| mdakky.com/rpe?a=1&s=1&act=18&src=2&p=1009992&st=1332630&wd=547748&d=arbgsu.com&tpl=80&rnd=0.05151169868557437&sbid=intent%3A%2F%2Farbgsu.com%2Fporno-land&sbid2= | 185.162.85.19 | 200 OK | 0 B |
URL GET HTTP/2mdakky.com/rpe?a=1&s=1&act=18&src=2&p=1009992&st=1332630&wd=547748&d=arbgsu.com&tpl=80&rnd=0.05151169868557437&sbid=intent%3A%2F%2Farbgsu.com%2Fporno-land&sbid2= IP185.162.85.19:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1= CertificateIssuerLet's Encrypt Subjectmdakky.com Fingerprint7A:0C:72:D0:A6:FD:F3:07:52:09:F5:25:14:D7:80:14:BA:76:A9:B5 ValiditySun, 07 Apr 2024 22:40:39 GMT - Sat, 06 Jul 2024 22:40:38 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /rpe?a=1&s=1&act=18&src=2&p=1009992&st=1332630&wd=547748&d=arbgsu.com&tpl=80&rnd=0.05151169868557437&sbid=intent%3A%2F%2Farbgsu.com%2Fporno-land&sbid2= HTTP/1.1
Host: mdakky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://arbgsu.com
DNT: 1
Connection: keep-alive
Referer: https://arbgsu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 07 May 2024 18:01:12 GMT
content-length: 0
accept-ch: Sec-CH-UA-Platform-Version
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| wokoez.com/cuclc?aid=11288819019130422385&t=1715104872&s=96 | 185.162.85.2 | 302 Found | 1.9 kB |
URL User Request GET HTTP/2wokoez.com/cuclc?aid=11288819019130422385&t=1715104872&s=96 IP185.162.85.2:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectwokoez.com Fingerprint4C:70:8E:53:1E:93:17:BF:C6:1C:D6:0D:98:EE:A0:92:CE:0A:12:95 ValidityThu, 04 Apr 2024 20:05:01 GMT - Wed, 03 Jul 2024 20:05:00 GMT
File typeHTML document, ASCII text, with very long lines (1892), with no line terminators Hashd447dd4d50d834260acc06f515edc063 a161feaa6be2dd98df8cb5f0d17e8d79d138b2f9 d86d6da64f8d8fb9c8484fcd02a053a515e5764df701ba4d41f2fdc4832bab5b
GET /cuclc?aid=11288819019130422385&t=1715104872&s=96 HTTP/1.1
Host: wokoez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbgsu.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.18.0
date: Tue, 07 May 2024 18:01:12 GMT
content-type: text/html; charset=utf-8
content-length: 1892
location: https://r-eu.tsyndicate.com/do2/direct?c=APeIQFMmDJkycuaI0HGDhYgwY-gsjOGQDpyFIuC8uVjxDMYYOWDIMHOjBo4WZszAqNGCRo4cY1rkMDPDTAsYNkaKkZEjhpgaNWCIcDhHTBoyCnVsERFjxgwZNmYI7eJwjJukMmjgqOEwTJ0xGGnEwJF1DAwaLcrIIJOj5ZgwaMX0jNHCBo0wNcqIwUGmRskcQ0UYJYPRDBmyY5-2GJPDRlsaftviyCGDJdQwOMbIiFFDDBkbYgIbtLNQxgwaNnA4hFMntI4YUW9QfAjnoo4aNLLOngNHog4akGPAgJHDYRk8dL7w9s3UKVSpgce0sZ3zxtYZXcmYWdhQsBs3C2fInmGjhgyHbdx4_E0DBtnV6dfLxgnDYZ0YGF-8sBE1jI0xqblghhxllEFGGGmwkQcdacDhwhhvtPHCGGykMcYaL9wxVhVauKEFGm2IoYYdcZDxxBRohLGEEmFAMUQeR5imxBw0qKFFDmUgQUQWV7TwRg5u3IHDWHrkIQYeYoTBRBo3IKEHFWXUUEQSeMyBRRI4pBFGlFG8wcQTLRAhBBVC7FiEFnWUYcYSbxR1hXY2VDGEFF_YMUYMQhyhIlRBDKGGGF-cUUUSREhRRRo_QFiHG3TIkUcPTjzBRR3DQcXbG8kd1QNwNQhH3KSV_hfGdAie4cYXmlZ3Hagi2WDQF2a8IUcbYdDRww2sQkUgGWkQGFEPaNBh0RwlzBBECTIYgawRZ7zhQnph8NbGgxEuOwetcli00bJljNGZY2b8B4NsYcwwhmGmwWVGDHfdMEMZOOA0Bg1ioBaGYTi6GwZOBtWrFn-Q1UAGGTfIllKxRtQxB0JJkFEsETcQd-8YM-AQZU16-VUxTzaYQUPFOJgxRkk3iEEyWTlA9hleampXIA5iwAvUGDjYQMZaMMSArA1tlBEiww7PQIQbMlCRhBUxzIEHGUiMQQYNaCxhBBJ1KCGGHUGYsYZTuAHMqac5nHYDfzGUUQcVONygIQ4cegiiiCSaiKKKLLoIo4w02oijjjz6CKSQRBqJpJJMOgmllFRaiaWWXHoJpphkmommmmy6CaecdNqJp55L8OknoIISamgaO8_xRh1yjFFGww9_PVwOO8Mhw8OT4TDZDbHrLHSksc_wcGBkRIgRHXPUUZuCuOlGbRvR1brQFjPEQFVGqS8EgwvD4VQVHG18AUf1Olyfm0Ny2GGbVMaNwb31LthgXx1pYPR0DIc5nUPIw-10Vhn3v35_t2bAQW5uUIbANAgjPXFBSFyQGxdwhgaBqUMYMNKEN-ghQWwIwwtqgD0QoAALMYjBDkCwJDfUAQ8gwEPNvmCXEZZPB43BXgpAcIRureENL5BBzoYjnBiAwAi9UtMb8PCCGAqlKmDRgQgiFRhZfWEMSVziEwLDhigWwQnAK4MdvkAgNkzEL9YhT7zqIwI5mKo0JunOQbYoBjksxHYOWeMX2vAGwuhABjWbDRnk8IbwOKRNpVkNH_GQh4VwRQRzKB9G-EiHWsmqBYtKAx1uYgMXkGFkTUwkae6IMh1KxSlxjOJBvnDJGwSGDsx7jWw6dZa0nUcEqJTBRFYpHK3cYDOyyQ4Xy8CbLzhPlZyppSuNs8UwsAEhxHveDGowvTCIgTkHMYNX2CCR1VTRelVZDwz6oICAAA%3D%3D&s=42213b55b1eeb7b89eacd4669a2ac4e02e36ae6301a0a30370d2121ebaf3fd941715104872
X-Firefox-Spdy: h2
|
|
| r-eu.tsyndicate.com/do2/direct?c=APeIQFMmDJkycuaI0HGDhYgwY-gsjOGQDpyFIuC8uVjxDMYYOWDIMHOjBo4WZszAqNGCRo4cY1rkMDPDTAsYNkaKkZEjhpgaNWCIcDhHTBoyCnVsERFjxgwZNmYI7eJwjJukMmjgqOEwTJ0xGGnEwJF1DAwaLcrIIJOj5ZgwaMX0jNHCBo0wNcqIwUGmRskcQ0UYJYPRDBmyY5-2GJPDRlsaftviyCGDJdQwOMbIiFFDDBkbYgIbtLNQxgwaNnA4hFMntI4YUW9QfAjnoo4aNLLOngNHog4akGPAgJHDYRk8dL7w9s3UKVSpgce0sZ3zxtYZXcmYWdhQsBs3C2fInmGjhgyHbdx4_E0DBtnV6dfLxgnDYZ0YGF-8sBE1jI0xqblghhxllEFGGGmwkQcdacDhwhhvtPHCGGykMcYaL9wxVhVauKEFGm2IoYYdcZDxxBRohLGEEmFAMUQeR5imxBw0qKFFDmUgQUQWV7TwRg5u3IHDWHrkIQYeYoTBRBo3IKEHFWXUUEQSeMyBRRI4pBFGlFG8wcQTLRAhBBVC7FiEFnWUYcYSbxR1hXY2VDGEFF_YMUYMQhyhIlRBDKGGGF-cUUUSREhRRRo_QFiHG3TIkUcPTjzBRR3DQcXbG8kd1QNwNQhH3KSV_hfGdAie4cYXmlZ3Hagi2WDQF2a8IUcbYdDRww2sQkUgGWkQGFEPaNBh0RwlzBBECTIYgawRZ7zhQnph8NbGgxEuOwetcli00bJljNGZY2b8B4NsYcwwhmGmwWVGDHfdMEMZOOA0Bg1ioBaGYTi6GwZOBtWrFn-Q1UAGGTfIllKxRtQxB0JJkFEsETcQd-8YM-AQZU16-VUxTzaYQUPFOJgxRkk3iEEyWTlA9hleampXIA5iwAvUGDjYQMZaMMSArA1tlBEiww7PQIQbMlCRhBUxzIEHGUiMQQYNaCxhBBJ1KCGGHUGYsYZTuAHMqac5nHYDfzGUUQcVONygIQ4cegiiiCSaiKKKLLoIo4w02oijjjz6CKSQRBqJpJJMOgmllFRaiaWWXHoJpphkmommmmy6CaecdNqJp55L8OknoIISamgaO8_xRh1yjFFGww9_PVwOO8Mhw8OT4TDZDbHrLHSksc_wcGBkRIgRHXPUUZuCuOlGbRvR1brQFjPEQFVGqS8EgwvD4VQVHG18AUf1Olyfm0Ny2GGbVMaNwb31LthgXx1pYPR0DIc5nUPIw-10Vhn3v35_t2bAQW5uUIbANAgjPXFBSFyQGxdwhgaBqUMYMNKEN-ghQWwIwwtqgD0QoAALMYjBDkCwJDfUAQ8gwEPNvmCXEZZPB43BXgpAcIRureENL5BBzoYjnBiAwAi9UtMb8PCCGAqlKmDRgQgiFRhZfWEMSVziEwLDhigWwQnAK4MdvkAgNkzEL9YhT7zqIwI5mKo0JunOQbYoBjksxHYOWeMX2vAGwuhABjWbDRnk8IbwOKRNpVkNH_GQh4VwRQRzKB9G-EiHWsmqBYtKAx1uYgMXkGFkTUwkae6IMh1KxSlxjOJBvnDJGwSGDsx7jWw6dZa0nUcEqJTBRFYpHK3cYDOyyQ4Xy8CbLzhPlZyppSuNs8UwsAEhxHveDGowvTCIgTkHMYNX2CCR1VTRelVZDwz6oICAAA%3D%3D&s=42213b55b1eeb7b89eacd4669a2ac4e02e36ae6301a0a30370d2121ebaf3fd941715104872 | 46.4.123.227 | 302 Found | 0 B |
URL User Request GET HTTP/2r-eu.tsyndicate.com/do2/direct?c=APeIQFMmDJkycuaI0HGDhYgwY-gsjOGQDpyFIuC8uVjxDMYYOWDIMHOjBo4WZszAqNGCRo4cY1rkMDPDTAsYNkaKkZEjhpgaNWCIcDhHTBoyCnVsERFjxgwZNmYI7eJwjJukMmjgqOEwTJ0xGGnEwJF1DAwaLcrIIJOj5ZgwaMX0jNHCBo0wNcqIwUGmRskcQ0UYJYPRDBmyY5-2GJPDRlsaftviyCGDJdQwOMbIiFFDDBkbYgIbtLNQxgwaNnA4hFMntI4YUW9QfAjnoo4aNLLOngNHog4akGPAgJHDYRk8dL7w9s3UKVSpgce0sZ3zxtYZXcmYWdhQsBs3C2fInmGjhgyHbdx4_E0DBtnV6dfLxgnDYZ0YGF-8sBE1jI0xqblghhxllEFGGGmwkQcdacDhwhhvtPHCGGykMcYaL9wxVhVauKEFGm2IoYYdcZDxxBRohLGEEmFAMUQeR5imxBw0qKFFDmUgQUQWV7TwRg5u3IHDWHrkIQYeYoTBRBo3IKEHFWXUUEQSeMyBRRI4pBFGlFG8wcQTLRAhBBVC7FiEFnWUYcYSbxR1hXY2VDGEFF_YMUYMQhyhIlRBDKGGGF-cUUUSREhRRRo_QFiHG3TIkUcPTjzBRR3DQcXbG8kd1QNwNQhH3KSV_hfGdAie4cYXmlZ3Hagi2WDQF2a8IUcbYdDRww2sQkUgGWkQGFEPaNBh0RwlzBBECTIYgawRZ7zhQnph8NbGgxEuOwetcli00bJljNGZY2b8B4NsYcwwhmGmwWVGDHfdMEMZOOA0Bg1ioBaGYTi6GwZOBtWrFn-Q1UAGGTfIllKxRtQxB0JJkFEsETcQd-8YM-AQZU16-VUxTzaYQUPFOJgxRkk3iEEyWTlA9hleampXIA5iwAvUGDjYQMZaMMSArA1tlBEiww7PQIQbMlCRhBUxzIEHGUiMQQYNaCxhBBJ1KCGGHUGYsYZTuAHMqac5nHYDfzGUUQcVONygIQ4cegiiiCSaiKKKLLoIo4w02oijjjz6CKSQRBqJpJJMOgmllFRaiaWWXHoJpphkmommmmy6CaecdNqJp55L8OknoIISamgaO8_xRh1yjFFGww9_PVwOO8Mhw8OT4TDZDbHrLHSksc_wcGBkRIgRHXPUUZuCuOlGbRvR1brQFjPEQFVGqS8EgwvD4VQVHG18AUf1Olyfm0Ny2GGbVMaNwb31LthgXx1pYPR0DIc5nUPIw-10Vhn3v35_t2bAQW5uUIbANAgjPXFBSFyQGxdwhgaBqUMYMNKEN-ghQWwIwwtqgD0QoAALMYjBDkCwJDfUAQ8gwEPNvmCXEZZPB43BXgpAcIRureENL5BBzoYjnBiAwAi9UtMb8PCCGAqlKmDRgQgiFRhZfWEMSVziEwLDhigWwQnAK4MdvkAgNkzEL9YhT7zqIwI5mKo0JunOQbYoBjksxHYOWeMX2vAGwuhABjWbDRnk8IbwOKRNpVkNH_GQh4VwRQRzKB9G-EiHWsmqBYtKAx1uYgMXkGFkTUwkae6IMh1KxSlxjOJBvnDJGwSGDsx7jWw6dZa0nUcEqJTBRFYpHK3cYDOyyQ4Xy8CbLzhPlZyppSuNs8UwsAEhxHveDGowvTCIgTkHMYNX2CCR1VTRelVZDwz6oICAAA%3D%3D&s=42213b55b1eeb7b89eacd4669a2ac4e02e36ae6301a0a30370d2121ebaf3fd941715104872 IP46.4.123.227:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerLet's Encrypt Subjectr-eu.tsyndicate.com Fingerprint98:0B:73:9C:71:0A:0E:EB:72:26:A7:1E:36:5A:84:9C:9C:5D:18:CC ValidityThu, 02 May 2024 02:06:31 GMT - Wed, 31 Jul 2024 02:06:30 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /do2/direct?c=APeIQFMmDJkycuaI0HGDhYgwY-gsjOGQDpyFIuC8uVjxDMYYOWDIMHOjBo4WZszAqNGCRo4cY1rkMDPDTAsYNkaKkZEjhpgaNWCIcDhHTBoyCnVsERFjxgwZNmYI7eJwjJukMmjgqOEwTJ0xGGnEwJF1DAwaLcrIIJOj5ZgwaMX0jNHCBo0wNcqIwUGmRskcQ0UYJYPRDBmyY5-2GJPDRlsaftviyCGDJdQwOMbIiFFDDBkbYgIbtLNQxgwaNnA4hFMntI4YUW9QfAjnoo4aNLLOngNHog4akGPAgJHDYRk8dL7w9s3UKVSpgce0sZ3zxtYZXcmYWdhQsBs3C2fInmGjhgyHbdx4_E0DBtnV6dfLxgnDYZ0YGF-8sBE1jI0xqblghhxllEFGGGmwkQcdacDhwhhvtPHCGGykMcYaL9wxVhVauKEFGm2IoYYdcZDxxBRohLGEEmFAMUQeR5imxBw0qKFFDmUgQUQWV7TwRg5u3IHDWHrkIQYeYoTBRBo3IKEHFWXUUEQSeMyBRRI4pBFGlFG8wcQTLRAhBBVC7FiEFnWUYcYSbxR1hXY2VDGEFF_YMUYMQhyhIlRBDKGGGF-cUUUSREhRRRo_QFiHG3TIkUcPTjzBRR3DQcXbG8kd1QNwNQhH3KSV_hfGdAie4cYXmlZ3Hagi2WDQF2a8IUcbYdDRww2sQkUgGWkQGFEPaNBh0RwlzBBECTIYgawRZ7zhQnph8NbGgxEuOwetcli00bJljNGZY2b8B4NsYcwwhmGmwWVGDHfdMEMZOOA0Bg1ioBaGYTi6GwZOBtWrFn-Q1UAGGTfIllKxRtQxB0JJkFEsETcQd-8YM-AQZU16-VUxTzaYQUPFOJgxRkk3iEEyWTlA9hleampXIA5iwAvUGDjYQMZaMMSArA1tlBEiww7PQIQbMlCRhBUxzIEHGUiMQQYNaCxhBBJ1KCGGHUGYsYZTuAHMqac5nHYDfzGUUQcVONygIQ4cegiiiCSaiKKKLLoIo4w02oijjjz6CKSQRBqJpJJMOgmllFRaiaWWXHoJpphkmommmmy6CaecdNqJp55L8OknoIISamgaO8_xRh1yjFFGww9_PVwOO8Mhw8OT4TDZDbHrLHSksc_wcGBkRIgRHXPUUZuCuOlGbRvR1brQFjPEQFVGqS8EgwvD4VQVHG18AUf1Olyfm0Ny2GGbVMaNwb31LthgXx1pYPR0DIc5nUPIw-10Vhn3v35_t2bAQW5uUIbANAgjPXFBSFyQGxdwhgaBqUMYMNKEN-ghQWwIwwtqgD0QoAALMYjBDkCwJDfUAQ8gwEPNvmCXEZZPB43BXgpAcIRureENL5BBzoYjnBiAwAi9UtMb8PCCGAqlKmDRgQgiFRhZfWEMSVziEwLDhigWwQnAK4MdvkAgNkzEL9YhT7zqIwI5mKo0JunOQbYoBjksxHYOWeMX2vAGwuhABjWbDRnk8IbwOKRNpVkNH_GQh4VwRQRzKB9G-EiHWsmqBYtKAx1uYgMXkGFkTUwkae6IMh1KxSlxjOJBvnDJGwSGDsx7jWw6dZa0nUcEqJTBRFYpHK3cYDOyyQ4Xy8CbLzhPlZyppSuNs8UwsAEhxHveDGowvTCIgTkHMYNX2CCR1VTRelVZDwz6oICAAA%3D%3D&s=42213b55b1eeb7b89eacd4669a2ac4e02e36ae6301a0a30370d2121ebaf3fd941715104872 HTTP/1.1
Host: r-eu.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://arbgsu.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Tue, 07 May 2024 18:01:12 GMT
content-length: 0
vary: *
pragma: no-cache
expires: 0
x-api-version: 2
location: //663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D
x-request-id: 8edc6053910ab80d
set-cookie: ts_uid=d41d8cd98f00b204e9800998ecf8427e; expires=Thu, 07 Nov 2024 18:01:12 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
ts_rt_vertical=AGPM6BEQ; expires=Wed, 07 May 2025 18:01:12 GMT; path=/; HttpOnly; secure; SameSite=None
ts_direct_tag=627853:3713652:23468:4451009:54241; expires=Fri, 07 Jun 2024 18:01:12 GMT; domain=.tsyndicate.com; path=/; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
|
|
| 663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D | 46.4.107.118 | 200 OK | 14 kB |
URL User Request GET HTTP/2663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D IP46.4.107.118:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerSectigo Limited Subject*.freedailytip.com FingerprintD3:99:55:21:99:55:0D:AD:40:DF:FD:CA:51:DB:FA:D8:36:66:BE:EA ValidityTue, 07 Nov 2023 00:00:00 GMT - Sat, 07 Dec 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1830) Hash54165788c6ebf655249e10fc93e29828 fcc3e11ad2b30e3dda0023e38c232f9388365a4a 36324540a408efa79f893b9ad161946a413ea6b784c1e446b50f82280f6cc497
GET /click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D HTTP/1.1
Host: 663a6c68.freedailytip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://arbgsu.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.4
date: Tue, 07 May 2024 18:01:12 GMT
content-type: text/html; charset=utf-8
content-length: 13816
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| lcdn.tsyndicate.com/images/abl/css/common.css | 45.133.44.71 | 200 OK | 2.3 kB |
URL GET HTTP/2lcdn.tsyndicate.com/images/abl/css/common.css IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectlcdn.tsyndicate.com Fingerprint59:C7:19:EE:39:ED:15:03:22:94:8C:42:D0:07:A1:C3:55:2B:8C:77 ValidityTue, 09 Apr 2024 03:01:18 GMT - Mon, 08 Jul 2024 03:01:17 GMT
Hashe1293f59ec0ed93299a14ced50647668 d0fdddfd00782ccd5d8bc985f54ceb779d0649fc 80a5896b69044f2744afae1481afeba347b03e0ca3e75946c591551030ed3eac
GET /images/abl/css/common.css HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:01:13 GMT
content-type: text/css
content-length: 2320
server: nginx
last-modified: Tue, 01 Nov 2022 11:39:24 GMT
etag: "6361056c-910"
x-robots-tag: noindex, nofollow
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| lcdn.tsyndicate.com/images/abl/js/slideshow.js | 45.133.44.71 | 200 OK | 487 B |
URL GET HTTP/2lcdn.tsyndicate.com/images/abl/js/slideshow.js IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectlcdn.tsyndicate.com Fingerprint59:C7:19:EE:39:ED:15:03:22:94:8C:42:D0:07:A1:C3:55:2B:8C:77 ValidityTue, 09 Apr 2024 03:01:18 GMT - Mon, 08 Jul 2024 03:01:17 GMT
Hash6463ca1362bf767ad5c83441623c2565 2389e92dd7626b0cf417b2827eba19493e1f5841 3b917613a5201261646a6388666a7e8b30d32c8e54bd85d7ecc682d9b8ab1cc7
GET /images/abl/js/slideshow.js HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 18:01:13 GMT
content-type: application/javascript; charset=utf-8
content-length: 487
server: nginx
last-modified: Wed, 02 Nov 2022 16:36:37 GMT
etag: "63629c95-1e7"
x-robots-tag: noindex, nofollow
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| lcdn.tsyndicate.com/images/abl/js/bot-detector.js | 45.133.44.71 | 200 OK | 2.7 kB |
URL GET HTTP/2lcdn.tsyndicate.com/images/abl/js/bot-detector.js IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectlcdn.tsyndicate.com Fingerprint59:C7:19:EE:39:ED:15:03:22:94:8C:42:D0:07:A1:C3:55:2B:8C:77 ValidityTue, 09 Apr 2024 03:01:18 GMT - Mon, 08 Jul 2024 03:01:17 GMT
File typeJavaScript source, ASCII text, with very long lines (2744), with no line terminators Hashab71de9e531db3b413d0719ad85c18bf bdf35715874f48fc6742edebc3a52ad2e5a85f1c 7c9f158154dd7a1504b25ca0b91b51471b39b63778c2ec9bd8c90a53a7a12334
GET /images/abl/js/bot-detector.js HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 18:01:13 GMT
content-type: application/javascript; charset=utf-8
content-length: 2744
server: nginx
last-modified: Wed, 02 Nov 2022 16:36:37 GMT
etag: "63629c95-ab8"
x-robots-tag: noindex, nofollow
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| lcdn.tsyndicate.com/images/abl/css/template2.css | 45.133.44.71 | 200 OK | 2.2 kB |
URL GET HTTP/2lcdn.tsyndicate.com/images/abl/css/template2.css IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectlcdn.tsyndicate.com Fingerprint59:C7:19:EE:39:ED:15:03:22:94:8C:42:D0:07:A1:C3:55:2B:8C:77 ValidityTue, 09 Apr 2024 03:01:18 GMT - Mon, 08 Jul 2024 03:01:17 GMT
File typetroff or preprocessor input, ASCII text Hashc29491c63df48ad665e479572e2af6fe 76c80779bb13e61871dd9ef58cdcc5abda531832 36f94f3ca81357f1b0bc85ed21391e8ec8dab1b1d88d8f9d11cd24b7d61d9d72
GET /images/abl/css/template2.css HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:01:13 GMT
content-type: text/css
content-length: 2200
server: nginx
last-modified: Wed, 28 Dec 2022 16:56:39 GMT
etag: "63ac7547-898"
x-robots-tag: noindex, nofollow
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| lcdn.tsyndicate.com/images/abl/js/onLoad.js | 45.133.44.71 | 200 OK | 2.9 kB |
URL GET HTTP/2lcdn.tsyndicate.com/images/abl/js/onLoad.js IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectlcdn.tsyndicate.com Fingerprint59:C7:19:EE:39:ED:15:03:22:94:8C:42:D0:07:A1:C3:55:2B:8C:77 ValidityTue, 09 Apr 2024 03:01:18 GMT - Mon, 08 Jul 2024 03:01:17 GMT
Hash194ec09f32cc803f1b3524fff2af2f57 91126c602df532ca6d4200345d480508bf64978a a6521d6b9b06e6be33222d7e9e7ef0e9bbdd8340decd0ba59cb0fc6cac6e622a
GET /images/abl/js/onLoad.js HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:01:13 GMT
content-type: application/javascript; charset=utf-8
content-length: 2879
server: nginx
last-modified: Fri, 29 Sep 2023 15:00:19 GMT
etag: "6516e683-b3f"
x-robots-tag: noindex, nofollow
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| lcdn.tsyndicate.com/images/abl/js/template3.js | 45.133.44.71 | 200 OK | 7.6 kB |
URL GET HTTP/2lcdn.tsyndicate.com/images/abl/js/template3.js IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectlcdn.tsyndicate.com Fingerprint59:C7:19:EE:39:ED:15:03:22:94:8C:42:D0:07:A1:C3:55:2B:8C:77 ValidityTue, 09 Apr 2024 03:01:18 GMT - Mon, 08 Jul 2024 03:01:17 GMT
Hashd7a9bfc6a09f4bbf645d98184039b481 f1da3e082e616894e94d540e9a6ba4fe4aa0ef40 20c527701d5e83723d04bed8552cf2f4c59ade33430877a64530bb8199c3d148
GET /images/abl/js/template3.js HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:01:13 GMT
content-type: application/javascript; charset=utf-8
content-length: 7611
server: nginx
last-modified: Wed, 28 Dec 2022 16:55:12 GMT
etag: "63ac74f0-1dbb"
x-robots-tag: noindex, nofollow
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| lcdn.tsyndicate.com/images/abl/css/template1.css | 45.133.44.71 | 200 OK | 2.1 kB |
URL GET HTTP/2lcdn.tsyndicate.com/images/abl/css/template1.css IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectlcdn.tsyndicate.com Fingerprint59:C7:19:EE:39:ED:15:03:22:94:8C:42:D0:07:A1:C3:55:2B:8C:77 ValidityTue, 09 Apr 2024 03:01:18 GMT - Mon, 08 Jul 2024 03:01:17 GMT
Hash02c674138e69ec26a142191f892c8b54 1976a36e28cdc42465789e2c784530c604faab65 18f17dbf02c16bf703988e07ea218a58129ffa36b728cab16306931dd2975606
GET /images/abl/css/template1.css HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:01:13 GMT
content-type: text/css
content-length: 2075
server: nginx
last-modified: Wed, 28 Dec 2022 16:55:49 GMT
etag: "63ac7515-81b"
x-robots-tag: noindex, nofollow
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| lcdn.tsyndicate.com/images/abl/css/template4.css | 45.133.44.71 | 200 OK | 2.1 kB |
URL GET HTTP/2lcdn.tsyndicate.com/images/abl/css/template4.css IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectlcdn.tsyndicate.com Fingerprint59:C7:19:EE:39:ED:15:03:22:94:8C:42:D0:07:A1:C3:55:2B:8C:77 ValidityTue, 09 Apr 2024 03:01:18 GMT - Mon, 08 Jul 2024 03:01:17 GMT
Hash05bb0653b04eb1d13f52f54ba65cd1b3 7988e92d56bb4ba51cd657b18607dd4895436bce c479af3b2bc3887e629591ebeb0cdfd8cfa193e43cd5a2608f5261d3729a8b32
GET /images/abl/css/template4.css HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:01:13 GMT
content-type: text/css
content-length: 2131
server: nginx
last-modified: Wed, 28 Dec 2022 16:56:21 GMT
etag: "63ac7535-853"
x-robots-tag: noindex, nofollow
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| 663a6c68.freedailytip.com/stage/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?spot_id=4451009&campaign_id=627853&country=NO&ad_format=7&stage=83 | 46.4.107.118 | 200 OK | 15 B |
URL GET HTTP/2663a6c68.freedailytip.com/stage/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?spot_id=4451009&campaign_id=627853&country=NO&ad_format=7&stage=83 IP46.4.107.118:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerSectigo Limited Subject*.freedailytip.com FingerprintD3:99:55:21:99:55:0D:AD:40:DF:FD:CA:51:DB:FA:D8:36:66:BE:EA ValidityTue, 07 Nov 2023 00:00:00 GMT - Sat, 07 Dec 2024 23:59:59 GMT
Hash0f0479874bf6f4a7281099b15df27c27 55a490e280d48996e564d00492437eb17faadd28 a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288
GET /stage/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?spot_id=4451009&campaign_id=627853&country=NO&ad_format=7&stage=83 HTTP/1.1
Host: 663a6c68.freedailytip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.4
date: Tue, 07 May 2024 18:01:13 GMT
content-type: application/json
content-length: 15
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Google+Sans:400,500|Roboto:300,400,400i,500,700&subset=latin,vietnamese,latin-ext,cyrillic,greek,cyrillic-ext,greek-ext | 142.250.74.106 | 200 OK | 2.7 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Google+Sans:400,500|Roboto:300,400,400i,500,700&subset=latin,vietnamese,latin-ext,cyrillic,greek,cyrillic-ext,greek-ext IP142.250.74.106:443
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hashec8596b7b2d09cbb985aa607feb2f468 9c76cdc41dc43aebd97e7453aadec34ec85dda84 17bbf56cb09cd5ca8e6288387a065458d826c1ec966b3011b48c67b1201ad2e9
GET /css?family=Google+Sans:400,500|Roboto:300,400,400i,500,700&subset=latin,vietnamese,latin-ext,cyrillic,greek,cyrillic-ext,greek-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 18:01:13 GMT
date: Tue, 07 May 2024 18:01:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 663a6c68.freedailytip.com/kmnr.js?kmnrKey=923323294 | 46.4.107.118 | 200 OK | 50 kB |
URL GET HTTP/2663a6c68.freedailytip.com/kmnr.js?kmnrKey=923323294 IP46.4.107.118:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerSectigo Limited Subject*.freedailytip.com FingerprintD3:99:55:21:99:55:0D:AD:40:DF:FD:CA:51:DB:FA:D8:36:66:BE:EA ValidityTue, 07 Nov 2023 00:00:00 GMT - Sat, 07 Dec 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (48051) Hash89db517a3459138b6007380d442eec58 8c6f5b52964212d51e078d50e379926f17d33e0a 669d2de23c14bf34b4310379dc92f287dd29a3529748f5df3fdc8f754b3cdca5
GET /kmnr.js?kmnrKey=923323294 HTTP/1.1
Host: 663a6c68.freedailytip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.4
date: Tue, 07 May 2024 18:01:13 GMT
content-type: text/javascript; charset=utf-8
content-length: 49554
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://663a6c68.freedailytip.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 289956
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.tsyndicate.com/videos/abl/2.mp4 | 45.133.44.70 | 206 Partial Content | 1.2 MB |
URL GET HTTP/2cdn.tsyndicate.com/videos/abl/2.mp4 IP45.133.44.70:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectcdn.tsyndicate.com Fingerprint27:B4:A1:69:D6:DF:AF:13:62:9C:06:AB:7A:E0:2F:B6:9B:08:43:75 ValidityTue, 09 Apr 2024 03:01:17 GMT - Mon, 08 Jul 2024 03:01:16 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Size1.2 MB (1234848 bytes) Hash6c9de11f92ee89b9864f482482275d7b 3637b8839b305e8d15c58f01be7981b023ea3405 0f635d31fb06dc1e87ec9341eea338ee3b0abc2f3119a47d4fbd9ceac33f06e4
GET /videos/abl/2.mp4 HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 07 May 2024 18:01:13 GMT
content-type: video/mp4
content-length: 1234848
server: nginx
last-modified: Wed, 19 Oct 2022 09:28:55 GMT
etag: "634fc357-12d7a0"
access-control-allow-origin: *
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
content-range: bytes 0-1234847/1234848
X-Firefox-Spdy: h2
|
|
| cdn.tsyndicate.com/videos/abl/1.mp4 | 45.133.44.70 | 206 Partial Content | 24 kB |
URL GET HTTP/2cdn.tsyndicate.com/videos/abl/1.mp4 IP45.133.44.70:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectcdn.tsyndicate.com Fingerprint27:B4:A1:69:D6:DF:AF:13:62:9C:06:AB:7A:E0:2F:B6:9B:08:43:75 ValidityTue, 09 Apr 2024 03:01:17 GMT - Mon, 08 Jul 2024 03:01:16 GMT
Hashf03d9f24f47adf0a2f7010aeb8b3601a 66e5c9e6e73a44bb368b6f3093d2ea68bfffc76c 95cf92ea5ad235f98051f8d806475211de45fc110ffc3257cdf8b484ad8b4926
GET /videos/abl/1.mp4 HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=1638400-
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 07 May 2024 18:01:14 GMT
content-type: video/mp4
content-length: 23618
server: nginx
last-modified: Wed, 19 Oct 2022 09:28:54 GMT
etag: "634fc356-195c42"
access-control-allow-origin: *
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:14 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
content-range: bytes 1638400-1662017/1662018
X-Firefox-Spdy: h2
|
|
| cdn.tsyndicate.com/videos/abl/5.mp4 | 45.133.44.70 | 206 Partial Content | 481 kB |
URL GET HTTP/2cdn.tsyndicate.com/videos/abl/5.mp4 IP45.133.44.70:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectcdn.tsyndicate.com Fingerprint27:B4:A1:69:D6:DF:AF:13:62:9C:06:AB:7A:E0:2F:B6:9B:08:43:75 ValidityTue, 09 Apr 2024 03:01:17 GMT - Mon, 08 Jul 2024 03:01:16 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Size481 kB (481184 bytes) Hashdc2779a216719b6f08047bcae0278ed0 f40d6d7bf4e85f5c4984b29bd6e61e54922ee1f7 4ab96729b0ea4f55446e0cdbf756956888b30a1259ecc8a775be8aa468a25f5e
GET /videos/abl/5.mp4 HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 07 May 2024 18:01:13 GMT
content-type: video/mp4
content-length: 1653961
server: nginx
last-modified: Wed, 19 Oct 2022 09:28:58 GMT
etag: "634fc35a-193cc9"
access-control-allow-origin: *
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
content-range: bytes 0-1653960/1653961
X-Firefox-Spdy: h2
|
|
| lcdn.tsyndicate.com/images/abl/images/favicon.ico | 45.133.44.71 | 200 OK | 15 kB |
URL GET HTTP/2lcdn.tsyndicate.com/images/abl/images/favicon.ico IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectlcdn.tsyndicate.com Fingerprint59:C7:19:EE:39:ED:15:03:22:94:8C:42:D0:07:A1:C3:55:2B:8C:77 ValidityTue, 09 Apr 2024 03:01:18 GMT - Mon, 08 Jul 2024 03:01:17 GMT
File typeMS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hasha5b2bc25e4a318a89008701226f353da df1d5f05c4965e9820258c244780b0a421910c3d a4a4cc3a8840924b046cedacdbec6e93863f9e832f5d983cc684e88d312137c8
GET /images/abl/images/favicon.ico HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 18:01:14 GMT
content-type: image/x-icon
content-length: 15406
server: nginx
last-modified: Mon, 17 Oct 2022 05:28:44 GMT
etag: "634ce80c-3c2e"
x-robots-tag: noindex, nofollow
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:14 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| rum-static.pingdom.net/pa-6530c844daab420012000239.js | 104.22.55.104 | 200 OK | 19 kB |
URL GET HTTP/2rum-static.pingdom.net/pa-6530c844daab420012000239.js IP104.22.55.104:443
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerCloudflare, Inc. Subjectpingdom.net Fingerprint95:37:DC:08:FB:5D:32:8E:03:08:92:BA:43:FB:74:8B:E0:82:A8:E3 ValiditySat, 14 Oct 2023 00:00:00 GMT - Sun, 13 Oct 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash98c37f405465d2d51d967625088fa5ed 2e3da7b5f4414e77adc00248657bc3b7b2ea6389 d02b3cd46a1bdcb0cea9f302a9ff67994c14cd992b2506cdaf3c852a8f377d14
GET /pa-6530c844daab420012000239.js HTTP/1.1
Host: rum-static.pingdom.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:01:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 06:22:28 GMT
vary: Accept-Encoding
etag: W/"63490024-1852"
expires: Tue, 07 May 2024 18:06:06 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 7
server: cloudflare
cf-ray: 88031d31dccc56b1-OSL
X-Firefox-Spdy: h2
|
|
| kaminari.systems/v2/check | 31.220.27.154 | 200 OK | 0 B |
URL POST HTTP/2kaminari.systems/v2/check IP31.220.27.154:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectkaminari.systems Fingerprint14:2A:4E:FB:BF:2E:04:54:A8:AB:C6:B3:E2:31:C5:AC:6E:9A:16:94 ValidityWed, 21 Feb 2024 23:06:34 GMT - Tue, 21 May 2024 23:06:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/check HTTP/1.1
Host: kaminari.systems
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2735
Origin: https://663a6c68.freedailytip.com
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.10
date: Tue, 07 May 2024 18:01:14 GMT
content-type: application/json
content-length: 0
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://663a6c68.freedailytip.com
X-Firefox-Spdy: h2
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hasheb2269a0f4c304bb8c59bf27934ff32d e5b07670c70345d071b28ed951c2c64a99015825 b24c11af98610a2d17ad9da6bb9a16890b49209b8c45a6ca4283d716425070e6
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 07 May 2024 18:01:14 GMT
Last-Modified: Tue, 07 May 2024 16:51:36 GMT
Server: ECAcc (ska/F756)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4V6GHBfA-_45BQw0sfMluqaYOAPtmdlrH3DpJR4ZO40NIgP3xKnJYw==
Age: 4178
|
|
| rum-collector-2.pingdom.net/img/beacon.gif?id=6530c844daab420012000239&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=335&cE=478&dLE=335&dLS=288&fS=286&hS=384&rE=-1&rS=-1&reS=479&resS=529&resE=570&uEE=-1&uES=-1&dL=606&dI=1258&dCLES=1274&dCLEE=1285&dC=1957&lES=1957&lEE=1963&s=nt&title=AI%20analysis%20for%20best%20results&path=https%3A%2F%2F663a6c68.freedailytip.com%2Fclick%2Fw18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi&ref=https%3A%2F%2Farbgsu.com%2F&sId=fz6q82oi&sST=1715104874&sIS=1&rV=0&v=1.4.1 | 34.253.217.201 | 200 OK | 0 B |
URL GET HTTP/1.1rum-collector-2.pingdom.net/img/beacon.gif?id=6530c844daab420012000239&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=335&cE=478&dLE=335&dLS=288&fS=286&hS=384&rE=-1&rS=-1&reS=479&resS=529&resE=570&uEE=-1&uES=-1&dL=606&dI=1258&dCLES=1274&dCLEE=1285&dC=1957&lES=1957&lEE=1963&s=nt&title=AI%20analysis%20for%20best%20results&path=https%3A%2F%2F663a6c68.freedailytip.com%2Fclick%2Fw18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi&ref=https%3A%2F%2Farbgsu.com%2F&sId=fz6q82oi&sST=1715104874&sIS=1&rV=0&v=1.4.1 IP34.253.217.201:443
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerAmazon Subject*.pingdom.net FingerprintFC:B3:2A:2E:A3:35:95:66:4B:D1:52:41:46:D6:C6:FB:73:39:D1:E3 ValidityMon, 06 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/beacon.gif?id=6530c844daab420012000239&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=335&cE=478&dLE=335&dLS=288&fS=286&hS=384&rE=-1&rS=-1&reS=479&resS=529&resE=570&uEE=-1&uES=-1&dL=606&dI=1258&dCLES=1274&dCLEE=1285&dC=1957&lES=1957&lEE=1963&s=nt&title=AI%20analysis%20for%20best%20results&path=https%3A%2F%2F663a6c68.freedailytip.com%2Fclick%2Fw18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi&ref=https%3A%2F%2Farbgsu.com%2F&sId=fz6q82oi&sST=1715104874&sIS=1&rV=0&v=1.4.1 HTTP/1.1
Host: rum-collector-2.pingdom.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://663a6c68.freedailytip.com
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 07 May 2024 18:01:14 GMT
Expires: 0
Pragma: no-cache
Content-Length: 0
Connection: keep-alive
|
|
| 663a6c68.freedailytip.com/stage/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?spot_id=4451009&campaign_id=627853&country=NO&ad_format=7&stage=52 | 46.4.107.118 | 200 OK | 15 B |
URL GET HTTP/2663a6c68.freedailytip.com/stage/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?spot_id=4451009&campaign_id=627853&country=NO&ad_format=7&stage=52 IP46.4.107.118:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerSectigo Limited Subject*.freedailytip.com FingerprintD3:99:55:21:99:55:0D:AD:40:DF:FD:CA:51:DB:FA:D8:36:66:BE:EA ValidityTue, 07 Nov 2023 00:00:00 GMT - Sat, 07 Dec 2024 23:59:59 GMT
Hash0f0479874bf6f4a7281099b15df27c27 55a490e280d48996e564d00492437eb17faadd28 a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288
GET /stage/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?spot_id=4451009&campaign_id=627853&country=NO&ad_format=7&stage=52 HTTP/1.1
Host: 663a6c68.freedailytip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.4
date: Tue, 07 May 2024 18:01:21 GMT
content-type: application/json
content-length: 15
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://663a6c68.freedailytip.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:03:54 GMT
expires: Fri, 02 May 2025 02:03:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 489440
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.tsyndicate.com/videos/abl/4.mp4 | 45.133.44.70 | 206 Partial Content | 328 kB |
URL GET HTTP/2cdn.tsyndicate.com/videos/abl/4.mp4 IP45.133.44.70:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectcdn.tsyndicate.com Fingerprint27:B4:A1:69:D6:DF:AF:13:62:9C:06:AB:7A:E0:2F:B6:9B:08:43:75 ValidityTue, 09 Apr 2024 03:01:17 GMT - Mon, 08 Jul 2024 03:01:16 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Size328 kB (327680 bytes) Hashf3d8418e29e7e8896ecfbd2e1b023bcc 548302705a542cb3794cf6e3e07d03fc4db27e03 228f921639e51dd6dbcd83eb97c0b0cf88ca7265eb771822b1f2904e52f21f51
GET /videos/abl/4.mp4 HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 07 May 2024 18:01:13 GMT
content-type: video/mp4
content-length: 1660898
server: nginx
last-modified: Wed, 19 Oct 2022 09:28:57 GMT
etag: "634fc359-1957e2"
access-control-allow-origin: *
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
content-range: bytes 0-1660897/1660898
X-Firefox-Spdy: h2
|
|
| cdn.tsyndicate.com/videos/abl/6.mp4 | 45.133.44.70 | 206 Partial Content | 131 kB |
URL GET HTTP/2cdn.tsyndicate.com/videos/abl/6.mp4 IP45.133.44.70:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectcdn.tsyndicate.com Fingerprint27:B4:A1:69:D6:DF:AF:13:62:9C:06:AB:7A:E0:2F:B6:9B:08:43:75 ValidityTue, 09 Apr 2024 03:01:17 GMT - Mon, 08 Jul 2024 03:01:16 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Size131 kB (131072 bytes) Hash1ea90d095bad3bd7cba360ba25e0fd6e a830f402406dfc25d48f3f6cced32294279a6e65 c43993fca5aa8e45f250d2f6af1d45316051a59dd9d3501e1e40f7aa5bce0948
GET /videos/abl/6.mp4 HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 07 May 2024 18:01:13 GMT
content-type: video/mp4
content-length: 1676620
server: nginx
last-modified: Wed, 19 Oct 2022 09:28:59 GMT
etag: "634fc35b-19954c"
access-control-allow-origin: *
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
content-range: bytes 0-1676619/1676620
X-Firefox-Spdy: h2
|
|
| wokoez.com/phtbload?a=1&e=aeyJwaWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDh9 | 185.162.85.20 | 200 OK | 146 B |
URL GET HTTP/2wokoez.com/phtbload?a=1&e=aeyJwaWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDh9 IP185.162.85.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1= CertificateIssuerLet's Encrypt Subjectwokoez.com Fingerprint4C:70:8E:53:1E:93:17:BF:C6:1C:D6:0D:98:EE:A0:92:CE:0A:12:95 ValidityThu, 04 Apr 2024 20:05:01 GMT - Wed, 03 Jul 2024 20:05:00 GMT
File typeASCII text, with no line terminators Hash6e5f188b858ccda619ec50b0f15b42ca c42fa1c063f2fbe50520f617af2a992f7177064b 66871e9774aae79ece8ba2bd5a33295f76fb50b3d452ac31e138001e1bb33c6d
GET /phtbload?a=1&e=aeyJwaWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDh9 HTTP/1.1
Host: wokoez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://arbgsu.com/
Origin: https://arbgsu.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 07 May 2024 18:01:12 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Platform-Version
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.tsyndicate.com/videos/abl/3.mp4 | 45.133.44.70 | 206 Partial Content | 590 kB |
URL GET HTTP/2cdn.tsyndicate.com/videos/abl/3.mp4 IP45.133.44.70:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://663a6c68.freedailytip.com/click/w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi?country=NO&spot_id=4451009&campaign_id=627853&ad_format=7&redirect=https%3A%2F%2Fgo.mnaspm.com%2Fsmartpop%2Fec5b69f6c071a3cfd23a4f14a73e806c4b46afd9e73a06adb4e266455dd771ff%3FuserId%3D709afc38e53feb5738296f4388fc757b75782945d6a5efdfee8be855c86d2d01%26memberId%3Dn2TIV1sxdHcd4hKFHuJbvAfk33546644451009347661euT87w18UZnZhmbjvqdOShaKJaPCyG23Js4jZ9eHDYW-o9nw818zybxbaLi7HzTe5EIxsXI8iae5QoLO-DBTBDYEZuefKosbWdf6UCR_vc1BGaK26ACjb_gUIDRUi%26sourceId%3D4451009%26p2%3D898897%26p1%3DNO%26p3%3D CertificateIssuerLet's Encrypt Subjectcdn.tsyndicate.com Fingerprint27:B4:A1:69:D6:DF:AF:13:62:9C:06:AB:7A:E0:2F:B6:9B:08:43:75 ValidityTue, 09 Apr 2024 03:01:17 GMT - Mon, 08 Jul 2024 03:01:16 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Size590 kB (589824 bytes) Hash5abf314f5254e8f81bde578045ef7bb4 f493ec0489219288aa2a6dfbb736d065d27b8bce 3b4712eea6f5590b2df98a12017e99b52f63d68956dc33d3aadeaaa27848c9bf
GET /videos/abl/3.mp4 HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://663a6c68.freedailytip.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 07 May 2024 18:01:13 GMT
content-type: video/mp4
content-length: 1676452
server: nginx
last-modified: Wed, 19 Oct 2022 09:28:56 GMT
etag: "634fc358-1994a4"
access-control-allow-origin: *
cache-control: max-age=172800
expires: Thu, 09 May 2024 18:01:13 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
content-range: bytes 0-1676451/1676452
X-Firefox-Spdy: h2
|
|
| arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1= | 185.162.87.220 | 200 OK | 346 kB |
URL User Request GET HTTP/2arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1= IP185.162.87.220:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectarbgsu.com FingerprintF1:B5:94:81:3F:DE:80:65:1B:67:DF:CA:C3:28:95:15:A6:66:00:46 ValidityWed, 10 Apr 2024 12:59:17 GMT - Tue, 09 Jul 2024 12:59:16 GMT
Size346 kB (345921 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1=intent://arbgsu.com/porno-land?h=waWQiOjEwMDk5OTIsInNpZCI6MTMzMjYzMCwid2lkIjo1NDc3NDgsInNyYyI6Mn0=eyJ&clickid=345ai8i1g2bin&si1= HTTP/1.1
Host: arbgsu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.25.0
date: Tue, 07 May 2024 18:01:11 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: truniq=1; expires=Wed, 08-May-2024 18:01:11 GMT; Max-Age=86400; path=/; domain=arbgsu.com
x-zone: eu3
content-encoding: gzip
X-Firefox-Spdy: h2
|
|