| runative-syndicate.com/api/v1/retargeting/set/dedc7df9-c920-4b4b-a9e4-2a904ca2f8ef | 136.243.51.205 | 200 OK | 43 B |
URL GET HTTP/2runative-syndicate.com/api/v1/retargeting/set/dedc7df9-c920-4b4b-a9e4-2a904ca2f8ef IP136.243.51.205:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerLet's Encrypt Subjectrunative-syndicate.com Fingerprint7B:74:FE:3F:C1:1F:C3:21:65:A5:F5:CD:DD:1C:93:A5:3E:85:F0:A0 ValidityTue, 30 Apr 2024 23:06:33 GMT - Mon, 29 Jul 2024 23:06:32 GMT
File typeGIF image data, version 89a, 1 x 1 Hashba036c43037cfe89320d1ef7b64cd43f 88c72d3e26047eb1e45e5564a76427734f120efe 42cb846e07917f6731406e500f24aeb2e88c42cda124eaa59e08c5331cad8bcb
GET /api/v1/retargeting/set/dedc7df9-c920-4b4b-a9e4-2a904ca2f8ef HTTP/1.1
Host: runative-syndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:52:01 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: cfd2ce4637cff88b
set-cookie: ts_rt_dedc7df9-c920-4b4b-a9e4-2a904ca2f8ef=AAMC; expires=Sat, 10 May 2025 12:52:01 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.runative-syndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
|
|
| bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 | 172.67.154.248 | 200 OK | 1.1 kB |
URL User Request GET HTTP/2bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 IP172.67.154.248:443
CertificateIssuerGoogle Trust Services LLC Subjectbigamybigot.space FingerprintE7:50:0F:DE:34:90:F7:D8:43:EB:8B:24:E8:7F:07:D1:92:06:84:6C ValiditySat, 20 Apr 2024 16:25:08 GMT - Fri, 19 Jul 2024 16:25:07 GMT
File typeHTML document, ASCII text, with very long lines (1971) Hash7a8b71fd1f8477f8d6089e3d3f8ffab2 6ed50a62e7b44135e9953bd21ee4372352ab1440 55390389a3522c27e57e5a3c271bda611e4f5f0898fe54d659ce20b4d3b18ccd
GET /iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 HTTP/1.1
Host: bigamybigot.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:00 GMT
content-type: text/html
set-cookie: f_15408_2326_86400={"t":1715431920,"v":0}; Expires=Sat, 11-May-24 12:52:00 GMT; Domain=bigamybigot.space; Path=/; Secure; SameSite=None
c_17f259f1c805c1e69689a5d5c79de7d1=1; Expires=Sat, 11-May-24 12:52:00 GMT; Domain=bigamybigot.space; Path=/; Secure; SameSite=None
z_6d7d3b3bb6d59bacf5439c4b81c2b18e=1; Expires=Sat, 11-May-24 12:52:00 GMT; Domain=bigamybigot.space; Path=/; Secure; SameSite=None
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mi9G2Pof4KtkFAEnZAAFWi%2BdnIPx75XShn1v2m3t6w6cNgBEIGqY5ZhNB1tqTcdHbimI4FmKnv69VJnnMg8rnXv7SHNU2lyj38xPJTWbSfW9dKQUipbhltx91nDwAqn9Mymngw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a105f9b5956bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tsyndicate.com/api/v1/retargeting/set/cd5a54e9-d886-4c75-af65-8b819a80f59e | 213.174.157.83 | 200 OK | 43 B |
URL GET HTTP/2tsyndicate.com/api/v1/retargeting/set/cd5a54e9-d886-4c75-af65-8b819a80f59e IP213.174.157.83:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerLet's Encrypt Subjecttsyndicate.com FingerprintF5:9F:1F:89:8F:08:CD:46:43:4B:55:0A:42:66:52:21:16:57:43:31 ValidityFri, 12 Apr 2024 09:06:37 GMT - Thu, 11 Jul 2024 09:06:36 GMT
File typeGIF image data, version 89a, 1 x 1 Hashba036c43037cfe89320d1ef7b64cd43f 88c72d3e26047eb1e45e5564a76427734f120efe 42cb846e07917f6731406e500f24aeb2e88c42cda124eaa59e08c5331cad8bcb
GET /api/v1/retargeting/set/cd5a54e9-d886-4c75-af65-8b819a80f59e HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:52:01 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: 9f36ba82c1b3cdfc
set-cookie: ts_rt_cd5a54e9-d886-4c75-af65-8b819a80f59e=AAMC; expires=Sat, 10 May 2025 12:52:01 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashc1ae368dfcd18c3fe0a38f18783ecfe1 591b78d8c937af6063def58fa5d376d07e7d005e 58ceb2cb03a41de3ae12171e7359276ed8fcbc1881b071c2783b782667cf124b
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 12:52:01 GMT
Last-Modified: Fri, 10 May 2024 11:13:54 GMT
Server: ECAcc (ska/F775)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uqA5iQLpNIvMqjBHRrRjyUw8i64sAjv68wm72DNktndCqVixlKT6pQ==
Age: 5887
|
|
| proftrafficcounter.com/px.gif?akey=068f30d41a2c432d6c8a96d5a7fc6706 | 3.124.83.201 | 307 Temporary Redirect | 0 B |
URL GET HTTP/2proftrafficcounter.com/px.gif?akey=068f30d41a2c432d6c8a96d5a7fc6706 IP3.124.83.201:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px.gif?akey=068f30d41a2c432d6c8a96d5a7fc6706 HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Fri, 10 May 2024 12:52:01 GMT
content-type: image/gif
content-length: 0
location: https://experttrafficmonitor.com/dbs?uuid=981a662f-f34f-456e-8dfe-ccceb78068aa&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoyLCJhY3VzIjoxLCJhY2kiOnsiMjkiOjE3MTUzNDU1MjF9LCJhY2NsIjp7IjIwLDEiOjE3MTUzNDU1MjF9fQ.ZItxiJWMjTotJToZ5NEwLPdu0EXMeASi1FZODbm2n3I
server: nginx/1.21.6
set-cookie: uid_id2=981a662f-f34f-456e-8dfe-ccceb78068aa:2:1; expires=Mon, 08 May 2034 12:52:01 GMT; secure; SameSite=None
ak=29,1715345521; expires=Thu, 08 Aug 2024 12:52:01 GMT; secure; SameSite=None
acl=20,1,1715345521; expires=Thu, 08 Aug 2024 12:52:01 GMT; secure; SameSite=None
expires: Fri, 10 May 2024 12:52:01 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2
|
|
| ad.twinrdengine.com/beh.engine?b=53&o=1 | 34.144.253.249 | 200 OK | 0 B |
URL GET HTTP/2ad.twinrdengine.com/beh.engine?b=53&o=1 IP34.144.253.249:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjectad.twinrdengine.com Fingerprint51:84:F3:CF:42:9F:72:80:8D:C6:96:6F:F8:26:0B:F5:43:53:6D:19 ValidityThu, 09 May 2024 21:39:32 GMT - Wed, 07 Aug 2024 22:32:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: ad.twinrdengine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 0
date: Fri, 10 May 2024 12:52:01 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| twinrdsyn.com/beh.engine?b=53&o=1 | 104.18.34.70 | 200 OK | 0 B |
URL GET HTTP/2twinrdsyn.com/beh.engine?b=53&o=1 IP104.18.34.70:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjecttwinrdsyn.com Fingerprint83:52:42:A1:95:78:FE:A9:3A:7D:95:97:1A:12:D7:19:36:05:6D:88 ValiditySat, 06 Apr 2024 22:22:51 GMT - Fri, 05 Jul 2024 22:22:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: twinrdsyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=20dda7e0-7640-439a-9bc8-83f4b656be73; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:01 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 881a1065ac540b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| twinrdsrv.com/beh.engine?b=53&o=1 | 172.66.40.197 | 200 OK | 0 B |
URL GET HTTP/2twinrdsrv.com/beh.engine?b=53&o=1 IP172.66.40.197:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerLet's Encrypt Subjecttwinrdsrv.com FingerprintDE:BD:B4:BF:B9:76:6C:DD:CC:B0:17:E9:BA:C4:28:B8:02:CB:94:22 ValidityMon, 18 Mar 2024 01:03:11 GMT - Sun, 16 Jun 2024 01:03:10 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: twinrdsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=2cced4b0-a768-42c0-8046-fe3ab2f07d7e; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:01 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZyVq7aeT%2B6i9lWihsP9fYsml0AZI7ag%2BcZt87ce0z9B4rdxvCLMqY2AeFGRUg28WQGFNwlJI0%2BFnqKSY3HhF%2FtLJu8KD0CFAI2eKvnUH1IE5e74j9rd8P10EAjJOTaQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a10658e8b568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ductquest.com/beh.engine?b=53&o=1 | 172.66.41.9 | 200 OK | 0 B |
URL GET HTTP/2ductquest.com/beh.engine?b=53&o=1 IP172.66.41.9:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerLet's Encrypt Subjectductquest.com FingerprintC2:0E:8D:64:53:D0:95:26:8E:D4:B1:BD:1F:A9:21:AA:EB:E7:C4:71 ValidityTue, 23 Apr 2024 18:58:47 GMT - Mon, 22 Jul 2024 18:58:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: ductquest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=e9d2a9c7-952f-462a-9526-23c0cae85485; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:01 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aqDnS9fxQ%2FwiqinfAAAVhT32Khng2NgrudU8pbQbHs4Gi6L6blzQ0V0yyTs38VXNaB25n%2BKTnqbsREEPMpfUNl08u6flRYj5TGjAfVBeW6g8BkXB0Yvy%2F70VuYDnRuU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a10658e8d568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| randomadsrv.com/beh.engine?b=53&o=1 | 172.64.144.179 | 200 OK | 0 B |
URL GET HTTP/2randomadsrv.com/beh.engine?b=53&o=1 IP172.64.144.179:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjectrandomadsrv.com Fingerprint9E:71:A2:82:54:95:94:F6:2A:54:F2:12:84:E9:C6:EE:DE:BD:45:86 ValiditySun, 31 Mar 2024 23:04:32 GMT - Sat, 29 Jun 2024 23:04:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: randomadsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=046286cc-8255-47f1-8aaf-913dbde56dcd; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:01 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 881a1065afadb4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| impactslam.com/beh.engine?b=53&o=1 | 104.16.182.246 | 200 OK | 0 B |
URL GET HTTP/2impactslam.com/beh.engine?b=53&o=1 IP104.16.182.246:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjectimpactslam.com FingerprintBE:AF:AA:14:1D:17:9B:C6:CE:26:DE:EF:E9:47:1E:0B:6A:8E:DB:E5 ValidityWed, 08 May 2024 01:55:07 GMT - Tue, 06 Aug 2024 01:55:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: impactslam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=de3140fc-f9b4-4a08-a8c3-0f87a4fb863c; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:01 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 881a1065bce156c3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| impactserving.com/beh.engine?b=53&o=1 | 104.18.176.151 | 200 OK | 0 B |
URL GET HTTP/2impactserving.com/beh.engine?b=53&o=1 IP104.18.176.151:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerLet's Encrypt Subjectimpactserving.com FingerprintE4:28:91:8B:22:58:5F:24:AD:32:B9:36:8B:7F:2C:BA:F9:81:82:49 ValidityWed, 08 May 2024 03:55:35 GMT - Tue, 06 Aug 2024 03:55:34 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: impactserving.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=ebf46595-e68d-4309-9902-eab0eda8aab6; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:01 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 881a1065defe1bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| twinrdsyte.com/beh.engine?b=53&o=1 | 104.18.33.45 | 200 OK | 0 B |
URL GET HTTP/2twinrdsyte.com/beh.engine?b=53&o=1 IP104.18.33.45:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjecttwinrdsyte.com Fingerprint29:F2:BC:B4:1A:45:CE:D6:B5:74:93:3F:0F:95:84:36:B3:7D:0A:E5 ValidityWed, 20 Mar 2024 11:58:11 GMT - Tue, 18 Jun 2024 11:58:10 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: twinrdsyte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=1d4b5fdc-1333-46b2-8f44-80b422b029b2; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:01 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 881a1065d85db4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dotsrv.com/Pixel/Script/Behavior?b=53&o=1 | 172.66.43.77 | 200 OK | 786 B |
URL GET HTTP/2dotsrv.com/Pixel/Script/Behavior?b=53&o=1 IP172.66.43.77:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjectdotsrv.com FingerprintB4:3A:27:95:FB:17:CE:05:43:61:D7:A4:A7:46:EB:C5:44:F9:93:9B ValidityFri, 15 Mar 2024 13:16:00 GMT - Thu, 13 Jun 2024 13:15:59 GMT
File typeASCII text, with CRLF, LF line terminators Hashd62c5bc4c06d61ac86b0e7ebb05271fb 45a39bc9e16c1f257f96dc42d1814add89dd2d83 bff5f33d3fa8d86d75e8309accd96a2ed43afaf283ca34a1140299d57822955e
GET /Pixel/Script/Behavior?b=53&o=1 HTTP/1.1
Host: dotsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-type: application/x-javascript; charset=utf-8
vary: Accept-Encoding
cache-control: no-cache
p3p: CP="CAO PSA OUR IND"
expires: -1
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=obXiugiElWn8kGvGo%2FnyLHNn791vOmfGuBSY2iwZhYmWDSDdD%2B55UqPQXFDnF5C2tRH5CyPbfB3qdFL1NCazG3XU790xGCoUCrRssxB28g6KIR5Xz4Gt%2FkMaOGA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a106269c2569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| twistconcept.com/index.min.js?pk=068f30d41a2c432d6c8a96d5a7fc6706 | 104.21.86.46 | 200 OK | 358 B |
URL GET HTTP/2twistconcept.com/index.min.js?pk=068f30d41a2c432d6c8a96d5a7fc6706 IP104.21.86.46:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjecttwistconcept.com Fingerprint73:11:A2:75:AF:3F:76:30:B1:19:9F:59:CD:02:5E:98:3C:A1:12:6B ValiditySat, 23 Mar 2024 03:02:17 GMT - Fri, 21 Jun 2024 03:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (652) Hash2058d53d084116ff3d36c8a630556710 8bcd226cf5ddb64be846ad645360638e82269097 6af3e3bd3016f5762e3dc3dbd8fc7bbf00f4ec9349bee71a23bbe5547dcffd1e
GET /index.min.js?pk=068f30d41a2c432d6c8a96d5a7fc6706 HTTP/1.1
Host: twistconcept.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-type: application/javascript
last-modified: Thu, 23 Nov 2023 13:06:26 GMT
etag: W/"655f4e52-28d"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1939
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wcGtCI%2FAZNi8r97gtfXsctDQvNyQGAeZIHUeRD8PqfcHCFoMASsiByQ25cOCxagE0Drqsvl7f%2F7fZ4VJfSRmKPRRMYHJyo2mfSrjq7BG8Qaaq4H5QXxvSrc828%2Fh5Tv0qrLn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881a10628ee256cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| experttrafficmonitor.com/dbs?uuid=981a662f-f34f-456e-8dfe-ccceb78068aa&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoyLCJhY3VzIjoxLCJhY2kiOnsiMjkiOjE3MTUzNDU1MjF9LCJhY2NsIjp7IjIwLDEiOjE3MTUzNDU1MjF9fQ.ZItxiJWMjTotJToZ5NEwLPdu0EXMeASi1FZODbm2n3I | 3.124.83.201 | 200 OK | 7 B |
URL GET HTTP/2experttrafficmonitor.com/dbs?uuid=981a662f-f34f-456e-8dfe-ccceb78068aa&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoyLCJhY3VzIjoxLCJhY2kiOnsiMjkiOjE3MTUzNDU1MjF9LCJhY2NsIjp7IjIwLDEiOjE3MTUzNDU1MjF9fQ.ZItxiJWMjTotJToZ5NEwLPdu0EXMeASi1FZODbm2n3I IP3.124.83.201:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /dbs?uuid=981a662f-f34f-456e-8dfe-ccceb78068aa&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoyLCJhY3VzIjoxLCJhY2kiOnsiMjkiOjE3MTUzNDU1MjF9LCJhY2NsIjp7IjIwLDEiOjE3MTUzNDU1MjF9fQ.ZItxiJWMjTotJToZ5NEwLPdu0EXMeASi1FZODbm2n3I HTTP/1.1
Host: experttrafficmonitor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bigamybigot.space/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-type: image/gif
content-length: 7
server: nginx/1.21.6
set-cookie: uid_id2=981a662f-f34f-456e-8dfe-ccceb78068aa:2:1; expires=Mon, 08 May 2034 12:52:01 GMT; secure; SameSite=None
ak=29,1715345521; expires=Thu, 08 Aug 2024 12:52:01 GMT; secure; SameSite=None
acl=20,1,1715345521; expires=Thu, 08 Aug 2024 12:52:01 GMT; secure; SameSite=None
expires: Fri, 10 May 2024 12:52:01 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2
|
|
| oakbustrp.com/beh.engine?b=53&o=1 | 172.67.72.133 | 200 OK | 0 B |
URL GET HTTP/2oakbustrp.com/beh.engine?b=53&o=1 IP172.67.72.133:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjectoakbustrp.com Fingerprint78:1A:BB:CF:1B:87:71:FC:F2:7E:C1:F3:39:49:A9:87:7A:9D:E2:12 ValiditySun, 14 Apr 2024 02:49:39 GMT - Sat, 13 Jul 2024 02:49:38 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: oakbustrp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=75e94075-53f0-4999-adae-be64e19434f6; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:01 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vACiecUZg0SHewmfqODdUOGzVBpuAWRruZ3vwXkkobTZn%2B7uUrd7VQMZVMrtCyp6e9B6FJ3dr1K4ulBVQKkKYmxuS1DWeqa4Tlt6oFRB2l94yCxVLEXb75LkpMBDVgU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a10658c61b4f3-OSL
X-Firefox-Spdy: h2
|
|
| twinsrv.com/beh.engine?b=53&o=1 | 172.64.155.98 | 200 OK | 0 B |
URL GET HTTP/2twinsrv.com/beh.engine?b=53&o=1 IP172.64.155.98:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjecttwinsrv.com FingerprintCD:AC:49:49:9F:AC:F5:0B:11:5F:87:F9:70:EC:44:DE:DD:23:A8:1C ValidityWed, 03 Apr 2024 02:35:58 GMT - Tue, 02 Jul 2024 02:35:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: twinsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:02 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=df2cb344-8a5d-4f32-8112-a4c2d3fd96e1; expires=Wed, 10-May-2034 12:52:02 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:02 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:02 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 881a106c98380b49-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| twinfill.com/beh.engine?b=53&o=1 | 172.64.148.170 | 200 OK | 0 B |
URL GET HTTP/2twinfill.com/beh.engine?b=53&o=1 IP172.64.148.170:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjecttwinfill.com Fingerprint03:F9:83:44:16:A8:63:BD:B1:ED:F7:7F:8B:47:7D:2F:0C:F1:BD:6E ValidityMon, 01 Apr 2024 03:41:23 GMT - Sun, 30 Jun 2024 03:41:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: twinfill.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:02 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=6c47c214-c50e-4632-bda9-595b92450142; expires=Wed, 10-May-2034 12:52:02 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:02 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:02 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 881a106c9ded56b9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| twinrdack.com/beh.engine?b=53&o=1 | 172.66.43.134 | 200 OK | 0 B |
URL GET HTTP/2twinrdack.com/beh.engine?b=53&o=1 IP172.66.43.134:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjecttwinrdack.com FingerprintA5:BF:56:5B:63:4D:08:DC:4D:1A:A5:D3:F2:9A:2B:CE:6F:6A:70:1E ValiditySat, 13 Apr 2024 13:57:43 GMT - Fri, 12 Jul 2024 13:57:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: twinrdack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:06 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=faafb767-bcd5-448e-812a-2fe036d37803; expires=Wed, 10-May-2034 12:52:06 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:06 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:06 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BHjI8QyzZmHo9%2FAIP3dOh32HMEnXRumpuP38eX16pJGZJq7VV26DqjjclimuoNtnYn4zHyknAuUV5tFM%2Ba31jUd9AlIvgvpRFbzshBXncpn%2BeR9DO44NMp3H0v%2BhhHg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a108418395684-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bigamybigot.space/favicon.ico | 172.67.154.248 | 404 Not Found | 5.8 kB |
URL GET HTTP/3bigamybigot.space/favicon.ico IP172.67.154.248:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjectbigamybigot.space FingerprintE7:50:0F:DE:34:90:F7:D8:43:EB:8B:24:E8:7F:07:D1:92:06:84:6C ValiditySat, 20 Apr 2024 16:25:08 GMT - Fri, 19 Jul 2024 16:25:07 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash13316c222e0c0ec8d199b041c4bd8b01 95259989d61766afee6cdf19b56ddac9802568b1 363bcf79e2d0a504ef280e7716c4a17c15023333feee1d1cf0bc4d5be3c259ca
GET /favicon.ico HTTP/1.1
Host: bigamybigot.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509
Cookie: f_15408_2326_86400={"t":1715431920,"v":0}; c_17f259f1c805c1e69689a5d5c79de7d1=1; z_6d7d3b3bb6d59bacf5439c4b81c2b18e=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 10 May 2024 12:52:02 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZnGc82RMHW9Kvd16bFaSEV7hxv5T0U6VBIPO1zMTRWNpO2CUGnyLAv56I2wt5SXl4TlfY360u7yyJ5P90ecoP2s9iy1T6zXiJuAlfAEwuS%2FcgVmj8SRAkiyVaeo6WqtPXEHFFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a106b0cccb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| twinrtb.com/beh.engine?b=53&o=1 | 172.64.153.179 | 200 OK | 0 B |
URL GET HTTP/2twinrtb.com/beh.engine?b=53&o=1 IP172.64.153.179:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjecttwinrtb.com FingerprintD0:B8:6C:33:1C:AE:41:22:E1:76:F0:E1:49:E3:37:3B:0D:81:E6:15 ValidityTue, 26 Mar 2024 12:52:20 GMT - Mon, 24 Jun 2024 12:52:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: twinrtb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=fd7f3c24-415d-4eb7-abe5-87e14117bb24; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:01 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 881a1065d9b056ba-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/img.gif?f=sync&lr=1&partner=8c7c01962f4e2c3e4ed0abe5cbafc84289b3e8521c6f0b5a27c2e73ae5e07e86 | 139.45.195.8 | 200 OK | 43 B |
URL GET HTTP/2my.rtmark.net/img.gif?f=sync&lr=1&partner=8c7c01962f4e2c3e4ed0abe5cbafc84289b3e8521c6f0b5a27c2e73ae5e07e86 IP139.45.195.8:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
File typeGIF image data, version 89a, 1 x 1 Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&lr=1&partner=8c7c01962f4e2c3e4ed0abe5cbafc84289b3e8521c6f0b5a27c2e73ae5e07e86 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:52:01 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=088058c0894d4b5ef21617e7e4cfa3a5; expires=Sat, 10 May 2025 12:52:01 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| pentalime.com/beh.engine?b=53&o=1 | 172.66.43.68 | 200 OK | 0 B |
URL GET HTTP/2pentalime.com/beh.engine?b=53&o=1 IP172.66.43.68:443
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerGoogle Trust Services LLC Subjectpentalime.com Fingerprint26:DC:9A:01:C3:EB:06:14:52:D7:73:71:10:1D:14:90:D6:08:F5:C9 ValidityThu, 14 Mar 2024 21:34:14 GMT - Wed, 12 Jun 2024 21:34:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beh.engine?b=53&o=1 HTTP/1.1
Host: pentalime.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-length: 0
cache-control: no-cache, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
IUID=5b2f43e1-da51-4e53-bd51-ad93dde9cb61; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
ISSH=733540; path=/; SameSite=None; secure
ILMPF=#False; expires=Fri, 10-May-2024 16:52:01 GMT; path=/; SameSite=None; secure; HttpOnly
IBL=#["53"]; expires=Wed, 10-May-2034 12:52:01 GMT; path=/; SameSite=None; secure
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3JGaJBGGV53Wta2fPmX%2BNbg9eMzA3b0TOFW30OihtEoMNRExAaANYtrOxYKMGG%2BVA0k7Ju0jGBmb8D5L4M3TxEkEa9QZ0HOxjajBBfPpHCIJ89RruOMPrN0eyf1lUOc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a1065d93c0b31-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bigstoreminigames.space/bnr/4/dcb/ae1864/dcbae1864ded8fa87c3116458d0bd98d.jpg | 0.0.0.0 | | 0 B |
URL GET bigstoreminigames.space/bnr/4/dcb/ae1864/dcbae1864ded8fa87c3116458d0bd98d.jpg IP0.0.0.0:0
Requested byhttps://bigamybigot.space/iframe/5aa68ab8700?ag_custom_domain=faptitans.com&time=135304968763.4375&xapp=faptitans&xuid=153689509 CertificateIssuerLet's Encrypt Subjectbigstoreminigames.space Fingerprint95:FE:47:6D:B5:53:60:39:97:F1:99:25:7C:50:80:7E:BD:62:59:8B ValiditySat, 20 Apr 2024 16:24:19 GMT - Fri, 19 Jul 2024 16:24:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bnr/4/dcb/ae1864/dcbae1864ded8fa87c3116458d0bd98d.jpg HTTP/1.1
Host: bigstoreminigames.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bigamybigot.space/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:52:01 GMT
content-type: text/plain; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=31536000
x-cache-status: HIT
content-encoding: gzip
cf-cache-status: HIT
age: 78121
last-modified: Thu, 09 May 2024 15:10:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8dum1kocIcinSVW7nJ4IrUr6am3gsiQsKMldnxKiNKezVchSSTBW86BaFZ85i4x6kTfYCSBfxpFnppZ3L4bWo%2ByMkYfLDUIwtekSWgZgrlAgfpc5u4K1HugL%2BWy6zwyAL9rxp22px%2B3KKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a10623d0f56ba-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|