
GET /imagenesderopaparaperros_14871.js HTTP/1.1
Host: ads.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:51 GMT
Server: Apache/2.4.54 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 4755
Keep-Alive: timeout=2, max=300
Connection: Keep-Alive
Content-Type: application/javascript
spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
172.67.13.182308 Permanent Redirect 104 B URL HTTP/1.1 spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
IP 172.67.13.182:0
File type HTML document, ASCII text
Hash f6374de2b16ca49a4b7f2c19227141a2
9a63b26916d675ec764c2d6fdf991052c3fdcd4f
f5042dc89e970724b5778beea2fa613e4ca930c45dfa1dfb510bbba968c2cdbe
GET /?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 308 Permanent Redirect
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Location: https://spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
Vary: Origin
Via: 1.1 google
CF-Cache-Status: DYNAMIC
Server-Timing: cf-q-config;dur=9.000000090964e-06
Server: cloudflare
CF-RAY: 7936483aaac3fabc-OSL
c.tmyzer.com/c/?s=52788&f=19&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=52788&f=19&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=52788&f=19&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:77DE_36264064:01BB_63DC35DB_2052BAD:23B58
X-IPLB-Instance: 24858
spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
172.67.13.182200 OK 21 kB URL HTTP/2 spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
IP 172.67.13.182:0
File type Unicode text, UTF-8 text, with very long lines (50946), with LF, NEL line terminators
Hash 2e66c90e9390cb2c1f7800a671c72984
06a4f3f9fdb5a61bc9728cc3b451fdcefcc4b2cb
3babf53c6da36c005f8b84edf29b7ff3110615353ce7ea7ed1bcfddb36b6bbae
GET /mapper.js?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:51 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: http://m.imagenesderopaparaperros.com
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793648398813b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 2e04cf68b412500d2f999594cc0a8430
3bf2faebb19b92ae665df0ffe7ffe8dc5dff9b71
9ef74e614eda3e74271aa214b5a9c4811f0ac03ace7c546f64dfc27f5cb6a44f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 15023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 21:39:25 GMT
Expires: Thu, 02 Feb 2023 22:14:51 GMT
ETag: "3bf2faebb19b92ae665df0ffe7ffe8dc5dff9b71"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
friendshipmale.com/sfp.js
172.64.203.23200 OK 28 kB URL HTTP/1.1 friendshipmale.com/sfp.js
IP 172.64.203.23:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash b1fa950e77a7db5425f9a5257af02e9c
2d5580451f34ad96218f8b97edf9708f9ee1be87
d999c4320df27dc4a1d3de5aec22bb3ef201560b47a7eff3f28f4133c1997a14
Analyzer Verdict Alert fortinet Malware
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: b736e089ba205e2fd021136a856f3602
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Thu, 02 Feb 2023 22:14:51 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hs0MAJnubyKakbgpbbkZf1HoLhtkH7IBi5FJrctSnE%2BwR%2BT3RQ714HihSTHOY%2BN2UMmJ0t7BEpQCU%2BpbpW6SrflFfV7IaxKv3I8o0OciS%2BhdZ37bowWvMLt9zi6ddGLlCO%2FLvHc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7936483b69487720-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
c.tmyzer.com/c/?s=52788&f=11&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=52788&f=11&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=52788&f=11&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:0A39_36264064:01BB_63DC35DB_204E734:1C64A
X-IPLB-Instance: 38438
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 3f11c62617c2bee07a8ed3cf82151243
ba58aa99e6fda4e73216a5b6a382dfd4f1f5b33a
a0b39826bd54ed8244e2c90f71d51146feaba0b9100446256479344837c50228
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146498
Date: Thu, 02 Feb 2023 22:14:51 GMT
Etag: "63dbbb1a-1d7"
Expires: Sat, 04 Feb 2023 14:56:29 GMT
Last-Modified: Thu, 02 Feb 2023 13:31:06 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Kex1wGZKUh02XKEB-2GXyLJzo7e2sAwi_PxLfgmYWd5qmSabJoqntA==
Age: 5123
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 3f11c62617c2bee07a8ed3cf82151243
ba58aa99e6fda4e73216a5b6a382dfd4f1f5b33a
a0b39826bd54ed8244e2c90f71d51146feaba0b9100446256479344837c50228
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 22:14:51 GMT
Last-Modified: Thu, 02 Feb 2023 20:52:13 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hp32ha8beVJHXb7dkAo8x1RLoPRreS_8_E8LqfwRQ7IB7IUcl8qAJg==
Age: 4958
push.services.mozilla.com/
54.184.253.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.184.253.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sac4BxyOnK3yfZxKBdQBOw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZL9Xh0JuvdB26pHeFXwr+jHoIsw=
simplewebanalysis.com/stats
3.120.47.42200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.120.47.42:0
File type ASCII text, with no line terminators
Hash e5dca25256b7aba015c618a96b1a482b
28debd2f89ce19f82f4e8cd72aab9acce42fff05
ea0828da1dfefe53482d1cbe44cb7e552fa557d3e08967b4d9cf610b08d7c566
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:51 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-allow-credentials: true
set-cookie: uid_id2=70081460-6513-44c3-8637-fada2158294e:2:1; expires=Sun, 30 Jan 2033 22:14:51 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
3.120.47.42200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.120.47.42:0
File type ASCII text, with no line terminators
Hash fe505f89496b7e2bb4ba22a4c6a2efc1
b1cf6b024b92e18efb1874fa9209e43ea4316237
362918fe30e36a26300e7872482ba1a7bf7499d53598d9b4c60958416b7059fb
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:51 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-allow-credentials: true
set-cookie: uid_id2=29311ea0-2f7d-49e8-9fab-5ead5864b4ec:3:1; expires=Sun, 30 Jan 2033 22:14:51 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/zshorte_theme/fonts/materialdesignicons-webfont.woff2?v=5.3.45
104.21.94.136200 OK 290 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/fonts/materialdesignicons-webfont.woff2?v=5.3.45
IP 104.21.94.136:0
File type Web Open Font Format (Version 2), TrueType, length 290164, version 1.0\012- data
Size 290 kB (290164 bytes)
Hash dc85ceeb0daba687e36d8dde4ed4d352
07b7375770ca6989fdf9872a960727743bd9da5d
f94a9bc93d318bc1bc5d07ca5aad4eb651553ef7a0e6a3b06f6f5abbc72fea75
GET /zshorte_theme/fonts/materialdesignicons-webfont.woff2?v=5.3.45 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/zshorte_theme/css/materialdesignicons.min.css
Cookie: lang=en_US; AppSession=4f2b6975740afd6d32512eb162d207ac; csrfToken=a535871818e38172a6e25a1376cf465a2cd562173ddbfb3301d1a28b979e7221ef736865f058cfaa110d2cc905757daf0dc53d7c0cf18a0a3e916c13e4eaa725
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Type: font/woff2
Content-Length: 290164
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:18 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Vary: User-Agent, Accept-Encoding
X-Served-By: m.imagenesderopaparaperros.com
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ocEXiFS5vys16hcU42zosqzB77FIilzSBdU89e29em6pdixMe1hTMU%2Fr1Yy9k16zFAvGAEpTwPH6eTpEX0%2BQbV9pJvqqRTK4k2obFgC1U093VE6VBVIunu4pcKkNHxoPk10ikH9CO%2FsmpZgG0g1VJEo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7936483b5ad50b45-OSL
alt-svc: h2=":443"; ma=60
choreinevitable.com/pixel/purst?dl=0&th=0&sc=0&rs=1263&rd=1263&fd=826&bv=22.10.v.9&tmpl=70
173.233.137.52200 OK 0 B URL HTTP/1.1 choreinevitable.com/pixel/purst?dl=0&th=0&sc=0&rs=1263&rd=1263&fd=826&bv=22.10.v.9&tmpl=70
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=1263&rd=1263&fd=826&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: choreinevitable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:14:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
banquetunarmedgrater.com/advertisers.js
192.243.59.13200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 02 Feb 2023 22:14:52 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b11eaafa0b123b0f18ed04c795660481
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.ftd.agency/libs/e.js
37.48.117.210200 OK 1.7 kB IP 37.48.117.210:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash 02f679c9e331e69ac43f87af96915b9d
e589290852a088c34cbf7bb3104faa833244e1d4
7ea9bdfdd368aa5835ba2930414dc029b4d2ffbd46c362e33d2efaffbb8fad32
GET /libs/e.js HTTP/1.1
Host: cdn.ftd.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:52 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 13 Sep 2022 09:47:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"632051a8-aec"
Expires: Fri, 03 Feb 2023 22:14:52 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip
z.cdn.ftd.agency/load?z=1339915142&div=k18lg0dmbk0&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=2143&hc=16&n=1675376120151&url=m.imagenesderopaparaperros.com%2F3Ix0Zv&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=49738363
37.48.117.210204 No Content 0 B URL HTTP/1.1 z.cdn.ftd.agency/load?z=1339915142&div=k18lg0dmbk0&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=2143&hc=16&n=1675376120151&url=m.imagenesderopaparaperros.com%2F3Ix0Zv&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=49738363
IP 37.48.117.210:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /load?z=1339915142&div=k18lg0dmbk0&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=2143&hc=16&n=1675376120151&url=m.imagenesderopaparaperros.com%2F3Ix0Zv&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=49738363 HTTP/1.1
Host: z.cdn.ftd.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Thu, 02 Feb 2023 22:14:52 GMT
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Expires: -1
P3P: policyref="/p3p.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Set-Cookie: AU=66910b6b4414ac9f; Expires=Fri, 02 Feb 2035 22:00:37 GMT; Path=/; HttpOnly; Domain=.cdn.ftd.agency; SameSite=None; Secure
z.cdn.ftd.agency/load?z=1339915142&div=np5sp2zy4cg&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=2143&hc=16&n=1675376120151&url=m.imagenesderopaparaperros.com%2F3Ix0Zv&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=49738363
37.48.117.210204 No Content 0 B URL HTTP/1.1 z.cdn.ftd.agency/load?z=1339915142&div=np5sp2zy4cg&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=2143&hc=16&n=1675376120151&url=m.imagenesderopaparaperros.com%2F3Ix0Zv&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=49738363
IP 37.48.117.210:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /load?z=1339915142&div=np5sp2zy4cg&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=2143&hc=16&n=1675376120151&url=m.imagenesderopaparaperros.com%2F3Ix0Zv&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=49738363 HTTP/1.1
Host: z.cdn.ftd.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Thu, 02 Feb 2023 22:14:52 GMT
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Expires: -1
P3P: policyref="/p3p.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Set-Cookie: AU=66910b6b4414ac9f; Expires=Fri, 02 Feb 2035 22:00:37 GMT; Path=/; HttpOnly; Domain=.cdn.ftd.agency; SameSite=None; Secure
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 61ee389eba7cebcaa9efdb26a9b8145d
23210d7b46c4429f2656962b59f977b8565600a1
cc70b26ef3673bef53dd42c3e71f4136e71b57b2ce42faa3ae995e304b022864
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CC70B26EF3673BEF53DD42C3E71F4136E71B57B2CE42FAA3AE995E304B022864"
Last-Modified: Tue, 31 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6501
Expires: Fri, 03 Feb 2023 00:03:13 GMT
Date: Thu, 02 Feb 2023 22:14:52 GMT
Connection: keep-alive
a.teads.tv/analytics/tag.js
23.38.201.50200 OK 3.4 kB URL HTTP/2 a.teads.tv/analytics/tag.js
IP 23.38.201.50:0
File type ASCII text, with very long lines (4822)
Hash 6ddfb3a828a563a7719081ff9aeedaba
80286455b7c85311df5f997714b83380ac02fd6d
826524e59a21d4190f923f804a17db1513e1ee3cb4a5ed12f3bb6a5b4f370835
GET /analytics/tag.js HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +hi3J8gLh7odTbzzwPTTi1cNLRiMIMeCbLwhFS3fdhvnkPc6F/KidF+aylAlaVgqP4umQC5X3TY=
x-amz-request-id: VYTSDGA8QVA7F7Y0
last-modified: Wed, 02 Nov 2022 09:38:15 GMT
etag: "6ddfb3a828a563a7719081ff9aeedaba"
x-amz-server-side-encryption: AES256
x-amz-version-id: Y6qsPmt0o95KDo3Ibo2euzqSnxQebNV8
accept-ranges: bytes
content-type: text/javascript;charset=utf-8
content-length: 3391
cache-control: private, max-age=3600
date: Thu, 02 Feb 2023 22:14:52 GMT
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
d3g5ovfngjw9bw.cloudfront.net/leaflet.toolbar.js
143.204.42.75200 OK 9.7 kB URL HTTP/2 d3g5ovfngjw9bw.cloudfront.net/leaflet.toolbar.js
IP 143.204.42.75:0
File type HTML document, ASCII text, with very long lines (1568), with CRLF line terminators
Hash 9921927905da2c1c5b289aed76b4f1a4
5dba39fb5070cfff70e259027da0b72fbf11bf84
0df5104a99dba53910af309c33ce1610d9fd6e91f73ab5a9015f1f125e63c90f
Analyzer Verdict Alert fortinet Malware
GET /leaflet.toolbar.js HTTP/1.1
Host: d3g5ovfngjw9bw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 9699
expires: Fri, 03 Feb 2023 18:42:13 GMT
access-control-allow-origin: *
link: <https://cdn4ads.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
content-encoding: gzip
date: Fri, 27 Jan 2023 18:42:13 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cY1Td2UMQ8Zgwdus8sNbTwQ-mdU9BdMzdXcNfS-VK3fCc7jOscpCww==
age: 531159
X-Firefox-Spdy: h2
ced.sascdn.com/tag/1097/smart.js
23.36.77.24200 OK 33 kB URL HTTP/1.1 ced.sascdn.com/tag/1097/smart.js
IP 23.36.77.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash ab5d7bcba6f9bbe86e71d3f75061efc8
bf137eb7dc8285e29d986f6b8f3272f6f979bc0e
a973cdadddcd9ba18f6e262f602d39e091090e4a94ac036b3fc4f7428e5b84e6
GET /tag/1097/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32964
Cache-Control: public, max-age=7200
Expires: Fri, 03 Feb 2023 00:14:52 GMT
Date: Thu, 02 Feb 2023 22:14:52 GMT
Connection: keep-alive
d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
54.230.245.59200 OK 26 kB URL HTTP/1.1 d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
IP 54.230.245.59:0
File type ASCII text, with very long lines (16085)
Hash 8703fc9eead243fe2f47380e962d7fa2
3d9f707259112fa9ccdd1e676f00eadcff71906c
b47b4ca26c57e3dceebd7abd067df9622599bed6bfb11b480f92d09a945cd213
GET /a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js HTTP/1.1
Host: d2zur9cc2gf1tx.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 25704
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Mon, 18 Feb 2019 16:54:28 GMT
Server: Apache
Date: Thu, 02 Feb 2023 02:21:29 GMT
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rnh6FVKkxsAbY9XmsK5oPx33oIbVY8Dfs9PbeK7OhEJVP6WPTFg6dQ==
Age: 71606
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 21:44:08 GMT
expires: Thu, 02 Feb 2023 23:44:08 GMT
cache-control: public, max-age=7200
age: 1844
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cmp.quantcast.com/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
143.204.55.88200 OK 1.5 kB URL HTTP/2 cmp.quantcast.com/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
IP 143.204.55.88:0
File type ASCII text, with very long lines (1834)
Hash 00f4c4df9e5cee231424a6165f1175b1
d2394ef7929f4b6d1dcd699dd01c7cd402aa9c07
d9935774306ceaec5a8fc3f7de57258647153aa1d12bb4d0b4be9bb9eff9c525
GET /choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:53:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
date: Thu, 02 Feb 2023 22:14:42 GMT
cache-control: max-age=3600
etag: W/"c53bd785b1ee57b613221019d7d72626"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HghA3EKZc20KrZnWOvaN2njhXYXoCxwxvLAR8nWwUbuNnRS5Y75LoQ==
age: 14
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f1d7caa3990755c35b3e67326ce30c48
0564b1aaab6c757a54df2cf0a1f625af03fa179c
ddfb8bd82c7416a8b00612e89b74455b8bd256a757ccfcdb2dba4a3bf17b162b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1215
Cache-Control: max-age=159136
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:52 GMT
Etag: "63dbfbbd-1d7"
Expires: Sat, 04 Feb 2023 18:27:08 GMT
Last-Modified: Thu, 02 Feb 2023 18:06:53 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
142.250.74.131200 OK 586 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
IP 142.250.74.131:0
File type ASCII text, with very long lines (921), with no line terminators
Hash f5663b139833f4a8e0066ac97b30d0d3
f7b0f69618c8a5d87603de62b6c68bd948e5197d
cbfc44c0dd839b503a89d290390e19f5409f38962dd8843124d7ec2a6e1beec0
GET /recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 02 Feb 2023 22:14:52 GMT
date: Thu, 02 Feb 2023 22:14:52 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=401515,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793648421aabb509-OSL
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.2.146200 OK 9.3 kB URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.2.146:0
Hash 84b6c58a4fe90389740cad309b6ee5d9
450c18fe0f31406a4773332d02f3de58076c74b9
efa91cb046f27ab395915f1dcd4f38c768da63b06204afdf247d2cc0a8c5d690
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:51 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 876352
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
x.bidswitch.net/sync?ssp=vidoomy&user_id=898481435.1478291244289879.405555
18.196.150.104302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?ssp=vidoomy&user_id=898481435.1478291244289879.405555
IP 18.196.150.104:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=vidoomy&user_id=898481435.1478291244289879.405555 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 22:14:52 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=898481435.1478291244289879.405555
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=584fc261-e22a-497c-8089-6d31ad541ad8; path=/; expires=Fri, 02-Feb-2024 22:14:52 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675376092; path=/; expires=Fri, 02-Feb-2024 22:14:52 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675376092; path=/; expires=Fri, 02-Feb-2024 22:14:52 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675376092; path=/; expires=Fri, 02-Feb-2024 22:14:52 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.200200 OK 10 kB URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.200:0
Hash bfe714d406fada39b59931b43ac897a4
bc81523ac066b4f276f7b615be6c61a89724e3e2
ee48a072bfbd87c67ade52bff2e8e382fa590cdf115895c4615e068b2ae2bc3e
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:52 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "j4o3/UzQJzEULY/aoGayAw=="
expires: Thu, 09 Feb 2023 22:14:52 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58610/occ
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58610/occ
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58610/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 22:14:52 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58610/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBNw13GMCEFW3u8g23yn2-iv0OdtUvBUFEgEBAQGH3WPmYwAAAAAA_eMAAA&S=AQAAAqZgg9gWUuSRtnjLKGt5hjs; Expires=Sat, 3 Feb 2024 04:14:52 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
naveljutmistress.com/sbar.json?key=cf621eb24aa5b4a128894819698170b8&uuid=29311ea0-2f7d-49e8-9fab-5ead5864b4ec%3A3%3A1
173.233.139.164200 OK 4.3 kB URL HTTP/1.1 naveljutmistress.com/sbar.json?key=cf621eb24aa5b4a128894819698170b8&uuid=29311ea0-2f7d-49e8-9fab-5ead5864b4ec%3A3%3A1
IP 173.233.139.164:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6322), with no line terminators
Hash 6f255637e51f6690131a362993242dd3
f53cd02816635083c26e3213d0e0f82a2d54408d
72be7471a73b8169089490f9c874a740a7ab06f121dd4d096e3400efb9193b88
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=cf621eb24aa5b4a128894819698170b8&uuid=29311ea0-2f7d-49e8-9fab-5ead5864b4ec%3A3%3A1 HTTP/1.1
Host: naveljutmistress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:14:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15289012; expires=Fri, 03 Feb 2023 22:14:52 GMT; secure; SameSite=None
uid_id2=29311ea0-2f7d-49e8-9fab-5ead5864b4ec:3:1; expires=Thu, 09 Feb 2023 22:14:52 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 Feb 2023 22:14:52 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 Feb 2023 22:14:52 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 03 Feb 2023 22:14:52 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 03 Feb 2023 22:14:52 GMT; secure; SameSite=None
sleccf621eb24aa5b4a128894819698170b8=[3905509]; expires=Thu, 02 Feb 2023 22:14:57 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 90c108e84f1a9e8e3f85284a061c1be0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ad.lkqd.net/vpaid/formats.js
151.139.128.10200 OK 36 kB URL HTTP/2 ad.lkqd.net/vpaid/formats.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b3736cf69ac3288810f4c8bb85ce569c
70984d14343ea485a8232927d58db0671eb1778f
1d2893bf6270530e1df90bc8279d8319cd721ba8dc4ba94970b1a0adf03bac98
GET /vpaid/formats.js HTTP/1.1
Host: ad.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:52 GMT
content-encoding: gzip
content-length: 35765
content-type: application/javascript
last-modified: Fri, 11 Dec 2020 00:09:23 GMT
accept-ranges: bytes
etag: "286704660baa2c113268f28385080796"
cache-control: public, max-age=1209600
x-hw: 1675376092.cds260.sk1.hn,1675376092.cds229.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10317
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 22:14:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10317
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 22:14:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 53175
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:44:41 GMT
age: 1811
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=1
185.76.9.21200 OK 7.8 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=1
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash c865966ca584ebb6a5fd74dadf86dc3b
2e2bf991638f78d67939d2f3f3a100c0ead97f6d
193475f0ca1e4c0a11ff4827daf4f6c543355110ceca24afb97630cdfb52e91a
GET /s/gen.js?type=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675919032
server: CDN77-Turbo
x-77-nzt: AblMCRTTNkP/ovEAAA
x-77-nzt-ray: af5856309eb572b2da35dc63b0b9902e
x-cache: HIT
x-age: 61858
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ad.lkqd.net/cookie-sync/usync.html
151.139.128.10200 OK 1.9 kB URL HTTP/2 ad.lkqd.net/cookie-sync/usync.html
IP 151.139.128.10:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4478)
Hash 41b852ed55af42897839dd36a74c8836
ab34ebee16e719e22645fb8560fd66adf90f9dff
eb7f7a625357319b2e1a3f3099e9630dada48ec5c079e5d698699ebe15c8002f
GET /cookie-sync/usync.html HTTP/1.1
Host: ad.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:52 GMT
content-encoding: gzip
content-length: 1882
content-type: text/html
last-modified: Fri, 18 Feb 2022 17:38:44 GMT
accept-ranges: bytes
etag: "952dcfd8e3703b5a7e78418d51009535"
cache-control: public, max-age=1209600
x-hw: 1675376092.cds260.sk1.hn,1675376092.cds003.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H1HIK6zdv95V96NxqSfHCqYtDQNPZ9NLAwG5oM5mwRr3nAUR0BPxlg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:11 GMT
age: 85781
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0Or-HsIwMZU2miHKAMx1b8ccWDyr5E-WrLAAffgzbpXoYntDIUPB2Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:12:56 GMT
age: 116
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d910c24f5a6108cb74103cd70692a703
9fe648fa464e46d16f685aca1704f3414eda4107
5cbe5e571e62555225621440203ae24a3b8c41ac7f49b6b731bc2c94e620797f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5561
x-amzn-requestid: 76ca969b-a840-4d5c-97c1-2dfd93b8f630
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKYE3-IAMFqbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-2729fe22420bcc0563c39aff;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: E91BIw8QT3vXXQY8GIPpnRqnTZV4paZ3wynf7UjLnjeIfwS0tiC1Gg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:05:15 GMT
age: 577
etag: "9fe648fa464e46d16f685aca1704f3414eda4107"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
naveljutmistress.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRReuTjbw8wuCIhoRoRUPEdxJd0%2F3zrQ5LMYYicYkJNFcvFR1Vc%2BUW9PVVHVPT%2Ba0GJDcMuJBj73fJFmiQQx4FXXWi8wpIyIL6948eFIMepaZHVh8h3qv3vcdvve999FWuU88lHT30jt6KJWiJ6OG5564JjOuK%2BteuOr6XsM75V6T2Vp4yh3MH9N%2F1feihvey%2B6ZINvTJwPM9z%2Fd896w0ItWDkwsUMr8f%2B43Ya4RBw49CDMx%2F%2F7Z0YKkD3t8nT0Ly2bHujw8gkwmy3ldnhN0odP7KG71S0UIb9Pn2u9lGpqsMvcMyNQ7SbHvJhrYzQj47Ap1tLyeA7t%2BeTwAmZ8T5xQfLtpcywfp3DpQyBZGB8cdQ9ScQagJJJ0j0DUj%2BkAAJx4WLyHp3L2hT0esHKJ2jM7LyzyPIakZWfn0KWe%2FL00oO3CtalYXUmcUgrSEHE8jOBHm5g2LoQFY7SIoPITlB1qsh%2Be5LQdz0fUG91SBt8dUwFu3VOKVsNRKUR%2B21kIUiWVgj5QQynUCJEag9itI6KKWDMnVQ5g56fNelUZx6XitlabPZDpMkaTaTJGqv8Yg3w3bqoUzm2kco8hESNUJiNpGbTWzIEUz5HWy3huUObEHQ5zUqQVBZgooSVJKgKgiqfn2HKxvY%2Bi5XtmT%2BMgfL3KzHuuhs0Tu66IiMbOX75ImFYb%2B%2F9TU2xK6bpGuBL1gQUhqxkPpBux2HbT9ei9t%2By2NtWFlD2iOg1sFwvr2n%2F0IuZ4T8sQlGd2DVDhL5Imj5PGg1bgUeaHcctj0Ms%2FtDZbvaFKKRiQJc18iLYyiuO1tqnzy70HHq098gkun6z4%2B%2Ft3L8kxKJqZGbGh%2FIHwg66ub4sq7I7cu6suTBxbyQPTmk86VeKWghVj5%2FW1yvtOHnztjRvdeSOTAv718VtjhPMy6zjiVfnJacC3NWm0SQb87Za4JdKm33dGmyMj9%2F6fWz53q5EdZKnU1A5UNzD4mckf%2FvPbc4V%2Fd%2FxyHNBKas0SunZBmQegdJvgmbT9dnt94%2F8ffkFqwmMOqQw3IHVVmPTcAOm0rOSPDoGSgxXf9%2BOnZe6HqgrIYVhzYwMf32zwP%2Blr2JjnFAixuLQ%2B2bGn1Vg6oRbHl0XORmuv5TcxFgyhkzZZzbTBn18YG9Vu66Ikq9VHiBYGnM0hb1eJyGMaOxL1osoj4KO0v2or1%2FAQAA%2F%2F8BAAD%2F%2F2kU%2FnmKBAAA
173.233.139.164200 OK 7 B URL HTTP/1.1 naveljutmistress.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRReuTjbw8wuCIhoRoRUPEdxJd0%2F3zrQ5LMYYicYkJNFcvFR1Vc%2BUW9PVVHVPT%2Ba0GJDcMuJBj73fJFmiQQx4FXXWi8wpIyIL6948eFIMepaZHVh8h3qv3vcdvve999FWuU88lHT30jt6KJWiJ6OG5564JjOuK%2BteuOr6XsM75V6T2Vp4yh3MH9N%2F1feihvey%2B6ZINvTJwPM9z%2Fd896w0ItWDkwsUMr8f%2B43Ya4RBw49CDMx%2F%2F7Z0YKkD3t8nT0Ly2bHujw8gkwmy3ldnhN0odP7KG71S0UIb9Pn2u9lGpqsMvcMyNQ7SbHvJhrYzQj47Ap1tLyeA7t%2BeTwAmZ8T5xQfLtpcywfp3DpQyBZGB8cdQ9ScQagJJJ0j0DUj%2BkAAJx4WLyHp3L2hT0esHKJ2jM7LyzyPIakZWfn0KWe%2FL00oO3CtalYXUmcUgrSEHE8jOBHm5g2LoQFY7SIoPITlB1qsh%2Be5LQdz0fUG91SBt8dUwFu3VOKVsNRKUR%2B21kIUiWVgj5QQynUCJEag9itI6KKWDMnVQ5g56fNelUZx6XitlabPZDpMkaTaTJGqv8Yg3w3bqoUzm2kco8hESNUJiNpGbTWzIEUz5HWy3huUObEHQ5zUqQVBZgooSVJKgKgiqfn2HKxvY%2Bi5XtmT%2BMgfL3KzHuuhs0Tu66IiMbOX75ImFYb%2B%2F9TU2xK6bpGuBL1gQUhqxkPpBux2HbT9ei9t%2By2NtWFlD2iOg1sFwvr2n%2F0IuZ4T8sQlGd2DVDhL5Imj5PGg1bgUeaHcctj0Ms%2FtDZbvaFKKRiQJc18iLYyiuO1tqnzy70HHq098gkun6z4%2B%2Ft3L8kxKJqZGbGh%2FIHwg66ub4sq7I7cu6suTBxbyQPTmk86VeKWghVj5%2FW1yvtOHnztjRvdeSOTAv718VtjhPMy6zjiVfnJacC3NWm0SQb87Za4JdKm33dGmyMj9%2F6fWz53q5EdZKnU1A5UNzD4mckf%2FvPbc4V%2Fd%2FxyHNBKas0SunZBmQegdJvgmbT9dnt94%2F8ffkFqwmMOqQw3IHVVmPTcAOm0rOSPDoGSgxXf9%2BOnZe6HqgrIYVhzYwMf32zwP%2Blr2JjnFAixuLQ%2B2bGn1Vg6oRbHl0XORmuv5TcxFgyhkzZZzbTBn18YG9Vu66Ikq9VHiBYGnM0hb1eJyGMaOxL1osoj4KO0v2or1%2FAQAA%2F%2F8BAAD%2F%2F2kU%2FnmKBAAA
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRReuTjbw8wuCIhoRoRUPEdxJd0%2F3zrQ5LMYYicYkJNFcvFR1Vc%2BUW9PVVHVPT%2Ba0GJDcMuJBj73fJFmiQQx4FXXWi8wpIyIL6948eFIMepaZHVh8h3qv3vcdvve999FWuU88lHT30jt6KJWiJ6OG5564JjOuK%2BteuOr6XsM75V6T2Vp4yh3MH9N%2F1feihvey%2B6ZINvTJwPM9z%2Fd896w0ItWDkwsUMr8f%2B43Ya4RBw49CDMx%2F%2F7Z0YKkD3t8nT0Ly2bHujw8gkwmy3ldnhN0odP7KG71S0UIb9Pn2u9lGpqsMvcMyNQ7SbHvJhrYzQj47Ap1tLyeA7t%2BeTwAmZ8T5xQfLtpcywfp3DpQyBZGB8cdQ9ScQagJJJ0j0DUj%2BkAAJx4WLyHp3L2hT0esHKJ2jM7LyzyPIakZWfn0KWe%2FL00oO3CtalYXUmcUgrSEHE8jOBHm5g2LoQFY7SIoPITlB1qsh%2Be5LQdz0fUG91SBt8dUwFu3VOKVsNRKUR%2B21kIUiWVgj5QQynUCJEag9itI6KKWDMnVQ5g56fNelUZx6XitlabPZDpMkaTaTJGqv8Yg3w3bqoUzm2kco8hESNUJiNpGbTWzIEUz5HWy3huUObEHQ5zUqQVBZgooSVJKgKgiqfn2HKxvY%2Bi5XtmT%2BMgfL3KzHuuhs0Tu66IiMbOX75ImFYb%2B%2F9TU2xK6bpGuBL1gQUhqxkPpBux2HbT9ei9t%2By2NtWFlD2iOg1sFwvr2n%2F0IuZ4T8sQlGd2DVDhL5Imj5PGg1bgUeaHcctj0Ms%2FtDZbvaFKKRiQJc18iLYyiuO1tqnzy70HHq098gkun6z4%2B%2Ft3L8kxKJqZGbGh%2FIHwg66ub4sq7I7cu6suTBxbyQPTmk86VeKWghVj5%2FW1yvtOHnztjRvdeSOTAv718VtjhPMy6zjiVfnJacC3NWm0SQb87Za4JdKm33dGmyMj9%2F6fWz53q5EdZKnU1A5UNzD4mckf%2FvPbc4V%2Fd%2FxyHNBKas0SunZBmQegdJvgmbT9dnt94%2F8ffkFqwmMOqQw3IHVVmPTcAOm0rOSPDoGSgxXf9%2BOnZe6HqgrIYVhzYwMf32zwP%2Blr2JjnFAixuLQ%2B2bGn1Vg6oRbHl0XORmuv5TcxFgyhkzZZzbTBn18YG9Vu66Ikq9VHiBYGnM0hb1eJyGMaOxL1osoj4KO0v2or1%2FAQAA%2F%2F8BAAD%2F%2F2kU%2FnmKBAAA HTTP/1.1
Host: naveljutmistress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Cookie: u_pl=15289012; uid_id2=29311ea0-2f7d-49e8-9fab-5ead5864b4ec:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:14:52 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ff6d3a54a9a2063aacb8c3693c0e3e7d
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d62d6b1aa5d380b6cdbfae5d3dca5421
f715b643ffd374ace9695098eb3ed3a70de0fde1
04f32494a66d0cd2ed4b1a8078b86edcfca40190fedcf0334d9cd62ca2ca6d19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "04F32494A66D0CD2ED4B1A8078B86EDCFCA40190FEDCF0334D9CD62CA2CA6D19"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9484
Expires: Fri, 03 Feb 2023 00:52:56 GMT
Date: Thu, 02 Feb 2023 22:14:52 GMT
Connection: keep-alive
ad.lkqd.net/cookie-sync/usync.html
151.139.128.10200 OK 1.9 kB URL HTTP/2 ad.lkqd.net/cookie-sync/usync.html
IP 151.139.128.10:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4478)
Hash 41b852ed55af42897839dd36a74c8836
ab34ebee16e719e22645fb8560fd66adf90f9dff
eb7f7a625357319b2e1a3f3099e9630dada48ec5c079e5d698699ebe15c8002f
GET /cookie-sync/usync.html HTTP/1.1
Host: ad.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:52 GMT
content-encoding: gzip
content-length: 1882
content-type: text/html
last-modified: Fri, 18 Feb 2022 17:38:44 GMT
accept-ranges: bytes
etag: "952dcfd8e3703b5a7e78418d51009535"
cache-control: public, max-age=1209600
x-hw: 1675376092.cds260.sk1.hn,1675376092.cds003.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4b32d45a75459dc3d6106bdaa187bad2
ac8c14aab07ccf9e2361b6e97dd99533a7cf663c
78d2731715d2c9787631e6e6d3d073b6e96af3e5373a25080d298b8214591bbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 00:04:31 GMT
Expires: Thu, 09 Feb 2023 00:04:30 GMT
Etag: "ac8c14aab07ccf9e2361b6e97dd99533a7cf663c"
Cache-Control: max-age=524377,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793648436c54b509-OSL
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.16301 Moved Permanently 167 B URL HTTP/1.1 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.16:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 02 Feb 2023 22:14:52 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
X-Cache: Redirect from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Zw58iTaRexSr7lhjkbFqJe_oJFvxMMzz805xQmHwKNtahmGzxaZIng==
ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
142.250.74.10200 OK 30 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (32034)
Hash c54aac7ef64c39b4f384e0d5771d3b46
d3e059104378a3844862a5ed12a13f5d423e86b6
3e1b5002dd64d185f806edeefd333348f423584d876cfc966b5c13884c8fe3da
GET /ajax/libs/jquery/3.0.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30186
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 02:09:19 GMT
Expires: Sat, 27 Jan 2024 02:09:19 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 590733
x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=898481435.1478291244289879.405555
18.196.150.104200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=898481435.1478291244289879.405555
IP 18.196.150.104:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?ssp=vidoomy&user_id=898481435.1478291244289879.405555 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://m.imagenesderopaparaperros.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:52 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58610/occ?verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58610/occ?verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58610/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://m.imagenesderopaparaperros.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 22:14:52 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBNw13GMCEFzZIQ0sC5OF7zl6hYDdufEFEgEBAQGH3WPmYwAAAAAA_eMAAA&S=AQAAAmfZOsMOv-rXMAupLzZrrIs; Expires=Sat, 3 Feb 2024 04:14:52 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 277519
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.stickyadstv.com/auto-user-sync
23.36.77.41200 OK 43 B URL HTTP/1.1 ads.stickyadstv.com/auto-user-sync
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /auto-user-sync HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
x-sticky-vk: 1675376093027009-533
Content-Length: 43
Expires: Thu, 02 Feb 2023 22:14:53 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 02 Feb 2023 22:14:53 GMT
Connection: keep-alive
Set-Cookie: UID=f073ce453d963ae09d9fafea51de69ad; Domain=ads.stickyadstv.com; Expires=Sat, 04-Mar-2023 22:14:53 GMT; Path=/
c.adsco.re/
104.17.167.186200 OK 30 kB IP 104.17.167.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Hash 815ef37110ac6b63648f05ba53184bee
bebecd11757b35c25edcbb317a4c54c5c8d23697
36bf07548480e148703dd77a427ddd38209b3a2c5f805ca04e563d5d3bef1a1f
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=2678400
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Permissions-Policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
Link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
Expires: Sun, 05 Mar 2023 22:14:53 GMT
ETag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 2766055
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79364845b8ec0b39-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d3a8825102d4d677483b0adecb3e8157
2ac9e91e32e882c72da03e07d88b9fb38cd758c9
070018f9f3a0f4970e5e6aa86dde278775450bd1b289d86fa73216b3021fc346
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "070018F9F3A0F4970E5E6AA86DDE278775450BD1B289D86FA73216B3021FC346"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18610
Expires: Fri, 03 Feb 2023 03:25:03 GMT
Date: Thu, 02 Feb 2023 22:14:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a98cd24d1f8257175a33853988e01de7
14dee392f8cc3c662d41684f4a569ea9d23bc7bc
ac45a5dc648d0026e945f2db4bd55953fbfd572ca0692bb4ac1cf6cc94cd073b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC45A5DC648D0026E945F2DB4BD55953FBFD572CA0692BB4AC1CF6CC94CD073B"
Last-Modified: Tue, 31 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12333
Expires: Fri, 03 Feb 2023 01:40:26 GMT
Date: Thu, 02 Feb 2023 22:14:53 GMT
Connection: keep-alive
v.lkqd.net/ad?pid=430&sid=1135195&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42240523&m=
69.20.43.192200 OK 150 B URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135195&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42240523&m=
IP 69.20.43.192:0
File type ASCII text, with no line terminators
Hash f2200dfc5e8b75dea19cc2ff13526ce8
5235427034ffed5be887acecc26f62210be11554
e459e49bb953fa15bac6d8bcf457713e3f78a5154c0e1f213be85e378af41b38
GET /ad?pid=430&sid=1135195&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42240523&m= HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:53 GMT
Content-Type: application/xml; charset=UTF-8
Content-Length: 150
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:53 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: private, max-age=10
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Max-Age: 2592000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793648460f2c0b59-OSL
alt-svc: h2=":443"; ma=60
id5-sync.com/i/12/9.gif?gdpr=true&gdpr_consent=
162.19.138.120200 43 B URL HTTP/1.1 id5-sync.com/i/12/9.gif?gdpr=true&gdpr_consent=
IP 162.19.138.120:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/12/9.gif?gdpr=true&gdpr_consent= HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Thu, 02-Feb-2023 22:19:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Thu, 02-Feb-2023 22:19:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Thu, 02-Feb-2023 22:19:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Thu, 02-Feb-2023 22:19:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Thu, 02-Feb-2023 22:19:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Thu, 02-Feb-2023 22:19:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 22:14:52 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=856a6bde-17f8-4954-bb6f-8d4256e04aae; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Tue, 02-May-2023 22:14:53 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=856a6bde-17f8-4954-bb6f-8d4256e04aae
content-length: 0
date: Thu, 02 Feb 2023 22:14:53 GMT
server: _
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m=
69.20.43.192200 OK 1.4 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m=
IP 69.20.43.192:0
File type ASCII text, with very long lines (1829), with no line terminators
Hash 533c44b6f80f9be742052021ef591671
d004edcd75ac8714b8298c198c644e25738fef89
d319a893db6157f53cf2fe624153e61cad1d8d587655affe0261a940c24e574e
GET /ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m= HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:53 GMT
Content-Type: application/xml; charset=UTF-8
Content-Length: 1369
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4b32d45a75459dc3d6106bdaa187bad2
ac8c14aab07ccf9e2361b6e97dd99533a7cf663c
78d2731715d2c9787631e6e6d3d073b6e96af3e5373a25080d298b8214591bbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 00:04:31 GMT
Expires: Thu, 09 Feb 2023 00:04:30 GMT
Etag: "ac8c14aab07ccf9e2361b6e97dd99533a7cf663c"
Cache-Control: max-age=524376,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79364844fea6b509-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae109ef38224af111b555f6485f90e7b
f7f77e2ac9ca28e01085111267e96be86067ef1f
f37d50f6c33337734215b29a5e95746feaadcf8350fea3428664622c62b080c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6264
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:53 GMT
Last-Modified: Thu, 02 Feb 2023 20:30:29 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
ad.turn.com/r/cs?pid=65
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=65 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=9166819819323601434; Domain=.turn.com; Expires=Tue, 01-Aug-2023 22:14:53 GMT; Path=/; Secure; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=94&partnerUserId=9166819819323601434
content-length: 0
date: Thu, 02 Feb 2023 22:14:52 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e0a948480d7d508509dd5f1fd0266a9e
3ed44103da4a44408f58684b5435447a44d2cfb7
9613e21ab48ded62206a68b88b967ee7ba1543757f58c65bdd9c284153877838
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9613E21AB48DED62206A68B88B967EE7BA1543757F58C65BDD9C284153877838"
Last-Modified: Tue, 31 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7786
Expires: Fri, 03 Feb 2023 00:24:39 GMT
Date: Thu, 02 Feb 2023 22:14:53 GMT
Connection: keep-alive
wgihdleufmmx.l4.adsco.re/
185.200.118.90200 OK 0 B URL HTTP/1.1 wgihdleufmmx.l4.adsco.re/
IP 185.200.118.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: wgihdleufmmx.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:53 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 19f0e4b0d7b8dcec71f5c79157bb0f43
d26dcd82cb0c6b2f4bd276fb68fd2a3fd69b13bb
65bcdf21e0b4797aaf0b5bf46a46e8ba79ee169ac63ea0702f0ba117ba9a1bde
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4316
Cache-Control: max-age=88098
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:53 GMT
Etag: "63dada23-1d7"
Expires: Fri, 03 Feb 2023 22:43:11 GMT
Last-Modified: Wed, 01 Feb 2023 21:31:15 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 19f0e4b0d7b8dcec71f5c79157bb0f43
d26dcd82cb0c6b2f4bd276fb68fd2a3fd69b13bb
65bcdf21e0b4797aaf0b5bf46a46e8ba79ee169ac63ea0702f0ba117ba9a1bde
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4316
Cache-Control: max-age=88098
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:53 GMT
Etag: "63dada23-1d7"
Expires: Fri, 03 Feb 2023 22:43:11 GMT
Last-Modified: Wed, 01 Feb 2023 21:31:15 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash ab79e9aeacb3e7923abaa9b1892e3b9b
3934de2897bddba30442b161f38f191d140e65fa
f19772e63b4c09cd41d6f5f7b013a94cd219e251bd41f3862a6fde0e56b1ebdb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 22:14:53 GMT
Last-Modified: Thu, 02 Feb 2023 21:24:24 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rSBYdhP0TGDZY51oUQ-JODSdl4QDJSVx6rg0d9VneMK_5Ts7Ty1HPg==
Age: 3029
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b294347f11ec7e0c92d1fc8ada7737d6
263cf4f64b3edc057f899fc4591b28e1860dd512
9bc2bd76a641f73db1bd83a6da643d451fe314d620f4416f06558d065f6f36f7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BC2BD76A641F73DB1BD83A6DA643D451FE314D620F4416F06558D065F6F36F7"
Last-Modified: Tue, 31 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11762
Expires: Fri, 03 Feb 2023 01:30:55 GMT
Date: Thu, 02 Feb 2023 22:14:53 GMT
Connection: keep-alive
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:53 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=161
34.236.140.33302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 34.236.140.33:0
File type HTML document, ASCII text
Hash bcbbf4d1c27fd212345c498da491c42c
73e67b86806a6c4f651f2043ed610e3908365e52
3e56e50978f3ff8208ee0de3ff4fc965b792d104e024a91a0e3133c3027d1778
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Thu, 02 Feb 2023 22:14:53 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=xBAdjRHLQNRIpScaYt_YgFtaKpo
Set-Cookie: sa-user-id=s%3A0-c4101d8d-11cb-40d4-48a5-271a62dfd880.%2FayXLQtUj7V%2FP0%2FYBogxZ6n9bTvCQBEDUQtvTU4GYD0; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AxBAdjRHLQNRIpScaYt_YgFtaKpo.PQkjZzSinlKVrD67%2BAeWmRx%2Bflx1bY%2BCMvSULElUiuI; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:53 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
c.adsco.re/
104.17.167.186304 Not Modified 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c.adsco.re/
If-None-Match: W/"xkCBFtC0Wl/JiS60JFipuQ=="
HTTP/1.1 304 Not Modified
Date: Thu, 02 Feb 2023 22:14:53 GMT
Connection: keep-alive
Cache-Control: public, max-age=2678400
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Permissions-Policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
Link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
Expires: Sun, 05 Mar 2023 22:14:53 GMT
ETag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
CF-Cache-Status: HIT
Age: 2766055
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793648486bf40b39-OSL
alt-svc: h2=":443"; ma=60
audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22m.imagenesderopaparaperros.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22clientTimestamp%22%3A1675376121357%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-8yj6f1t1fp9dlh4eylyb%22%7D
3.123.132.4200 OK 2 B URL HTTP/2 audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22m.imagenesderopaparaperros.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22clientTimestamp%22%3A1675376121357%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-8yj6f1t1fp9dlh4eylyb%22%7D
IP 3.123.132.4:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22m.imagenesderopaparaperros.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22clientTimestamp%22%3A1675376121357%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-8yj6f1t1fp9dlh4eylyb%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:53 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=54&partnerUserId=856a6bde-17f8-4954-bb6f-8d4256e04aae
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=856a6bde-17f8-4954-bb6f-8d4256e04aae
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=856a6bde-17f8-4954-bb6f-8d4256e04aae HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:53 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=94&partnerUserId=9166819819323601434
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=9166819819323601434
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=9166819819323601434 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:53 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.16200 OK 684 B URL HTTP/2 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.16:0
Hash 6d2afc2cdbd95cf340f1e83642b0c26e
f19dff0da3c45303f2aeff06049e0a5dd56ad860
6ea8c992664d89162cd9c96681f8e5b117cd0bfe9456103815178d564672f23e
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://m.imagenesderopaparaperros.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 02 Feb 2023 21:39:57 GMT
last-modified: Thu, 13 Oct 2022 22:35:53 GMT
etag: W/"1f431dc94c1f033d6666f0fe637e2d7b"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oPPPEFdHp4AggplN6jdUuTzzyXHkGCzAbMKKgcVagCZR8WB7ZeXewA==
age: 2097
X-Firefox-Spdy: h2
wgihdleufmmx.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 wgihdleufmmx.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: wgihdleufmmx.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:53 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
adsco.re/p
162.252.214.5200 OK 410 B IP 162.252.214.5:0
File type ASCII text, with very long lines (487), with no line terminators
Hash cc982b34ac3c4d26c9f6d9cb06911d5d
d4bedcb7850b4dff1ae6cb19ff0a6eeea81723ff
74697aef562b911ea3656a075ccf8ee9a49ee11606753e0de320f096b2ba5d5b
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 2022
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Moz: prefetch
Connection: keep-alive
Referer: http://c.adsco.re/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:53 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=10
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Max-Age: 2592000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7936484aaaaab523-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b740ddf4480b2c80d7d67cc7334fc69
604fabefb8366b2c64f286c5fd80d35534384cf0
dd1d9106a0841ba9432a0998c68638311563f11793cbca939ebe8f2f163366e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD1D9106A0841BA9432A0998C68638311563F11793CBCA939EBE8F2F163366E4"
Last-Modified: Tue, 31 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9439
Expires: Fri, 03 Feb 2023 00:52:12 GMT
Date: Thu, 02 Feb 2023 22:14:53 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 59f71b70f01a5c4c4a92abc379b3a24a
a949f4fa44db8c7d033c451b031fb1b5275b298e
a9878a9568192860d3b9f8fc9f107926bf1aa471b5669430ae8378f54361eb4e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5216
Cache-Control: max-age=157008
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:53 GMT
Etag: "63dbe3cd-139"
Expires: Sat, 04 Feb 2023 17:51:41 GMT
Last-Modified: Thu, 02 Feb 2023 16:24:45 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 313
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
178.250.2.150200 OK 43 B URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
IP 178.250.2.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:53 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e1326b1d0b68cc5f9b8efc40c36f9231
d3578c1a32fbc184b8169373299d315ca68b2f12
25c07b57c23f9ecc3499e3f95c6f44c74a532a1ac521562c689d665a29fc9614
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "25C07B57C23F9ECC3499E3F95C6F44C74A532A1AC521562C689D665A29FC9614"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16651
Expires: Fri, 03 Feb 2023 02:52:25 GMT
Date: Thu, 02 Feb 2023 22:14:54 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.106200 OK 660 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.106:0
Hash 55130bf120bd75a4bba7d678be617cdf
77b172c0cc1d15e60ab95edccf3ac1e640d16812
262b9e8c2eeba18bdc3dd53ac7bbacdbbec713a9443ff5dc34e359de56ea040d
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 02 Feb 2023 22:14:54 GMT
Date: Thu, 02 Feb 2023 22:14:54 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ad.lkqd.net/vpaid/vpaid.js?fusion=1.0
151.139.128.10200 OK 62 kB URL HTTP/2 ad.lkqd.net/vpaid/vpaid.js?fusion=1.0
IP 151.139.128.10:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2a0adab82b941577dbd1041f8448fd08
bf2cf01d95e02fb5ec9075835cbee4e3e35a0246
757ad1d5b7a305d8eaa810c6585b5b7431b212af4ff8fdef9fbd40a8254666a6
GET /vpaid/vpaid.js?fusion=1.0 HTTP/1.1
Host: ad.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:54 GMT
content-encoding: gzip
content-length: 62021
content-type: application/javascript
last-modified: Thu, 13 Oct 2022 21:01:07 GMT
accept-ranges: bytes
etag: "88ca76abee51b1544e17b021f04aaaed"
cache-control: public, max-age=1209600
x-hw: 1675376094.cds260.sk1.hn,1675376094.cds254.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e1326b1d0b68cc5f9b8efc40c36f9231
d3578c1a32fbc184b8169373299d315ca68b2f12
25c07b57c23f9ecc3499e3f95c6f44c74a532a1ac521562c689d665a29fc9614
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "25C07B57C23F9ECC3499E3F95C6F44C74A532A1AC521562C689D665A29FC9614"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16651
Expires: Fri, 03 Feb 2023 02:52:25 GMT
Date: Thu, 02 Feb 2023 22:14:54 GMT
Connection: keep-alive
cdn4ads.com/wDva.html?_=BQFiAAAAAAAACZUAAh_2CCNTe2-7dpi1IDYGdSvZ88HiONVWfzMxFLgS5uevcq7hUT8Wy3f-vs20Gqo7KqTFpLayLn3x-M9B5O0REZttB9YhvgrzxKLA4XTpJEeAA_Cfz0ciyLQcMJ5XMbQQHAvD-yCxLOu-VhPFXtD8TWISsKrWojLGtjyRbXNYNeyhhr5ciiwm9oEusHJq4shmJk8c59szckzdiI41kM6qU_ehGStnSmw2Jswp_Z02Y3tOoLj9Z-jE9SAjEFHxUID8CWz-gbi88cJg-fsKGHsiL8Z2tCoqicIS-Toc-h7pYWcUvebMRSOwNrpsucD1Uy9qbLHGZmMvMb2PJCP1bRwzLHYUUM9h4Gqgy5bgYuXmIVRTrHPoe4vWOuhrAywPPYF9kalQIDLXvWJzeGHA8YORlPvetGlLRef3dCT7MPiD_5rBkXg2x4T2hK49zpHBWrcNZF_63_eSEq1dScQ6SAbCsLA&v=4&hOSwtMuq=4293767&minBid=&iohgwtfz=0,0&MHzAwPcn=&LBwOJofV=&s=1280,1024,1,1280,1024,0
216.59.63.128200 OK 44 B URL HTTP/1.1 cdn4ads.com/wDva.html?_=BQFiAAAAAAAACZUAAh_2CCNTe2-7dpi1IDYGdSvZ88HiONVWfzMxFLgS5uevcq7hUT8Wy3f-vs20Gqo7KqTFpLayLn3x-M9B5O0REZttB9YhvgrzxKLA4XTpJEeAA_Cfz0ciyLQcMJ5XMbQQHAvD-yCxLOu-VhPFXtD8TWISsKrWojLGtjyRbXNYNeyhhr5ciiwm9oEusHJq4shmJk8c59szckzdiI41kM6qU_ehGStnSmw2Jswp_Z02Y3tOoLj9Z-jE9SAjEFHxUID8CWz-gbi88cJg-fsKGHsiL8Z2tCoqicIS-Toc-h7pYWcUvebMRSOwNrpsucD1Uy9qbLHGZmMvMb2PJCP1bRwzLHYUUM9h4Gqgy5bgYuXmIVRTrHPoe4vWOuhrAywPPYF9kalQIDLXvWJzeGHA8YORlPvetGlLRef3dCT7MPiD_5rBkXg2x4T2hK49zpHBWrcNZF_63_eSEq1dScQ6SAbCsLA&v=4&hOSwtMuq=4293767&minBid=&iohgwtfz=0,0&MHzAwPcn=&LBwOJofV=&s=1280,1024,1,1280,1024,0
IP 216.59.63.128:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /wDva.html?_=BQFiAAAAAAAACZUAAh_2CCNTe2-7dpi1IDYGdSvZ88HiONVWfzMxFLgS5uevcq7hUT8Wy3f-vs20Gqo7KqTFpLayLn3x-M9B5O0REZttB9YhvgrzxKLA4XTpJEeAA_Cfz0ciyLQcMJ5XMbQQHAvD-yCxLOu-VhPFXtD8TWISsKrWojLGtjyRbXNYNeyhhr5ciiwm9oEusHJq4shmJk8c59szckzdiI41kM6qU_ehGStnSmw2Jswp_Z02Y3tOoLj9Z-jE9SAjEFHxUID8CWz-gbi88cJg-fsKGHsiL8Z2tCoqicIS-Toc-h7pYWcUvebMRSOwNrpsucD1Uy9qbLHGZmMvMb2PJCP1bRwzLHYUUM9h4Gqgy5bgYuXmIVRTrHPoe4vWOuhrAywPPYF9kalQIDLXvWJzeGHA8YORlPvetGlLRef3dCT7MPiD_5rBkXg2x4T2hK49zpHBWrcNZF_63_eSEq1dScQ6SAbCsLA&v=4&hOSwtMuq=4293767&minBid=&iohgwtfz=0,0&MHzAwPcn=&LBwOJofV=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: cdn4ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Thu, 02 Feb 2023 22:14:54 GMT
wgihdleufmmx.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 wgihdleufmmx.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: wgihdleufmmx.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:14:54 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 300
cache-control: max-age=300
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 300
cache-control: max-age=300
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.2.146200 OK 8.8 kB URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.2.146:0
File type C source, ASCII text, with very long lines (29466)
Hash 1cb09ff007e193bf2d0fc2845772c49f
ba2a4ac9eb2441a3f90283371dc3bd57888de5e2
90d1db1a441d5a6e87f3362d6af9dc368369b0142b38fa950bb882bc7ce453c0
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:53 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: http://m.imagenesderopaparaperros.com
server-processing-duration-in-ticks: 569184
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
178.250.2.150200 OK 43 B URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
IP 178.250.2.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:53 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 804
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 0 B URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:54 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Max-Age: 300
Cache-Control: max-age=300
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Expose-Headers: Content-Type, Content-Disposition
Access-Control-Allow-Credentials: true
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=161
34.236.140.33302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 34.236.140.33:0
File type HTML document, ASCII text
Hash 2d35646afd647e2bce1d84bf2069ba7b
1074854305297be957066c03585a4c0f452b727d
6ba9872c045910b23cdcbd55459b8bb19822c763f035f35291410e35d9d006be
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Thu, 02 Feb 2023 22:14:54 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=ECal2sL7TFBiwK0wfmpzdFtaKpo
Set-Cookie: sa-user-id=s%3A0-1026a5da-c2fb-4c50-62c0-ad307e6a7374.Q76ZwuN3%2FmEbvldMM7Couwc4SoMISJkiThAVSqjpirU; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AECal2sL7TFBiwK0wfmpzdFtaKpo.kCx1fRBwQfTtS0ClyGtYUok3e9taCj7ukfhiv1s1HXM; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
cmp.quantcast.com/GVL-v2/purposes-ES.json
143.204.55.88200 OK 4.4 kB URL HTTP/2 cmp.quantcast.com/GVL-v2/purposes-ES.json
IP 143.204.55.88:0
File type JSON data\012- , ASCII text, with very long lines (33137), with no line terminators
Hash a4dab7f73fe1c148999a4c8710572d13
0ca0689a3227b6759becbdc756bc219cf8ee958f
57e01faaba7cd76482a2ff8fa64daa74a22be1bdadbc1b3a9d59e9e702438c77
GET /GVL-v2/purposes-ES.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Thu, 02 Feb 2023 03:00:47 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Thu, 02 Feb 2023 03:00:32 GMT
etag: W/"dac3ac8977a802efc22a438d8b2d4cba"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PgIXhfUxzg0A0HsRAVa3jpmr9kVX-UhkMf1e0Q53uS8SuaRtrhrrdw==
age: 69248
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=94&partnerUserId=3328464752879546906
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=3328464752879546906
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=3328464752879546906 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 3.4 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
File type JSON data\012- , ASCII text, with very long lines (31724), with no line terminators
Hash 513a4d4b865b6f3ed5cd174c53b3ffb7
72df2adbf72e77510c7ba4f2a62b3baf7b51b5a5
23935f8fc22e6b0c582c1f65ad2bd35b16a99a004d2853392dccdae0c197ef1b
POST /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 38
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:54 GMT
Content-Type: application/json
Content-Length: 3381
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Cookie: viewer_token=856a6bde-17f8-4954-bb6f-8d4256e04aae
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=05dfddb5-1038-4fbb-b4c4-a25a8fe82208; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Tue, 02-May-2023 22:14:54 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=05dfddb5-1038-4fbb-b4c4-a25a8fe82208
content-length: 0
date: Thu, 02 Feb 2023 22:14:54 GMT
server: _
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=70081460-6513-44c3-8637-fada2158294e&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=cf621eb24aa5b4a128894819698170b8&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
192.243.59.13200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=70081460-6513-44c3-8637-fada2158294e&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=cf621eb24aa5b4a128894819698170b8&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=70081460-6513-44c3-8637-fada2158294e&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=cf621eb24aa5b4a128894819698170b8&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 02 Feb 2023 22:14:54 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5b39f4630cadd47b261b101d6e823533
Strict-Transport-Security: max-age=0; includeSubdomains
cs.lkqd.net/cs?partnerId=93&partnerUserId=ECal2sL7TFBiwK0wfmpzdFtaKpo
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=93&partnerUserId=ECal2sL7TFBiwK0wfmpzdFtaKpo
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=93&partnerUserId=ECal2sL7TFBiwK0wfmpzdFtaKpo HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 766
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C11542946086498837632993691882,,&_fw_gdpr=1&_fw_gdpr_consent=
23.36.77.41200 OK 816 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C11542946086498837632993691882,,&_fw_gdpr=1&_fw_gdpr_consent=
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (396)
Hash 58641eb1cdc45730b2622d6b3bd4dc0b
44d244c9db8be796ffb56088b3fbba0645253aa6
537347a77ecff2dde35c0e63b8442ecc67c2c55dc4f62c6560b7320f9ea02b98
GET /vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C11542946086498837632993691882,,&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1675376094672034-386
Expires: Thu, 02 Feb 2023 22:14:54 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 02 Feb 2023 22:14:54 GMT
Content-Length: 816
Connection: keep-alive
Set-Cookie: UID=26e0e07cccc98a23b2af359b3c2f2a0; Domain=ads.stickyadstv.com; Expires=Sat, 04-Mar-2023 22:14:54 GMT; Path=/
unseenreport.com/pxf.gif?uuid=70081460-6513-44c3-8637-fada2158294e&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=2a6dfa22c42f41c1c5d4b95b66a5509c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
192.243.59.13200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=70081460-6513-44c3-8637-fada2158294e&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=2a6dfa22c42f41c1c5d4b95b66a5509c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=70081460-6513-44c3-8637-fada2158294e&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=2a6dfa22c42f41c1c5d4b95b66a5509c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 02 Feb 2023 22:14:54 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 75ab782681cc90e9add7a27dbe5fc6ba
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 704b99c86e891ea21bb191920c4a5fad
a42ef1fa5904ad8259a68f48843ea548d89c7319
575814e38b5d0c0303dbed2b6dcd403895229c082711ccaf1f6c319831990c8f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4366
Cache-Control: max-age=168383
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:54 GMT
Etag: "63dc138f-1d7"
Expires: Sat, 04 Feb 2023 21:01:17 GMT
Last-Modified: Thu, 02 Feb 2023 19:48:31 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e35a92e1bb882de50b5b13ba45a97608
a4974aec326fc29b95fff08a006ce6e2757b511e
a82037d6020b7ab89af017b0eabbac9b431a6a97a9633af30b27f6f480800692
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3254
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:54 GMT
Last-Modified: Thu, 02 Feb 2023 21:20:40 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
cs.lkqd.net/cs?partnerId=54&partnerUserId=05dfddb5-1038-4fbb-b4c4-a25a8fe82208
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=05dfddb5-1038-4fbb-b4c4-a25a8fe82208
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=05dfddb5-1038-4fbb-b4c4-a25a8fe82208 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash fd9d44f593884c8dab919d1d0cc5e5a5
a143f2af73b3dff701795d4ed45c3463cc3d35a3
e5c4c26aac0b8eafcc261c5267e9974669a02e5725cfff881c5bea9c052da856
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=86249
Date: Thu, 02 Feb 2023 22:14:54 GMT
Etag: "63dacab0-1d7"
Expires: Fri, 03 Feb 2023 22:12:23 GMT
Last-Modified: Wed, 01 Feb 2023 20:25:20 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _NHo4rK0Ksano0Bwbz_MAicknUlNa5EJoj2JJbfmmuEwFSqtXk1QeA==
Age: 6423
vidoomy-d.openx.net/v/1.0/av?auid=540805079&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&cb=554894763&vwd=400&vht=225&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6498837632993691882680885055,,
34.98.64.218200 OK 56 B URL HTTP/2 vidoomy-d.openx.net/v/1.0/av?auid=540805079&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&cb=554894763&vwd=400&vht=225&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6498837632993691882680885055,,
IP 34.98.64.218:0
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 3255279395a3f83bf1b4d0b6735c292c
d14e724f7d28b39fd8662934069dd67169375521
49834b2ede460a27789ce383dcb82d66f10b5f056e950663a9c363e6fee30b52
GET /v/1.0/av?auid=540805079&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&cb=554894763&vwd=400&vht=225&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6498837632993691882680885055,, HTTP/1.1
Host: vidoomy-d.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: text/xml
content-length: 56
content-encoding: gzip
cache-control: private, max-age=0, no-cache
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
54.154.10.160200 OK 20 B URL HTTP/1.1 adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
IP 54.154.10.160:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7 HTTP/1.1
Host: adtrack.adleadevent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Thu, 02 Feb 2023 22:14:54 GMT
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Last-Modified: Thu, 02 Feb 2023 22:14:54 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e35a92e1bb882de50b5b13ba45a97608
a4974aec326fc29b95fff08a006ce6e2757b511e
a82037d6020b7ab89af017b0eabbac9b431a6a97a9633af30b27f6f480800692
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2859
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:14:54 GMT
Last-Modified: Thu, 02 Feb 2023 21:27:15 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
a.vidoomy.com/api/rtbserver/rtb?id=1313825265&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
35.157.153.193204 No Content 0 B URL HTTP/2 a.vidoomy.com/api/rtbserver/rtb?id=1313825265&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
IP 35.157.153.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/rtb?id=1313825265&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot= HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 22:14:54 GMT
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-expose-headers: X-VD-C
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,PATCH,OPTIONS
X-Firefox-Spdy: h2
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Cookie: viewer_token=05dfddb5-1038-4fbb-b4c4-a25a8fe82208
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=1463e07d-d8af-4862-abea-ff68d00b2342; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Tue, 02-May-2023 22:14:55 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=1463e07d-d8af-4862-abea-ff68d00b2342
content-length: 0
date: Thu, 02 Feb 2023 22:14:55 GMT
server: _
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 3.4 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
File type JSON data\012- , ASCII text, with very long lines (31725), with no line terminators
Hash 7077379118639f6ffb84f171793f8569
d3d55543fa2b5446fb0d89736fa630754ddb01f8
b773e36e01a33808252557fcf7d6b49e203acaa9ac98dcf56ac171eab0596464
POST /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=69359411&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 38
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:55 GMT
Content-Type: application/json
Content-Length: 3375
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
ad.turn.com/r/cs?pid=65
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=65 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=9034525480757965338; Domain=.turn.com; Expires=Tue, 01-Aug-2023 22:14:55 GMT; Path=/; Secure; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=94&partnerUserId=9034525480757965338
content-length: 0
date: Thu, 02 Feb 2023 22:14:54 GMT
X-Firefox-Spdy: h2
ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C11210011016498837632993691882,,&_fw_gdpr=1&_fw_gdpr_consent=
23.36.77.41200 OK 816 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C11210011016498837632993691882,,&_fw_gdpr=1&_fw_gdpr_consent=
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (396)
Hash a69a58321d62624685d4f2d62fccde4e
4981bba2a11bb3314a1f06d5a6c18c61df1847c7
1aa62865056fc9bbe1cb98a21feb077d31d3b582b98a6f9ad9bae35d3d6b5e11
GET /vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C11210011016498837632993691882,,&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1675376095066099-346
Expires: Thu, 02 Feb 2023 22:14:55 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 02 Feb 2023 22:14:55 GMT
Content-Length: 816
Connection: keep-alive
Set-Cookie: UID=2ad9948e485bc71ccc36471fc6dd8d4; Domain=ads.stickyadstv.com; Expires=Sat, 04-Mar-2023 22:14:55 GMT; Path=/
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:55 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:55 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=54&partnerUserId=1463e07d-d8af-4862-abea-ff68d00b2342
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=1463e07d-d8af-4862-abea-ff68d00b2342
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=1463e07d-d8af-4862-abea-ff68d00b2342 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:55 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=161
34.236.140.33302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 34.236.140.33:0
File type HTML document, ASCII text
Hash 39848095d0ed34ccfe676204b02396d7
510df127470b6d1ea61c3d641e12642ecc85d2f2
4444cd5794299a2235d9729ea0085760127e71e0b8b57ae16a6e6638070bb009
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Thu, 02 Feb 2023 22:14:55 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=GJskPU-jQaVaSkjrpQz-J1taKpo
Set-Cookie: sa-user-id=s%3A0-189b243d-4fa3-41a5-5a4a-48eba50cfe27.F7SptRValudDo3Qy0R5wsfl1MOUNT2X5AkMO8D%2FmNl4; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AGJskPU-jQaVaSkjrpQz-J1taKpo.O1y7WjG0JtLvVS8aWqUF62KKrrTxALNpDyBO4hqA1YQ; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
cs.lkqd.net/cs?partnerId=94&partnerUserId=9034525480757965338
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=9034525480757965338
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=9034525480757965338 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:55 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
a.vidoomy.com/api/rtbserver/rtb?id=1383930453&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
35.157.153.193204 No Content 0 B URL HTTP/2 a.vidoomy.com/api/rtbserver/rtb?id=1383930453&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
IP 35.157.153.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/rtb?id=1383930453&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot= HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 22:14:55 GMT
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-expose-headers: X-VD-C
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,PATCH,OPTIONS
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:55 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 300
cache-control: max-age=300
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=93&partnerUserId=GJskPU-jQaVaSkjrpQz-J1taKpo
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=93&partnerUserId=GJskPU-jQaVaSkjrpQz-J1taKpo
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=93&partnerUserId=GJskPU-jQaVaSkjrpQz-J1taKpo HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:55 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:55 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 300
cache-control: max-age=300
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 767
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:55 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1517
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:55 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 4180
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:55 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m=
69.20.43.192200 OK 1.4 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m=
IP 69.20.43.192:0
File type ASCII text, with very long lines (1829), with no line terminators
Hash d5862a979fa75cc2f1492e5b706f0349
63b5c16d0bb01cfe7ce6b87ceead293a0ada6788
10d5ee1eaae054b35eb10537037a240934cf84353d2603a70e9fd98a4ccd013e
GET /ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m= HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:55 GMT
Content-Type: application/xml; charset=UTF-8
Content-Length: 1370
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 0 B URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:56 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Max-Age: 300
Cache-Control: max-age=300
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Expose-Headers: Content-Type, Content-Disposition
Access-Control-Allow-Credentials: true
ad.turn.com/r/cs?pid=65
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=65 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=2981405007083680282; Domain=.turn.com; Expires=Tue, 01-Aug-2023 22:14:56 GMT; Path=/; Secure; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=94&partnerUserId=2981405007083680282
content-length: 0
date: Thu, 02 Feb 2023 22:14:55 GMT
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:56 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:56 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=161
34.236.140.33302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 34.236.140.33:0
File type HTML document, ASCII text
Hash 4830502c9516a36de0d193791e7bef97
517dcf5c24c275ca51ac49ba13a3ae806070c731
8735fbe8a84cde414d7759ef6250dbdcdb1429d50a87da7ad04b15aac1ba7768
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Thu, 02 Feb 2023 22:14:56 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=M0T1l0hPQp5YHwUDeLcyTVtaKpo
Set-Cookie: sa-user-id=s%3A0-3344f597-484f-429e-581f-050378b7324d.cfx6GETwkT7A6bZIx8eE07RTnPeva%2B09N1iCRTL5NDo; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AM0T1l0hPQp5YHwUDeLcyTVtaKpo.sfsY%2FJ5LLbGQY9iIjYwvilrb2zlV8pDS8D%2Fj5p1LaOU; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
cs.lkqd.net/cs?partnerId=94&partnerUserId=2981405007083680282
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=2981405007083680282
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=2981405007083680282 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:56 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 768
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:56 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=93&partnerUserId=M0T1l0hPQp5YHwUDeLcyTVtaKpo
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=93&partnerUserId=M0T1l0hPQp5YHwUDeLcyTVtaKpo
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=93&partnerUserId=M0T1l0hPQp5YHwUDeLcyTVtaKpo HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:56 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Cookie: viewer_token=1463e07d-d8af-4862-abea-ff68d00b2342
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=1558158b-2b98-4982-81f7-e0f4813ae1c1; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Tue, 02-May-2023 22:14:56 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=1558158b-2b98-4982-81f7-e0f4813ae1c1
content-length: 0
date: Thu, 02 Feb 2023 22:14:56 GMT
server: _
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=54&partnerUserId=1558158b-2b98-4982-81f7-e0f4813ae1c1
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=1558158b-2b98-4982-81f7-e0f4813ae1c1
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=1558158b-2b98-4982-81f7-e0f4813ae1c1 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:56 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 3.4 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
File type JSON data\012- , ASCII text, with very long lines (31721), with no line terminators
Hash 16d31223b19fbae422135566687edabd
1f685234663b463cafef50e79a05532049ee8fbc
d39e70156e7c658f0760f59e6c07f2c4da96b4ae5b23a6e63c6249ef0a8c874b
POST /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 38
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:56 GMT
Content-Type: application/json
Content-Length: 3374
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
a.vidoomy.com/api/rtbserver/rtb?id=1008183175&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
35.157.153.193204 No Content 0 B URL HTTP/2 a.vidoomy.com/api/rtbserver/rtb?id=1008183175&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
IP 35.157.153.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/rtb?id=1008183175&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot= HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 22:14:56 GMT
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-expose-headers: X-VD-C
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,PATCH,OPTIONS
X-Firefox-Spdy: h2
ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C7161018282701150854656998343,,&_fw_gdpr=1&_fw_gdpr_consent=
23.36.77.41200 OK 815 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C7161018282701150854656998343,,&_fw_gdpr=1&_fw_gdpr_consent=
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (395)
Hash 27bca33eec2a385ef7de3677fe7ad0c8
d43730d67a3ed26a1bcb2107c0a90f3512b1ac49
f21347a7389919dbcbc7072268582c17a17f827614c5c58aff7f56d2d8c4ed8d
GET /vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C7161018282701150854656998343,,&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1675376096484012-371
Expires: Thu, 02 Feb 2023 22:14:56 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 02 Feb 2023 22:14:56 GMT
Content-Length: 815
Connection: keep-alive
Set-Cookie: UID=168b7eb6a6795d5a8567ea8660c08b86; Domain=ads.stickyadstv.com; Expires=Sat, 04-Mar-2023 22:14:56 GMT; Path=/
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 4180
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:56 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2
37.157.4.23200 OK 74 B URL HTTP/2 adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2
IP 37.157.4.23:0
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash cfd02b7cdd037c108c2865b3d236f8f4
c163be76e303f43da1706a7f7184b611e3aa28f0
d99c7ef5910cc186314a625e78ca4423ebdd9cfdc2b4622c52b7f0cae7c73170
GET /adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2 HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:56 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
ad.turn.com/r/cs?pid=65
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=65 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=9168514166742004250; Domain=.turn.com; Expires=Tue, 01-Aug-2023 22:14:57 GMT; Path=/; Secure; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=94&partnerUserId=9168514166742004250
content-length: 0
date: Thu, 02 Feb 2023 22:14:56 GMT
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:57 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:57 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=161
34.236.140.33302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 34.236.140.33:0
File type HTML document, ASCII text
Hash 31b8317e6803cd93a8f26f140bab8e68
8b6076296ef0ddaf04fcba696b479fb6ac4722db
aee05a6fb97cec275c91a80b2a186c8551028186531145d25d19956e848e21f2
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Thu, 02 Feb 2023 22:14:57 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=ycDvf0iVRxtrgTisFZPBgltaKpo
Set-Cookie: sa-user-id=s%3A0-c9c0ef7f-4895-471b-6b81-38ac1593c182.3xTy4WfPOrsHMCQdCWYb%2BerJivpMaYDUyCEH1JL%2F%2FqQ; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AycDvf0iVRxtrgTisFZPBgltaKpo.WeLZskr%2Ba4Xe6c4r6fdazwoiIlMRomlJDkc3qhpqYng; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=2
185.76.9.21200 OK 21 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=2
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash a5cf6a89c0108f25f67c26a81f645a29
10f2efe7c3e080b2d5ead42276d4369c84b6e462
456dc850176ca167b64c05d442cc2b727f12e0e0d927ac2965c72704553ce870
GET /s/requestform.js?siteId=52788&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675951016
server: CDN77-Turbo
x-77-nzt: AblMCRTMMFT/snQAAA
x-77-nzt-ray: af5856309eb572b2da35dc63746c3b2f
x-cache: HIT
x-age: 29874
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=94&partnerUserId=9168514166742004250
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=9168514166742004250
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=9168514166742004250 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:57 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 768
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:57 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Cookie: viewer_token=1558158b-2b98-4982-81f7-e0f4813ae1c1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=3d244f4d-da84-43cf-b735-539248c4e7b7; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Tue, 02-May-2023 22:14:57 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=3d244f4d-da84-43cf-b735-539248c4e7b7
content-length: 0
date: Thu, 02 Feb 2023 22:14:57 GMT
server: _
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=93&partnerUserId=ycDvf0iVRxtrgTisFZPBgltaKpo
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=93&partnerUserId=ycDvf0iVRxtrgTisFZPBgltaKpo
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=93&partnerUserId=ycDvf0iVRxtrgTisFZPBgltaKpo HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:57 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=54&partnerUserId=3d244f4d-da84-43cf-b735-539248c4e7b7
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=3d244f4d-da84-43cf-b735-539248c4e7b7
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=3d244f4d-da84-43cf-b735-539248c4e7b7 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:57 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 3.4 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
File type JSON data\012- , ASCII text, with very long lines (31723), with no line terminators
Hash 3cb4402e36135a6469cb6edf443bcff8
8f10d569efc76ae8ebec91b6154a4331a78d5568
cb619cf9fc2ebb2c51e2f7cb8128ae5afea6c668c6ed13857b4f2349397bc137
POST /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=76533014&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 38
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:57 GMT
Content-Type: application/json
Content-Length: 3380
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
a.vidoomy.com/api/rtbserver/rtb?id=117682765&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
35.157.153.193204 No Content 0 B URL HTTP/2 a.vidoomy.com/api/rtbserver/rtb?id=117682765&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
IP 35.157.153.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/rtb?id=117682765&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot= HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 22:14:57 GMT
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-expose-headers: X-VD-C
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,PATCH,OPTIONS
X-Firefox-Spdy: h2
ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C19782221212701150854656998343,,&_fw_gdpr=1&_fw_gdpr_consent=
23.36.77.41200 OK 816 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C19782221212701150854656998343,,&_fw_gdpr=1&_fw_gdpr_consent=
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (396)
Hash 764910e654c23ccddade76d4ad411b4a
c533616f8f946000144171033d6b0b764ebc4114
afba12cffd3f097471def06b4024e8069c334c5f5230cbd5362f2bccabc90bc8
GET /vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C19782221212701150854656998343,,&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1675376097650005-382
Content-Length: 816
Expires: Thu, 02 Feb 2023 22:14:57 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 02 Feb 2023 22:14:57 GMT
Connection: keep-alive
Set-Cookie: UID=cd7546cbf9c98c79a170c7f73318fc7; Domain=ads.stickyadstv.com; Expires=Sat, 04-Mar-2023 22:14:57 GMT; Path=/
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1516
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:57 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.132.108200 OK 0 B IP 146.20.132.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 4179
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:57 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2
37.157.4.23200 OK 1.4 kB URL HTTP/2 adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2
IP 37.157.4.23:0
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (1890), with no line terminators
Hash 859d541b9a62da29d50b4f1da9100506
9fb7d2e3fbcc64dfb39e14d4dbe2a4963769496b
3975396b6aa60dcaec085bb59a9b9b21b32dc246c8c011db43be964af3d81fe7
GET /adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2 HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:57 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Cookie: viewer_token=3d244f4d-da84-43cf-b735-539248c4e7b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=4bd78bde-6a7f-46a0-a48a-3c8e6a506482; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Tue, 02-May-2023 22:14:58 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=4bd78bde-6a7f-46a0-a48a-3c8e6a506482
content-length: 0
date: Thu, 02 Feb 2023 22:14:58 GMT
server: _
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=5842019&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 0 B URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=5842019&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=5842019&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:58 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Max-Age: 300
Cache-Control: max-age=300
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Expose-Headers: Content-Type, Content-Disposition
Access-Control-Allow-Credentials: true
ad.turn.com/r/cs?pid=65
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=65 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=2969070685643289114; Domain=.turn.com; Expires=Tue, 01-Aug-2023 22:14:58 GMT; Path=/; Secure; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=94&partnerUserId=2969070685643289114
content-length: 0
date: Thu, 02 Feb 2023 22:14:58 GMT
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=54&partnerUserId=4bd78bde-6a7f-46a0-a48a-3c8e6a506482
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=4bd78bde-6a7f-46a0-a48a-3c8e6a506482
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=4bd78bde-6a7f-46a0-a48a-3c8e6a506482 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:58 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:58 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:58 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=161
34.236.140.33302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 34.236.140.33:0
File type HTML document, ASCII text
Hash a3185308656b52dc7e7e5de45a83686b
d92cb1a7d7143f01ead276d95bd2d5783822000d
6cb4df3304b0f3cb7338b0942585306d14095e86f7a2ad13113f67adbe8a3ab7
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Thu, 02 Feb 2023 22:14:58 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=zEByKTA7RG5EvkvDXE-cBVtaKpo
Set-Cookie: sa-user-id=s%3A0-cc407229-303b-446e-44be-4bc35c4f9c05.NAgR3n6Rcmo1G%2B%2FMzED5f8tzT6yaJeUpQk8fwBQ8ulI; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AzEByKTA7RG5EvkvDXE-cBVtaKpo.evYpre1UDpbk1suoiVcsFBnYrRudmMrZ%2B0bbJaok4Ho; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
cs.lkqd.net/cs?partnerId=94&partnerUserId=2969070685643289114
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=2969070685643289114
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=2969070685643289114 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:58 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2
37.157.4.23200 OK 74 B URL HTTP/2 adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2
IP 37.157.4.23:0
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash cfd02b7cdd037c108c2865b3d236f8f4
c163be76e303f43da1706a7f7184b611e3aa28f0
d99c7ef5910cc186314a625e78ca4423ebdd9cfdc2b4622c52b7f0cae7c73170
GET /adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2 HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:55 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=93&partnerUserId=zEByKTA7RG5EvkvDXE-cBVtaKpo
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=93&partnerUserId=zEByKTA7RG5EvkvDXE-cBVtaKpo
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=93&partnerUserId=zEByKTA7RG5EvkvDXE-cBVtaKpo HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:58 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Cookie: viewer_token=4bd78bde-6a7f-46a0-a48a-3c8e6a506482
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=e1c23ea8-1974-441f-a7a4-a12c2121df57; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Tue, 02-May-2023 22:14:59 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=e1c23ea8-1974-441f-a7a4-a12c2121df57
content-length: 0
date: Thu, 02 Feb 2023 22:14:59 GMT
server: _
X-Firefox-Spdy: h2
ad.turn.com/r/cs?pid=65
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=65 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=8806580227645583898; Domain=.turn.com; Expires=Tue, 01-Aug-2023 22:14:59 GMT; Path=/; Secure; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=94&partnerUserId=8806580227645583898
content-length: 0
date: Thu, 02 Feb 2023 22:14:58 GMT
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=5842019&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 0 B URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=5842019&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=5842019&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:14:59 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Max-Age: 300
Cache-Control: max-age=300
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Expose-Headers: Content-Type, Content-Disposition
Access-Control-Allow-Credentials: true
cs.lkqd.net/cs?partnerId=54&partnerUserId=e1c23ea8-1974-441f-a7a4-a12c2121df57
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=e1c23ea8-1974-441f-a7a4-a12c2121df57
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=e1c23ea8-1974-441f-a7a4-a12c2121df57 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:59 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:59 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:59 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=161
34.236.140.33302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 34.236.140.33:0
File type HTML document, ASCII text
Hash b931cb9f8ec319c8c6ad921f71dc560e
9c08a7ac742b7a32a6fbf6844290709f7fc0ea0f
23b0dd48d6d42e5625fec71d1b14b4d0392d9228736d75a90fa1743dc3a1fe59
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Thu, 02 Feb 2023 22:14:59 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=1Tzvp0AkSflEN7DeoBRVcFtaKpo
Set-Cookie: sa-user-id=s%3A0-d53cefa7-4024-49f9-4437-b0dea0145570.1T%2F5khYr1UZ9KKQ8Usfz8vyD484j9%2BZOnMEzdPKlUH0; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3A1Tzvp0AkSflEN7DeoBRVcFtaKpo.%2B39VrwisJg7xBhPM1st9R6qyWmy3lOq8vMOJALsuuhY; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
cs.lkqd.net/cs?partnerId=94&partnerUserId=8806580227645583898
146.20.128.144200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=8806580227645583898
IP 146.20.128.144:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=8806580227645583898 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:59 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
ads.themoneytizer.com/lib_fs_close.js
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/lib_fs_close.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /lib_fs_close.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:51 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 15:05:03 GMT
expires: Fri, 03 Feb 2023 05:03:53 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400633
server: CDN77-Turbo
x-77-nzt: AblMCRREkN3/ovEAAA
x-77-nzt-ray: af5856309eb572b2db35dc63232a7c01
x-cache: HIT
x-age: 61858
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/vendor/bootstrap/js/bootstrap.min.js?ver=6.4.0
104.21.94.136200 OK 0 B URL HTTP/2 m.imagenesderopaparaperros.com/vendor/bootstrap/js/bootstrap.min.js?ver=6.4.0
IP 104.21.94.136:0
GET /vendor/bootstrap/js/bootstrap.min.js?ver=6.4.0 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Sat, 20 Jun 2020 00:09:27 GMT
cache-control: max-age=2592000
expires: Fri, 03 Feb 2023 23:50:03 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2499887
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GPd02ykQtavPqXvMqOy4tuSmQkBYRFTh4QIEnhePcdF9b%2FwPFjQwiKRUnF0UyNzBcneNgamdW9XedzviF6kXlb0W6UUX91nq5E6sex5%2FJ05bweZBGbRPhD8heR1yjfQc8Rt1g6e12Z0yILifVSeV%2FDc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79364836efeb0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=1
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=1
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=52788&formatId=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675951016
server: CDN77-Turbo
x-77-nzt: AblMCRT61mH/snQAAA
x-77-nzt-ray: af5856309eb572b2da35dc6358ac9b2e
x-cache: HIT
x-age: 29874
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
unicons.iconscout.com/release/v2.1.9/script/monochrome/bundle.js
104.18.28.243200 OK 0 B URL HTTP/2 unicons.iconscout.com/release/v2.1.9/script/monochrome/bundle.js
IP 104.18.28.243:0
GET /release/v2.1.9/script/monochrome/bundle.js HTTP/1.1
Host: unicons.iconscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: application/javascript
x-amz-id-2: GvCKrN3nQW/FEY2jWfHeYZvKkWCt3JBdCuMVwvzgDsMJlQPRsp7xleY2w8Me+pQdtPQBGP2L4Og=
x-amz-request-id: J4Q012JMVSHPPMBE
last-modified: Fri, 22 May 2020 12:00:38 GMT
etag: W/"be52f9b7d5de40f1e7cf1faab2f6d95d"
cf-cache-status: HIT
age: 2017135
expires: Fri, 02 Feb 2024 22:14:50 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 793648379f2b0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=6
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=6
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=52788&formatId=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675951016
server: CDN77-Turbo
x-77-nzt: AblMCRSab7v/snQAAA
x-77-nzt-ray: af5856309eb572b2da35dc63cea42a2e
x-cache: HIT
x-age: 29874
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
143.204.55.88200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
IP 143.204.55.88:0
GET /tcfv2/42/cmp2.js?referer=www.themoneytizer.com HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Tue, 05 Jul 2022 18:40:23 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Thu, 02 Feb 2023 02:05:45 GMT
cache-control: max-age=172800
etag: W/"9494b70738cd74c9137e65c29c0b1f3e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mI_0O9PBiquNk62D4Rh6LvyzQxD-HN9cSQglZDq6lJHVKN33HNHMPw==
age: 151496
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=2
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=2
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675919028
server: CDN77-Turbo
x-77-nzt: AblMCRR7F+z/pvEAAA
x-77-nzt-ray: af5856309eb572b2da35dc6302b6df2e
x-cache: HIT
x-age: 61862
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
c.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:52 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Sun, 05 Mar 2023 22:14:52 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 2766053
vary: Accept-Encoding
server: cloudflare
cf-ray: 79364844b8500b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2ui-es.js
143.204.55.88200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2ui-es.js
IP 143.204.55.88:0
GET /tcfv2/42/cmp2ui-es.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 604800
last-modified: Tue, 05 Jul 2022 18:40:32 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
cache-control: max-age=172800
date: Thu, 02 Feb 2023 00:43:22 GMT
etag: W/"61891c12c976950785806a7f08986298"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iPSvx3VZzRiA9qa0Irv1WsZuNUd5fWzN3uIuVCJvoE5PajDIJJDyRQ==
age: 77491
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/js/ads.js
104.21.94.136200 OK 0 B URL HTTP/2 m.imagenesderopaparaperros.com/js/ads.js
IP 104.21.94.136:0
GET /js/ads.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Sat, 20 Jun 2020 00:07:31 GMT
cache-control: max-age=2592000
expires: Fri, 03 Feb 2023 23:50:00 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2499889
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KwAdphgOXvj77BO59auzbv3ccZitN4ptkXdpH0dThSaF9Y5tKVXRuNXk0gUz9i7UJb%2BKGQoStpKcU%2BELZE8EIgLM0xBFIVzOahtKIuLvQ%2F3%2BXpaCo8gF6snC4rnq1EWtOcDXqXj47ebIdzjEBmzaC1g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79364836eff20b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneybile.js
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneybile.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /moneybile.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 17:07:19 GMT
expires: Fri, 03 Feb 2023 05:03:48 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400628
server: CDN77-Turbo
x-77-nzt: AblMCRRFcZb/pvEAAA
x-77-nzt-ray: af5856309eb572b2da35dc639d3b5f3a
x-cache: HIT
x-age: 61862
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
quantcast.mgr.consensu.org/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
143.204.55.88200 OK 0 B URL HTTP/2 quantcast.mgr.consensu.org/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
IP 143.204.55.88:0
GET /choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js HTTP/1.1
Host: quantcast.mgr.consensu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:53:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
date: Thu, 02 Feb 2023 22:14:42 GMT
cache-control: max-age=3600
etag: W/"c53bd785b1ee57b613221019d7d72626"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1YBgzGHwCn-byLrycCnpS_A_swO67JKyAjpr_q9ZaFSgOqDQnkLMzA==
age: 13
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/vendor/wow.min.js?ver=6.4.0
104.21.94.136200 OK 0 B URL HTTP/2 m.imagenesderopaparaperros.com/vendor/wow.min.js?ver=6.4.0
IP 104.21.94.136:0
GET /vendor/wow.min.js?ver=6.4.0 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Sat, 20 Jun 2020 00:07:34 GMT
cache-control: max-age=2592000
expires: Tue, 21 Feb 2023 11:18:46 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 989764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gvZxb0N3SuiTNaLkYnWG602UgiicGPTZ4g5AY1hZGJNJf51V%2Bf2CVnbRf9LUi4Ufv1HSj0yk%2BvNmnj62xsobpOEKsvV8txuuRx0An5x0W2JThIKoY3Lng1ULUw6EhOR6SGk%2Bi2o9omGK3Jtcq2apS00%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7936483718090b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=19
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=19
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=52788&formatId=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675951016
server: CDN77-Turbo
x-77-nzt: AblMCRRDBwD/snQAAA
x-77-nzt-ray: af5856309eb572b2da35dc63c14d592e
x-cache: HIT
x-age: 29874
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=6
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=6
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675919032
server: CDN77-Turbo
x-77-nzt: AblMCRSy2tv/ovEAAA
x-77-nzt-ray: af5856309eb572b2da35dc6325c57d2e
x-cache: HIT
x-age: 61858
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html
45.133.44.4200 OK 0 B URL HTTP/2 cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
Analyzer Verdict Alert fortinet Phishing
GET /sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:52 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Mon, 27 Sep 2021 07:43:24 GMT
etag: W/"6151761c-52d"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 02 Feb 2023 23:14:52 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
test.cmp.quantcast.com/GVL-v2/cmp-list.json
143.204.55.116200 OK 0 B URL HTTP/2 test.cmp.quantcast.com/GVL-v2/cmp-list.json
IP 143.204.55.116:0
GET /GVL-v2/cmp-list.json HTTP/1.1
Host: test.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 86400
cache-control: max-age=172800
date: Thu, 02 Feb 2023 03:00:39 GMT
last-modified: Sun, 29 Jan 2023 19:52:29 GMT
etag: W/"104d73e097947079d97b7ce656d124ce"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4AIQAJ98xxQb5Z9H_UdCs9PW1_AVpdm2
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yt5q-sQkwXE5bkwtGL7ZESStXM4oFGUAxzAUPSJBMn_twfRyJMVRjA==
age: 69254
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js
IP 172.64.167.9:0
GET /sb/ssp/vpn/classic-push/small/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: application/javascript
last-modified: Tue, 21 Sep 2021 12:03:44 GMT
etag: W/"6149ca20-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 629794
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qaF2Dm9U5BPkPR5M%2F2xJgTHnw7%2BEU54U1k%2FKDbemuO8rUL6fGUG9fYGwHgO1hH1t6%2BfBNVfbK%2FoTJdz0eF9PF%2BbsXlsWBbwlsnCBKw1uRzxOE2mu%2B5WakvbvU14SSCGg2tbXgJFoYZAc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936484c2e3c8889-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/modern_theme/js/front.js?ver=6.4.0
104.21.94.136200 OK 0 B URL HTTP/2 m.imagenesderopaparaperros.com/modern_theme/js/front.js?ver=6.4.0
IP 104.21.94.136:0
GET /modern_theme/js/front.js?ver=6.4.0 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Sat, 20 Jun 2020 00:08:01 GMT
cache-control: max-age=2592000
expires: Sat, 25 Feb 2023 23:30:39 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-served-by: m.imagenesderopaparaperros.com
cf-cache-status: HIT
age: 600251
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OCqEWqzbhY8UTfIX2AlGRQ49kmX5PNJiL9Gpt2GfdxR0HX1dLFvUMLachJTulnwKdkZjxW2TdLV3pCqdF3o2D2ojQGe9LY4FHc%2Bw6T9RF%2FWJOzKw8JV5PMy%2BaMgjCoxi0faLoa%2Bx7iS0XK40wBf5f1c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79364836efe40b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/vendor/jquery.min.js?ver=6.4.0
104.21.94.136200 OK 0 B URL HTTP/2 m.imagenesderopaparaperros.com/vendor/jquery.min.js?ver=6.4.0
IP 104.21.94.136:0
GET /vendor/jquery.min.js?ver=6.4.0 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:50 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Sat, 20 Jun 2020 00:07:34 GMT
cache-control: max-age=2592000
expires: Fri, 03 Feb 2023 23:50:01 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2499889
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l7CYd4dPsfZ5xl%2F6ASBqqaykcSBK4IMWFanqXDfIhDo9OMg6AeU%2B%2F16oY0bg3k3rI2c4NzXpbBx5ogosmJ2yFEwFyVtQdfMeit2jmLYEv3rAf2ROMMPxJFRaUYPywdxkdLCyHw7giMxse3EmJpPMoA4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79364836eff00b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/google-atp-list.json
143.204.55.88200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/google-atp-list.json
IP 143.204.55.88:0
GET /tcfv2/google-atp-list.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Thu, 02 Feb 2023 03:01:40 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Thu, 02 Feb 2023 03:01:36 GMT
etag: W/"1dbfd79d4ea7f69c0c42a2f6065532e7"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 73cilhJkXWnw279V2VxJnV1_0EaOWh5VD5972_lImmfJo87YCd7Lwg==
age: 69192
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css
IP 172.64.167.9:0
GET /sb/ssp/vpn/classic-push/small/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: text/css
last-modified: Tue, 21 Sep 2021 12:03:42 GMT
etag: W/"6149ca1e-d31"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OQ5FZvLOaa8lwQxDr02jFrkccD9%2B2ChOxEbbZ%2BoYr99%2BRF3pfYAYnp2xmHQu14okVzm5MDhQkfqQQZwU3rnsn2vJBbcU6uxoUITFo6PKp0h0Nj6yYAK98D8csXwTh6YuxMBzdDayIgS%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936484bad768889-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css
IP 172.64.167.9:0
GET /sb/ssp/vpn/classic-push/small/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: text/css
last-modified: Tue, 21 Sep 2021 12:03:42 GMT
etag: W/"6149ca1e-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c990W%2BzOyppNxQVyqKx%2BXTkniS4U%2FW5rGXIesHyenkFzKeA6wtjuC509gxtgs0dhX3QF2U%2FFdZ0OT8DEf8P5XYfzL0LZ5LnLSyisrvAwk1XwVmc3V8OZgeaGNmTFDSnOdAKYXBtlayCQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936484bbd8e8889-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2
37.157.4.23200 OK 0 B URL HTTP/2 adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2
IP 37.157.4.23:0
GET /adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2F3Ix0Zv&t=2 HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:14:54 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
172.67.13.182200 OK 0 B URL HTTP/2 spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
IP 172.67.13.182:0
GET /?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: http://m.imagenesderopaparaperros.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:14:51 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: http://m.imagenesderopaparaperros.com
set-cookie: zc=5c68670e-0c5c-4cbd-515a-df092c6f74ba; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
zsc=E%B2%1A%8D%FB%05%2F%B8%2C%DFk%96~1%82J%041%F5%A2%A3%5E%C0%AD%FFA%AC%08%F1%E6d%1EO%8F%D7%E8W%2C%26%9A%98e%C6%8D%95%91%29u%DCB%D7A%D6%1A%A6%A6%3B%DDU%0D%14%A5%19%DDX%88%A0o%FF%10%40%FA%C6%83%C2%A1%CF3rT%DE%ACl; Path=/; Domain=.zeotap.com; Max-Age=86400; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7936483c0aeeb4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2