Report - www.astrocom-electronics.com/Astrocom/contact-us.html

Report Overview

Submitted URL
www.astrocom-electronics.com/Astrocom/contact-us.html
IP
104.21.24.16
ASN
#13335 CLOUDFLARENET
Submitted
2023-01-30 02:04:27
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
sm.rtb.mts.ru	27154	2019-03-26T15:10:01Z	2023-03-13T08:33:52Z	838 B	1.0 kB	217.66.147.41
ssp.bestssp.com	90974	2017-06-10T10:55:20Z	2023-03-13T06:54:27Z	438 B	361 B	185.147.80.35
cs.agency2.ru	unknown	2022-04-29T16:24:02Z	2023-03-13T08:33:52Z	413 B	721 B	23.111.107.44
ssp.bidvol.com	31817	2020-02-22T13:37:29Z	2023-03-13T08:33:52Z	398 B	631 B	65.109.65.188
a.utraff.com	39874	2019-02-27T11:01:37Z	2023-03-13T08:33:52Z	380 B	1.1 kB	104.21.59.66
px.adhigh.net	10272	2013-01-03T22:02:08Z	2023-03-13T06:54:23Z	848 B	1.0 kB	193.232.150.69
sync.upravel.com	28097	2017-05-29T11:13:46Z	2023-03-13T08:33:52Z	510 B	840 B	148.251.78.49
ocsp.usertrust.com	899	2012-05-21T17:43:18Z	2023-03-13T08:38:38Z	342 B	1.0 kB	172.64.155.188
s.uuidksinc.net	3423	2015-07-20T14:00:35Z	2023-03-13T05:57:41Z	424 B	322 B	31.220.27.155
sync.1dmp.io	10017	2016-02-09T12:52:58Z	2023-03-13T08:33:52Z	502 B	95 B	78.46.100.125
acint.net	22962	2014-02-14T22:23:16Z	2023-03-13T08:33:52Z	2.7 kB	780 B	193.3.184.137
nr.bidderstack.com	352019	2019-02-11T15:43:50Z	2023-03-13T08:33:52Z	421 B	222 B	23.88.12.14
67d9919c-a042-11ed-a1c4-002590c82437.n4.sync.bumlam.com	unknown			488 B	165 B	188.120.241.43
ocsp.godaddy.com	698	2012-05-20T21:28:57Z	2023-03-13T05:12:19Z	680 B	4.6 kB	192.124.249.22
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
ocsp2.globalsign.com	1544	2012-05-23T20:10:04Z	2023-03-13T05:14:17Z	357 B	1.9 kB	104.18.21.226
ad.adriver.ru	19548	2012-08-31T19:10:27Z	2023-03-13T06:54:23Z	875 B	1.4 kB	195.209.108.47
an.yandex.ru	2577	2017-01-30T06:11:51Z	2023-03-03T18:27:36Z	856 B	1.1 kB	213.180.204.90
www.astrocom-electronics.com	unknown	2015-01-11T17:05:24Z	2023-01-16T05:59:50Z	18 kB	162 kB	172.67.216.74
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	59 kB	34.120.237.76
pix.bumlam.com	92002	2022-03-29T11:19:43Z	2023-03-13T08:33:52Z	921 B	1.4 kB	31.172.81.159
ssp.adriver.ru	12439	2014-01-10T14:39:33Z	2023-03-13T08:33:52Z	881 B	376 B	81.222.128.215
ssp-rtb.sape.ru	31166	2016-02-02T18:01:03Z	2023-03-13T08:33:52Z	447 B	773 B	193.3.184.213
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.161.147.150
ut.rktch.com	41215	2018-06-04T12:29:18Z	2023-02-13T13:41:38Z	423 B	593 B	89.108.97.2
match.new-programmatic.com	33613	2020-02-18T21:50:06Z	2023-03-13T08:33:52Z	434 B	213 B	217.65.2.150
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	686 B	1.4 kB	142.250.74.163
tag.digitaltarget.ru	98193	2015-07-21T16:24:58Z	2023-03-13T08:33:52Z	745 B	19 kB	185.15.175.158
sync.adkernel.com	4993	2017-04-19T11:25:22Z	2023-03-13T05:36:44Z	469 B	190 B	77.245.57.72
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	7.8 kB	20 kB	23.36.77.32
sape-sync.rutarget.ru	173587	2018-08-07T16:11:47Z	2023-03-13T08:33:52Z	380 B	409 B	45.9.24.193
adlmerge.com	146521	2017-04-06T09:10:27Z	2023-02-26T22:31:40Z	422 B	129 B	95.211.66.35
sync.bumlam.com	3243	2015-08-10T23:04:25Z	2023-03-13T08:33:52Z	1.4 kB	1.9 kB	31.172.81.159
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	2.5 kB	12 kB	104.18.21.226
sync.dmp.otm-r.com	19534	2017-02-03T08:19:51Z	2023-03-13T08:33:52Z	419 B	134 B	148.251.9.22
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	1.7 kB	4.8 kB	172.64.155.188
cm.g.doubleclick.net	202	2012-05-22T11:58:28Z	2023-03-13T08:33:33Z	447 B	541 B	142.250.74.162
x01.aidata.io	12188	2016-03-31T17:36:46Z	2023-03-13T06:54:15Z	865 B	1.3 kB	89.108.119.28
dmg.digitaltarget.ru	21471	2015-04-23T16:50:51Z	2023-03-13T06:26:03Z	2.8 kB	3.3 kB	185.15.175.148
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
sync.adspend.space	unknown	2022-10-20T08:12:42Z	2023-03-13T08:33:52Z	954 B	993 B	212.76.129.183
ad.mail.ru	7643	2012-06-22T21:38:09Z	2023-03-13T09:01:54Z	412 B	756 B	95.163.41.56
stat.adlabs.ru	200922	2012-07-23T17:58:30Z	2023-02-13T00:04:16Z	424 B	191 B	109.248.237.36
dm-eu.hybrid.ai	28847	2021-01-25T12:48:59Z	2023-03-13T06:16:11Z	419 B	528 B	37.18.103.16
mediatoday.ru	136083	2013-05-20T22:53:32Z	2023-03-10T17:03:18Z	423 B	521 B	139.45.228.111
exchange.buzzoola.com	18389	2014-10-17T17:20:27Z	2023-03-13T08:33:52Z	483 B	382 B	94.130.13.220
ads.adlook.me	43352	2018-11-28T13:50:19Z	2023-03-13T08:33:52Z	442 B	368 B	5.200.44.122
0100007fa225d763c80c8d5f0241861f-sp.ops.beeline.ru	unknown			449 B	828 B	37.9.245.57
dmp.gotechnology.io	48839	2019-06-17T18:08:58Z	2023-02-25T12:17:28Z	875 B	928 B	167.235.32.7
www.acint.net	29072	2014-02-14T22:23:16Z	2023-03-13T08:33:52Z	21 kB	35 kB	193.3.184.137
ads.betweendigital.com	1571	2012-10-30T06:08:04Z	2023-03-13T06:54:29Z	2.8 kB	3.6 kB	188.42.34.64
redirect.frontend.weborama.fr	8348	2017-05-04T17:00:27Z	2023-03-13T06:54:25Z	995 B	1.4 kB	35.190.24.218
sync.republer.com	45392	2015-04-29T13:49:27Z	2023-03-05T23:18:18Z	386 B	133 B	23.88.82.46

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-30	medium	www.astrocom-electronics.com/Astrocom/contact-us.html	Malware
2023-01-30	medium	www.astrocom-electronics.com/plugins/system/jceutilities/js/jceutilities.js?v=224	Malware
2023-01-30	medium	www.astrocom-electronics.com/media/system/js/caption.js	Malware
2023-01-30	medium	www.astrocom-electronics.com/plugins/system/mtupgrade/mootools.js	Malware
2023-01-30	medium	www.astrocom-electronics.com/modules/mod_rokslideshow/tmpl/rokslideshow.js	Malware
2023-01-30	medium	www.astrocom-electronics.com/modules/mod_rokvirtuemart_categories/js/rokvm_categories.js	Malware
2023-01-30	medium	www.astrocom-electronics.com/plugins/system/pc_includes/ajax_1.2.js	Malware
2023-01-30	medium	www.astrocom-electronics.com/modules/mod_accordionmenu/assets/accordionmenu.js	Malware
2023-01-30	medium	www.astrocom-electronics.com//templates/astrocom/css/rokajaxsearch.css-disabled	Malware
2023-01-30	medium	www.astrocom-electronics.com/modules/mod_rokajaxsearch/js/rokajaxsearch.js	Malware
2023-01-30	medium	www.astrocom-electronics.com/templates/astrocom/js/rokutils.js	Malware
2023-01-30	medium	www.astrocom-electronics.com/components/com_virtuemart/themes/vm_mynxx/theme.js	Malware
2023-01-30	medium	www.astrocom-electronics.com/plugins/system/jceutilities/themes/standard/popup.html	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (30)

	URL	Size	First Seen	Last Seen
	www.astrocom-electronics.com/plugins/system/jceutilities/js/jceutilities.js?v=224	28 kB	2023-03-13	2023-11-07
Pretty URL www.astrocom-electronics.com/plugins/system/jceutilities/js/jceutilities.js?v=224 IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:27:17 Last Seen2023-11-07 15:55:50 Times Seen7 Hash 708ab0d831bbaeeff5e23626fb0843d8 fa52acdaea48580ace43c5c560d8c145567554e1 b2734cce44e6b6b83c4392814dec3080579b0035971e639c2a870fd4a84843fc Loading...

	www.acint.net/oci.js?t=1675044268083	32 kB	2023-03-12	2024-04-19
Pretty URL www.acint.net/oci.js?t=1675044268083 IP 193.3.184.137 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:09:04 Last Seen2024-04-19 15:14:02 Times Seen2030 Hash c3fa5133b6899a2abb39fb79ed94300f dc1d5c75420b38cd7509a783ed09345d0ff78ac4 66b141eb9ae44c86efc510844a71cf208c02d02abe03af3a7d8cc26736d3e19c Loading...

	www.acint.net/mc/?dp=10&tc=1	199 B	2023-03-13	2023-03-13
Pretty URL www.acint.net/mc/?dp=10&tc=1 IP 193.3.184.137 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:30 Last Seen2023-03-13 11:54:30 Times Seen1 Hash 08bc1b47d20e807985be6ee0bc853605 c4adbc09db88b09e5563aaad977e1dff5099613b abb6e25102d67df977e9fa6155d0b1dbabe6452c485a809e87cc4f5db9cd0e89 Loading...

	www.astrocom-electronics.com/plugins/system/pc_includes/ajax_1.2.js	8.2 kB	2023-03-08	2024-02-28
Pretty URL www.astrocom-electronics.com/plugins/system/pc_includes/ajax_1.2.js IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:46:11 Last Seen2024-02-28 21:45:38 Times Seen10 Hash 3841675234dd17c58d5c0f09f7d33314 fe09e7dd40e698b42d6d61fb0415fa8bdf76ab62 4819b93694a49685648389c8a7b8e4c32e249a8276382d80862b01737ca0b782 Loading...

	www.astrocom-electronics.com/modules/mod_accordionmenu/assets/accordionmenu.js	3.9 kB	2023-03-13	2023-03-13
Pretty URL www.astrocom-electronics.com/modules/mod_accordionmenu/assets/accordionmenu.js IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:30 Last Seen2023-03-13 11:54:30 Times Seen1 Hash 8af4084cc6e22855a19595cf2d24bed9 53a9d797d0e9a4074d79d1ac2c76f8d0a088afed 2b65bbbf63c0b120bf9a04843948c1f90c45b59421c6e0da9a4889f1dbb101d5 Loading...

	www.astrocom-electronics.com/Astrocom/contact-us.html	250 B	2023-03-07	2024-04-19
Pretty URL www.astrocom-electronics.com/Astrocom/contact-us.html IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:22 Last Seen2024-04-19 13:21:55 Times Seen612 Hash 537357420024d824760d7686fbdf31fe 5e14660b667fdc602c82300ccf3253afc242e4bb ca2f5769fc415a62dd2cd8af83b9b64604715e602f6de4c7741f9992a7003a29 Loading...

	tag.digitaltarget.ru/adcm.js	3.1 kB	2023-03-07	2023-05-06
Pretty URL tag.digitaltarget.ru/adcm.js IP 185.15.175.158 ASN #43226 SafeData LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-05-06 00:46:41 Times Seen299 Hash e7097284185069f52fc736bcd50cda13 1cdfdf2d869841202079ddf91e0a00a8610812e6 40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80 Loading...

	www.astrocom-electronics.com/Astrocom/contact-us.html	809 B	2023-03-13	2023-03-13
Pretty URL www.astrocom-electronics.com/Astrocom/contact-us.html IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:30 Last Seen2023-03-13 11:54:30 Times Seen1 Hash 909d1c326b9e98fe12b160f60bc52065 c3c4992aae46da0287fcf36ee1f09a659e7f1a3b e43624d8e17de21728223ed1d2bb65ee2ba8d5473c8859007fa07c32dc2fdd6c Loading...

	www.acint.net/aci.js	24 kB	2023-03-12	2023-03-13
Pretty URL www.acint.net/aci.js IP 193.3.184.137 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:09:04 Last Seen2023-03-13 14:56:48 Times Seen1 Hash 2a3b4729cdc781aa2e88c6c401334a07 18ad3734a2be60b76759c16234ac977446aad8b5 10e905d0c5be1b88a72a3259db9500b7d3e2f5bc3787b7a36cf3d8dfb572dd7c Loading...

	www.astrocom-electronics.com/plugins/system/mtupgrade/mootools.js	119 kB	2023-03-08	2024-01-04
Pretty URL www.astrocom-electronics.com/plugins/system/mtupgrade/mootools.js IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:49:30 Last Seen2024-01-04 15:29:28 Times Seen53 Hash e17b0f8a7578b66167e18b668d7c7ed7 1fcf6f1505aa30892f49659c4ecff346aa4dd21b ec3958f5da24f5871e31de77372f4ceaf80480a6dee1d2772e3f6377868be6a4 Loading...

	www.astrocom-electronics.com/media/system/js/caption.js	2.0 kB	2023-03-07	2024-04-18
Pretty URL www.astrocom-electronics.com/media/system/js/caption.js IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:31 Last Seen2024-04-18 14:18:43 Times Seen379 Hash 38ba23053bea8a521cd624b6ad88e475 a4cd217db7e1919b2fb5a0d8150b29ed3ab31dcb 751c93befc1f1c6dbe3c6d302c25cbeee14a405b5a34b25f5b7366fb599f7c78 Loading...

	www.astrocom-electronics.com/modules/mod_rokvirtuemart_categories/js/rokvm_categories.js	1.7 kB	2023-03-13	2023-03-13
Pretty URL www.astrocom-electronics.com/modules/mod_rokvirtuemart_categories/js/rokvm_categories.js IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:30 Last Seen2023-03-13 11:54:30 Times Seen1 Hash 5d3d60aa078e12757185b27a74151c50 ff553648e3f4bb16a91de73b3ce1c68850bcebf5 09f381bd9a903b544b7f868d5237e566a138d26011dd0240fad8ac789064c3f4 Loading...

	www.astrocom-electronics.com/components/com_virtuemart/themes/vm_mynxx/theme.js	7.5 kB	2023-03-13	2023-03-13
Pretty URL www.astrocom-electronics.com/components/com_virtuemart/themes/vm_mynxx/theme.js IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash d61e1c726756fa6a5421bb1232d7b882 92d8d46893ab39c27bdb3f48082cd846a4a8ba81 171931907aaa6c03d3aabc91baf2fb719d694a140ab6cb2349a6ca99a9584c98 Loading...

	www.astrocom-electronics.com/Astrocom/contact-us.html	329 B	2023-03-13	2023-03-13
Pretty URL www.astrocom-electronics.com/Astrocom/contact-us.html IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash 723a0ef595b50e9dc7ba890a81d55b7b 2dfeaa95686970c0b9a2f5da65ce21b86c24d2cf dccda5eae644e947f18874cb4e483dcab99ba48cd6c2bc15706411be18af91be Loading...

	www.astrocom-electronics.com/modules/mod_rokajaxsearch/js/rokajaxsearch.js	10 kB	2023-03-13	2023-03-13
Pretty URL www.astrocom-electronics.com/modules/mod_rokajaxsearch/js/rokajaxsearch.js IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash be432f0de290888899425a8ce4efb9d0 25f1ce868c726edcbaa162b00eafaff9f0a7a756 2374b10bef4a71949e6313a83c02344ecff604f732c761ac076954e51021ddce Loading...

	www.astrocom-electronics.com/Astrocom/contact-us.html	61 B	2023-03-13	2023-03-13
Pretty URL www.astrocom-electronics.com/Astrocom/contact-us.html IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash e78cfe2aa52dd0514929aeab0743cab2 309fd7004c6a6396d8b5804b95f3f8f80bb19ee4 9c9dfb9ff58afe1cd9b201e6dad60b648971a08c036b30f302614f32b9c50dc7 Loading...

	www.astrocom-electronics.com/templates/astrocom/js/rokutils.js	3.2 kB	2023-03-13	2023-03-13
Pretty URL www.astrocom-electronics.com/templates/astrocom/js/rokutils.js IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash f5ee20c506abdab59cf3413165aa8725 dd5e69cd2cd63697ed9236178cb07ee41db6e322 bb2b7bc6b62f9f6e7a9ea986143452fee6ed179768df3495f1214beb011b6df9 Loading...

	www.astrocom-electronics.com/plugins/system/jceutilities/js/mediaobject.js?v=224	3.9 kB	2023-03-13	2023-11-03
Pretty URL www.astrocom-electronics.com/plugins/system/jceutilities/js/mediaobject.js?v=224 IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:31 Last Seen2023-11-03 09:59:55 Times Seen5 Hash f16a19969689f368d17646560f1b9ed8 3cdec1b601cbfd404376cfadae4392a601a39ca3 34884e68833db7f23f083bf93861f6023cbdeec2d410e97a6361ffbe6b916cab Loading...

	www.astrocom-electronics.com/modules/mod_rokslideshow/tmpl/rokslideshow.js	7.9 kB	2023-03-13	2023-03-29
Pretty URL www.astrocom-electronics.com/modules/mod_rokslideshow/tmpl/rokslideshow.js IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-29 22:31:23 Times Seen2 Hash 5d8f18cd3811e25fde84bfe3a4e062b9 0dc4ab950cba279d0f01fda5d11c65886893cf7a ea832fc5dafc535816322b05f1f42396494e4781b8d5e78fc0692e1191a3f4bd Loading...

	www.astrocom-electronics.com/Astrocom/contact-us.html	1.5 kB	2023-03-13	2023-03-13
Pretty URL www.astrocom-electronics.com/Astrocom/contact-us.html IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash 6212a726fa172b21580724358ab3d5c5 8508dae3f477f25238716bfe719c82d353cc1234 0ccde3d49eae14784db43f680cded2fb3d064b2a9fa1babb38f7c256d6bcf279 Loading...

	www.astrocom-electronics.com/Astrocom/contact-us.html	121 B	2023-03-13	2023-03-13
Pretty URL www.astrocom-electronics.com/Astrocom/contact-us.html IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash c639a8c5546b500b021a254e8e065960 4b2a9bd83f631145e76940e1efd92a2d8199467b d606d7b56602fda5ea9901ddcee40ce5d71e71451645e56f8f27c3e7b7a8644b Loading...

	www.astrocom-electronics.com/Astrocom/contact-us.html	785 B	2023-03-13	2023-03-13
Pretty URL www.astrocom-electronics.com/Astrocom/contact-us.html IP 172.67.216.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash d299eeeb7682a45877739f01eaa6be04 dada622543e5138e05910eac7551f2fb93e100fc 8dc1bf30db8d608e0975355814a7d6c33bd13285d42463802b611eacb2c0b278 Loading...

	tag.digitaltarget.ru/processor.js?i=758636582348149	16 kB	2023-03-09	2023-05-06
Pretty URL tag.digitaltarget.ru/processor.js?i=758636582348149 IP 185.15.175.158 ASN #43226 SafeData LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:01:11 Last Seen2023-05-06 00:46:42 Times Seen346 Hash 736e2fb1da94f3277e3f931048c1b9f3 196387db95a17da825b629de3542eff901b09905 4569d4e1b0e52b6316681f7312674f43ecb2b72ea8ab4adb2375e3686862c7dc Loading...

		Size	First Seen	Last Seen
	#1 Eval - 016e7cae4d56062be7d4e5a96ce7cc4f	16 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash 016e7cae4d56062be7d4e5a96ce7cc4f 61538c2dde1cb2b74fcc635f04ebb9dbe07979ca c2b4b03d430a9aa2bee6f3b085d7d779b3d88fda8d716f3fda54a09e9705534b Loading...

	#2 Eval - e5e0df3c2d505988e60aa03fe9da061c	3.5 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash e5e0df3c2d505988e60aa03fe9da061c f30465e376719cd6e7410b44a1b43ca47f3a24f7 8c59659b5cde59be4de2094be56228f253bf3f7cc979cdacac2446efe108c1d0 Loading...

	#3 Eval - f2ba4064436febbf918749a51e6f1481	11 kB	2023-03-13	2023-03-29
Pretty Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-29 22:31:23 Times Seen2 Hash f2ba4064436febbf918749a51e6f1481 fa9de71a57353bf1cb14ee91c093c291880712b2 c2d536a9deb0bc2a0eef18c52e17541e923e8bc3e81a7766947e0cdba4cc44b7 Loading...

	#4 Eval - 90134229b9887804035854ba80d48821	4.5 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash 90134229b9887804035854ba80d48821 1d6459725c52cfc3039f25bc3475f258fde059a8 73800232a39d334179b9227fd1273fed4b14e14d48abf4cd7d8b497ee5282322 Loading...

	#5 Eval - 855645d0e27043aa50c7a4379f495137	1.4 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash 855645d0e27043aa50c7a4379f495137 88a235973fa02d17315f5e312032847133c017fa ea550c0caa8ef1f5488a6ae8a553299b2f938fa908b266256d0c100281d24bff Loading...

	#6 Eval - 28ee7f71df1fbb41fe7998169c7978e2	152 B	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash 28ee7f71df1fbb41fe7998169c7978e2 2ece29f2deaef3b8577c0896202d78fa38617eda 0107e432f040eccc8f2a7ddab81242e11f622f92bfb9c08a2f73220cc2b8ad1e Loading...

	#7 Eval - 1b0adaec70426da51b637daa2e8602cf	152 B	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 11:54:31 Last Seen2023-03-13 11:54:31 Times Seen1 Hash 1b0adaec70426da51b637daa2e8602cf bd0d2b8fc40f6c40bc823f9df88ab102d2beac2b f904f16e2c6e91bbb23eee2d22d4a6e3919eb1e17381cd690f48eeb9399b9fae Loading...

HTTP Transactions (177)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14254
Expires: Mon, 30 Jan 2023 06:01:50 GMT
Date: Mon, 30 Jan 2023 02:04:16 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4123
Expires: Mon, 30 Jan 2023 03:12:59 GMT
Date: Mon, 30 Jan 2023 02:04:16 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11754
Expires: Mon, 30 Jan 2023 05:20:10 GMT
Date: Mon, 30 Jan 2023 02:04:16 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 01:43:10 GMT
content-type: application/json
age: 1266
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: gYZUGAMxU9pKL+RL3tGS7cfH6QCZMQdRdlhxRESsQycPv0aUavb+54SGh1Mg2kmoREfmE7usfXE=
x-amz-request-id: 04ETNJ1Q4RQ87JPY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 01:50:33 GMT
age: 823
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 02:04:16 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.astrocom-electronics.com/Astrocom/contact-us.html

172.67.216.74

200 OK

7.0 kB

URL HTTP/1.1
www.astrocom-electronics.com/Astrocom/contact-us.html
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4216), with CRLF, CR, LF line terminators
Size
7.0 kB (7031 bytes)
Hash
24548208b8641dfad5efed0a73b7eb28
a0fc718d9a04d263047eced1f6348fe47786ea62
dd79ac88712f47bcd6042a1db84cccaff4d756e3109391bac8662234ab396016

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /Astrocom/contact-us.html HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.2.17
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6; path=/
virtuemart=e1ssgvkhotba11q7ca6vpapqp6
Last-Modified: Mon, 30 Jan 2023 02:04:16 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A1w6cX3xs%2FGbsuHhts7uecOctXeuMh1QjQ03cOMgjG%2BS4t7WQXizkswf%2B0sM0JT8H9QaxSQF5loZskGTGvLgGZ%2FT6rrcd71Wk7dzrpBRptE7JSU91qtfrBbw8pBa13OG6HUs6Z2eXxLiI8o9%2F06M"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2c7efa2fab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 01:41:41 GMT
age: 1355
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4626
Expires: Mon, 30 Jan 2023 03:21:23 GMT
Date: Mon, 30 Jan 2023 02:04:17 GMT
Connection: keep-alive

www.astrocom-electronics.com/plugins/system/jceutilities/themes/standard/css/style.css?version=224

172.67.216.74

200 OK

538 B

URL HTTP/1.1
www.astrocom-electronics.com/plugins/system/jceutilities/themes/standard/css/style.css?version=224
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
538 B (538 bytes)
Hash
60620d03b9f65bad75282046d4001efe
79617f1c8d3b5b7de95e562856b68ab3749288ba
afc24dc89a0579733afb765453c2b09e8cc29a7568af7acd5da851219632764f

HTTP Headers

GET /plugins/system/jceutilities/themes/standard/css/style.css?version=224 HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: text/css
Content-Length: 538
Connection: keep-alive
Last-Modified: Sat, 19 Dec 2009 11:49:52 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LHLf40drP2js0iJQ2E3Kz1pklBhfzKwxLk4yfFZzrqyZnflT4CxmUwmKN2v%2FqzKmpW2oCHf374hGr3ifql2pimkbtLIy2BWVookZ7G62AyWIALhJx723kxrrPNgXV%2FNQ9Zpy5WmzOk6b%2F%2FcCKV%2BK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2cd9b83b51d-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/plugins/system/jceutilities/js/mediaobject.js?v=224

172.67.216.74

200 OK

1.5 kB

URL HTTP/1.1
www.astrocom-electronics.com/plugins/system/jceutilities/js/mediaobject.js?v=224
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1509 bytes)
Hash
bc671459fc37cd52b5d5a54e13e74e88
2897d21c23cd712d6ef881819f37fc5ae7ccf850
689ab17c1d5bea2eabdf09800103b1b39eba458f6ad48c3746fdce019cb1c1ea

HTTP Headers

GET /plugins/system/jceutilities/js/mediaobject.js?v=224 HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: application/javascript
Content-Length: 1509
Connection: keep-alive
Last-Modified: Fri, 18 Dec 2009 12:33:47 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9H%2FMnqZE8qPR98JVYRMgGWSCzL0SHU6wgj4Y3JV5wPZvCme8v4hGunY120Hbaese1x7WlttmRP5SOYLxP5QMxE3FkkgNbx2XggPRA8tEXF1sva9r0zH2i0IbmeSNYGFKxQboHvf9MnWh2x9LsYSm"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2cd9b7cb4eb-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/plugins/system/jceutilities/css/jceutilities.css?v=224

172.67.216.74

200 OK

686 B

URL HTTP/1.1
www.astrocom-electronics.com/plugins/system/jceutilities/css/jceutilities.css?v=224
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
686 B (686 bytes)
Hash
72af361b5ddd53cdbbbe58d50753bb91
1ba7443e3798ceaf692567480dcb8aace7fdde27
a2d7268f9f01d4d4175982bfed0f971aadd2808e1536bde8ea6ec813cb6b33b9

HTTP Headers

GET /plugins/system/jceutilities/css/jceutilities.css?v=224 HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: text/css
Content-Length: 686
Connection: keep-alive
Last-Modified: Fri, 18 Dec 2009 12:33:47 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MOjR4rn8U8JnQCcaGgUgsiRlUZAlXoMBQgKLs8xH8PMTNPOHM%2FjMwkd%2FBfjiM1ScW3ytV562MFAnOw03Pv97JdJAw0X8MqfKinHzk2EzyM%2B%2B62MxY9tI%2BT9hYT%2FGN2VmBXZOaQUxXC82cruE%2FUlL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2cd986ffab4-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/plugins/system/jceutilities/js/jceutilities.js?v=224

172.67.216.74

200 OK

8.2 kB

URL HTTP/1.1
www.astrocom-electronics.com/plugins/system/jceutilities/js/jceutilities.js?v=224
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (27810), with no line terminators
Size
8.2 kB (8223 bytes)
Hash
086ae5e1427a35840ebf62e301f4a8b5
8b73479da66a24adb336eba31b9db062093c38e0
a59e5175964dde568c6f031ee62d3991b7401dd9e06d920c3b8b4b47b2bf9ebd

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /plugins/system/jceutilities/js/jceutilities.js?v=224 HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: application/javascript
Content-Length: 8223
Connection: keep-alive
Last-Modified: Fri, 18 Dec 2009 12:33:47 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Jq7GYqR3PFszjnvElmj%2BNCRLL%2Bo3XWpFXkdElbrKbL2m%2B30ivRxvBO%2Fgkv8d%2FZAa3qVPaqpNqGe5dyKqwhdN4jRcooWdE7MIgnAykM%2BLPJL3hPlCO1uMl1VitGKKRIKn1uY10GylXLuQfuks3Nq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2cd99071bfa-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/media/system/js/caption.js

172.67.216.74

200 OK

921 B

URL HTTP/1.1
www.astrocom-electronics.com/media/system/js/caption.js
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
921 B (921 bytes)
Hash
7355f71e25b2a3a7b95f0830beb8dad4
1566a97835f1c13aef3b232bfdcbb39a3543ac54
5c344999542d687a42c4daf3961b294eb94f0eb7f6df40f58b65287514a1e598

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/system/js/caption.js HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: application/javascript
Content-Length: 921
Connection: keep-alive
Last-Modified: Sun, 21 Feb 2010 12:32:22 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X7aU7h0pNqtbro28%2BkPLgMlDkc3Ir1bJOcLPYgHUfocv5F4xAUjKlpr7CCSkUVvHIdcgyTc0Dsc%2BZdI8RSH0MVHbB8SuiMLD51onH2NdkUADufnw00%2ByeAEqMp1LvsqVZsdsDgykb2cK8XAMAOh3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2cdaf34b52d-OSL
alt-svc: h2=":443"; ma=60

push.services.mozilla.com/

35.161.147.150

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.147.150:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FcMG4vZRLJhwV+lS0IN/jg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YexBM1Bm5QwnOzrG8Pq3lD2ScwQ=

www.astrocom-electronics.com/plugins/system/mtupgrade/mootools.js

172.67.216.74

200 OK

34 kB

URL HTTP/1.1
www.astrocom-electronics.com/plugins/system/mtupgrade/mootools.js
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (34027 bytes)
Hash
c5cabef7ff58328d45e7a1b9d10a1d12
8fa8bc54c329e29fa7575094c51fbfb8f7bc5964
90b61858d520ce73f6b9d289903344f4acce63a9208be2c7a599e255d656d97e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /plugins/system/mtupgrade/mootools.js HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: application/javascript
Content-Length: 34027
Connection: keep-alive
Last-Modified: Mon, 04 Apr 2011 18:46:26 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HgqT%2Br6FxqzqesEOMm1MLsSnscO2ibGyel7uQWPbxQnSRFyxiNhaVUlt1Dzri56e9%2Bvvm77Onou44in%2Fb2wdUXyg4Yg3lOTVT4iurI4ZR%2BmyaCBOJQI1z94M2Cj%2FTTy3892J8OL7EyYeq7JU%2BYR4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2cd9d1e0afa-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/modules/mod_rokslideshow/tmpl/rokslideshow.js

172.67.216.74

200 OK

4.0 kB

URL HTTP/1.1
www.astrocom-electronics.com/modules/mod_rokslideshow/tmpl/rokslideshow.js
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (7659)
Size
4.0 kB (3971 bytes)
Hash
4e99297abf35effbee6dbd2bdb12e5f7
e76b7b66bbac91bb056988ff6431631c7742b2f8
f5f6be16b8080070437e566cc9eb4425c2f9709a6cea6137c4db8e83bd33df12

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /modules/mod_rokslideshow/tmpl/rokslideshow.js HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: application/javascript
Content-Length: 3971
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:12:27 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m4tHPgVyLoEK7VM6ZYywkJ2RPgp%2Fv9YuxbYyG3s1x8JLulqx6ZolXXrfbj0V3mx0oQ3hCodpyDcXYQ%2FUpVrwghcu%2BG%2FEhMTWo8HLHBWgMWPAoGe0XjAWKUHgpoMFK2cZs1QXwzQsV45UBcKK4lx1"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2cf58b0fab4-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/modules/mod_rokvirtuemart_categories/js/rokvm_categories.js

172.67.216.74

200 OK

984 B

URL HTTP/1.1
www.astrocom-electronics.com/modules/mod_rokvirtuemart_categories/js/rokvm_categories.js
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1404)
Size
984 B (984 bytes)
Hash
314802167ac69dd089e4e813b8d8bfcf
95fb2378dca4978a967f74413059b0d764838418
fb9f9625df541702b99f110296cb28b8003ef50b1efbc8e5e27fbbfd3220d9de

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /modules/mod_rokvirtuemart_categories/js/rokvm_categories.js HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: application/javascript
Content-Length: 984
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:12:26 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GGFY2fV9VNTIh%2BkqYAu901VcsGBdba6vEe3nEmoZYqxJ10RwZLmdTy57HHfN%2FgIZxll2QQezjadPcC4FB5NbvE6Co6T9cgITXQXjZGLxOvUXCK3JQ37AxDtkHhnPPH81sZUuquU6aBtyi%2BiDXWS7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2cf4c3db51d-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/plugins/system/pc_includes/ajax_1.2.js

172.67.216.74

200 OK

2.6 kB

URL HTTP/1.1
www.astrocom-electronics.com/plugins/system/pc_includes/ajax_1.2.js
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (501), with CRLF line terminators
Size
2.6 kB (2630 bytes)
Hash
7c5f0c731a2f49f9cc60904e8ae5e8d0
49410f9c0f857416aef77e80373f1ea7aee56a39
02097cb068374e9cde2797602aa07f93443e083ce9031b6720feed688300b699

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /plugins/system/pc_includes/ajax_1.2.js HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: application/javascript
Content-Length: 2630
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:12:03 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DjnhEGVnmzDrIWXLZ%2BeD237fjcjPvWvKUmEt%2BoALtA2unEhjQfYNfRVFiI1oh8X%2FNBldsPL9orV5KybpvhejcrUqL1NL2NLVsqqW%2B%2FYk%2BAXkaWx3hHytyrStYfPuB7A94P7KDLLjNOT3WhxiSz2%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2cf59991bfa-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/components/com_jomcomment/style.css

172.67.216.74

200 OK

1.8 kB

URL HTTP/1.1
www.astrocom-electronics.com/components/com_jomcomment/style.css
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
1.8 kB (1787 bytes)
Hash
22670e31e1e08273fd8ae6df40aa07d2
d363150dd7393c95f7e22a87f3926401bbd6eb6a
2c697f6780084810c2d6cbb87314f148c10fb99e00bdc3963b70f69726fcb0fe

HTTP Headers

GET /components/com_jomcomment/style.css HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: text/css
Content-Length: 1787
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:13:45 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sh5ca%2Fo3PSPpHcpB7iFPcVNTyXLLOJRkmhM7gbu10eiuJ%2FtUmF3wmAUXNY0fLwDZ0u065sKEC13g3OEHTHCpsp%2FvxX7zr9dVMmrW9tR%2B3Tux5v9tT8%2B2IQ4gNFp7D%2F5kk877V6Z8GLrZdVkd2oax"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2cf5f8cb52d-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/modules/mod_accordionmenu/assets/accordionmenu.js

172.67.216.74

200 OK

1.2 kB

URL HTTP/1.1
www.astrocom-electronics.com/modules/mod_accordionmenu/assets/accordionmenu.js
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.2 kB (1216 bytes)
Hash
a05a741c56ad1e4a9c822a6a8f18f48f
4950e6e12ea250050e3dc19ca192ad5452f04bfe
3a4104c73ea91c54caea7fcfebcc588fa970c024291c1d03641ed64e5f2e07b6

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /modules/mod_accordionmenu/assets/accordionmenu.js HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: application/javascript
Content-Length: 1216
Connection: keep-alive
Last-Modified: Mon, 28 Dec 2009 07:38:35 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gHIKVLsVPckrkbRJ6wUtn8ByDcNAk5h515pkjlvX%2B8oYLSTrVm9xK4zTVsoXjWm9lQb3Mo2kN%2FYYL7lxwzUjCbys2IqmWxfd0Xx2LAyvZhXUHJPETpvga2SbHHKHnE77xFhV977%2FaTJWNLSZTuCm"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2cf4c0fb4eb-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/components/com_jomcomment/templates/astrocom/comment_style.css

172.67.216.74

200 OK

1.6 kB

URL HTTP/1.1
www.astrocom-electronics.com/components/com_jomcomment/templates/astrocom/comment_style.css
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.6 kB (1638 bytes)
Hash
824af368fad3805c2ef0a969e9107f0b
9023813c5ec9e04801dd43a37622d04caaa84744
112762cf610a370c8a32c50057cd9672fd059b3a4bebe023399753ca14db5a91

HTTP Headers

GET /components/com_jomcomment/templates/astrocom/comment_style.css HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: text/css
Content-Length: 1638
Connection: keep-alive
Last-Modified: Mon, 21 Dec 2009 08:14:49 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T0%2BEUPwES2v8pljAwlr3lkYO39B%2Bb%2Bk%2BzsFjmVP8QGze%2BqndX2MZ6FjjqUbcOPsNJkXgv28BCcHAy6uvh%2Fphn6ZrsmwAjYTYqUKa%2FvfotP4AJgqW3SYX4dXJEsClcYgKmdeRTX1tA1zJ27xvGF6Z"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d02dbd0afa-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com//templates/astrocom/css/rokajaxsearch.css-disabled

172.67.216.74

200 OK

0 B

URL HTTP/1.1
www.astrocom-electronics.com//templates/astrocom/css/rokajaxsearch.css-disabled
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET //templates/astrocom/css/rokajaxsearch.css-disabled HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Length: 0
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:12:00 GMT
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Wed, 01 Feb 2023 02:04:17 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YGeeU%2BcKg%2BV1HNq9RWFHFhCK%2FOjQ5lMwadpTe8HDHAUXnylF392Rv56P3wAFMqkvqNVPGxqfdKiEXKUXW%2BI9U6TscIfRlFRYNWDly5TfkQcjUeN1yNAvr1UkhnRsnCoPko78tJzugKu8fgbJXNtl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d0f8fbfab4-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/css/light.css

172.67.216.74

200 OK

979 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/css/light.css
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
979 B (979 bytes)
Hash
a2aa7583016d110deaa4fe549d468e47
101f694d8e3857a67fbd72234529b63b9b82ae58
bbd3925249452edb8db1867761f1df2631d6a98dc7ca06590ebc43482eed49bc

HTTP Headers

GET /templates/astrocom/css/light.css HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: text/css
Content-Length: 979
Connection: keep-alive
Last-Modified: Fri, 18 Dec 2009 10:54:10 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0vlpqSKW6cfo7j1LJKNDzpnyYSBEp3BDjN2n7clnbzYpG3mnj4p7dZ3oHzlAn3WrZIpLGf7QQMWGu60f8oJ8ARyW2ys3AXCaVnU%2FTCf58xPyG2KdxAXy1RUjXnu9e4JPfiWuJrheBldG1i28%2BWSY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d10ff4b52d-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/modules/mod_rokajaxsearch/js/rokajaxsearch.js

172.67.216.74

200 OK

3.5 kB

URL HTTP/1.1
www.astrocom-electronics.com/modules/mod_rokajaxsearch/js/rokajaxsearch.js
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (9645)
Size
3.5 kB (3546 bytes)
Hash
85f210b695fe849685ad0a12e10525d8
5135b62935cbb95d6f3806dc2a08ad43efc872b7
a6b23116baa1afc18ce9e8a7a98b5503d5d55f94e521826b0583c2c44107a5f0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /modules/mod_rokajaxsearch/js/rokajaxsearch.js HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: application/javascript
Content-Length: 3546
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:12:27 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p5ZtTmPzjl52iSKIFx4mwDhHADuzjdzUSjyJ0BUnjPgr4QNz0LRpfE5RP2RBgSP%2BDldpMNiYrnhFhwdv6WSEoeyVVVqpZ5d6kv6qrQ0DeNXnGdB0QawZs6cmZXSZJxgDJyM%2BwzDV9fTLMbxEcLRS"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d0fcd8b51d-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/css/template.css

172.67.216.74

200 OK

10 kB

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/css/template.css
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
assembler source, ASCII text
Size
10 kB (10067 bytes)
Hash
550c4b33bec191b98381e925cc45d68f
75f829bccd4aa73e0aecc00e7d5c0c6820d56638
c4b36a64fca7b751bc6e00c357a2cf4d4e410a00f1933883e1a633656db2b1c1

HTTP Headers

GET /templates/astrocom/css/template.css HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: text/css
Content-Length: 10067
Connection: keep-alive
Last-Modified: Mon, 21 Dec 2009 10:44:44 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=boq9a%2BuDCBMZntQNkRaN%2FWhiMuSkwYhbBB%2FsIq8GR7FuHdrxYk8MezG%2FHDxg1tIgtcj7F8qhJoqQVYTZCfz%2B0XE%2Fn%2BpS%2Bj4ikop65FJwheCWgfw6KNIhfL6faVYTShH79RUsufVMcUlifj6Xr8KK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d0fa231bfa-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/css/typography.css

172.67.216.74

200 OK

1.7 kB

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/css/typography.css
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (353)
Size
1.7 kB (1704 bytes)
Hash
0e314d09e649d34684beb92f579c7cb5
bdab829284f2bb2e7414055a276372f1572729a9
ce7beeacf2be1c7faed199e4f4338d2892fd90e0eff182ce332fed9920d70853

HTTP Headers

GET /templates/astrocom/css/typography.css HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: text/css
Content-Length: 1704
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:12:00 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zbY1R7ykdyeI1fTrge8Va9SP1jN%2FLtWBQ2DGqtt%2B4xDPzLcRnD3vQpg7L3ao4FA5dBgf1aOiIVVd8jNfgElWKqa9QubH4wocZI0KINiN%2B9B3uqnP492KbmJG6JQnbmx7p%2FDgs3LK51mFkTO5m5Jp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d10cbab4eb-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/css/rokmoomenu.css

172.67.216.74

200 OK

384 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/css/rokmoomenu.css
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
384 B (384 bytes)
Hash
689028f1c619f004b804aa479c7a2247
f479750ff462407f571b5cbf15011ce88e631bae
e327b7a2a016fdcab9334f1f5840697e9020436aae0442f0839406348f171c21

HTTP Headers

GET /templates/astrocom/css/rokmoomenu.css HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: text/css
Content-Length: 384
Connection: keep-alive
Last-Modified: Thu, 03 Dec 2009 12:39:54 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=52RxBhA0zxAkyZS2EpfryNIoe%2FdTXsoKBv6p2p6OPbgYxmnMpgMeg%2F84Db7QuWeudqa3%2FiuREkELrWkKVE80kWYHk1LahqHD3QDkDYd2Zoo1xv74FHXkbRUORUaYMTqQlIvDA8x3oDL3Jcgyqfsh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d1e83cb52d-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/system/css/general.css

172.67.216.74

200 OK

762 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/system/css/general.css
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
762 B (762 bytes)
Hash
11b89bfb5e70fac6fe3f47bbfbd57d64
125f015f87976d6fa90c0b5b0225889711a1a713
409162acc9e45e33ca184ca866f1f9b53d6ef899dd8cb6e686cf8fbf2acad1b4

HTTP Headers

GET /templates/system/css/general.css HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: text/css
Content-Length: 762
Connection: keep-alive
Last-Modified: Sun, 21 Feb 2010 12:32:22 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DxnujfDfXmZfWX55il8UvfoMXmbB0Dc93u4%2B8SBeBFaHisPyPAf%2FGc2yB9LWnxlA5w%2Fx0CnnBlIf1Oyk0SLFoNEgzwnhYWsV4tgDInyICp0VfzCBfErb7NlZdx2hxQ59E1EI5FWnhiwDN3xgrx5i"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d1c91afab4-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/system/css/system.css

172.67.216.74

200 OK

518 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/system/css/system.css
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
518 B (518 bytes)
Hash
9dc79dec58740b3972639ce8ace80ad6
e2ad1b838cae175e271ba211103f0afc31623a82
784d7130bcdbc345a6a63c2e3ddf0792f570980dcd8b186f83faff0219b7318a

HTTP Headers

GET /templates/system/css/system.css HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: text/css
Content-Length: 518
Connection: keep-alive
Last-Modified: Sun, 14 Jun 2009 16:35:02 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IrglUOotafDeZHtB20vYyx1Wu%2B%2B0IaprOnYf%2FFwd5gE0KEjrUcX4BM2fmBvsUNQmZX9hTw57WJHAL5xB7eypANR1H7%2FBrCTzy5ox0gCHWDs3UcuxJ9xdi2xjnvWPpP%2Fx%2BE8%2BoJUzLsgdEK5wz4Go"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d1ce2f0afa-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/components/com_virtuemart/themes/vm_mynxx/theme.css

172.67.216.74

200 OK

4.5 kB

URL HTTP/1.1
www.astrocom-electronics.com/components/com_virtuemart/themes/vm_mynxx/theme.css
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
4.5 kB (4494 bytes)
Hash
8cf5a7c4d06df1442fa5a822eeb3ebfd
26b2a0e58d9ae1789494aefba37687ab8f6d8598
91b3a982abfe9cea9d47cbe129154774c68296b29d0a00831386a620f67b334d

HTTP Headers

GET /components/com_virtuemart/themes/vm_mynxx/theme.css HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: text/css
Content-Length: 4494
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:12:58 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lhvOnxn7wGFZuszML8hBKYESSnApUjQFkbC8rtxRUtwJkZLzqcbN%2Ffo5s%2FRCqtiSoUpSS8m8x8MhHiz4uARkRrZZMdSmxeG0WxnlxuyIjRD1Zqq89wWecnif1KlffMEc7OOslunfY7O%2FizZ58P%2FE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d2ad6ab51d-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/js/rokutils.js

172.67.216.74

200 OK

1.8 kB

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/js/rokutils.js
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2952)
Size
1.8 kB (1790 bytes)
Hash
e4ec0fcab14b216dee6e7a77fb604d5e
1fa0b3236b9568efd74c61e11ffe593af0a94072
627d495d43d1835d2d11293fed2f13ff3a683541b1bf7d43f58c5c782c37f620

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /templates/astrocom/js/rokutils.js HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: application/javascript
Content-Length: 1790
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:11:56 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zF7YLLpVPT0X0dBzUbE0vZp%2BJDCsZJAYKQenE035yIsca6PiIzudIO5BIan8KveYCku31k1UbLzWFSrtgZpbPTZnLgwLTygjvOYfqdchd6%2BL9AeeD%2BuDS2nlYAG98xVBUDiYfggJUOO0Ict5zd5y"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d2bd72b4eb-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/components/com_virtuemart/themes/vm_mynxx/theme.js

172.67.216.74

200 OK

3.5 kB

URL HTTP/1.1
www.astrocom-electronics.com/components/com_virtuemart/themes/vm_mynxx/theme.js
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3387)
Size
3.5 kB (3488 bytes)
Hash
e9580528716dcab2d10a14132b597a83
11224985d7932a9b5483a08b4ec98230404703a0
c8cb3dec9e449d260d509b25a18871a4d2b7470977f2ac00ad89490a5a4e0ce5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /components/com_virtuemart/themes/vm_mynxx/theme.js HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:17 GMT
Content-Type: application/javascript
Content-Length: 3488
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:12:58 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G%2FFrZSE%2FcpJu0b4C9kiQYxc9sGjDcKUS%2Bw11b8oKak5WSxECza0fIWa8%2FSVjkLCnCX9MrKhtoY8YuKvdwNbg7HXstmMhAs8qnwwxyM4b0FU2sioX9B4IgBlOJKoNcj%2Ff9Z7uSQSnfGluUEcr8Rbh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d2aa7f1bfa-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c340db2d08e7b1529c7a909cec007a7b
7190f021d36fd018f68d9798e7fd6a08f6724aab
abb046a5884472ee74db4ca7fe35179dd08df237031ed32ac43604d0bc748e0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ABB046A5884472EE74DB4CA7FE35179DD08DF237031ED32AC43604D0BC748E0F"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6518
Expires: Mon, 30 Jan 2023 03:52:56 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

www.acint.net/aci.js

193.3.184.137

200 OK

7.8 kB

URL HTTP/2
www.acint.net/aci.js
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
ASCII text, with very long lines (1649)
Size
7.8 kB (7757 bytes)
Hash
23df47b4330754db70e9c1e32f0092d6
dea956b3a9dad9fa3cc352180be435943e8d0352
0056d5c8969a597094abb6cc9f3a383631ba9c0f13ac620d735f0788807fb4de

HTTP Headers

GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: application/x-javascript
content-length: 7757
last-modified: Mon, 09 Jan 2023 08:01:05 GMT
etag: "63bbc9c1-1e4d"
content-encoding: gzip
expires: Mon, 30 Jan 2023 14:04:18 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2

www.acint.net/oci.js?t=1675044268083

193.3.184.137

302 Moved Temporarily

142 B

URL HTTP/1.1
www.acint.net/oci.js?t=1675044268083
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /oci.js?t=1675044268083 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/

HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/oci.js?t=1675044268083

www.acint.net/mc/?dp=10

193.3.184.137

302 Moved Temporarily

142 B

URL HTTP/1.1
www.acint.net/mc/?dp=10
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/mc/?dp=10

www.acint.net/hit/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=20699572&u=http%3A%2F%2Fwww.astrocom-electronics.com%2FAstrocom%2Fcontact-us.html&r=&rs=1280x1024&t=Contact%20Astrocom%20Electronics&oE=1&oP=1&dT=2023-01-30T02%3A04%3A28.079&fu=b113a0aa-a02d-46e9-8f68-81743f40062e

193.3.184.137

302 Moved Temporarily

142 B

URL HTTP/1.1
www.acint.net/hit/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=20699572&u=http%3A%2F%2Fwww.astrocom-electronics.com%2FAstrocom%2Fcontact-us.html&r=&rs=1280x1024&t=Contact%20Astrocom%20Electronics&oE=1&oP=1&dT=2023-01-30T02%3A04%3A28.079&fu=b113a0aa-a02d-46e9-8f68-81743f40062e
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /hit/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=20699572&u=http%3A%2F%2Fwww.astrocom-electronics.com%2FAstrocom%2Fcontact-us.html&r=&rs=1280x1024&t=Contact%20Astrocom%20Electronics&oE=1&oP=1&dT=2023-01-30T02%3A04%3A28.079&fu=b113a0aa-a02d-46e9-8f68-81743f40062e HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/

HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/hit/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=20699572&u=http%3A%2F%2Fwww.astrocom-electronics.com%2FAstrocom%2Fcontact-us.html&r=&rs=1280x1024&t=Contact%20Astrocom%20Electronics&oE=1&oP=1&dT=2023-01-30T02%3A04%3A28.079&fu=b113a0aa-a02d-46e9-8f68-81743f40062e

www.acint.net/mc/?dp=10

193.3.184.137

302 Found

154 B

URL HTTP/2
www.acint.net/mc/?dp=10
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.astrocom-electronics.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=10&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Mon, 30-Jan-23 02:14:18 GMT
aid=fwAAAWPXJaJfjQzIH4ZBAlLk1698+NRZNgvrnIcn7Nbmg7Xy; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/hit/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=20699572&u=http%3A%2F%2Fwww.astrocom-electronics.com%2FAstrocom%2Fcontact-us.html&r=&rs=1280x1024&t=Contact%20Astrocom%20Electronics&oE=1&oP=1&dT=2023-01-30T02%3A04%3A28.079&fu=b113a0aa-a02d-46e9-8f68-81743f40062e
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hit/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=20699572&u=http%3A%2F%2Fwww.astrocom-electronics.com%2FAstrocom%2Fcontact-us.html&r=&rs=1280x1024&t=Contact%20Astrocom%20Electronics&oE=1&oP=1&dT=2023-01-30T02%3A04%3A28.079&fu=b113a0aa-a02d-46e9-8f68-81743f40062e HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.astrocom-electronics.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2

www.astrocom-electronics.com/images/stories/top_logo.jpg

172.67.216.74

200 OK

6.0 kB

URL HTTP/1.1
www.astrocom-electronics.com/images/stories/top_logo.jpg
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 200x73, components 3\012- data
Size
6.0 kB (6049 bytes)
Hash
88cdbdd90369b4d7ff0fad234e3a8704
620d36124ecfaba220aafee6f91b54122055f429
9526c2d39611edb38451738d213eadc6b21f64d23db4e34a0ae7ffa680a77e42

HTTP Headers

GET /images/stories/top_logo.jpg HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/jpeg
Content-Length: 6049
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:12:45 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FkoNyv4DHbKD3vw9RjGQxrQQYX0Vh81O2FKvVU2mMZ9dwBm6A5VBKNOL1V8S36%2FEzXkPFxVpnogrwjOIqNYYg%2BqSMi8PnSkY0Xi45v1VBNg6XveKTte2gVALJ4Do9esuFwRtgxDo6MdeVfPxmquR"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d45ec60afa-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/images/stories/interface_46.gif

172.67.216.74

200 OK

6.5 kB

URL HTTP/1.1
www.astrocom-electronics.com/images/stories/interface_46.gif
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 142 x 114\012- data
Size
6.5 kB (6463 bytes)
Hash
d862cdf637417cb404fcfc1e695f9259
67f23feac63098656ce79d428e8668bfbb306c0f
1b4ca0b6a6273be357c6851de1d7adee2c8f45296a5797c51fa2c8502eda6b53

HTTP Headers

GET /images/stories/interface_46.gif HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/gif
Content-Length: 6463
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:12:45 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4nqThIyuqxm8IHpszV5VOBnOoDv0hW4dZKXsuGWqm4tUawwQlVQKGhvUTAtD9Xw6fL50bkeVoGC1OuurPexBpVvmh3UG1CUdMkymE0dGdf7n4LKQgISH3l9muI6xGaNx12Wu%2BWhUjLs9AQL%2F58RQ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d45e2bb51d-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/images/main/searchmod-l.png

172.67.216.74

200 OK

1.9 kB

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/main/searchmod-l.png
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 22 x 19, 8-bit colormap, non-interlaced\012- data
Size
1.9 kB (1861 bytes)
Hash
952aa50d84e779ffbc7abd0ee4024936
08eb5b880143722ebe067e834aca98bd92a3a021
63ae89674edc6e9d436ee39a624018d68e709b944d872371d2ab75902add210f

HTTP Headers

GET /templates/astrocom/images/main/searchmod-l.png HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/template.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/png
Content-Length: 1861
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:11:58 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BWzaNsLM7AwOnmfXMJU6sb32ncMKhcRW11pHWPzfx8noL0pACIT6cK18up9HSzJjSWbRmMwiMuKsfxA6%2FIteRB6o9jfSZG7JlR2HieC51Pt3Px8e0R3Tl9PQwvh9jPtVoGxbRan8%2B1lynPxkNBoP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d488eeb52d-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/images/main/searchmod-r.png

172.67.216.74

200 OK

1.6 kB

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/main/searchmod-r.png
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 10 x 19, 8-bit colormap, non-interlaced\012- data
Size
1.6 kB (1592 bytes)
Hash
e50e20d57442bd83e4d0a40d70191177
5183d62f59a890fa662fd5416fb23e71c07514cc
6facee2a926617212ce8fc8504c26bc012fbbba25eb748d2ad588b8991fe2859

HTTP Headers

GET /templates/astrocom/images/main/searchmod-r.png HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/template.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/png
Content-Length: 1592
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:11:58 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BQ2as29oXrUG3BnZzi8cEF1kPD58CcoaPk8GOUU%2BGEU9U4wWwsUrYSlIUBzfAgnBCCuYtWg4CS9h5zpIgLMqotb0Y0LQqjRQSm8MvTzjNLqmC1GDn98DEtwa39OOI6aFrPsI5fWK%2BuA4mLLT0jNW"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d4898cfab4-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/images/logo.png

172.67.216.74

200 OK

17 kB

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/logo.png
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 334 x 43, 8-bit/color RGBA, non-interlaced\012- data
Size
17 kB (16783 bytes)
Hash
cc74ca070c5940df8511533c9dece41f
15be89607973d3813a10a2a1db773ea27df4c1be
d3b91457647f963568c14990c1216c881c4b85022567f5eee5edffc5a691b0ce

HTTP Headers

GET /templates/astrocom/images/logo.png HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/light.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/png
Content-Length: 16783
Connection: keep-alive
Last-Modified: Fri, 03 Jul 2020 20:48:27 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FDW%2Bt1Ltz74m%2F0Bi1mN0Q0xuUg%2BaZJeP3r8GCd7d13eH1mCd06niSpeNzxzSwh9UvGS7JEnRizreAF6NVEt5zYQxHj70mM1UGlkIZnvMIjcrjsjBiQoMnJ1wqMOqg2seA0lV1GQ09Tq%2FNZjrSLeh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d47af71bfa-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/images/main/searchmod-m.png

172.67.216.74

200 OK

1.3 kB

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/main/searchmod-m.png
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 10 x 19, 4-bit colormap, non-interlaced\012- data
Size
1.3 kB (1277 bytes)
Hash
87c15d5aac299ec20b86c8d109a0a50f
7fc0bb327503f739d4b1d13a5c0e20de1d731361
283279776b8d47e1090b83d6cd0ce24c71f320b366d6cb4bbe5ea1c4f2d13c0f

HTTP Headers

GET /templates/astrocom/images/main/searchmod-m.png HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/template.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/png
Content-Length: 1277
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:11:58 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8oyOn%2FTCGWBFqfsEIbAymBj0EqxvJkm0Fg2FbS6Ix%2FaZcwFXWGdycPRs%2FjqtMHyoyBavkf57zSFPwoa6NGN%2FnRgfYJUMgEpAHO3KrEieWmjti8VeQMDsysimOVb0tf74vBu6DCTLH8jjhhNmp4TS"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d48e2ab4eb-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/images/main/vert-line.png

172.67.216.74

200 OK

201 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/main/vert-line.png
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1 x 500, 1-bit colormap, non-interlaced\012- data
Size
201 B (201 bytes)
Hash
8967ae351a8413d7f4b60e01470df788
aa7e6192d9d1e4edfbc786928402a21d79172f9b
98d35a2ad7e3a63ad944f01813dc3fe04d8f14deaa62750af3b38449e5e1e78e

HTTP Headers

GET /templates/astrocom/images/main/vert-line.png HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/template.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/png
Content-Length: 201
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:11:59 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JLWZ8ZzcDDJAvLUBGezyiovSAB7YqnyjFWYkb6wV3QpqZVsbIGDe12wCxA9LoQkhwqoCynYdRlmDbV9%2FWCmQAqS%2BGZ0tOVjF4LaRwJl9YEWe8lmTZaP3w2hya8Yu%2FSdDCXYTwNcVm8x3tYqrHsN1"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d62a09fab4-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/images/left_li_arrow.jpg

172.67.216.74

200 OK

359 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/left_li_arrow.jpg
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 8x8, components 3\012- data
Size
359 B (359 bytes)
Hash
5c7f8c52501e973b320ac012379ae6d2
70bf121b11b015f317025a7c381bae2af0a41c28
b27a3b8c9915973ca29e6ee64db64ab46ea0926ac949a6dd28a0e4a4442405d3

HTTP Headers

GET /templates/astrocom/images/left_li_arrow.jpg HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/template.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/jpeg
Content-Length: 359
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:11:56 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8ezc67353pkkNpsCTDhWAv1pHDu9JnALRMozW8EC9DtbcbRbUwOWOwLDGHrE4rRfjwWIJ3DvddLDYJddzb7mP0eOEwQsdW24e3IMPP5ghqdgA07XNabYQHyC1U77kldWozfN%2BZECNT9xrA8M%2B6w9"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d63ee9b4eb-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/images/dd_arrow.jpg

172.67.216.74

200 OK

478 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/dd_arrow.jpg
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 12x12, components 3\012- data
Size
478 B (478 bytes)
Hash
bf1534a3d496e47ee6a04bb353714423
3701aa93e82f660b2361d84960018611d05b7285
5ec1a7301c6b60f44ad1f9d36698343666cc163cad559fc4f85231f3d8d3d419

HTTP Headers

GET /templates/astrocom/images/dd_arrow.jpg HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/light.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/jpeg
Content-Length: 478
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:11:56 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xHju59EPJY5p5FBUgkQrIiAyfQoWMA90GbSxme2RhJ9aiIPSKdT1GIgWaCnhWyfyHX%2BXzRHUHISrIwLJ9Hikoxmq5OuaOTn%2FQQUTnVZPAHc%2F4vCegDYv688FYcLw8mQQaD5yhW5xqemVWZnbgrqa"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d5fef3b51d-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/plugins/system/jceutilities/themes/standard/popup.html

172.67.216.74

200 OK

415 B

URL HTTP/1.1
www.astrocom-electronics.com/plugins/system/jceutilities/themes/standard/popup.html
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
exported SGML document, ASCII text
Size
415 B (415 bytes)
Hash
41f38e9be672010ec28d9dfbe0f0c692
087f3d5f337266d1bc794e165791e2c8da8b3deb
ba5ab1422c2d64170f7f26daf9ec8dde3aa602639f2a03156801f1e5248838fb

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /plugins/system/jceutilities/themes/standard/popup.html HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 19 Dec 2009 11:50:30 GMT
Cache-Control: max-age=600
Expires: Mon, 30 Jan 2023 02:14:18 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OMVTfvbSp9bZukNESx%2BsBcK22NxQ1Cfv1pln9DTzOeAqOB31ip6jro0yivaiuUSpgsnWzLWFEt4UDsIzaOLK%2B3mr%2BufcLEWaYPXUZlS%2FN%2BvgroW5dPdpylSpYbNeLrq294rk5vb%2Fqah8aY5VfIfM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7916a2d5ff190afa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/images/topofpage.gif

172.67.216.74

200 OK

314 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/topofpage.gif
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 87 x 12\012- data
Size
314 B (314 bytes)
Hash
91454f776c5c0957dad81fb1d67b217c
058bd6827200be48a911a5864fd2a2570ad02341
9e9889bf138bb7e7c80a8bbdf53614d0de5245c00b079fe0a5bd2ffaf7f97b6b

HTTP Headers

GET /templates/astrocom/images/topofpage.gif HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/template.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/gif
Content-Length: 314
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:11:57 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TuclbusKEMUKwXLMLPMTnbQczpdpWBVygcGc7PeDcVPUvKZ9U%2BJJlr%2BiIgWcMHijIKHea53GyaeGxdWWewPJ2nNruT30SQydGNBSP9FZQ%2Bt86L7v4h4RnpBs6UhD1i4AST%2F4WjNRDJDELYY2T2ih"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d63b4e1bfa-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/images/dd_hover_bg.png

172.67.216.74

200 OK

654 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/dd_hover_bg.png
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 267 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
654 B (654 bytes)
Hash
d7ebbaf794227e614fb81116e797c4e8
daaf0661650e2fb565b673ba7c8e8444fe9ea58e
50bd005bd2fbbe60fa3622aa9b21444d54287239bd2b5c6d3c0c255785caad60

HTTP Headers

GET /templates/astrocom/images/dd_hover_bg.png HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/light.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/png
Content-Length: 654
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:11:56 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=noM1aZ49i5BBQAbqgnfJe%2BhgE%2BTuxEFbePtpnC0iyt1C9aYEp05verv8t7Ik0B088dF12Olozli%2FKdXf0J0zh0SgYqb2Zovlf1zFSZCsdnoPdCRoXGF4c1MOWWuAvPoX1d35dr2AxHE9Fc54ShHD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d6295db52d-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
980283dfe91d7a053848e5a000ead189
da3490af28ee2cc74069d33ea51482bdd674f37a
83ea9d6b99a7be21a69b830b23522a0b4405a910131da31d553ae255314299e2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "83EA9D6B99A7BE21A69B830B23522A0B4405A910131DA31D553AE255314299E2"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1518
Expires: Mon, 30 Jan 2023 02:29:36 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

a.utraff.com/sync?ssp=Sape

104.21.59.66

204 No Content

0 B

URL HTTP/2
a.utraff.com/sync?ssp=Sape
IP
104.21.59.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?ssp=Sape HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Wed, 01 Mar 2023 05:04:18 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Wed, 01 Mar 2023 05:04:18 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cb2tq7ThGAYW5X0dw561dob%2FYod5ZmPpHDqSnDVuoiSbNePrJBbvyJrLwnfZBcYQYeUv8S0y5%2B9h%2FsX8wNdHXlqaq%2BM8Pp9ywoiXAN4EzNKsL06wVaDFKS7aBXcY8r0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7916a2d798350b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D

185.147.80.35

302 Found

74 B

URL HTTP/1.1
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP
185.147.80.35:0
ASN
#41722 Miran Ltd.

File type
HTML document, ASCII text
Size
74 B (74 bytes)
Hash
073f6279b53acd77d509e9cfa5f05ae1
752030c904b757e0a38869138d15cf485441663c
48d326d66a9404170943395fb28e8e62bb6254c77ce52c055c9ee96280bccc74

HTTP Headers

GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 74
Connection: keep-alive
Location: https://www.acint.net/match?dp=95&euid=UHQUPSBI
Set-Cookie: uid=UHQUPSBI; Expires=Thu, 27 Jan 2033 02:04:18 GMT

dm-eu.hybrid.ai/match?id=106&vid=0100007FA225D763C80C8D5F0241861F

37.18.103.16

204 No Content

0 B

URL HTTP/2
dm-eu.hybrid.ai/match?id=106&vid=0100007FA225D763C80C8D5F0241861F
IP
37.18.103.16:0
ASN
#205675 Hybrid LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?id=106&vid=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Mon, 30 Jan 2023 02:04:18 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=10c9d3ed322bc8497845; Expires=Tue, 30 Jan 2024 02:04:16 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 505
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
355e86dc72dae3b632a1ef2ef16a02d2
3c87904ee00a32bb2af364b5d4d1a9b73ce06ea3
192f539982e931bd51ef2d372380c81282ce51fa7bb4afabc43c4f531277394e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "192F539982E931BD51EF2D372380C81282CE51FA7BB4AFABC43C4F531277394E"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17260
Expires: Mon, 30 Jan 2023 06:51:58 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

www.astrocom-electronics.com/templates/astrocom/images/main/menu-expand.png

172.67.216.74

200 OK

564 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/main/menu-expand.png
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
564 B (564 bytes)
Hash
34e80bd87d29f30b279e648c9cdfb95d
f559c983f39943dc485f7d96ac896d24dd9e9e6e
88f6d0eaec4e8fdb019e4d688297a790b5ce3eec28ec6a4fc4eae0ace42d905a

HTTP Headers

GET /templates/astrocom/images/main/menu-expand.png HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/template.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/png
Content-Length: 564
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:11:57 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Scs573%2FK6vduUrXwwJTWh30uhfc5%2FgRfINwbfQFySGhNVgDYrVWowismHw8pxVfUKzks5H0X6LYPXhVHkHRDpWnPgm2iNmnTptGgk7Y9C%2FGRgTb376yAHVBn55k0gp3Cb7HZNi08XZ7Ysn%2BQZUv7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d7afabb51d-OSL
alt-svc: h2=":443"; ma=60

www.astrocom-electronics.com/templates/astrocom/images/login.png

172.67.216.74

200 OK

253 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/login.png
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 103 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size
253 B (253 bytes)
Hash
37ae2bf5435f07d590c83c0ce67169be
641fae2e51a108185c18c33c1dcbafb56f51b3fb
9bd4fae059309942d75f87c049c223277b93f2d825ace898480c24121075540d

HTTP Headers

GET /templates/astrocom/images/login.png HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/template.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/png
Content-Length: 253
Connection: keep-alive
Last-Modified: Fri, 18 Dec 2009 10:21:07 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n5VOlGZD8jZyxFuUnoh4pPkiyJuA2%2BXxyKsHf9224CCLMoRpd7iN4raKsjMRenucBz0loTlAS%2FStXTa70s9fuyI6G6JXEK%2FjfV1JrPynpcLw4n1Uyd87CDSauWRKAfJxIs7FsSUERAUq6qDVhY05"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d70a27fab4-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
53c0ff47b60a331633e7b9fafa8ef578
dd85cb6a1d0b196a4193c0cc443fff5c686ee572
936ec0dda0dac37efa1e1dc1af3b0936d47b0a23ee36022b70f2c7aa1127cca2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "936EC0DDA0DAC37EFA1E1DC1AF3B0936D47B0A23EE36022B70F2C7AA1127CCA2"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16543
Expires: Mon, 30 Jan 2023 06:40:01 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

www.astrocom-electronics.com/templates/astrocom/images/dtilogo.png

172.67.216.74

200 OK

830 B

URL HTTP/1.1
www.astrocom-electronics.com/templates/astrocom/images/dtilogo.png
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 34 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size
830 B (830 bytes)
Hash
0ad80449c17cfd53b806e1b0c8f72f6c
c074833a9754a9ea7e27b707a852b85d8879d186
6b8d87b6840117157d48e92a838e73b0c5f8fc09bfe47d20203b49e74af3b876

HTTP Headers

GET /templates/astrocom/images/dtilogo.png HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/templates/astrocom/css/template.css
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/png
Content-Length: 830
Connection: keep-alive
Last-Modified: Sat, 28 Nov 2009 13:11:56 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ppqi087JLSA%2B2bV%2BfWZ3%2FB5pYFO1pdmP%2FzgzobHBzoumvlKslQBtpPB0%2Bz%2BbAa2J0RCE8uiOWMRDkeRYZ0DbBfA%2BGQ%2FPvqzVHdWNmhzzJ8St9z4%2BrIHXBs98ptlzJVxbRt%2BToTzXon8xOx3q%2F5CM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d71f40b4eb-OSL
alt-svc: h2=":443"; ma=60

ocsp2.globalsign.com/gsalphasha2g2

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsalphasha2g2
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1423 bytes)
Hash
4b047b19f0d7401b3b01c78aab730379
16264bd452e0fb41846fc611ed1c7bd603edd739
cf2fba40d20a2827e2a7812f0ff00e16f4194a2356cf85506eb615590e78b6eb

HTTP Headers

POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 02 Feb 2023 23:31:04 GMT
ETag: "16264bd452e0fb41846fc611ed1c7bd603edd739"
Last-Modified: Sun, 29 Jan 2023 23:31:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1106
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d8bfde0b02-OSL

www.acint.net/match?dp=95&euid=UHQUPSBI

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=95&euid=UHQUPSBI
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=95&euid=UHQUPSBI HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2d4a800b5c9f1979f5b4a0cdf3d65b13
dc7a9fd0ec264f3b67af5b9fcfe13ba964b53fd8
fa7e9f375c3049504137d7503d379c2808eaf364fc8dccb7c8b805d8da2eda68

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FA7E9F375C3049504137D7503D379C2808EAF364FC8DCCB7C8B805D8DA2EDA68"
Last-Modified: Sun, 29 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19755
Expires: Mon, 30 Jan 2023 07:33:33 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007FA225D763C80C8D5F0241861F

78.46.100.125

204 No Content

0 B

URL HTTP/2
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007FA225D763C80C8D5F0241861F
IP
78.46.100.125:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 02:04:18 GMT
X-Firefox-Spdy: h2

www.acint.net/oci/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=90564297&oid=39e8192718f4ed5a678fc273d654392b

193.3.184.137

302 Moved Temporarily

142 B

URL HTTP/1.1
www.acint.net/oci/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=90564297&oid=39e8192718f4ed5a678fc273d654392b
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /oci/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=90564297&oid=39e8192718f4ed5a678fc273d654392b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/

HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/oci/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=90564297&oid=39e8192718f4ed5a678fc273d654392b

ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D

193.3.184.213

302 Moved Temporarily

142 B

URL HTTP/1.1
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP
193.3.184.213:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=2903420AA225D7631900D3A502F6E4AB
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDKWPXJaKl0wAZq+T2An1vStb/I0zhecD1L8Ay7Br3BN0W; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None

www.acint.net/oci.js?t=1675044268083

193.3.184.137

200 OK

15 kB

URL HTTP/2
www.acint.net/oci.js?t=1675044268083
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
ASCII text, with very long lines (32168)
Size
15 kB (14561 bytes)
Hash
b5aebb072650c7da366a7052c02a9221
44d203b7465efc7669d4c3aa0b93b89fbb13529f
4c087d89720de36d4d65395a4d94e79f253c6968239115b6988d4f458263973d

HTTP Headers

GET /oci.js?t=1675044268083 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.astrocom-electronics.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: application/x-javascript
last-modified: Mon, 09 Jan 2023 08:01:12 GMT
etag: W/"63bbc9c8-7dac"
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
3285a0ef23a8650e666eedc7d0dcad67
f44ce0b09db2d53408b0124435f07e888b848023
026796549537e3adf3e0c1802d0f517b27dbd660ca0825837c9d865398567d02

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Thu, 02 Feb 2023 22:53:37 GMT
ETag: "f44ce0b09db2d53408b0124435f07e888b848023"
Last-Modified: Sun, 29 Jan 2023 22:53:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1950
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d909a2b50f-OSL

www.acint.net/match?dp=129&euid=qnfbn4xn7e

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=129&euid=qnfbn4xn7e
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=129&euid=qnfbn4xn7e HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

sync.dmp.otm-r.com/match/sape?id=0100007FA225D763C80C8D5F0241861F

148.251.9.22

204 No Content

0 B

URL HTTP/2
sync.dmp.otm-r.com/match/sape?id=0100007FA225D763C80C8D5F0241861F
IP
148.251.9.22:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/sape?id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx/1.17.2
date: Mon, 30 Jan 2023 02:04:18 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2

sync.republer.com/match?dsp=sape

23.88.82.46

204 No Content

0 B

URL HTTP/2
sync.republer.com/match?dsp=sape
IP
23.88.82.46:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?dsp=sape HTTP/1.1
Host: sync.republer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 02:04:18 GMT
strict-transport-security: max-age=0
X-Firefox-Spdy: h2

acint.net/match?dp=110&euid=fbd8accedc134215baf6b8f380104b94

193.3.184.137

200 OK

43 B

URL HTTP/2
acint.net/match?dp=110&euid=fbd8accedc134215baf6b8f380104b94
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=110&euid=fbd8accedc134215baf6b8f380104b94 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.astrocom-electronics.com/modules/mod_accordionmenu/assets/plus.gif

172.67.216.74

200 OK

564 B

URL HTTP/1.1
www.astrocom-electronics.com/modules/mod_accordionmenu/assets/plus.gif
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
564 B (564 bytes)
Hash
34e80bd87d29f30b279e648c9cdfb95d
f559c983f39943dc485f7d96ac896d24dd9e9e6e
88f6d0eaec4e8fdb019e4d688297a790b5ce3eec28ec6a4fc4eae0ace42d905a

HTTP Headers

GET /modules/mod_accordionmenu/assets/plus.gif HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/gif
Content-Length: 564
Connection: keep-alive
Last-Modified: Wed, 23 Dec 2009 13:25:46 GMT
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 02:04:18 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IQBQjNoiD7fIH2W4J%2BK25N64Lpc77fMWJSTcMaORGWFe1fqhwTMPCt8chTYYe1eEp%2FKhL%2FQ485%2B27%2BaF23zv9rj7HchTfArDY9n9gVXCCg7%2FbePbqkZQ7JHVTvdhb5OhBv%2FKUNv1df5jszWCydFH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d7af720afa-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7db8890920fa9c3aef5794cc816457a6
bb2d238b7c60bd1ec0287e0ecc064c0493248fbe
6be367476a14e7c4a9d3a21eef490565260ae6adbad64d6196dd1ab33fb4820e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BE367476A14E7C4A9D3A21EEF490565260AE6ADBAD64D6196DD1AB33FB4820E"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12376
Expires: Mon, 30 Jan 2023 05:30:34 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

0100007fa225d763c80c8d5f0241861f-sp.ops.beeline.ru/p?ssp=sp&id=0100007FA225D763C80C8D5F0241861F

37.9.245.57

301 Moved Permanently

0 B

URL HTTP/2
0100007fa225d763c80c8d5f0241861f-sp.ops.beeline.ru/p?ssp=sp&id=0100007FA225D763C80C8D5F0241861F
IP
37.9.245.57:0
ASN
#16345 PVimpelCom

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sp&id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: 0100007fa225d763c80c8d5f0241861f-sp.ops.beeline.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 30 Jan 2023 02:04:18 GMT
content-length: 0
location: https://www.acint.net/match?dp=111&euid=61bb0acd-1634-434b-9eaf-065db33a158a
access-control-allow-origin: *
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: BeeAID=61bb0acd-1634-434b-9eaf-065db33a158a; expires=Sun, 21 Jan 2024 02:04:18 GMT; domain=ops.beeline.ru; path=/; secure; SameSite=None
access-control-allow-credentials: true, true
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS, GET, HEAD, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
x-route: http://upstream_cookiesync
x-host: 192.168.152.61
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d92555c61f8aa062bf84d8a7a55fc804
f7a7704c034ef46140892059652b869699f202b7
3445362df74ad7d4b78ca6ca5830b0aab1e067e5c02209ae4f9a92b5a82754e9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3445362DF74AD7D4B78CA6CA5830B0AAB1E067E5C02209AE4F9A92B5A82754E9"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7644
Expires: Mon, 30 Jan 2023 04:11:42 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

www.acint.net/oci/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=90564297&oid=39e8192718f4ed5a678fc273d654392b

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/oci/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=90564297&oid=39e8192718f4ed5a678fc273d654392b
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /oci/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=90564297&oid=39e8192718f4ed5a678fc273d654392b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.astrocom-electronics.com/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

acint.net/match?dp=14&euid=2903420AA225D7631900D3A502F6E4AB

193.3.184.137

200 OK

43 B

URL HTTP/2
acint.net/match?dp=14&euid=2903420AA225D7631900D3A502F6E4AB
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=14&euid=2903420AA225D7631900D3A502F6E4AB HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
267f2cc663eedc5106a39b3da93a8e57
a55c2e464f500fb9cd3c2fa3acb6c95c01f093f2
2a42e6121b2bd1cf83248a4f39c179a3ca387fe02ac5c3e0545cc6efcd82b7b7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A42E6121B2BD1CF83248A4F39C179A3CA387FE02AC5C3E0545CC6EFCD82B7B7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18068
Expires: Mon, 30 Jan 2023 07:05:26 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

ut.rktch.com/matchspm?pi=1000005&pui=0100007FA225D763C80C8D5F0241861F

89.108.97.2

302 Found

0 B

URL HTTP/1.1
ut.rktch.com/matchspm?pi=1000005&pui=0100007FA225D763C80C8D5F0241861F
IP
89.108.97.2:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /matchspm?pi=1000005&pui=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: ut.rktch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Length: 0
Connection: keep-alive
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
Set-Cookie: b_uid=3b443f88eeaae7a4b83b1aff5f6a050d03d2; Max-Age=2592000; Expires=Wed, 01 Mar 2023 02:04:18 GMT; Domain=rktch.com; Secure; SameSite=None
Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Content-Type, Accept, Authorization
Access-Control-Allow-Credentials: true

sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0

148.251.78.49

302 Found

0 B

URL HTTP/2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP
148.251.78.49:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1675044258706
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: nginx
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=31e8e40f-5bc7-4dc6-90d2-eff2180b3fc2;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=31e8e40f-5bc7-4dc6-90d2-eff2180b3fc2;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=31e8e40f-5bc7-4dc6-90d2-eff2180b3fc2
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bfef68d3eb1aa2431ad11fc6e46b0a40
771278fe4238732678458298eb00f68a02079803
bcf879ab02273ab6f38983b3ca5910f7e38c4ca34d66245c8d6563ada8a29257

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BCF879AB02273AB6F38983B3CA5910F7E38C4CA34D66245C8D6563ADA8A29257"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18177
Expires: Mon, 30 Jan 2023 07:07:15 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3236
Expires: Mon, 30 Jan 2023 02:58:14 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

stat.adlabs.ru/merge_gpsid/?sid=50&id=0100007FA225D763C80C8D5F0241861F

109.248.237.36

302 Found

0 B

URL HTTP/2
stat.adlabs.ru/merge_gpsid/?sid=50&id=0100007FA225D763C80C8D5F0241861F
IP
109.248.237.36:0
ASN
#201009 Centre of server systems Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /merge_gpsid/?sid=50&id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: stat.adlabs.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Mon, 30 Jan 2023 01:48:51 GMT
content-length: 0
location: //adlmerge.com/merge_gpsid/?sid=50&id=0100007FA225D763C80C8D5F0241861F
X-Firefox-Spdy: h2

s.uuidksinc.net/match/396/?remote_uid=0100007FA225D763C80C8D5F0241861F

31.220.27.155

302 Found

0 B

URL HTTP/2
s.uuidksinc.net/match/396/?remote_uid=0100007FA225D763C80C8D5F0241861F
IP
31.220.27.155:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/396/?remote_uid=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx/1.19.0
date: Mon, 30 Jan 2023 02:04:18 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=YXNXcm2qsH2psR3XFMzi
set-cookie: jcsuuid=YXNXcm2qsH2psR3XFMzi; expires=Tue, 30 Jan 2024 02:04:18 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5de111a92eba92e70ce94cfc03efe673
5cb8157ce2701ed741a7ece2179bb58e3bed5b85
ff1a94757e8e62e65c1e529dbdaac31a1034bb5c797a02cac6b4f3caf06d4e5c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF1A94757E8E62E65C1E529DBDAAC31A1034BB5C797A02CAC6B4F3CAF06D4E5C"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8966
Expires: Mon, 30 Jan 2023 04:33:44 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9150 bytes)
Hash
7ce4f845d4cdd467b4c82d8fbeb9ae0b
68257cdadb6e13a8f7f5e2354aca225286107a79
243b58df1616fd8b78c11302dbf90c97ecb6a3b289abe5f3439252cdbf304892

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9150
x-amzn-requestid: 2b8949c8-5c97-49f5-8784-85daa42adff1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj4NF1moAMFQ9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e69a-2ab06022306835b013c1e46f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NEYfOHRSbqSqgj9m4A-z6jFKKbaiYC9DKmggHLFvSAK88FMnfXMn1Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:23:20 GMT
age: 13258
etag: "68257cdadb6e13a8f7f5e2354aca225286107a79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.acint.net/match?dp=111&euid=61bb0acd-1634-434b-9eaf-065db33a158a

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=111&euid=61bb0acd-1634-434b-9eaf-065db33a158a
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=111&euid=61bb0acd-1634-434b-9eaf-065db33a158a HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/match?dp=71&euid=31e8e40f-5bc7-4dc6-90d2-eff2180b3fc2

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=71&euid=31e8e40f-5bc7-4dc6-90d2-eff2180b3fc2
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=71&euid=31e8e40f-5bc7-4dc6-90d2-eff2180b3fc2 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9700 bytes)
Hash
6d200552d23c85c199558b79cc24348f
8cc20b9ce98eeacd5b826268da24955a82e78a01
09b05ae6f75b5141401ddc49014e0eb2eac0856ba3b5020bc85f4a9a64d3d2a6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9700
x-amzn-requestid: 9f944a46-7e39-44c3-a640-3c7e9b778bca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkoEEkJIAMFs0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7cd-4b29196f5bd1b2fb04e6363f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jdh2u-xrCjqq1SKWL7hCTqrlGRjbytuxecJS-cwiXb5FQypGKYbFzg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:35 GMT
age: 14923
etag: "8cc20b9ce98eeacd5b826268da24955a82e78a01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mediatoday.ru/core/match.gif?s=32&id=0100007FA225D763C80C8D5F0241861F

139.45.228.111

200 OK

43 B

URL HTTP/2
mediatoday.ru/core/match.gif?s=32&id=0100007FA225D763C80C8D5F0241861F
IP
139.45.228.111:0
ASN
#9002 RETN Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /core/match.gif?s=32&id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: mediatoday.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.22.0
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: image/gif
content-length: 43
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VUzfB53BrSVxSRL; expires=Thu, 27-Jan-2033 02:04:18 GMT; domain=mediatoday.ru; path=/core; SameSite=None; Secure
X-Firefox-Spdy: h2

match.new-programmatic.com/userbind?src=sape&id=0100007FA225D763C80C8D5F0241861F

217.65.2.150

204 No Content

0 B

URL HTTP/1.1
match.new-programmatic.com/userbind?src=sape&id=0100007FA225D763C80C8D5F0241861F
IP
217.65.2.150:0
ASN
#3175 Filanco LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /userbind?src=sape&id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin

sync.adspend.space/sape?uid=0100007FA225D763C80C8D5F0241861F

212.76.129.183

302 Found

149 B

URL HTTP/2
sync.adspend.space/sape?uid=0100007FA225D763C80C8D5F0241861F
IP
212.76.129.183:0
ASN
#42632 MnogoByte LLC

File type
HTML document, ASCII text
Size
149 B (149 bytes)
Hash
604d8cc414af9eb8b57285e41c29eea6
7723a270721ab640e0f6fe63617900ac242d0389
f092fc6beac8dee16d4ec36c48caf68e6c5456391a05685a4657db5f6ec81da8

HTTP Headers

GET /sape?uid=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: text/html; charset=utf-8
content-length: 149
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D27281dcf-375b-4a4b-8f19-e6923e155a44
set-cookie: as-user=27281dcf-375b-4a4b-8f19-e6923e155a44; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10997 bytes)
Hash
65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:08 GMT
age: 15070
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5de111a92eba92e70ce94cfc03efe673
5cb8157ce2701ed741a7ece2179bb58e3bed5b85
ff1a94757e8e62e65c1e529dbdaac31a1034bb5c797a02cac6b4f3caf06d4e5c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF1A94757E8E62E65C1E529DBDAAC31A1034BB5C797A02CAC6B4F3CAF06D4E5C"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8966
Expires: Mon, 30 Jan 2023 04:33:44 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

nr.bidderstack.com/sape/cm?user_id=0100007FA225D763C80C8D5F0241861F

23.88.12.14

200 OK

44 B

URL HTTP/1.1
nr.bidderstack.com/sape/cm?user_id=0100007FA225D763C80C8D5F0241861F
IP
23.88.12.14:0
ASN
#24940 Hetzner Online GmbH

File type
GIF image data, version 89a, 1 x 1\012- data
Size
44 B (44 bytes)
Hash
f9d60352c70a2ba15616d1c9421f3844
e9abc8bea7721a4b6a50295850d13c515006a95c
82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9

HTTP Headers

GET /sape/cm?user_id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/gif
Content-Length: 44
Connection: keep-alive
Access-Control-Allow-Credentials: true

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9167 bytes)
Hash
3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 20:46:17 GMT
age: 19081
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

sync.bumlam.com/?src=sap1&uid=0100007FA225D763C80C8D5F0241861F

31.172.81.159

302 Moved Temporarily

0 B

URL HTTP/1.1
sync.bumlam.com/?src=sap1&uid=0100007FA225D763C80C8D5F0241861F
IP
31.172.81.159:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sap1&uid=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ2N2Q5OTE5Yy1hMDQyLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Sun, 25 Jan 2043 02:04:18 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARiiy9yeBmIgMDEwMDAwN0ZBMjI1RDc2M0M4MEM4RDVGMDI0MTg2MUaiARBn2ZGcoEIR7aHEACWQyCQ3
ETag: 67d9919c-a042-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3fd8ee22f595f9b36ac1dba33a32da68
24ebcebf72cd379d3726d38c826e4198d3818d3b
72a5428472bc70a32877b073699d44622fc8fc57a7df00e7d10e9ebc144e15e1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72A5428472BC70A32877B073699D44622FC8FC57A7DF00E7D10E9EBC144E15E1"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6981
Expires: Mon, 30 Jan 2023 04:00:39 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F281d3bcc-ce90-407c-89ce-33d8423b4048.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5462 bytes)
Hash
a60c45fc1156fadfbe47afe4e9e282da
e8db47e0aa028a846fd631cf2f2d5a979ee51e08
9a91bd22d5174fc3adbc6b24de6197be4f694bc46e8cc32124212a17a5af3f5a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F281d3bcc-ce90-407c-89ce-33d8423b4048.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5462
x-amzn-requestid: 4ec670d9-7dfd-45a9-93bc-935dfd991c20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkF8HWWIAMFpnA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6f2-3bda5c87690a91851b2de9e6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IktxPIqbHTkANUYO5E64t0-RHGBrPlJt-MhuQoBxKWSxhbz1wzVDEA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:08 GMT
age: 15070
etag: "e8db47e0aa028a846fd631cf2f2d5a979ee51e08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8464 bytes)
Hash
fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UNub7Gd4S0ogn5EJhtJVu8q1qML5_4eL2lIPQXiAuXy_q-XiR4s-5w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:21 GMT
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
age: 14937
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.acint.net/match?dp=127&euid=YXNXcm2qsH2psR3XFMzi

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=127&euid=YXNXcm2qsH2psR3XFMzi
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=127&euid=YXNXcm2qsH2psR3XFMzi HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

pix.bumlam.com/sync/sape/check?sspuid=0100007FA225D763C80C8D5F0241861F

31.172.81.159

302 Found

0 B

URL HTTP/1.1
pix.bumlam.com/sync/sape/check?sspuid=0100007FA225D763C80C8D5F0241861F
IP
31.172.81.159:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/sape/check?sspuid=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape

cs.agency2.ru/p?ssp=sp&uid=0100007FA225D763C80C8D5F0241861F

23.111.107.44

301 Moved Permanently

0 B

URL HTTP/1.1
cs.agency2.ru/p?ssp=sp&uid=0100007FA225D763C80C8D5F0241861F
IP
23.111.107.44:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sp&uid=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=c1d3f37b-3c08-4bf1-83c9-915c381f555d
Set-Cookie: uuid=c1d3f37b-3c08-4bf1-83c9-915c381f555d; expires=Sun, 21 Jan 2024 02:04:18 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44

sync.bumlam.com/?src=sap1&s_data=CAIQARiiy9yeBmIgMDEwMDAwN0ZBMjI1RDc2M0M4MEM4RDVGMDI0MTg2MUaiARBn2ZGcoEIR7aHEACWQyCQ3

31.172.81.159

200 OK

0 B

URL HTTP/1.1
sync.bumlam.com/?src=sap1&s_data=CAIQARiiy9yeBmIgMDEwMDAwN0ZBMjI1RDc2M0M4MEM4RDVGMDI0MTg2MUaiARBn2ZGcoEIR7aHEACWQyCQ3
IP
31.172.81.159:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sap1&s_data=CAIQARiiy9yeBmIgMDEwMDAwN0ZBMjI1RDc2M0M4MEM4RDVGMDI0MTg2MUaiARBn2ZGcoEIR7aHEACWQyCQ3 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQ2N2Q5OTE5Yy1hMDQyLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ2N2Q5OTE5Yy1hMDQyLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Sun, 25 Jan 2043 02:04:18 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
e3595065f25083f2b4c55154068885ce
9af7c3d86002a14164329afdc1be25c2c056afc7
c31e3eb579748a17da2ef0e534be0a9a6992735ce9f4cb6183355b015024532f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 11:26:44 GMT
Expires: Sun, 05 Feb 2023 11:26:43 GMT
Etag: "9af7c3d86002a14164329afdc1be25c2c056afc7"
Cache-Control: max-age=551544,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916a2da0ec91c06-OSL

sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D27281dcf-375b-4a4b-8f19-e6923e155a44

212.76.129.183

302 Found

102 B

URL HTTP/2
sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D27281dcf-375b-4a4b-8f19-e6923e155a44
IP
212.76.129.183:0
ASN
#42632 MnogoByte LLC

File type
HTML document, ASCII text
Size
102 B (102 bytes)
Hash
e58d39f2f776a2376069452562c4372f
089f5060929682b8113c196f55535a04ec05bd57
dc87c38847aac22498d65aeaf3b05f7109b9c4218b74c34d27cde24c508f87c4

HTTP Headers

GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D27281dcf-375b-4a4b-8f19-e6923e155a44 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: as-user=27281dcf-375b-4a4b-8f19-e6923e155a44
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: text/html; charset=utf-8
content-length: 102
location: https://www.acint.net/match?dp=98&euid=27281dcf-375b-4a4b-8f19-e6923e155a44
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
448eee096991e3fb582942ba2934b6b5
de58b4da4bb6b4e4a6eca3af7b0cf6d3d62f193c
a383439aa0da9fc504a7a1005a27119e59207f58485cabdaf503e5c9fdc66e7b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A383439AA0DA9FC504A7A1005A27119E59207F58485CABDAF503E5C9FDC66E7B"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8003
Expires: Mon, 30 Jan 2023 04:17:41 GMT
Date: Mon, 30 Jan 2023 02:04:18 GMT
Connection: keep-alive

sync.bumlam.com/?src=sape

31.172.81.159

302 Moved Temporarily

0 B

URL HTTP/1.1
sync.bumlam.com/?src=sape
IP
31.172.81.159:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQ2N2Q5OTE5Yy1hMDQyLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 30 Jan 2023 02:04:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ2N2Q5OTE5Yy1hMDQyLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Sun, 25 Jan 2043 02:04:18 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=67d9919c-a042-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true

www.acint.net/match?dp=186&euid=c1d3f37b-3c08-4bf1-83c9-915c381f555d

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=186&euid=c1d3f37b-3c08-4bf1-83c9-915c381f555d
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=186&euid=c1d3f37b-3c08-4bf1-83c9-915c381f555d HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:19 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/match?dp=98&euid=27281dcf-375b-4a4b-8f19-e6923e155a44

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=98&euid=27281dcf-375b-4a4b-8f19-e6923e155a44
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=98&euid=27281dcf-375b-4a4b-8f19-e6923e155a44 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:19 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

dmp.gotechnology.io/match/sape?id=0100007FA225D763C80C8D5F0241861F

167.235.32.7

302 Found

0 B

URL HTTP/2
dmp.gotechnology.io/match/sape?id=0100007FA225D763C80C8D5F0241861F
IP
167.235.32.7:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/sape?id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Mon, 30 Jan 2023 02:04:19 GMT
content-length: 0
location: https://dmp.gotechnology.io/match/sape?id=0100007FA225D763C80C8D5F0241861F&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

pix.bumlam.com/sync/sape/sync_ok?guid=67d9919c-a042-11ed-a1c4-002590c82437

31.172.81.159

302 Found

0 B

URL HTTP/1.1
pix.bumlam.com/sync/sape/sync_ok?guid=67d9919c-a042-11ed-a1c4-002590c82437
IP
31.172.81.159:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/sape/sync_ok?guid=67d9919c-a042-11ed-a1c4-002590c82437 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQ2N2Q5OTE5Yy1hMDQyLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://67d9919c-a042-11ed-a1c4-002590c82437.n4.sync.bumlam.com/?src=sape

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
cd74174131d5447f2242c38a91f7d853
a74a982d078681499bb200b17f5cfc5124ba5be3
11c4f75434e9726d62eb73a73e1697c3c20e2d8b452ca2b263f4821481b06d89

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 03:41:02 GMT
Expires: Sat, 04 Feb 2023 03:41:01 GMT
Etag: "a74a982d078681499bb200b17f5cfc5124ba5be3"
Cache-Control: max-age=437202,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916a2d97f8eb521-OSL

dmp.gotechnology.io/match/sape?id=0100007FA225D763C80C8D5F0241861F&chk=1

167.235.32.7

302 Found

0 B

URL HTTP/2
dmp.gotechnology.io/match/sape?id=0100007FA225D763C80C8D5F0241861F&chk=1
IP
167.235.32.7:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/sape?id=0100007FA225D763C80C8D5F0241861F&chk=1 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: nginx
date: Mon, 30 Jan 2023 02:04:19 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=98&external_user_id=NjlhOWJjMzcyZDk4Mzc1
set-cookie: pid=NjlhOWJjMzcyZDk4Mzc1; expires=Tue, 30 Jan 2024 02:04:19 GMT; domain=.gotechnology.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D

94.130.13.220

301 Moved Permanently

115 B

URL HTTP/2
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP
94.130.13.220:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document, ASCII text
Size
115 B (115 bytes)
Hash
522ac635c81841a744535af7cef33092
911a60733ac64df211a576255b31ea84665dab14
a512f55a39426620e31177fcd1af1fdd96ecfdff487c7b98766e4da5dad0ca0a

HTTP Headers

GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 30 Jan 2023 02:04:19 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=49a0f395-3ccb-45a2-43c2-5529674038c9
serverid: TODO
X-Firefox-Spdy: h2

www.acint.net/match?dp=126&euid=49a0f395-3ccb-45a2-43c2-5529674038c9

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=126&euid=49a0f395-3ccb-45a2-43c2-5529674038c9
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=126&euid=49a0f395-3ccb-45a2-43c2-5529674038c9 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:19 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.astrocom-electronics.com/images/favicon.ico

172.67.216.74

404 Not Found

238 B

URL HTTP/1.1
www.astrocom-electronics.com/images/favicon.ico
IP
172.67.216.74:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
238 B (238 bytes)
Hash
f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38

HTTP Headers

GET /images/favicon.ico HTTP/1.1
Host: www.astrocom-electronics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/Astrocom/contact-us.html
Cookie: e7b67731bc3dd36c15af1196586029ac=e1ssgvkhotba11q7ca6vpapqp6; fid=b113a0aa-a02d-46e9-8f68-81743f40062e; _ac_oid=39e8192718f4ed5a678fc273d654392b%3A1675047868491

HTTP/1.1 404 Not Found
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rSNUGm0h4QK9DIGwQJxwcWP2LFH0xkBmBPLgrvdz9qD5066rhY0X%2BrW%2F96T%2B27M350p5utWY%2Fi0OjsKcWUnkSfMlEYW9KPK3K2KBCBSrfd5IVB0YjKyyrIfsk%2Bt%2BsAscgHcePMSMXQA%2F6gAINafI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2d9e8450afa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
98c847f5a65dbb398968fb04b06a8d7a
4a753cef0a327b21231422ea9036b188a1f3bdf5
eba90285b2cc0f0d0c00f65776807179ad6442a734a5a44689f08cada9503397

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBA90285B2CC0F0D0C00F65776807179AD6442A734A5A44689F08CADA9503397"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5260
Expires: Mon, 30 Jan 2023 03:31:59 GMT
Date: Mon, 30 Jan 2023 02:04:19 GMT
Connection: keep-alive

67d9919c-a042-11ed-a1c4-002590c82437.n4.sync.bumlam.com/?src=sape

188.120.241.43

302 Found

0 B

URL HTTP/2
67d9919c-a042-11ed-a1c4-002590c82437.n4.sync.bumlam.com/?src=sape
IP
188.120.241.43:0
ASN
#29182 JSC IOT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sape HTTP/1.1
Host: 67d9919c-a042-11ed-a1c4-002590c82437.n4.sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQ2N2Q5OTE5Yy1hMDQyLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx/1.22.1
date: Mon, 30 Jan 2023 02:04:19 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
X-Firefox-Spdy: h2

ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D

5.200.44.122

302 Found

43 B

URL HTTP/2
ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP
5.200.44.122:0
ASN
#48096 Enterprise Cloud Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=fbd8accedc134215baf6b8f380104b94
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=fbd8accedc134215baf6b8f380104b94; expires=Mon, 29 Jan 2024 21:00:00 GMT; path=/; SameSite=None; secure; samesite=lax
date: Mon, 30 Jan 2023 02:04:18 GMT
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
964dd05e86b78456cddcf85fd19740e3
da2aecfe04d58abec274096278978483c780e0c3
60162a0e0b9879f4d55d044e0c814c4ec2a585d70e5953cf30ef4fcd46a7516a

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Thu, 02 Feb 2023 23:52:43 GMT
ETag: "da2aecfe04d58abec274096278978483c780e0c3"
Last-Modified: Sun, 29 Jan 2023 23:52:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2899
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2dcbb7bb50f-OSL

ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691

195.209.108.47

302 Moved Temporarily

0 B

URL HTTP/1.1
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
IP
195.209.108.47:0
ASN
#52007 LLC AdRiver

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-5931858008; expires=Wed, 29 Jan 2025 02:04:19 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5931858008
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
964dd05e86b78456cddcf85fd19740e3
da2aecfe04d58abec274096278978483c780e0c3
60162a0e0b9879f4d55d044e0c814c4ec2a585d70e5953cf30ef4fcd46a7516a

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Thu, 02 Feb 2023 23:52:43 GMT
ETag: "da2aecfe04d58abec274096278978483c780e0c3"
Last-Modified: Sun, 29 Jan 2023 23:52:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2899
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2dcfb98b50f-OSL

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:04:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
673b3376c8d09e8b7b6559f118c9c8a9
7c9bbb4dd4a5b36424e357a64734c27698898e63
c8185d7be91fd2aec27ef692ad62581187d99f8d80249f48c096171e4fa0f2f5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 14:03:28 GMT
Expires: Sat, 04 Feb 2023 14:03:27 GMT
Etag: "7c9bbb4dd4a5b36424e357a64734c27698898e63"
Cache-Control: max-age=474547,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916a2dceff31c06-OSL

ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=0100007FA225D763C80C8D5F0241861F

81.222.128.215

200 OK

42 B

URL HTTP/1.1
ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=0100007FA225D763C80C8D5F0241861F
IP
81.222.128.215:0
ASN
#20597 PVimpelCom

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /cgi-bin/sync.cgi?dsp_id=153&external_id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive

cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_limited&google_hm=AQAAf6Il12PIDI1fAkGGHw

142.250.74.162

200 OK

170 B

URL HTTP/2
cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_limited&google_hm=AQAAf6Il12PIDI1fAkGGHw
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
170 B (170 bytes)
Hash
e7673c60af825466f83d46da72ca1635
fc0fcbee0835709ba2d28798a612bfd687903fb5
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5

HTTP Headers

GET /pixel?google_nid=agentstvo_sape_limited&google_hm=AQAAf6Il12PIDI1fAkGGHw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/png
date: Mon, 30 Jan 2023 02:04:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.globalsign.com/gseccovsslca2018

104.18.21.226

200 OK

940 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
940 B (940 bytes)
Hash
280980b0ef3d23df75f9c597bbe2b853
16456e5719596e132fd075cf792050745656b339
882844f0bafe43b8e1eff2720a926d44a86a3ceef0980f797348453d650b2a74

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Fri, 03 Feb 2023 00:18:10 GMT
ETag: "16456e5719596e132fd075cf792050745656b339"
Last-Modified: Mon, 30 Jan 2023 00:18:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 112
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2dd5baeb50f-OSL

ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5931858008

195.209.108.47

302 Moved Temporarily

40 B

URL HTTP/1.1
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5931858008
IP
195.209.108.47:0
ASN
#52007 LLC AdRiver

File type
ASCII text, with CRLF line terminators
Size
40 B (40 bytes)
Hash
251630b588179b239e8fab1ac9ef6d3a
91b91a97bc481dd2bbd5e0f3fea6ba1c4e843882
c95661e0ef6975b1df5361695a439f71a021d72c345023c3e668e84f35b3c38b

HTTP Headers

GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5931858008 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Wed, 29 Jan 2025 02:04:19 GMT; path=/; domain=.adriver.ru;
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
Location: https://www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9c72bc4308e4dce330ff9f92cb4664f8
4232f171beada6fbe504d66c8c614dbf43ee7b4d
87fc77a8bd643903b7cd9ae102d2cfa643b70c1d3bc7eee03b7bd3f7e53fe0e3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87FC77A8BD643903B7CD9AE102D2CFA643B70C1D3BC7EEE03B7BD3F7E53FE0E3"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8402
Expires: Mon, 30 Jan 2023 04:24:21 GMT
Date: Mon, 30 Jan 2023 02:04:19 GMT
Connection: keep-alive

ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007FA225D763C80C8D5F0241861F

188.42.34.64

302 Found

0 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007FA225D763C80C8D5F0241861F
IP
188.42.34.64:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?bidder_id=73&external_user_id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: /match?bidder_id=73&external_user_id=0100007FA225D763C80C8D5F0241861F&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:19 GMT; Path=/; Domain=.betweendigital.com
tuuid=8fbaa182-5046-521e-bd49-b01cde9e95bf; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:19 GMT; Path=/; Domain=.betweendigital.com
ut=Y9clowABBbjhNK0wxNUOfcKvauZWUjRHK0BmlQ==; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:19 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
382d5e4fde742fed0500bbad5d87b706
fe482c26d1809c9a24135802aecfa6bbcf5080f1
eb217e6780a50f976676c84d6bb0833e6157b032f720a65ca8812275aadf5a63

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB217E6780A50F976676C84D6BB0833E6157B032F720A65CA8812275AADF5A63"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17101
Expires: Mon, 30 Jan 2023 06:49:20 GMT
Date: Mon, 30 Jan 2023 02:04:19 GMT
Connection: keep-alive

www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D

193.3.184.137

302 Found

154 B

URL HTTP/2
www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 30 Jan 2023 02:04:19 GMT
content-type: text/html
content-length: 154
location: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=0100007FA225D763D00C095F02F5D10C
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
75a5500127902348d80359c36c55b587
f8adb4286602ef7ffdc6db3beb2c9a3ee505853b
6d5a10b611936cffaf6aec9e431d70842e3476efae0b402d6cc6c3489e5e94a9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 02:18:44 GMT
Expires: Sat, 04 Feb 2023 02:18:43 GMT
Etag: "f8adb4286602ef7ffdc6db3beb2c9a3ee505853b"
Cache-Control: max-age=432263,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916a2dd481d1c06-OSL

ocsp.globalsign.com/alphasslcasha256g4

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/alphasslcasha256g4
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1437 bytes)
Hash
9c4ef7f494d10a95648d47160b41d685
01d7f6f34bb3ffbcd0ffec26135edfbc3e0e913b
c7c61333dd1995bddac778f9d8410e71be5afa2c93a9daba04e4b782c6688952

HTTP Headers

POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Thu, 02 Feb 2023 23:42:29 GMT
ETag: "01d7f6f34bb3ffbcd0ffec26135edfbc3e0e913b"
Last-Modified: Sun, 29 Jan 2023 23:42:30 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2569
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2ddabe8b50f-OSL

ocsp.usertrust.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
0e897c0ed51a17b199fe1b0e0c57c362
2f176923d551b1d80215e2ca1701020387a763b0
aae436e55c60fdf5316f181e6f8b16c3f1965733a268e4106f62b0511203c22c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 16:18:24 GMT
Expires: Thu, 02 Feb 2023 16:18:23 GMT
Etag: "2f176923d551b1d80215e2ca1701020387a763b0"
Cache-Control: max-age=600601,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 516
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2ddba8bb4f4-OSL

ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007FA225D763C80C8D5F0241861F&crf=1

188.42.34.64

200 OK

68 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007FA225D763C80C8D5F0241861F&crf=1
IP
188.42.34.64:0
ASN
#7979 SERVERS-COM

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

HTTP Headers

GET /match?bidder_id=73&external_user_id=0100007FA225D763C80C8D5F0241861F&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:17 GMT; Path=/; Domain=.betweendigital.com
tuuid=c6ecf10f-9394-521e-842a-70c3e7fd5562; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:17 GMT; Path=/; Domain=.betweendigital.com
ut=Y9cloQAKWHCHTtASzw_dNjjttQhiUrUnatxzvg==; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:17 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2

tag.digitaltarget.ru/adcm.js

185.15.175.158

200 OK

3.1 kB

URL HTTP/1.1
tag.digitaltarget.ru/adcm.js
IP
185.15.175.158:0
ASN
#43226 SafeData LLC

File type
ASCII text, with very long lines (3051), with no line terminators
Size
3.1 kB (3051 bytes)
Hash
e7097284185069f52fc736bcd50cda13
1cdfdf2d869841202079ddf91e0a00a8610812e6
40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80

HTTP Headers

GET /adcm.js HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/javascript
Content-Length: 3051
Last-Modified: Mon, 30 Jan 2023 01:34:18 GMT
Connection: keep-alive
ETag: "63d71e9a-beb"
Accept-Ranges: bytes

ad.mail.ru/cm.gif?p=48&id=0100007FA225D763C80C8D5F0241861F

95.163.41.56

200 OK

43 B

URL HTTP/2
ad.mail.ru/cm.gif?p=48&id=0100007FA225D763C80C8D5F0241861F
IP
95.163.41.56:0
ASN
#47764 Mail.Ru LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /cm.gif?p=48&id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 02:04:19 GMT
content-type: image/gif
content-length: 43
set-cookie: VID=2b-i2R0xIg2F0020C306C72F:::0-0-0-8f17e63:CAASEO1wedb_s6ZS1_R0qyBxg8IaYCXcr5I-2A3_PHvHULY95K8upifsHBJSBWUe5bsya6BAEV3O2UBiUIsILGVzGSGXc-63ApWPvmRXixIr8MMgMQPI91AI1H4H4m6q0VhJImxKKqCUW925CU4RuxIQ4gjzsA; path=/; expires=Wed, 31-Jan-24 02:04:19 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
expires: Mon, 30 Jan 2023 08:04:19 GMT
cache-control: max-age=21600
last-modified: Mon, 30 Jan 2023 02:04:19 GMT
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
X-Firefox-Spdy: h2

ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=0100007FA225D763D00C095F02F5D10C

81.222.128.215

200 OK

42 B

URL HTTP/1.1
ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=0100007FA225D763D00C095F02F5D10C
IP
81.222.128.215:0
ASN
#20597 PVimpelCom

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /cgi-bin/sync.cgi?ssp_id=43&external_id=0100007FA225D763D00C095F02F5D10C HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive

ocsp.godaddy.com/

192.124.249.22

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.22:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
264ded5ab7534a2df48979e7bdeb1b3d
1fcc8103f8fa054e194b59077e97fe5449388eb5
837c19c546706e9180c464c51aae9a0dcd188a7928c4d06b8935c3307c685ef1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 29 Jan 2023 22:26:28 GMT
Expires: Mon, 30 Jan 2023 22:26:28 GMT
ETag: "1fcc8103f8fa054e194b59077e97fe5449388eb5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
dce92baa9ebbd21dbc62a8429e61e6a4
84a5db29bee4524838a3ffaade9ec4290358ad46
883c4e93a65158eea160b6755e74e7f70dbdc7722f385097fbfbdc1c902fb645

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 02 Feb 2023 22:46:52 GMT
ETag: "84a5db29bee4524838a3ffaade9ec4290358ad46"
Last-Modified: Sun, 29 Jan 2023 22:46:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3388
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2ddfc02b50f-OSL

x01.aidata.io/0.gif?pid=9401454&id=0100007FA225D763C80C8D5F0241861F

89.108.119.28

302 Found

0 B

URL HTTP/2
x01.aidata.io/0.gif?pid=9401454&id=0100007FA225D763C80C8D5F0241861F
IP
89.108.119.28:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /0.gif?pid=9401454&id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Mon, 30 Jan 2023 02:04:19 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=9401454&id=0100007FA225D763C80C8D5F0241861F&bounce=1
expires: Mon, 30 Jan 2023 02:04:18 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Mon, 30 Jan 2023 02:04:18 GMT
set-cookie: __upin=qB5Ha5VDk7NVYViX0uQOtA;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1675044259;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2

sm.rtb.mts.ru/p?ssp=sape&id=0100007FA225D763C80C8D5F0241861F

217.66.147.41

301 Moved Permanently

0 B

URL HTTP/1.1
sm.rtb.mts.ru/p?ssp=sape&id=0100007FA225D763C80C8D5F0241861F
IP
217.66.147.41:0
ASN
#29209 MTS PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sape&id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=30&exu=0100007FA225D763C80C8D5F0241861F
Set-Cookie: dspid=45bd8001-6dd9-4640-8c63-c8d4172f3da0; expires=Sun, 21 Jan 2024 02:04:19 GMT; domain=.mts.ru; path=/; secure; SameSite=None

ocsp.globalsign.com/gseccovsslca2018

104.18.21.226

200 OK

938 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
938 B (938 bytes)
Hash
7991b7ce092b3c1d55d9afb464e5fd5a
03fa559b74503a843487357698acaa9a6a8297df
ecc087018a993015dc72988ae3af582f4ae73df5135b3c7a856e857673fe077b

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Fri, 03 Feb 2023 01:18:55 GMT
ETag: "03fa559b74503a843487357698acaa9a6a8297df"
Last-Modified: Mon, 30 Jan 2023 01:18:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 818
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916a2ddfd30b51b-OSL

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:04:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D

77.245.57.72

400 Bad Request

22 B

URL HTTP/1.1
sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
IP
77.245.57.72:0
ASN
#36057 WEBAIR-INTERNET-MTL

File type
ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
b0b11e1c78b526b61477f8e9ee540be0
d5e73002987ff54626542b116d98a8f4aa9ee2eb
4ca18c247df52dd22650bd7f72f71d7c98102243b0ec474f683c6a279ad3a668

HTTP Headers

GET /user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D HTTP/1.1
Host: sync.adkernel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 400 Bad Request
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Length: 22
Connection: close
Cache-Control: no-store
Age: 0
Pragma: no-cache

ads.betweendigital.com/match?bidder_id=98&external_user_id=NjlhOWJjMzcyZDk4Mzc1

188.42.34.64

302 Found

0 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=98&external_user_id=NjlhOWJjMzcyZDk4Mzc1
IP
188.42.34.64:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?bidder_id=98&external_user_id=NjlhOWJjMzcyZDk4Mzc1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: /match?bidder_id=98&external_user_id=NjlhOWJjMzcyZDk4Mzc1&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:19 GMT; Path=/; Domain=.betweendigital.com
tuuid=9cf1808e-7d0a-521e-ae66-a867cdb18dc4; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:19 GMT; Path=/; Domain=.betweendigital.com
ut=Y9clowALVlipxutxrMstY8ZZHZa3tAntRcBK9w==; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:19 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2

redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect

35.190.24.218

307 Temporary Redirect

0 B

URL HTTP/2
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
IP
35.190.24.218:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 307 Temporary Redirect
server: Weborama Collect Frontend
date: Mon, 30 Jan 2023 02:04:19 GMT
content-length: 0
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=3658441238
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Mon, 30 Jan 2023 02:04:19 GMT
set-cookie: AFFICHE_W=BNOHkJLDCX0E68; expires=Tue, 27 Feb 2024 02:04:19 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sape-sync.rutarget.ru/sync

45.9.24.193

302 Moved Temporarily

0 B

URL HTTP/1.1
sape-sync.rutarget.ru/sync
IP
45.9.24.193:0
ASN
#208677 Cloud technology Limited (Ltd.)

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync HTTP/1.1
Host: sape-sync.rutarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Length: 0
Connection: close
Location: https://www.acint.net/match?dp=104&euid=6dow3AGJknTk
P3P: CP="This is not a P3P policy. Please visit http://rutarget.ru/p3p/ to get more information."
Set-Cookie: userId=6dow3AGJknTk; Path=/; Domain=.rutarget.ru; Expires=Sat, 29 Jul 2023 02:04:19 GMT; SameSite=None; Secure

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
673b3376c8d09e8b7b6559f118c9c8a9
7c9bbb4dd4a5b36424e357a64734c27698898e63
c8185d7be91fd2aec27ef692ad62581187d99f8d80249f48c096171e4fa0f2f5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 14:03:28 GMT
Expires: Sat, 04 Feb 2023 14:03:27 GMT
Etag: "7c9bbb4dd4a5b36424e357a64734c27698898e63"
Cache-Control: max-age=474547,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916a2dd0910b521-OSL

ads.betweendigital.com/match?bidder_id=98&external_user_id=NjlhOWJjMzcyZDk4Mzc1&crf=1

188.42.34.64

200 OK

68 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=98&external_user_id=NjlhOWJjMzcyZDk4Mzc1&crf=1
IP
188.42.34.64:0
ASN
#7979 SERVERS-COM

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

HTTP Headers

GET /match?bidder_id=98&external_user_id=NjlhOWJjMzcyZDk4Mzc1&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:20 GMT; Path=/; Domain=.betweendigital.com
tuuid=7d53fdc7-a3ab-521e-86ee-8083e539a527; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:20 GMT; Path=/; Domain=.betweendigital.com
ut=Y9clpAACGxA7TN54_CCYyrI3QxJDrvnxjj1YGA==; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:20 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2

px.adhigh.net/p/cm/sape?u=0100007FA225D763C80C8D5F0241861F

193.232.150.69

302 Found

0 B

URL HTTP/2
px.adhigh.net/p/cm/sape?u=0100007FA225D763C80C8D5F0241861F
IP
193.232.150.69:0
ASN
#48061 Limited Liability Company GPM Digital Technologies

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/cm/sape?u=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Mon, 30 Jan 2023 02:04:19 GMT
content-length: 0
x-backend-id: f13-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=xA2WeRKVEJr.AikABlGGAGsG5A;Path=/;Domain=.adhigh.net;Expires=Tue, 30-Jan-2024 02:04:19 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/sape?u=0100007FA225D763C80C8D5F0241861F&bounced=1
X-Firefox-Spdy: h2

x01.aidata.io/0.gif?pid=9401454&id=0100007FA225D763C80C8D5F0241861F&bounce=1

89.108.119.28

204 No Content

0 B

URL HTTP/2
x01.aidata.io/0.gif?pid=9401454&id=0100007FA225D763C80C8D5F0241861F&bounce=1
IP
89.108.119.28:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /0.gif?pid=9401454&id=0100007FA225D763C80C8D5F0241861F&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 02:04:19 GMT
expires: Mon, 30 Jan 2023 02:04:18 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Mon, 30 Jan 2023 02:04:18 GMT
set-cookie: __upin=hOfDcwtEq8Gede+2Oi95fw;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1675044259;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2

www.acint.net/match?dp=104&euid=6dow3AGJknTk

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=104&euid=6dow3AGJknTk
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=104&euid=6dow3AGJknTk HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:19 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=3658441238

35.190.24.218

204 No Content

0 B

URL HTTP/2
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=3658441238
IP
35.190.24.218:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=3658441238 HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: Weborama Collect Frontend
date: Mon, 30 Jan 2023 02:04:18 GMT
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Mon, 30 Jan 2023 02:04:19 GMT
set-cookie: AFFICHE_W=; expires=Tue, 10 Nov 2009 23:00:00 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sm.rtb.mts.ru/match/second?ssp=30&exu=0100007FA225D763C80C8D5F0241861F

217.66.147.41

200 OK

0 B

URL HTTP/1.1
sm.rtb.mts.ru/match/second?ssp=30&exu=0100007FA225D763C80C8D5F0241861F
IP
217.66.147.41:0
ASN
#29209 MTS PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/second?ssp=30&exu=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT

ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D

188.42.34.64

302 Found

0 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
IP
188.42.34.64:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:20 GMT; Path=/; Domain=.betweendigital.com
tuuid=2030e0a2-efc3-521e-81ec-b4c5e23b9161; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:20 GMT; Path=/; Domain=.betweendigital.com
ut=Y9clpAAGi8jaOHKSisenRopfN7WVm6VKfRcDWw==; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:20 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2

tag.digitaltarget.ru/processor.js?i=758636582348149

185.15.175.158

200 OK

16 kB

URL HTTP/1.1
tag.digitaltarget.ru/processor.js?i=758636582348149
IP
185.15.175.158:0
ASN
#43226 SafeData LLC

File type
ASCII text, with very long lines (15892), with no line terminators
Size
16 kB (15892 bytes)
Hash
736e2fb1da94f3277e3f931048c1b9f3
196387db95a17da825b629de3542eff901b09905
4569d4e1b0e52b6316681f7312674f43ecb2b72ea8ab4adb2375e3686862c7dc

HTTP Headers

GET /processor.js?i=758636582348149 HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/javascript
Content-Length: 15892
Last-Modified: Mon, 30 Jan 2023 01:34:20 GMT
Connection: keep-alive
ETag: "63d71e9c-3e14"
Accept-Ranges: bytes

ocsp.godaddy.com/

192.124.249.22

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.22:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
264ded5ab7534a2df48979e7bdeb1b3d
1fcc8103f8fa054e194b59077e97fe5449388eb5
837c19c546706e9180c464c51aae9a0dcd188a7928c4d06b8935c3307c685ef1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 29 Jan 2023 22:26:28 GMT
Expires: Mon, 30 Jan 2023 22:26:28 GMT
ETag: "1fcc8103f8fa054e194b59077e97fe5449388eb5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1

188.42.34.64

200 OK

68 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
IP
188.42.34.64:0
ASN
#7979 SERVERS-COM

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

HTTP Headers

GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:19 GMT; Path=/; Domain=.betweendigital.com
tuuid=e86bffc5-5363-521e-817b-67dde2ac427e; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:19 GMT; Path=/; Domain=.betweendigital.com
ut=Y9clowAHanDjFmZZZjyHsBeqF6z1ANWCfYJT4A==; Max-Age=31536000; Expires=Tue, 30 Jan 2024 02:04:19 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2

px.adhigh.net/p/cm/sape?u=0100007FA225D763C80C8D5F0241861F&bounced=1

193.232.150.69

200 OK

49 B

URL HTTP/2
px.adhigh.net/p/cm/sape?u=0100007FA225D763C80C8D5F0241861F&bounced=1
IP
193.232.150.69:0
ASN
#48061 Limited Liability Company GPM Digital Technologies

File type
GIF image data, version 89a, 1 x 1\012- data
Size
49 B (49 bytes)
Hash
889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32

HTTP Headers

GET /p/cm/sape?u=0100007FA225D763C80C8D5F0241861F&bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 02:04:19 GMT
content-type: image/gif
content-length: 49
x-backend-id: f13-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e475adb38619b1ced4af8b8ca473110
246fa62bdf1b38a9f6bd0ef1f223052ed3bc7137
e38dd6d492ab354eda38f8c762239e298e098b6f8446430b010aee19c80c0306

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E38DD6D492AB354EDA38F8C762239E298E098B6F8446430B010AEE19C80C0306"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8492
Expires: Mon, 30 Jan 2023 04:25:51 GMT
Date: Mon, 30 Jan 2023 02:04:19 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e475adb38619b1ced4af8b8ca473110
246fa62bdf1b38a9f6bd0ef1f223052ed3bc7137
e38dd6d492ab354eda38f8c762239e298e098b6f8446430b010aee19c80c0306

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E38DD6D492AB354EDA38F8C762239E298E098B6F8446430B010AEE19C80C0306"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8492
Expires: Mon, 30 Jan 2023 04:25:51 GMT
Date: Mon, 30 Jan 2023 02:04:19 GMT
Connection: keep-alive

dmg.digitaltarget.ru/1/1093/i/i?i=138627255160115.40502850064413&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_noorient

185.15.175.148

307 Temporary Redirect

0 B

URL HTTP/1.1
dmg.digitaltarget.ru/1/1093/i/i?i=138627255160115.40502850064413&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP
185.15.175.148:0
ASN
#43226 SafeData LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/1093/i/i?i=138627255160115.40502850064413&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675044259819&i=138627255160115.40502850064413&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_noorient
Set-Cookie: viuserid=e5mmR3WbBtFmvGb7QzpM; Max-Age=93312000; Expires=Wed, 14 Jan 2026 02:04:19 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

dmg.digitaltarget.ru/1/1093/i/i?i=138627255160115.938663846417526&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient

185.15.175.148

307 Temporary Redirect

0 B

URL HTTP/1.1
dmg.digitaltarget.ru/1/1093/i/i?i=138627255160115.938663846417526&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
185.15.175.148:0
ASN
#43226 SafeData LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/1093/i/i?i=138627255160115.938663846417526&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675044259826&i=138627255160115.938663846417526&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
Set-Cookie: viuserid=H3V-uvoLUay3id.7GSgK; Max-Age=93312000; Expires=Wed, 14 Jan 2026 02:04:19 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675044259819&i=138627255160115.40502850064413&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_noorient

185.15.175.148

200 OK

64 B

URL HTTP/1.1
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675044259819&i=138627255160115.40502850064413&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP
185.15.175.148:0
ASN
#43226 SafeData LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
64 B (64 bytes)
Hash
ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8

HTTP Headers

GET /awg/custom/1093/i/i?call_source=awg&ts=1675044259819&i=138627255160115.40502850064413&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675044259826&i=138627255160115.938663846417526&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient

185.15.175.148

200 OK

64 B

URL HTTP/1.1
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675044259826&i=138627255160115.938663846417526&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
185.15.175.148:0
ASN
#43226 SafeData LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
64 B (64 bytes)
Hash
ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8

HTTP Headers

GET /awg/custom/1093/i/i?call_source=awg&ts=1675044259826&i=138627255160115.938663846417526&a=77&e=0100007FA225D763C80C8D5F0241861F&pref=http%3A%2F%2Fwww.astrocom-electronics.com%2F&c=ss:77.up:0100007FA225D763C80C8D5F0241861F.sync:up.xdua:dupLQZ0B_5rV_EtuZ7gCveMY.xps:xpsIqFYfT_xVwC5cWe2op90Pk.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 02:04:19 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 2
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

www.acint.net/ping/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=67795191&dT=2023-01-30T02%3A04%3A31.084

193.3.184.137

302 Moved Temporarily

142 B

URL HTTP/1.1
www.acint.net/ping/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=67795191&dT=2023-01-30T02%3A04%3A31.084
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /ping/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=67795191&dT=2023-01-30T02%3A04%3A31.084 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.astrocom-electronics.com/

HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Mon, 30 Jan 2023 02:04:21 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/ping/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=67795191&dT=2023-01-30T02%3A04%3A31.084

www.acint.net/ping/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=67795191&dT=2023-01-30T02%3A04%3A31.084

193.3.184.137

200 OK

43 B

URL HTTP/2
www.acint.net/ping/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=67795191&dT=2023-01-30T02%3A04%3A31.084
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /ping/?v=0.5.0&uid=0cd484d2-e012-475a-a03f-ffe5295b049d&dp=10&tz=%2B00%3A00&nc=67795191&dT=2023-01-30T02%3A04%3A31.084 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.astrocom-electronics.com/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfCQzQDNH1AqJ6YQYDWzKhm4D7gf22pX7udETD; cSyncDp7v2=1675044258; cSyncDp14v3=1675044258; cSyncDp17=1675044258; cSyncDp32=1675044258; cSyncDp45v3=1675044258; cSyncDp53v2=1675044258; cSyncDp54v2=1675044258; cSyncDp62=1675044258; cSyncDp67v2=1675044258; cSyncDp68=1675044258; cSyncDp71=1675044258; cSyncDp77=1675044258; cSyncDp84=1675044258; cSyncDp85=1675044258; cSyncDp95v3=1675044258; cSyncDp98v2=1675044258; cSyncDp101=1675044258; cSyncDp104v2=1675044258; cSyncDp107=1675044258; cSyncDp110=1675044258; cSyncDp111v2=1675044258; cSyncDp112v2=1675044258; cSyncDp125v3=1675044258; cSyncDp126=1675044258; cSyncDp127=1675044258; cSyncDp129=1675044258; cSyncDp136v2=1675044258; cSyncDp138=1675044258; cSyncDp146=1675044258; cSyncDp148=1675044258; cSyncDp149v2=1675044258; cSyncDp151=1675044258; cSyncDp178=1675044258; cSyncDp179=1675044258; cSyncDp186=1675044258; cSyncDp221=1675044258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:21 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

adlmerge.com/merge_gpsid/?sid=50&id=0100007FA225D763C80C8D5F0241861F

95.211.66.35

200 OK

0 B

URL HTTP/2
adlmerge.com/merge_gpsid/?sid=50&id=0100007FA225D763C80C8D5F0241861F
IP
95.211.66.35:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /merge_gpsid/?sid=50&id=0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: adlmerge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.16.0
date: Mon, 30 Jan 2023 02:04:19 GMT
content-type: image/gif
iseu: eu
X-Firefox-Spdy: h2

www.acint.net/mc/?dp=10&tc=1

193.3.184.137

200 OK

0 B

URL HTTP/2
www.acint.net/mc/?dp=10&tc=1
IP
193.3.184.137:0
ASN
#50214 QWARTA LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mc/?dp=10&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.astrocom-electronics.com/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPXJaJfjQzIH4ZBAlLk1698+NRZNgvrnIcn7Nbmg7Xy
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 02:04:18 GMT
content-type: text/html
set-cookie: cSyncDp7v2=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1675044258; expires=Tue, 31-Jan-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v2=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp54v2=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp77=1675044258; expires=Mon, 13-Feb-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp84=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v2=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1675044258; expires=Mon, 13-Feb-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp111v2=1675044258; expires=Mon, 13-Feb-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp112v2=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v3=1675044258; expires=Tue, 14-Feb-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp138=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v2=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp179=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1675044258; expires=Wed, 01-Mar-23 02:04:18 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2

an.yandex.ru/mapuid/sapeis/0100007FA225D763C80C8D5F0241861F

213.180.204.90

302 Found

0 B

URL HTTP/2
an.yandex.ru/mapuid/sapeis/0100007FA225D763C80C8D5F0241861F
IP
213.180.204.90:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mapuid/sapeis/0100007FA225D763C80C8D5F0241861F HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/sapeis/0100007FA225D763C80C8D5F0241861F?redir-setuniq=1
date: Mon, 30 Jan 2023 02:04:19 GMT
set-cookie: yandexuid=7044544761675044259; domain=.yandex.ru; path=/; expires=Thu, 27-Jan-2033 02:04:19 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 30 Jan 2023 02:04:19 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Mon, 30 Jan 2023 02:04:19 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ssp.bidvol.com/usersync?dspcsid=8&redirect=1

65.109.65.188

302 Found

0 B

URL HTTP/2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP
65.109.65.188:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx/1.22.0
date: Mon, 30 Jan 2023 02:04:18 GMT
x-request-id: 2061dcaf-98a7-43d2-8bfe-f9becf94f6f9
set-cookie: bvuid=qnfbn4xn7e; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=qnfbn4xn7e; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
location: https://www.acint.net/match?dp=129&euid=qnfbn4xn7e
X-Firefox-Spdy: h2

an.yandex.ru/mapuid/sapeis/0100007FA225D763C80C8D5F0241861F?redir-setuniq=1

213.180.204.90

200 OK

0 B

URL HTTP/2
an.yandex.ru/mapuid/sapeis/0100007FA225D763C80C8D5F0241861F?redir-setuniq=1
IP
213.180.204.90:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mapuid/sapeis/0100007FA225D763C80C8D5F0241861F?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
date: Mon, 30 Jan 2023 02:04:19 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 30 Jan 2023 02:04:19 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Mon, 30 Jan 2023 02:04:19 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (30)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML