pugmarktagua.com/1clkn/60028
200 OK 6 B URL GET pugmarktagua.com/1clkn/60028
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subjectpugmarktagua.com
FingerprintF0:75:F2:51:FD:44:36:04:26:0C:3B:2C:F5:EC:73:86:FF:4D:44:98
ValiditySun, 19 Jan 2025 20:07:29 GMT - Sat, 19 Apr 2025 20:07:28 GMT
File type ASCII text, with no line terminators
Hash 9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /1clkn/60028 HTTP/1.1
Host: pugmarktagua.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Mar 2025 02:26:00 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2B2dUFnYQDeASKlPDqi1fwkRT6B%2BtCuykV9PYSE32bTH6T8TwvKB7gb8kZ4afgeGKsbdqaV21ZD62o%2Br5tGl72vC1ZxceR46zWzol%2BJhfhtC7Cus5tES4TabJq6AYjKcPjof6aqza7jhD3VmiZIV4OMWdIe2v2lWwRItJiIaSvytJovg4hPoxFyJ7rIyt9ZL9EYNYizO%2BQviktj2V%2BQcDKPE883N9m4UZjl07JxEc8WSEJ%2FgtOg3A0GfuNVNJ6deYGmFl2%2F%2F73ONxZiUTSpgZCbNw72R%2B3Z03l; expires=Wed, 26-Mar-2025 02:26:00 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Wed, 26-Mar-2025 02:26:00 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
ukankingwithea.com/
200 OK 26 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:7E:37:44:90:B9:05:B4:82:CD:5A:71:84:A1:C8:84:66:33:BC:78
ValiditySat, 01 Mar 2025 13:28:14 GMT - Fri, 30 May 2025 14:26:54 GMT
File type ASCII text, with no line terminators
Hash 41dfca360ac6a513640ae5b6dcaa7231
890bb52290e87a80420c88461fe15e7063af65d8
31d5d455747e8926f5c8664d19ac6307c0a7be8874e1d5e4dd47da55a183f30b
GET / HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: text/plain
set-cookie: csu=796665815506705@1@1742869561; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cCNnNVaxL50e5%2F1BFF%2BQOki9Ytx9kywpOfUSkR1obk%2FZRp%2FPcKKUxgt9%2FpOhMFPGgPD5bRyJAGiw1utw7x9In9E1Jg5AdqUA1Tjoon38KgEL3dr7aEEhR%2BdAccqbCb7eKG2d%2BQg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af6092df7b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=633&min_rtt=457&rtt_var=203&sent=86&recv=22&lost=0&retrans=0&sent_bytes=107663&recv_bytes=1135&delivery_rate=49504273&cwnd=256&unsent_bytes=0&cid=35640e871e905751&ts=165&x=0"
X-Firefox-Spdy: h2
ghb1.adtelligent.com/v2/auction/
200 OK 4.2 kB URL POST ghb1.adtelligent.com/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerZeroSSL
Subjectghb1.adtelligent.com
Fingerprint0D:D0:49:54:EC:15:39:A2:9D:39:48:10:A3:D3:92:55:81:38:C2:43
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (4264), with no line terminators
Hash 7a168e53caf1c7eee5d3f42df53fef39
8842a34f82a49a0ecae748fa4e99a242ea2291f1
a194d35848a0bc6734bfdc8ca96b42b25692e5cd4d3fdf4104cd1116561f89f9
POST /v2/auction/ HTTP/1.1
Host: ghb1.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 321
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Tue, 25 Mar 2025 02:26:02 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1218
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
302 Found 49 kB IP
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /suo6JnQoG HTTP/1.1
Host: cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 25 Mar 2025 02:25:58 GMT
content-type: text/html; charset=UTF-8
location: https://cutyion.com/suo6JnQoG
cache-control: must-revalidate, no-cache, no-store, private
pragma: no-cache
expires: -1
x-frame-options: SAMEORIGIN, SAMEORIGIN
set-cookie: origin=cuty; expires=Tue, 24 Feb 2026 02:25:58 GMT; Max-Age=29030400; path=/; secure; httponly; samesite=lax
XSRF-TOKEN=eyJpdiI6ImNTMVQrZW5NM2djVUl6SE95WTAyVXc9PSIsInZhbHVlIjoiSUN5TmVEQ09pM3dvMW03T1JRWGw2WVFGdGRYRGRwajJMZ21RSnltZmppeGprSDhtTkE2YWJqL0FxUW41VGMySVBUd1VlWGU0bCs1UHpnMjI1V2JKZ29Id2VsMzRjeVpDbEhOamdZWjI2aGZPZnJVYzNTc2R2Zzk1MHBta25pd0wiLCJtYWMiOiI5YzA1NmZlZjIyODBlMWMwMzRmYzc1ODgwZTIyZWU5MGI1MWQ1YTRhZTMwZjgxMDFiMGI1OGE3ODRkOWJjMGFmIiwidGFnIjoiIn0%3D; expires=Tue, 01 Apr 2025 02:25:58 GMT; Max-Age=604800; path=/; samesite=lax
cutyio_session=eyJpdiI6Ik9ETk04NG9ZRVU4SllnMklRUzFKNlE9PSIsInZhbHVlIjoiN1pJaEduU2dVaEc3NFM5aGxGN1ZRZmJFYkZwOEIyL01NUDJ3c01od0ZLeE0rK203Sm9Rby93em9LUEZ5bVM2NzlDQncvMk1TT1oyQ2JpcFg4dUtkdXU0dHdoT3U2SDZSc203dXYxb2hKQkV1OFZSekxCU0YvNmNNSmRSMjZlN2UiLCJtYWMiOiI4MGQ5N2I4NjRkZjUyNTIzM2Q1OTEzYmU2NDk3ZmFkYTFiN2RlMjc3NGUxZWIwYzFiZmY3Y2QwMGFjMTMxYmI5IiwidGFnIjoiIn0%3D; expires=Tue, 01 Apr 2025 02:25:58 GMT; Max-Age=604800; path=/; httponly; samesite=lax
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=44mT1BlOIeXMRgvO32unLxtAFCnyTDogPbTAQdU0CQ%2FLLtYjkhqGFhK6EUUDmXxd8DCHUwzcKw704AmsaaTA46fZnAlaHMSVAw%2BDi377VJ3qSBx08OwFTyJE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af5f09bd40b55-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5727&min_rtt=408&rtt_var=10637&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3263&recv_bytes=1246&delivery_rate=8211720&cwnd=254&unsent_bytes=0&cid=782105fc8f12ec29&ts=647&x=0"
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1419
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_scp87rett1j85b46a
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af60bbd945699-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
csync.smilewanted.com/set_partner_userid_get/adaptmx/?gdpr=0
200 OK 0 B URL GET csync.smilewanted.com/set_partner_userid_get/adaptmx/?gdpr=0
IP
Requested by https://csync.smilewanted.com/
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /set_partner_userid_get/adaptmx/?gdpr=0 HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://csync.smilewanted.com/
DNT: 1
Connection: keep-alive
Cookie: sw_user_params_infos=8sdRREvsw7LjLys0YvGw88pXwwb2Y4nARNi%2F%2BgfwaOidEnxm6w2LL1rmIKi46SC2cbDzzhyhkBPBQnSSuNMQggETzxb2ORoHNPFOLNmDEN6Mia0dNse%2BBrdIA0FOk2u6Alf0suVb8sRbxN7HCi3Xiw%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:06 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af6283c591c02-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-en.png
200 OK 25 kB URL GET cdn.cuty.io/images/shared/locale-en.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Hash 60b5c13f116a3bae2e4adddd1e7b971d
58a924b5673274a280f38c05e3d5e89a700e2c3d
30d039e5187c255a96b025d81ab3be8bbc1874168079d3a3219a3b75665e284f
GET /images/shared/locale-en.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 24647
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-6047"
expires: Tue, 10 Feb 2026 19:48:04 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3355988
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m6kxRji%2By%2BEw%2B0SlPy8IbNW7VZg4hhtUVH3YG9Oj2gzpyQ3GDNFO2vXh5dVY99I3JXzbx9bueZLeLyIz0sw9QTbzjbE1scmSkuSiagj5PAjH8bXqzYY1la50HqtA3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6017dc256aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=676&min_rtt=392&rtt_var=211&sent=102&recv=45&lost=0&retrans=0&sent_bytes=114188&recv_bytes=2542&delivery_rate=15135888&cwnd=114&unsent_bytes=16240&cid=03a635d91bd96ad4&ts=84&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/js/layouts/base.js?id=c9af373408ef250e890e1cfc6dee6e27
200 OK 106 kB URL GET cdn.cuty.io/js/layouts/base.js?id=c9af373408ef250e890e1cfc6dee6e27
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
Size 106 kB (106169 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/layouts/base.js?id=c9af373408ef250e890e1cfc6dee6e27 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: application/javascript
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
vary: Accept-Encoding
etag: W/"67485f94-19eb9"
expires: Wed, 25 Feb 2026 02:18:55 GMT
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 947929
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ub319DXejqyqlxG1WKWxuIU1smkVkDgsFV3b3Yj0%2Fum72sXkaoO1OvCfFoJa4AimpGHYJTGqMt5D0d3U9WlmaHPX4fWBJ27LK4JWp%2BGWTL3gQid7Z71WrKm3tgyH2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af601bded56aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=652&min_rtt=383&rtt_var=203&sent=665&recv=244&lost=0&retrans=0&sent_bytes=899445&recv_bytes=3253&delivery_rate=59639846&cwnd=220&unsent_bytes=0&cid=03a635d91bd96ad4&ts=126&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560902
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560902
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560902 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: text/html
content-length: 167
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:26:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a7VUp1jmSAWzh2ilMPL6HIGoqGENKt93FPzffwsaceXQ6fVHSCpe%2FV0gEocIQ0Rz0YATkv5jgz%2BqC255gkeRLTiWNV5m7QBCANBaQQkV6d2FZjVOhh4ut3MnzaGu5oXT9mIpsDxRP%2FbYke8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6045a1bb4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=4946&min_rtt=437&rtt_var=8814&sent=29&recv=23&lost=0&retrans=0&sent_bytes=8967&recv_bytes=1816&delivery_rate=8238975&cwnd=257&unsent_bytes=0&cid=433145a59e57db7e&ts=330&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/paypal.png
200 OK 25 kB URL GET cdn.cuty.io/images/public/paypal.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 1600 x 456, 8-bit colormap, non-interlaced
Hash 48de132288c9e8873f23c67a3ce9ea33
a9e8a10f5323abfc22c7e1fd0da62bffb6a4f3be
b5bf12e42fca5c8e7bf614f3cacc6aaa41275acf4bebb3bfe1db2e5002c21777
GET /images/public/paypal.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 24721
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-6091"
expires: Tue, 10 Feb 2026 20:22:09 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3282087
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kukQJukSIiU8TrNSeGxZctCMpEYrcODnWPgazbL8XZ4lYEFbUc93%2Ba1bCmMmaTd%2F8s5dfLcGTJSj7IfZ%2FljXiCpNTVXe9QBvMZgk70rx9YhxT50C0clbVxaBitjSZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6016db556aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=758&min_rtt=392&rtt_var=351&sent=83&recv=39&lost=0&retrans=0&sent_bytes=89740&recv_bytes=2542&delivery_rate=18148612&cwnd=254&unsent_bytes=12832&cid=03a635d91bd96ad4&ts=77&x=0"
X-Firefox-Spdy: h2
gpp.netpub.media/17428695617020.7077690259543833/run.js?v=17428695617020.7077690259543833
200 OK 251 B URL GET gpp.netpub.media/17428695617020.7077690259543833/run.js?v=17428695617020.7077690259543833
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with no line terminators
Hash 945277581d767415edcae0911173c943
9a7e509c4b0cb318b6e32a93f88af95f21b5760b
874b90f5b2bf0b3dac07481e766603bed23e9e05d685873b50dce5eb8432e08d
GET /17428695617020.7077690259543833/run.js?v=17428695617020.7077690259543833 HTTP/1.1
Host: gpp.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
last-modified: Wed, 21 Feb 2024 16:05:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af608cb9d7127-OSL
content-encoding: br
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1675
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
200 OK 4.0 kB URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
File type JavaScript source, ASCII text, with very long lines (4130), with no line terminators
Hash 1da6b10c015c22548284bc6207c3c33f
50c0d6e62ebf85965e8ba064ce7e3e08e36d82a0
26a690bea36ca8851d70605b19e74a4eb1b9b882d13c203762187bbeea4bd213
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 980
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://cutyion.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
x-powered-by: Adtarget
etag: W/"f86-MJsP0pzFFoYC+2O4Ebq9oIrOHkY"
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FI2AkMYcg%2FIAFGG9tlIbVy5IYsl7HQkTIPfBSFROikpnQ5XKhheV8yfdNqYt5FGWgT5Qs2tuEl1C9pvBJMnELGnakhOyNr4RJE4dBCiDwR%2BBg3iNAFSKMrQ2R31lgQfW1hAX8wVMpeb7Q0Js%2FsE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af60d19135689-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1126&min_rtt=452&rtt_var=1122&sent=19&recv=18&lost=0&retrans=1&sent_bytes=6571&recv_bytes=5755&delivery_rate=5601547&cwnd=254&unsent_bytes=0&cid=5eea72440a4f3224&ts=505&x=0"
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 2005
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_18r2uzgh50xvj1k1
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af60fdf1d5699-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ssp-service.adtarget.biz/impression/collect?data=eyJuZXR3b3JrSWQiOiI2NzUwMzUzY2M3ZGQyY2NmNmUwMDlkMTgiLCJiaWRkZXJJZCI6ImFkZm9ybSIsInB1Ymxpc2hlcklkIjoiY3V0eWlvbi5jb20iLCJzaXplIjoiMzAweDI1MCIsImRldmljZSI6ImRlc2t0b3AiLCJwcmljZSI6MS4wODAzNDc0NTM0NDgyOTc3LCJjb3VudHJ5IjoiTk9SIiwib3MiOiJ3aW5kb3dzIiwiYnJvd3NlciI6IkZpcmVmb3giLCJjdXJyZW5jeSI6IlVTRCIsIm1vZGVsIjoic3RhbmRhcmQiLCJtZWRpYVR5cGUiOiJiYW5uZXIiLCJhZFVuaXQiOiJ1bmtub3duIiwidG9rZW4iOiIwMGZmYjg0Zi1hNDBkLTQ3ODUtOTAwYS01Yzk1OTM1NDliMTMiLCJjb21taXNzaW9uX3N0YXR1cyI6MSwiY3JlYXRlZEF0IjoxNzQyODY5NTYyNTkxLCJlbnZpcm9ubWVudCI6IldFQiIsIm5ldHdvcmtSZXZlbnVlIjowfQ==&n=5548533711&p=cutyion.com&t=1742869562591
200 OK 35 B URL GET ssp-service.adtarget.biz/impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742869562591
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subjectssp-service.adtarget.biz
Fingerprint28:42:BD:28:0C:E5:24:5B:02:96:CE:18:7E:D7:11:00:91:D8:6B:17
ValidityWed, 19 Mar 2025 17:55:20 GMT - Tue, 17 Jun 2025 17:55:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742869562591 HTTP/1.1
Host: ssp-service.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cutyion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:04 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-powered-by: Adtarget
etag: W/"23-X71HIiL+uKIs9biqXcW44Tr4jis"
strict-transport-security: max-age=31536000; includeSubDomains
working-on: programmatic
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lp6BKcWUduYPdDbLJe05qKf0K8rogAYIWXPSaiUColDFgrtWStlGJLIgVItE86KgnOS2XutlRFJWRxgq%2BT8y2BAGuHIxeIsDqlOv0vvneKuIDHy4WbKT7oOqB5MUxaftrZy01P%2BdIBCEvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af617c94656be-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=984&min_rtt=460&rtt_var=257&sent=10&recv=13&lost=0&retrans=0&sent_bytes=4144&recv_bytes=2692&delivery_rate=3147826&cwnd=257&unsent_bytes=0&cid=07f6f14c917dcc8b&ts=1139&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560597
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560597
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560597 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: text/html
content-length: 167
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:26:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eEVp8GwqY0Ok%2BVzW2nilYvSnLLFCGDAi6FOz4bW8zjd5Mi8R0DEq8uKTznBtfz4DveSN%2BsqX0kg3GwVckZC%2B89WGweQYiOSL3nlMfIV1cjLwSPl86tPkbNQJ4NXRMiNQLr8o4h6hcjXalhg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af60288e4b4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=586&min_rtt=496&rtt_var=218&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3226&recv_bytes=1197&delivery_rate=7567944&cwnd=254&unsent_bytes=0&cid=433145a59e57db7e&ts=38&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0pmYTn%2BigujZDqRb4IUdGcvO34KRkR8%2Fl0l%2BfqvOXmfqx5PsE8wVDmbH21Nn8LuVw%2F7THeruEDklrGVCITrjLFkWvatmjCVik68e8439HN%2F%2FA0EJ%2FweSSrWX25q57pgdleEB2zn137KrVDABTf8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af60c3c5ab50f-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1250&min_rtt=386&rtt_var=1592&sent=9&recv=14&lost=0&retrans=0&sent_bytes=4112&recv_bytes=1492&delivery_rate=5134751&cwnd=255&unsent_bytes=0&cid=0f72dcd269875e28&ts=159&x=0"
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.admatic.com.tr/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.tg9olcazt3k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:06 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=admatic.com.tr; Expires=Mon, 23 Jun 2025 02:26:06 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=00zilQOFc9OxOA87EabCKSjghOAT3Kbj4MwQPa5I6Fd1%2B4YvG4jzPALufqipK13D%2FeUKPpx9Fpt61kQ42wPwrddAivIx56q5v39qlLIgU2PWSj%2BeJ9SILM1sBE8AYvASI4f5MJYD5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925af628eb1a5693-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1064&min_rtt=452&rtt_var=1181&sent=7&recv=11&lost=0&retrans=0&sent_bytes=2853&recv_bytes=1617&delivery_rate=2215761&cwnd=253&unsent_bytes=0&cid=5ff20599b4781d13&ts=88&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GUdQTmn67Gea51rVeM8rSVzLWV%2BQHkmCRj43valGdkfqfg83OUrtd16LdThLHqEhKezrXQeZW3eC%2F4gYfQt8szAwkS%2FZ4YWEeHGIv6zIdvW2NaR5s78x2KNsfiJgeAMwMCWFoxxuSpopzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62b78607130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1304&min_rtt=609&rtt_var=885&sent=7&recv=12&lost=0&retrans=0&sent_bytes=2862&recv_bytes=1773&delivery_rate=4701298&cwnd=253&unsent_bytes=0&cid=8048e3d71885c37b&ts=127&x=0"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 10:09:01 GMT
expires: Fri, 20 Mar 2026 10:09:01 GMT
cache-control: public, max-age=31536000
age: 404220
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVuw8ZCd6xVD_CVAFsRawlKUbAabQZRMDzPQc2usOrfQbJMCSgPj06JDP37-Lc4NPE2z1KDtYw&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1207885554%3A1742869563672859
403 Forbidden 0 B URL GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVuw8ZCd6xVD_CVAFsRawlKUbAabQZRMDzPQc2usOrfQbJMCSgPj06JDP37-Lc4NPE2z1KDtYw&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1207885554%3A1742869563672859
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint57:E3:38:DA:15:E9:22:1D:17:E2:12:42:3A:88:03:62:6E:F5:C0:53
ValidityMon, 10 Mar 2025 08:36:06 GMT - Mon, 02 Jun 2025 08:36:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVuw8ZCd6xVD_CVAFsRawlKUbAabQZRMDzPQc2usOrfQbJMCSgPj06JDP37-Lc4NPE2z1KDtYw&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1207885554%3A1742869563672859 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:26:03 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-WFCNWD98zBScPhfwbqWKHA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.google.com/tools/feedback/help_api.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ghelp/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.Iew5X21fS_0.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560606
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560606
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560606 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: text/html
content-length: 167
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:26:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OjSpOrW378ZYj16yH9PT%2BFQzRQGoUpbD5v30yXpDcz%2F7e9YD3FwRbD4%2BQM3taVh9IfwL6yD6hANs9B0HgyUhOqu5aJY%2F1QCCQOhM%2FeG3xvhpVk6INHxLyq6cdM%2Fh%2BkgozFyCXCXmo%2FvVWFQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af60288ebb4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=588&min_rtt=496&rtt_var=167&sent=11&recv=12&lost=0&retrans=0&sent_bytes=4135&recv_bytes=1306&delivery_rate=7567944&cwnd=257&unsent_bytes=0&cid=433145a59e57db7e&ts=44&x=0"
X-Firefox-Spdy: h2
ghb1.adtelligent.com/v2/auction/
200 OK 4.2 kB URL POST ghb1.adtelligent.com/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerZeroSSL
Subjectghb1.adtelligent.com
Fingerprint0D:D0:49:54:EC:15:39:A2:9D:39:48:10:A3:D3:92:55:81:38:C2:43
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (4264), with no line terminators
Hash 53a62effea2dc457ec5b8d429aa2d548
d5665932c9ffd92e365f3c7cb84252f35a4232f5
4725901d83a794c4d545c7d62661e5cb9787e88bd5e2a2c93b486f331f35b8de
POST /v2/auction/ HTTP/1.1
Host: ghb1.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 430
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Tue, 25 Mar 2025 02:26:02 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1221
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
200 OK 49 kB IP
Certificate IssuerGoogle Trust Services
Subjectcutyion.com
FingerprintA5:9F:55:6D:EE:B9:54:68:05:DB:30:6E:AB:11:E3:27:02:E9:3A:B5
ValidityThu, 20 Feb 2025 05:03:23 GMT - Wed, 21 May 2025 06:02:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /suo6JnQoG HTTP/1.1
Host: cutyion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: must-revalidate, no-cache, no-store, private
pragma: no-cache
expires: -1
x-frame-options: SAMEORIGIN, SAMEORIGIN
set-cookie: origin=cuty; expires=Tue, 24 Feb 2026 02:25:59 GMT; Max-Age=29030400; path=/; secure; httponly; samesite=lax
XSRF-TOKEN=eyJpdiI6IkJpR2NzUFQzMWgvN0FSdXNVc3RMcUE9PSIsInZhbHVlIjoiMklYZHAvWTRFcjZmZzFXTWJGcHdPMW90Y0JGOGMrWnlRb0lPRnp5NTk5azVRWWpOODU5NENpMngyTzNPZGhTMUMvSTFRdlZza1RCM2xaTkZRckg5allYbjNNRHd3dVNsdXFVVjNpMG1XMDYyYWlQdHZubU5TWDRSSGhWVkdBZmgiLCJtYWMiOiIwZjdmY2NiYWQ3YTY1N2RjM2MzYjA0MjA5ZWViMmZmOTVhODA5NGE2NThkYzJmMTJkMjg0NGRlMTgwYTFkZWExIiwidGFnIjoiIn0%3D; expires=Tue, 01 Apr 2025 02:25:59 GMT; Max-Age=604800; path=/; samesite=lax
cutyio_session=eyJpdiI6IkRPUmJFdjNiM0Z6bU9lcnlqOVpxWGc9PSIsInZhbHVlIjoiM2Ezbm52U0E3eEJubUZndXFWUkdrUEtOKzU1UXZJOE9PSVljMVovYzNZb0VKZ2J2emJEaUFzc3dNbytpelB1UU5uY1BPUFhaanBHd0E3L2ppZSs1dEtxSFpTaWhzMVVzQmxtcW9ZU1N0cWJjZ0JpSzg3K2xicGlMaWZFRGY2UjgiLCJtYWMiOiI2YjM2ZjliNGQ5YjMwM2Q3MzRkZDdhNjAyMDAwZjlkYzk4MjBkOTkyMzUzZWFjOTQwNmM0ZDA4MGZiYmQ2ODhkIiwidGFnIjoiIn0%3D; expires=Tue, 01 Apr 2025 02:25:59 GMT; Max-Age=604800; path=/; httponly; samesite=lax
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=juA8lc3DANSc1dviZXRRaaW%2BqQ%2Fav5CxaURrZMZt1F10pucOieG1N%2FvK7CT9Jf%2FTJXkh3zBDW3MIC4hpj%2FbHUUS0pu5yU%2F1l9rXsDNoVqSNPrfDFwlK%2Bl3vw1hvs7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af5f4e9e05693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6144&min_rtt=412&rtt_var=11458&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3275&recv_bytes=1253&delivery_rate=7898181&cwnd=254&unsent_bytes=0&cid=638de523788782a9&ts=1613&x=0"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/bUO1BXI8H9PgjAPSW9hwuSeI/recaptcha__en.js
200 OK 561 kB URL GET www.gstatic.com/recaptcha/releases/bUO1BXI8H9PgjAPSW9hwuSeI/recaptcha__en.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT
Size 561 kB (560963 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /recaptcha/releases/bUO1BXI8H9PgjAPSW9hwuSeI/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 220514
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Mar 2025 10:58:23 GMT
expires: Tue, 24 Mar 2026 10:58:23 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 17 Mar 2025 04:01:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 55658
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1106
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:03 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eQKDiyr%2FmT9X%2Fs5SXfltVQLeS01Gige8K8e2i9SlZ0Pz%2BRt4R2iqt1ZOKfSsg%2BtP%2FezT9qAoTxU4hTncNvhAKqEPcZr9Ra4gf5GAdVERUT4vZZ339VN9s%2BHSRbY8YWJGk%2F8gmbwysT%2F2GxAp%2Ffk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af610faab5689-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=3351&min_rtt=452&rtt_var=4879&sent=33&recv=29&lost=0&retrans=1&sent_bytes=13476&recv_bytes=10011&delivery_rate=5601547&cwnd=254&unsent_bytes=0&cid=5eea72440a4f3224&ts=1070&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EGcVKNwp2G8mznFDhsbegD%2BsgEyudbIWnl1KdLWyTn15aVBX65VmDtnkYZLwe5x0NHj%2BT5nm6exN%2B0gu9huwFJVHjF0Fzb8X3wuQakx1%2Fuuet%2B4%2FTZtkYc7W1LMU5V%2BvVk8c4xbVWR4Jsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62bd87f7130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1304&min_rtt=609&rtt_var=885&sent=9&recv=12&lost=0&retrans=0&sent_bytes=3792&recv_bytes=1773&delivery_rate=4701298&cwnd=253&unsent_bytes=0&cid=8048e3d71885c37b&ts=130&x=0"
X-Firefox-Spdy: h2
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 2259
server: cloudflare
cf-ray: 925af606ca9b7127-OSL
X-Firefox-Spdy: h2
ghb.adtelligent.com/v2/auction/
0 B URL POST ghb.adtelligent.com/v2/auction/
IP
Requested by https://cutyion.com/suo6JnQoG
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 340
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
pix.netpub.info/o?y=en-US&h=0&yy=1924b515d54423efa262320594864f5b&m=1024&a=16&f=pb&k=div_netpub_campaign_18r2uzgh50xvj1k1&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&xx=PBAUCTION&w=8d7c9a9e6384e4de5b6cc926e14c0280&l=1280&q=728&b=string&e=0&r=90&t=1742869563062&j=0&ww=e4786efcc109e5b4746f206bc5785ed0&i=3&c=0.6478909849089872&p=477.5&v=1.6.0&x=netpub&o=276&n=100&aa=efa0c35c478e24f5b65a10692ab4e782&zz=ed78c91e2c03f8f673469f90718eebe959bebad5456ba1454057ce02667a4135&d=https%3A%2F%2Fcutyion.com%2Fsuo6JnQoG&s=interactive&g=admatic
200 OK 633 B URL GET pix.netpub.info/o?y=en-US&h=0&yy=1924b515d54423efa262320594864f5b&m=1024&a=16&f=pb&k=div_netpub_campaign_18r2uzgh50xvj1k1&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&xx=PBAUCTION&w=8d7c9a9e6384e4de5b6cc926e14c0280&l=1280&q=728&b=string&e=0&r=90&t=1742869563062&j=0&ww=e4786efcc109e5b4746f206bc5785ed0&i=3&c=0.6478909849089872&p=477.5&v=1.6.0&x=netpub&o=276&n=100&aa=efa0c35c478e24f5b65a10692ab4e782&zz=ed78c91e2c03f8f673469f90718eebe959bebad5456ba1454057ce02667a4135&d=https%3A%2F%2Fcutyion.com%2Fsuo6JnQoG&s=interactive&g=admatic
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.info
Fingerprint56:17:64:34:08:12:75:29:07:B5:8D:B0:E2:DB:E0:AD:D1:5C:B7:4A
ValidityMon, 10 Feb 2025 19:21:32 GMT - Sun, 11 May 2025 20:21:25 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3
Hash 49c293a3ad2be29a1ae8fe894895646f
e4887f0623e9827019fe4d7ee0e15c21bda280a3
ae2496a9904555dcada262d39be98f7bad22a5b5a6c820b67aff4e607b42e7bb
GET /o?y=en-US&h=0&yy=1924b515d54423efa262320594864f5b&m=1024&a=16&f=pb&k=div_netpub_campaign_18r2uzgh50xvj1k1&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&xx=PBAUCTION&w=8d7c9a9e6384e4de5b6cc926e14c0280&l=1280&q=728&b=string&e=0&r=90&t=1742869563062&j=0&ww=e4786efcc109e5b4746f206bc5785ed0&i=3&c=0.6478909849089872&p=477.5&v=1.6.0&x=netpub&o=276&n=100&aa=efa0c35c478e24f5b65a10692ab4e782&zz=ed78c91e2c03f8f673469f90718eebe959bebad5456ba1454057ce02667a4135&d=https%3A%2F%2Fcutyion.com%2Fsuo6JnQoG&s=interactive&g=admatic HTTP/1.1
Host: pix.netpub.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:03 GMT
content-type: image/jpeg
content-length: 633
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rykwespeMwQ5WdDjAzFAnkL3Vwv91VHK6Uo5ilj%2BtyeTn6V4rs6SToCSG0d0A7CEDK%2BJQ2XYo3dsG1qPCCTlto%2BCEGbgQyN7gWwQAxrXJqtqL1fnW4IWhVgt5b63K10%2Fpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af6112986b50b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=692&min_rtt=459&rtt_var=430&sent=10&recv=12&lost=0&retrans=0&sent_bytes=4533&recv_bytes=2107&delivery_rate=8305927&cwnd=257&unsent_bytes=0&cid=717a694a66310d30&ts=68&x=0"
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js
200 OK 911 B URL GET www.google.com/recaptcha/api.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint2F:CC:05:C5:14:C4:CD:A4:26:05:31:F9:67:40:7C:D3:39:74:34:0C
ValidityMon, 10 Mar 2025 08:37:46 GMT - Mon, 02 Jun 2025 08:37:45 GMT
File type JavaScript source, ASCII text, with very long lines (911), with no line terminators
Hash 54836d07a856f5b9a4e1714b86e21845
f87c92538683805b3464e1a828a6075d5799c7d3
02b6a60158e419737bb0501ce21e7b1b56d89c9f9eb26a91ac82a230742071ff
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Tue, 25 Mar 2025 02:26:00 GMT
date: Tue, 25 Mar 2025 02:26:00 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.engine.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 216 kB URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.engine.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (57274)
Size 216 kB (216168 bytes)
Hash 5bc480ba168a5d2a358e8b764552b59d
5bf073a92cf386247bea6bbda3ef3930a188dd37
b76bbaa7ebaf01279036e8c7b3d3ac17d1530d46b699f1b6799fc1635cc978ab
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.engine.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 2258
server: cloudflare
cf-ray: 925af606aa907127-OSL
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1423
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:26:02 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1888
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVt_ugGqn6riNnXD-nEfqRKCzh8P5ByA2kiet1WDmAys07lQnUlBXOr0Yqju_LxCLhxLq6-8EQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1289808513%3A1742869563679589
403 Forbidden 0 B URL GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVt_ugGqn6riNnXD-nEfqRKCzh8P5ByA2kiet1WDmAys07lQnUlBXOr0Yqju_LxCLhxLq6-8EQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1289808513%3A1742869563679589
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint57:E3:38:DA:15:E9:22:1D:17:E2:12:42:3A:88:03:62:6E:F5:C0:53
ValidityMon, 10 Mar 2025 08:36:06 GMT - Mon, 02 Jun 2025 08:36:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVt_ugGqn6riNnXD-nEfqRKCzh8P5ByA2kiet1WDmAys07lQnUlBXOr0Yqju_LxCLhxLq6-8EQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1289808513%3A1742869563679589 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:26:03 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-1QrUPNEoEqcIyx8e1RZ5tA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.google.com/tools/feedback/help_api.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ghelp/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.Iew5X21fS_0.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.cuty.io/images/shared/arrow-down.svg
200 OK 220 B URL GET cdn.cuty.io/images/shared/arrow-down.svg
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash c3e833f5fa7b1a4f2827058cdba8c3ab
09822f9d135ca26e8ddbbb5814b43da1f330906d
415fd6c9065ac04a741d6a02282eb772174831e47d035b8b1f3be240026f46a6
GET /images/shared/arrow-down.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/svg+xml
last-modified: Sun, 21 Jul 2024 07:29:21 GMT
etag: W/"669cb8d1-dc"
expires: Tue, 11 Nov 2025 03:28:21 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 10438100
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j55yRpM3ubx16PksPpFACz88RHo9VDO2QQPydXwXS0V2rXMH4Bef1EtHe5T514YCckSZ5Gzga51GLGvovTUEHb7C5WKsym8IQxVQbsiQRukdj3h6ESfzdiLfd1a%2F1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6019dd856aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1056&min_rtt=383&rtt_var=729&sent=480&recv=202&lost=0&retrans=0&sent_bytes=653371&recv_bytes=2628&delivery_rate=32837079&cwnd=218&unsent_bytes=0&cid=03a635d91bd96ad4&ts=107&x=0"
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
302 Found 0 B URL GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint4B:95:33:75:06:A7:4B:8D:93:0F:44:A4:E7:B2:1E:51:52:D7:30:DC
ValidityMon, 10 Mar 2025 08:37:54 GMT - Mon, 02 Jun 2025 08:37:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:dtHmp7t0B2c1r60aGbMywNZnnFL0cw:YJhdYYnymgGgA1EX; Expires=Thu, 25-Mar-2027 02:26:01 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:26:01 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVvW8ryQMMYiscJAe58IS_EmJOXQ4F-HDklOSkqU1dfhfVrdi7aMf-eQUUKGRm6TvRMNY3K_bA
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: unsafe-none
content-security-policy: script-src 'nonce-e9G896w75nnCc17t4ApYUA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ghb2.adtelligent.com/v2/auction/
0 B URL POST ghb2.adtelligent.com/v2/auction/
IP
Requested by https://cutyion.com/suo6JnQoG
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/auction/ HTTP/1.1
Host: ghb2.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 322
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dsp-service.netaddiction.tech/users/sync/?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D97af9c43-cf82-4403-b347-4aede684559e
302 Found 0 B URL GET dsp-service.netaddiction.tech/users/sync/?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D97af9c43-cf82-4403-b347-4aede684559e
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint74:FE:1E:F4:4F:B1:68:C0:81:16:C4:85:68:0D:7D:1F:61:EF:31:DF
ValidityTue, 11 Feb 2025 09:45:46 GMT - Mon, 12 May 2025 09:45:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /users/sync/?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D97af9c43-cf82-4403-b347-4aede684559e HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: text/html; charset=utf-8
location: https://prebid.netaddiction.tech/setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept, Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vzh%2Btug7MZiFLRzoUbKige0c0g4aPzz9W%2BXuhmtMAxIGMnLEswG9opn9Z8r%2BIRnmyHuM%2BW3zDfG4xE%2BC9NxJQplOMVdpgbrYQxNKzjcKqq%2BGvwrdVstHRBj2dLbWxfV5ZCgOusq%2Fob3cBtuZwHfS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62a785f56cb-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4547&min_rtt=3908&rtt_var=1922&sent=15&recv=7&lost=0&retrans=0&sent_bytes=5972&recv_bytes=2006&delivery_rate=162963&cwnd=12000&unsent_bytes=0&cid=68ceaf7e3b17a2a9&ts=305&x=1", cfExtPri, cfHdrFlush;dur=0
dsp-service.pixad.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dpixad%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
302 Found 0 B URL GET dsp-service.pixad.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dpixad%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectdsp-service.pixad.com.tr
Fingerprint24:5E:67:67:13:78:E1:3D:E6:FE:04:4C:39:E4:61:91:76:13:B9:53
ValiditySun, 02 Mar 2025 06:43:48 GMT - Sat, 31 May 2025 06:43:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dpixad%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.pixad.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 25 Mar 2025 02:26:06 GMT
content-type: text/html; charset=utf-8
location: https://prebid.admatic.com.tr/setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=6d54ede8-69a5-4616-8b0b-d65702e0bc67
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept, Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: pixad-k8s
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mB5rWnGxQRROaGSxZPuWVbIKmoBq%2FgSyDIeeRDpyRwbWZFm90fEvok%2BUihJUwC5803p0t0ZsvHJUmIaWRiDv24Xm3Xl31G%2FUhJjF230qaptEJbZZTHIxG6G%2FaG%2FHLJTZLrmrw65EMwcx8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925af62879dd1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfCacheStatus;desc="DYNAMIC", cfL4;desc="?proto=TCP&rtt=3660&min_rtt=868&rtt_var=2430&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2789&recv_bytes=1262&delivery_rate=3064550&cwnd=253&unsent_bytes=0&cid=3a6eaf5075eaedfb&ts=67&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: text/html; charset=iso-8859-1
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Eiq7WDXwK%2Bv7%2F%2FCrYtdJHDXAQJbjlpufcfOoDwzlT%2FfIZ4f3VrN3eRjRG6f81%2FUh4JAGbh4tAklYE6TPlPzeoJO2x3cvtPDFIw64pMksFhXMNmQYQfIfGh1XJJrZB80g6e%2BU9ePHIThFECk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af6033972b4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=692&min_rtt=496&rtt_var=268&sent=21&recv=17&lost=0&retrans=0&sent_bytes=6462&recv_bytes=1600&delivery_rate=7587772&cwnd=257&unsent_bytes=0&cid=433145a59e57db7e&ts=212&x=0"
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 761 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (789), with no line terminators
Hash 3e22d19a88f9fa744a0d2ee6a1673a15
7ac1aa88457b085c584aa39f5885161a2e3a18af
5e5179f59464700b7cbabcd47d5c6bfc86bf094a76ac7b26efca2a203e89fd1a
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 284
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:26:02 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 420
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 3128
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:03 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8dBVWMSas03ReK0u6DK9iQwXiDlTnr%2FVnjQCasA%2FWemHxxytoMNaFDBvFZ1B1a7YDq%2BwpwDxqIfdnaMFDBlyGkK4i1URdwQy5fjYXEu8F4f%2BaOVdS5IOhX%2BhTUMz8t5InJvMzNIXkfhXxFWFXFM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af610be39b50f-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=7353&min_rtt=386&rtt_var=12534&sent=14&recv=20&lost=0&retrans=0&sent_bytes=5879&recv_bytes=1705&delivery_rate=5134751&cwnd=257&unsent_bytes=0&cid=0f72dcd269875e28&ts=876&x=0"
X-Firefox-Spdy: h2
dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
200 OK 4.6 kB URL GET dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint74:FE:1E:F4:4F:B1:68:C0:81:16:C4:85:68:0D:7D:1F:61:EF:31:DF
ValidityTue, 11 Feb 2025 09:45:46 GMT - Mon, 12 May 2025 09:45:45 GMT
File type HTML document, ASCII text, with very long lines (4777), with no line terminators
Hash 2590b6193481af99a964220d7ae51120
30a09069934209bfe58eca9b1fa082261b73267c
4e3b6b23bb04e04f96a66977333a1cc99fe7a3c6b22131848abcde50095cb191
GET /cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sm439lQXtkgPnuGCJM3tbyfv2d24LBDRemYbHJW5TVi9IUpN4GLGpTs7kImYYSxrISFh0qZwDs%2B1o18hXBQn9BE%2Bv8n%2BaFDi4Sq3bCIs9EJ3wCHaeSZZQd%2F3xpVOlHWiZDYt9pONCIoNByxpPrmU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62ba8d456cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5008&min_rtt=3908&rtt_var=2362&sent=17&recv=9&lost=0&retrans=0&sent_bytes=7171&recv_bytes=2631&delivery_rate=11717&cwnd=12000&unsent_bytes=0&cid=68ceaf7e3b17a2a9&ts=442&x=1", cfExtPri, cfHdrFlush;dur=0
cdn.cuty.io/images/shared/locale-fr.png
200 OK 16 kB URL GET cdn.cuty.io/images/shared/locale-fr.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Hash d5c12041f2ddd200c2c881e5be833179
52ca2be8bf29666646ce347a5d0ef3f6cd547ca9
8c1d20e07e73934ea05d1a1990ad742073d9c674d81b09c2f76fa08eaf286eaf
GET /images/shared/locale-fr.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 16411
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-401b"
expires: Tue, 10 Feb 2026 19:50:16 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3355653
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jN%2BJCNcfbbIxHj9oT83ncyMsyWe6b29bcIyGiyMzMpsXC%2BqwazaDKcfIxKyJlWbwvclB7Ed9cDlb0QvQ4lweHFvFbD3aasaWjqZH7944zhJljPCFHdm6q0bykYjHuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6015d9c56aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=464&min_rtt=395&rtt_var=121&sent=11&recv=27&lost=0&retrans=0&sent_bytes=3187&recv_bytes=2457&delivery_rate=7240000&cwnd=254&unsent_bytes=0&cid=03a635d91bd96ad4&ts=69&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/x.svg
200 OK 209 B URL GET cdn.cuty.io/images/shared/x.svg
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash 3e1b70de2d8ba641caec6e9029002c3e
48b16f34f74be52a8327a2277318355d0f3b9c92
15b6092561584cbee1e5760429718329e67a6ad70a77da4e56f6adae0ed8e95f
GET /images/shared/x.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/svg+xml
last-modified: Sun, 21 Jul 2024 07:29:21 GMT
etag: W/"669cb8d1-d1"
expires: Thu, 06 Nov 2025 04:26:21 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 10286072
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jxWP3ypoV5d%2BC4N7eQtPpusQ6qE2q8x4mXV85dmEILhRfyVrEAIxVo5e80WQO8g%2B5Pp0eHT51zrm2KL9%2FOf7swWz%2FLx3pqIZn3m9XOn680%2B6PV5CAKkkUj%2BS7XOr%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6015d9f56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=485&min_rtt=392&rtt_var=147&sent=38&recv=29&lost=0&retrans=0&sent_bytes=32925&recv_bytes=2542&delivery_rate=27394594&cwnd=254&unsent_bytes=0&cid=03a635d91bd96ad4&ts=71&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560605
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560605
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560605 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: text/html
content-length: 167
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:26:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AIYfRFtPX1Xuzi%2BxKA8hbR6%2F2gJ%2BHsePKayCqb1W%2B%2F3U2EmDcDP2o0liz9IaOtFz%2FiVXR2Rg1hy%2BDo2qpGcINxAyFrmRK9Wv1DRi0NcIRqcXixl8mdLTDeHvS8ulth0UJTrRt0pTNSCvD%2BY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af60288e5b4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=588&min_rtt=496&rtt_var=167&sent=14&recv=12&lost=0&retrans=0&sent_bytes=4804&recv_bytes=1306&delivery_rate=7567944&cwnd=257&unsent_bytes=0&cid=433145a59e57db7e&ts=44&x=0"
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 761 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (789), with no line terminators
Hash 9814c9f889450cfc0da4436ba03b7a33
41e4432efa99346c8829dff513683fb8f8d4f6f9
aeca2e57c32377b7aa9ae5c8b1af93131ca5c50da0c9024a98d272c5e3ec7e0d
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 284
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:26:02 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 420
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 334
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af60bddc11c02-OSL
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=netaddiction&gdpr=0&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e
200 OK 0 B URL GET prebid.admatic.com.tr/setuid?bidder=netaddiction&gdpr=0&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=netaddiction&gdpr=0&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: adplus_digital_id=0.tg9olcazt3k
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJuZXRhZGRpY3Rpb24iOnsidWlkIjoiOTdhZjljNDMtY2Y4Mi00NDAzLWIzNDctNGFlZGU2ODQ1NTllIiwiZXhwaXJlcyI6IjIwMjUtMDQtMDhUMDI6MjY6MDcuMTM1NTA1MDQ2WiJ9fX0=; Path=/; Domain=admatic.com.tr; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EXH4JfXCHOK9r5TVF%2BPxwntc1s%2BmQbsEzD1JJDTJ%2FGhiTQl3S9qwdU1HXgyOoJHEHAFb8%2Bm4PVrxfs6U%2BX70WM8rokxGf8Vq5jGcNdIMDFkkGAPDIsW%2FizCLneWT7F7qSwJHkhhc%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925af62a7cbb569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7141&min_rtt=3781&rtt_var=3817&sent=13&recv=7&lost=0&retrans=0&sent_bytes=4700&recv_bytes=1661&delivery_rate=169762&cwnd=12000&unsent_bytes=0&cid=0fa95e53209a550d&ts=160&x=1", cfExtPri, cfHdrFlush;dur=0
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Mar 2025 02:26:06 GMT
location: https://prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/payeer.png
200 OK 1.4 kB URL GET cdn.cuty.io/images/public/payeer.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 167 x 35, 8-bit colormap, non-interlaced
Hash 076721e6bc9e7ebd04612c544a59e3ce
777b33fdf4ec2212b9613e50d46e203d54163dbb
6602b89e29d6eeb6f85296cffc62529106f8481cb7376a082dc931461844283d
GET /images/public/payeer.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 1390
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-56e"
expires: Tue, 10 Feb 2026 19:51:50 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3355988
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wQXo4oJxPhXBuHvr2FEZbbPL37DGSPltx6xlFudUxjOpkGOoyamvSbJWkI6Hll6%2BJsc11omewgZgu5EV7CWLS8vG435qiS7ee%2FoFhiH3ef1wJnsw6YQxdvvFz0mx0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6016db056aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=640&min_rtt=392&rtt_var=151&sent=83&recv=38&lost=0&retrans=0&sent_bytes=89740&recv_bytes=2542&delivery_rate=30484210&cwnd=254&unsent_bytes=12832&cid=03a635d91bd96ad4&ts=73&x=0"
X-Firefox-Spdy: h2
a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
302 Found 86 B URL GET a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectadpartner.pro
FingerprintD6:53:9A:7B:8F:CD:3A:58:6A:19:B0:66:10:58:59:68:AE:5B:FA:BB
ValidityTue, 14 Jan 2025 08:08:25 GMT - Mon, 14 Apr 2025 08:08:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D HTTP/1.1
Host: a4p.adpartner.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: text/html; charset=utf-8
content-length: 224
location: https://prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=12f04627-b8d9-48a8-9ae3-50a061c4f835
cache-control: no-store no-transform
X-Firefox-Spdy: h2
cdn.cuty.io/js/public/links/first.js?id=546df8a8f0170b68416d0c1c965c0a02
200 OK 251 kB URL GET cdn.cuty.io/js/public/links/first.js?id=546df8a8f0170b68416d0c1c965c0a02
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
Size 251 kB (251245 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/public/links/first.js?id=546df8a8f0170b68416d0c1c965c0a02 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: application/javascript
last-modified: Thu, 28 Nov 2024 12:18:27 GMT
vary: Accept-Encoding
etag: W/"67485f93-3d56d"
expires: Fri, 28 Nov 2025 12:18:30 GMT
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 10073247
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XloJvx%2BPXbrqVr%2FkBTP1%2FaGJLBE5mKQONQHZdbW1mX8E2qvQL%2B6p9W1I7uyYMlXDeSoIFnrBkCAZcotbabhYRkXs6%2By2HvbrT77vEDnDhjBQ74ky2uWvov2KSA5imA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af601bde856aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=675&min_rtt=383&rtt_var=112&sent=534&recv=233&lost=0&retrans=0&sent_bytes=718942&recv_bytes=3253&delivery_rate=32837079&cwnd=218&unsent_bytes=0&cid=03a635d91bd96ad4&ts=122&x=0"
X-Firefox-Spdy: h2
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 2259
server: cloudflare
cf-ray: 925af60509bf7127-OSL
X-Firefox-Spdy: h2
ghb2.adtelligent.com/v2/auction/
0 B URL POST ghb2.adtelligent.com/v2/auction/
IP
Requested by https://cutyion.com/suo6JnQoG
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/auction/ HTTP/1.1
Host: ghb2.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 324
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
prebid.netaddiction.tech/setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e
200 OK 0 B URL GET prebid.netaddiction.tech/setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJuZXRhZGRpY3Rpb24iOnsidWlkIjoiOTdhZjljNDMtY2Y4Mi00NDAzLWIzNDctNGFlZGU2ODQ1NTllIiwiZXhwaXJlcyI6IjIwMjUtMDQtMDhUMDI6MjY6MDcuMzY3Mzc4Nzg1WiJ9fX0=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qJSTb6ibzVZnG61VdKj7jh%2Bve8uoOY6CoNFxldg9v%2FSe6Khh1fv825OnyZGqB0xf9Zel52t0cNedrzW6Z8Y9SxU15wVXlmw6ovzDW7K04Kyp8aAWLIkYQPvDQiAvQpkjwp0VvpZj6b4ahw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62b98657130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1537&min_rtt=457&rtt_var=1129&sent=11&recv=13&lost=0&retrans=0&sent_bytes=4384&recv_bytes=1773&delivery_rate=4701298&cwnd=257&unsent_bytes=0&cid=8048e3d71885c37b&ts=137&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=12f04627-b8d9-48a8-9ae3-50a061c4f835
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=12f04627-b8d9-48a8-9ae3-50a061c4f835
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=12f04627-b8d9-48a8-9ae3-50a061c4f835 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJtZW1icmFuYSI6eyJ1aWQiOiIxMmYwNDYyNy1iOGQ5LTQ4YTgtOWFlMy01MGEwNjFjNGY4MzUiLCJleHBpcmVzIjoiMjAyNS0wNC0wOFQwMjoyNjowNy43ODUyNzkwNTVaIn19fQ==; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KWQENWvjJP5xeGr3H%2FILd8xPAO%2BRMFeFjdj7DZbYt50V%2BbsrC4aLbJZUnmFW9K3e1F6NMMXSEzvRih%2FWex10XjxC6z0kH4pyQSAJWFXc0eE%2FcpOTld%2BoiSl3ap1ltuFBiGDhwwO%2B8Z7j4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62e8b48712a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5417&min_rtt=1611&rtt_var=2581&sent=23&recv=17&lost=0&retrans=0&sent_bytes=8985&recv_bytes=3873&delivery_rate=35845&cwnd=12000&unsent_bytes=0&cid=9020ac2439d05da6&ts=387&x=1", cfExtPri, cfHdrFlush;dur=0
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 2259
server: cloudflare
cf-ray: 925af60519c37127-OSL
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nOx83oyUS37AYWZhpBK5P9PJiYucduSRyvzWvFOEIvm2Xsgo76f5XaVHWodC7yjrueyAu5Jg7oFGj390CDZVy8PKY7FVDR%2B588p6pGedkavWD8A2EYs8%2FFm1CeAVKdPpEo3NchgYkmmHDDs%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 925af6052b8056ae-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 295
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af60b5d881c02-OSL
X-Firefox-Spdy: h2
ghb.adtelligent.com/v2/auction/
200 OK 4.2 kB URL POST ghb.adtelligent.com/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerZeroSSL
Subjectghb.adtelligent.com
FingerprintB0:FB:4F:89:69:DD:35:D0:9F:F5:08:AC:CC:5A:32:2D:84:62:89:CB
ValiditySun, 23 Mar 2025 00:00:00 GMT - Sat, 21 Jun 2025 23:59:59 GMT
File type ASCII text, with very long lines (4265), with no line terminators
Hash 8d0afbd4e8f7b22e6976aeaf6a8ef686
f877a71b3c00a10fd48cbd09c344271e233ea5bb
3105dde8f992bd5c278fe5c17bb60a5689c5914744b1f3db2727aea94b715f1a
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 341
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Tue, 25 Mar 2025 02:26:03 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1209
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVtHp6601cuTlgwQ_OnCGOx0lI4ajbatkMU--oCuADcC_D0IH7w7hEEcepfL9SG97qF3uKp_qg
302 Found 0 B URL GET accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVtHp6601cuTlgwQ_OnCGOx0lI4ajbatkMU--oCuADcC_D0IH7w7hEEcepfL9SG97qF3uKp_qg
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint57:E3:38:DA:15:E9:22:1D:17:E2:12:42:3A:88:03:62:6E:F5:C0:53
ValidityMon, 10 Mar 2025 08:36:06 GMT - Mon, 02 Jun 2025 08:36:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVtHp6601cuTlgwQ_OnCGOx0lI4ajbatkMU--oCuADcC_D0IH7w7hEEcepfL9SG97qF3uKp_qg HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:u60Or56YtJnnXGmbSGM7zDvT7ZxIjQ:ZR_z_nRgs4l2d9_h;Path=/;Expires=Thu, 25-Mar-2027 02:26:03 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:26:03 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVt_ugGqn6riNnXD-nEfqRKCzh8P5ByA2kiet1WDmAys07lQnUlBXOr0Yqju_LxCLhxLq6-8EQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1289808513%3A1742869563679589
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-qUy6fKEHdON0dlvKxbdCXg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 421
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1378
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:26:02 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
csync.smilewanted.com/
200 OK 6.4 kB IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
File type JavaScript source, ASCII text, with very long lines (6711), with no line terminators
Hash 8820fc438884a131eb5dba5a286142bc
5cbefca64d898763822d2bd7c0cba670cf92054c
e473f57487df4ad7b5be6ef0562e07501e6621626dd32e7e579fb83d0350a146
GET / HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:06 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af623fb6e1c02-OSL
content-encoding: br
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=44266bf3-bcdb-45d8-ba67-1cbaf543d2af
200 OK 0 B URL GET prebid.admatic.com.tr/setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=44266bf3-bcdb-45d8-ba67-1cbaf543d2af
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=44266bf3-bcdb-45d8-ba67-1cbaf543d2af HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.tg9olcazt3k
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZG1hdGljIjp7InVpZCI6IjQ0MjY2YmYzLWJjZGItNDVkOC1iYTY3LTFjYmFmNTQzZDJhZiIsImV4cGlyZXMiOiIyMDI1LTA0LTA4VDAyOjI2OjA3LjEyNjQzMjQ4WiJ9fX0=; Path=/; Domain=admatic.com.tr; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rbJCqep1DLlVBDl40d4g8mL%2BcEM2ZRLvu7o%2F81nCnluPHxZ6w6MSmMe2sbAqdmfFEX6BhQGaCp6dgbySE7faf5jxcS%2BP91t0BRHPE4g5oW1CCoamajjDjNK256CVUx8U1PHbFK8Mag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925af62a6cb3569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7141&min_rtt=3781&rtt_var=3817&sent=12&recv=7&lost=0&retrans=0&sent_bytes=3700&recv_bytes=1661&delivery_rate=169762&cwnd=12000&unsent_bytes=0&cid=0fa95e53209a550d&ts=151&x=1", cfExtPri, cfHdrFlush;dur=0
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r81OUffa3ozRNsWwDTkMdeq%2FQ3zaeO3sYNg%2B9WfQQUK4%2BtC73v%2FjvE3JPVosGVGQPRIKpGYVDccAzkyi81ZRbn%2FmSFxg7cvyQ4%2BBYDOeKaILAFiJbsGFsNS1pzrSAc8DqUpZ9xtnOrVAS6g%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 925af6052b8256ae-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
netpubmedia.rtb.adtarget.biz/pb
200 OK 4.0 kB URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
File type JavaScript source, ASCII text, with very long lines (4139), with no line terminators
Hash 69ba119b4cd7f53cb2eb5a1e7a1298e2
776fa6ac0977c449434752b63a4854572860e997
3beb7eec8ab0c8f8082c64bcd22f57e80b022af2399e88df3f7212d6d3078e63
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1105
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://cutyion.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
x-powered-by: Adtarget
etag: W/"f8f-Ygzdr/DiYsHnHoKTkkPKuuqBUaw"
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vxh8bJIJh9tHQKL538haKEr2%2BC121%2FGerWcoMz%2FjgTy%2F%2FLkMrqjXN5jXiVJA6PwnqqXqDUB8JdkkEwlw18JjIGpfoWMic85MggNvwfqxjSGWYYPim%2FdNLh7Rtfc1tzOP8uLHRuUkKiLaBJlufXc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af60d08fd5689-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1033&min_rtt=452&rtt_var=1248&sent=16&recv=17&lost=0&retrans=1&sent_bytes=3617&recv_bytes=5755&delivery_rate=5601547&cwnd=254&unsent_bytes=0&cid=5eea72440a4f3224&ts=490&x=0"
X-Firefox-Spdy: h2
pix.netpub.info/o?s=interactive&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&q=728&b=object&xx=PBAUCTION&f=pb&y=en-US&p=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&aa=efa0c35c478e24f5b65a10692ab4e782&i=3&h=0&yy=749c39c0111d67cbe35a064179bf8d7c&t=1742869562963&g=admatic&a=14&e=0&o=276&d=https%3A%2F%2Fcutyion.com%2Fsuo6JnQoG&r=90&l=1280&k=div_netpub_campaign_olt7cgy2iduk3x3ev9&v=1.6.0&ww=36d49676024d84588208f09c500f45d5&c=1.0954066967307556&j=0&n=100&m=1024&zz=d4ed968c66a1bf4a9e4fe9dd3c0e09d6479cdc1952b0dbac0f6a0752f1e6987d&x=netpub
200 OK 632 B URL GET pix.netpub.info/o?s=interactive&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&q=728&b=object&xx=PBAUCTION&f=pb&y=en-US&p=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&aa=efa0c35c478e24f5b65a10692ab4e782&i=3&h=0&yy=749c39c0111d67cbe35a064179bf8d7c&t=1742869562963&g=admatic&a=14&e=0&o=276&d=https%3A%2F%2Fcutyion.com%2Fsuo6JnQoG&r=90&l=1280&k=div_netpub_campaign_olt7cgy2iduk3x3ev9&v=1.6.0&ww=36d49676024d84588208f09c500f45d5&c=1.0954066967307556&j=0&n=100&m=1024&zz=d4ed968c66a1bf4a9e4fe9dd3c0e09d6479cdc1952b0dbac0f6a0752f1e6987d&x=netpub
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.info
Fingerprint56:17:64:34:08:12:75:29:07:B5:8D:B0:E2:DB:E0:AD:D1:5C:B7:4A
ValidityMon, 10 Feb 2025 19:21:32 GMT - Sun, 11 May 2025 20:21:25 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3
Hash de65ca1d779a8b3dd3d0dd984992f082
2fdabf3acc75b6817d6f6879ecdc39a955f1aef7
7f0a2bcdd98ce638515aef97fee9e294b7b3eb7b55045feb8209451bc842915b
GET /o?s=interactive&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&q=728&b=object&xx=PBAUCTION&f=pb&y=en-US&p=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&aa=efa0c35c478e24f5b65a10692ab4e782&i=3&h=0&yy=749c39c0111d67cbe35a064179bf8d7c&t=1742869562963&g=admatic&a=14&e=0&o=276&d=https%3A%2F%2Fcutyion.com%2Fsuo6JnQoG&r=90&l=1280&k=div_netpub_campaign_olt7cgy2iduk3x3ev9&v=1.6.0&ww=36d49676024d84588208f09c500f45d5&c=1.0954066967307556&j=0&n=100&m=1024&zz=d4ed968c66a1bf4a9e4fe9dd3c0e09d6479cdc1952b0dbac0f6a0752f1e6987d&x=netpub HTTP/1.1
Host: pix.netpub.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:03 GMT
content-type: image/jpeg
content-length: 632
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MYo3chcu%2BSIBr%2FX3v5hiXemhvXPBSFgbuM3P3OtFMtVk15uHY2zJSq3DAOMskuRbCOKcXoSHPbkWj%2FGrYNdgX3GxtWTKPS4nQlsKnf7wWebUqz%2Fb4S%2FUJWFFfTMV3ZAimw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af6112981b50b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=620&min_rtt=459&rtt_var=380&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3277&recv_bytes=2107&delivery_rate=8305927&cwnd=254&unsent_bytes=0&cid=717a694a66310d30&ts=52&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/usdt.png
200 OK 67 kB URL GET cdn.cuty.io/images/public/usdt.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 2560 x 817, 8-bit/color RGBA, non-interlaced
Hash 1320a67b3392ed2bfe9e3734ddfd2d2b
952aa8ceae4362e33e4e7de372694a37bd747eb5
bba0f811185072747208aa5d22793e3fa0c8f4048a5496553872f452845c0376
GET /images/public/usdt.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 67278
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-106ce"
expires: Tue, 10 Feb 2026 20:15:43 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3439331
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CivyX0n1czTDOY7Y3R9cdnKLxcB8StsJE%2FAlj3oNvxjhFZtQmEHCXpOg6bMGpuNBo5sMAu09XGQGrcQiz849iMkqs0tJGz%2BggIv3iBm8D1ZbtdC5QoduSQElXnBu5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6016daf56aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=683&min_rtt=392&rtt_var=391&sent=67&recv=33&lost=0&retrans=0&sent_bytes=70716&recv_bytes=2542&delivery_rate=27394594&cwnd=254&unsent_bytes=31856&cid=03a635d91bd96ad4&ts=72&x=0"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 10:09:01 GMT
expires: Fri, 20 Mar 2026 10:09:01 GMT
cache-control: public, max-age=31536000
age: 404219
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1887
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 10:09:01 GMT
expires: Fri, 20 Mar 2026 10:09:01 GMT
cache-control: public, max-age=31536000
age: 404219
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stedallthrought.com/TmF6TnJhXhk9Txo1K3oTGDNLCiM2ByAGFQAiSwweKDArBSUJJFw6GypcS39HeVVOe1Q+CB5zQ2gSDi8GOxJHf1QnDxwhT2gXR39cfVVUfURgVVw7T39HDj4TKVxLaAI6FRZzQ3lVSHZEd1RMfkp2Uw
204 No Content 0 B URL GET stedallthrought.com/TmF6TnJhXhk9Txo1K3oTGDNLCiM2ByAGFQAiSwweKDArBSUJJFw6GypcS39HeVVOe1Q+CB5zQ2gSDi8GOxJHf1QnDxwhT2gXR39cfVVUfURgVVw7T39HDj4TKVxLaAI6FRZzQ3lVSHZEd1RMfkp2Uw
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectstedallthrought.com
FingerprintFB:1B:E3:BB:E3:E9:CF:2E:2C:B1:8E:F7:97:26:27:56:F7:28:CD:C3
ValidityMon, 17 Feb 2025 15:33:32 GMT - Sun, 18 May 2025 15:42:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /TmF6TnJhXhk9Txo1K3oTGDNLCiM2ByAGFQAiSwweKDArBSUJJFw6GypcS39HeVVOe1Q+CB5zQ2gSDi8GOxJHf1QnDxwhT2gXR39cfVVUfURgVVw7T39HDj4TKVxLaAI6FRZzQ3lVSHZEd1RMfkp2Uw HTTP/1.1
Host: stedallthrought.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:01 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eh5mF4NhJHk9mj4v9c1OxUOVtySGwKYlv9c4Zjo4YI%2F%2Fjmyc2EgV%2FnBDDGklJHJGJkp0vZaaHcRyICslfWiq%2Fm86HOobIvNGjzbIaR4LqTH4xeNzZgkoxAVJ%2B7BXeP3UfykEtVY1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af603bc45b529-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=535&min_rtt=411&rtt_var=281&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3221&recv_bytes=1181&delivery_rate=7647887&cwnd=254&unsent_bytes=0&cid=cbc5c24bdb143341&ts=137&x=0"
X-Firefox-Spdy: h2
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 2259
server: cloudflare
cf-ray: 925af60509ba7127-OSL
X-Firefox-Spdy: h2
ukankingwithea.com/asd100.bin
200 OK 102 kB URL GET ukankingwithea.com/asd100.bin
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:7E:37:44:90:B9:05:B4:82:CD:5A:71:84:A1:C8:84:66:33:BC:78
ValiditySat, 01 Mar 2025 13:28:14 GMT - Fri, 30 May 2025 14:26:54 GMT
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
GET /asd100.bin HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 2913
last-modified: Tue, 25 Mar 2025 01:37:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kYTn%2F7DaN8Pl8hNbHtnhvCPkyvM0ReWyKwspylFzmNL0K9%2BQkrQwaSHQ5LLi2V7Ao1HCv9j%2Fd7RYGrPcFG3Pd3Wq8AaBW6CVv0eDbaFcAVXGilVMiBkU3q5MA2%2FfLOEFhA54034%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6093df9b51d-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=707&min_rtt=466&rtt_var=450&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3219&recv_bytes=1135&delivery_rate=7554782&cwnd=254&unsent_bytes=0&cid=35640e871e905751&ts=49&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e
200 OK 0 B URL GET prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZG1hdGljIjp7InVpZCI6Ijk3YWY5YzQzLWNmODItNDQwMy1iMzQ3LTRhZWRlNjg0NTU5ZSIsImV4cGlyZXMiOiIyMDI1LTA0LTA4VDAyOjI2OjA3LjM5NzAwOTMxNVoifX19; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=suOU2yrKETY6zXilSac4RiZ9GBPqPsvtrGAg6ssNacq6XOGUyeXZHYGUoFBSsWnwLLiiYjRO0ZIVR8unShReHXZm%2F%2FmqIAcgO2Aky7kG0kIrLRrVbKeY9q0UpyuhAzWd3usueOeMuK1dbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62bb8747130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2220&min_rtt=457&rtt_var=2212&sent=14&recv=14&lost=0&retrans=1&sent_bytes=5148&recv_bytes=1773&delivery_rate=4701298&cwnd=257&unsent_bytes=0&cid=8048e3d71885c37b&ts=167&x=0"
X-Firefox-Spdy: h2
ui.cleverwebserver.com/
200 OK 218 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcleverwebserver.com
Fingerprint3C:ED:1B:95:5A:8D:36:73:A6:5A:3D:6C:ED:F6:68:62:4B:0A:94:47
ValiditySat, 22 Mar 2025 15:00:18 GMT - Fri, 20 Jun 2025 15:59:56 GMT
File type ASCII text, with no line terminators
Hash aed793f56b8e10068b0fb5d09d37eb8b
17b3c6c079101b7ba401561c337247fca0f6e2a2
480f3c44c9a8a98099b0f2c702fe4701c52e9f4658f24976b6494f9bf2d7d4f2
GET / HTTP/1.1
Host: ui.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
cf-cache-status: DYNAMIC
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: *
server: cloudflare
cf-ray: 925af606fccb56c6-OSL
content-encoding: br
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 985
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:03 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oWgtbvPF0dFgQhtNnz4R%2FJdggUHO8TljYRvsRUBOjnHZm4RO%2FCuakI1MIFAuZtgLOxgqTGZoNC2QCEB81FrxJVRqmaT5Hh%2Be%2FrnV3P9zS499GsisFXa66aAe6qYz4yhlR0zlg4BP4Bf6mEEnBMQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af610da9a5689-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=3351&min_rtt=452&rtt_var=4879&sent=32&recv=29&lost=0&retrans=1&sent_bytes=12830&recv_bytes=10011&delivery_rate=5601547&cwnd=254&unsent_bytes=0&cid=5eea72440a4f3224&ts=1043&x=0"
X-Firefox-Spdy: h2
onetag-sys.com/usync/?tag=img&redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24%7BUSER_TOKEN%7D&gdpr=0&gdpr_consent=&us_privacy=
302 Found 86 B URL GET onetag-sys.com/usync/?tag=img&redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24%7BUSER_TOKEN%7D&gdpr=0&gdpr_consent=&us_privacy=
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?tag=img&redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24%7BUSER_TOKEN%7D&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: no-store
location: https://prebid.admatic.com.tr/setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid=
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZHRhcmdldCI6eyJ1aWQiOiJhMjMyYzNiMjExYTg5YTRlIiwiZXhwaXJlcyI6IjIwMjUtMDQtMDhUMDI6MjY6MDcuNzg3NDE4MDk2WiJ9fX0=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6Xf2UntUHJ06ZeJSrnGfWsP6zJ0ed0jWEAHGc98SRsonA48N%2B9fltrsBbIbaJawN9lgH3ifIHmJAjvH7hwy3ZcN%2BFhCF9Sv%2BcjUV74i9FOp11mJgjJ3IOJLTlaQTiyIyCY4H9JaObPFEKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62e8b4c712a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5417&min_rtt=1611&rtt_var=2581&sent=24&recv=17&lost=0&retrans=0&sent_bytes=10046&recv_bytes=3873&delivery_rate=35845&cwnd=12000&unsent_bytes=0&cid=9020ac2439d05da6&ts=389&x=1", cfExtPri, cfHdrFlush;dur=0
cdn.cuty.io/images/public/step-2.svg
200 OK 1.5 kB URL GET cdn.cuty.io/images/public/step-2.svg
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash 8c5c449a625ae15af38b7d406e452c50
824a94b8f13755d497a2ff2623d0b81cae675247
9c9ccc56d3f951a187a16f2333b0d2a63aefcb2550e6ed82d385948759f34217
GET /images/public/step-2.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/svg+xml
last-modified: Sun, 21 Jul 2024 07:29:21 GMT
etag: W/"669cb8d1-607"
expires: Thu, 31 Jul 2025 08:17:43 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 20455692
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AcMEn4RvfqCyNsE4kIpnglhhMfR5RGEvwDfRoermeaaV05QboMBap0W59CvZGC0Faa1NSRwMfjGpVMbAbhutKYooCMy46TpPwPZwNSKusoYu7NVMqJlO%2Fy47UyHAkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6016da856aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=485&min_rtt=392&rtt_var=147&sent=67&recv=29&lost=0&retrans=0&sent_bytes=70716&recv_bytes=2542&delivery_rate=27394594&cwnd=254&unsent_bytes=31856&cid=03a635d91bd96ad4&ts=72&x=0"
X-Firefox-Spdy: h2
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 2259
server: cloudflare
cf-ray: 925af606eaa67127-OSL
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560903
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560903
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560903 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 301 Moved Permanently
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: text/html
content-length: 167
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PWVYuFAaDaONH%2BUQhIbOsbZ6tUcxF16cFTm4f%2BL7re8cgMhMdp5OJwEtaM%2Fq2HLOpT6aIvP5Lv23hbEbvBPQAWkNJKGocqfXK0HFOCc%2Fwwck6ADVnfQFUXOx9I7aL7mTbALYzIgoLG%2F9PsA%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:26:01 GMT
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cf-ray: 925af6045b7c56ae-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 336
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:03 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af610af211c02-OSL
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=59a18369e249bfb
204 No Content 0 B URL GET onetag-sys.com/usync/?pubId=59a18369e249bfb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=59a18369e249bfb HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/step-1.svg
200 OK 1.6 kB URL GET cdn.cuty.io/images/public/step-1.svg
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash ee427377dbfff15e6da345e1991a0b1f
6d47dd305204a822000b23dc24a934c3643c46e3
60e47d750e85000feef914fbacc57176578fceb08438ec21587a52c4b7de06f6
GET /images/public/step-1.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/svg+xml
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
etag: W/"67485f94-658"
expires: Sat, 29 Nov 2025 03:00:29 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 8362723
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PC7DM0xLtuMM%2B5q8V08nVk%2FXNexf4OPzbQG0q0tBQhMPe42sFJg3UPNgFqDdn47AVlovBV8oq9QImNZpyTY0aKEPo6QnLiFhcL3rgDJcRIendfWb8X12%2B1NfYQiAZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6015da656aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=661&min_rtt=392&rtt_var=193&sent=73&recv=36&lost=0&retrans=0&sent_bytes=78020&recv_bytes=2542&delivery_rate=27394594&cwnd=254&unsent_bytes=24552&cid=03a635d91bd96ad4&ts=72&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/heading-background.png
200 OK 107 kB URL GET cdn.cuty.io/images/public/heading-background.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 1440 x 720, 8-bit/color RGBA, non-interlaced
Size 107 kB (107203 bytes)
Hash e6f5d768d4773ec1e3b75b2db352f7bf
6d0575e7897ea024422ce003abe0c20fa3762f83
15e9a191aef4c2d8d504df2367c89aaf857ca48862b098746fa1f524e3c8fa00
GET /images/public/heading-background.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cuty.io/css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 107203
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-1a2c3"
expires: Tue, 10 Feb 2026 20:06:09 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3397290
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G02b5L%2BUKsq9vyh%2BcqQELa19Ybtc4L1IBkAzC%2BOKAvFY9sV5W6v6i0w7EwcNAwwwgUHv%2FQ3JaqBY%2FArsQlPDHds5tLI8GAMjpjJupGeryyLfiSCGbu2hRTPLk7fIRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af601f91a0b55-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=10509&min_rtt=1712&rtt_var=6925&sent=11&recv=6&lost=0&retrans=0&sent_bytes=4079&recv_bytes=1153&delivery_rate=374932&cwnd=12000&unsent_bytes=0&cid=071640809123a9ec&ts=70&x=1", cfExtPri, cfHdrFlush;dur=0
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
302 Found 0 B URL GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint4B:95:33:75:06:A7:4B:8D:93:0F:44:A4:E7:B2:1E:51:52:D7:30:DC
ValidityMon, 10 Mar 2025 08:37:54 GMT - Mon, 02 Jun 2025 08:37:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:PNVz0O38AokncTAUsNJLEHHtRjChIw:UQ_w3c4mK3ugQDsN; Expires=Thu, 25-Mar-2027 02:26:01 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:26:01 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVtHp6601cuTlgwQ_OnCGOx0lI4ajbatkMU--oCuADcC_D0IH7w7hEEcepfL9SG97qF3uKp_qg
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-r1szvPUbbEVY2JQ8wrW5nw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1382
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:26:02 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
onetag-sys.com/usync/?cb=1742869562808
204 No Content 0 B URL GET onetag-sys.com/usync/?cb=1742869562808
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1742869562808 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
302 Found 86 B URL GET a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectadpartner.pro
FingerprintD6:53:9A:7B:8F:CD:3A:58:6A:19:B0:66:10:58:59:68:AE:5B:FA:BB
ValidityTue, 14 Jan 2025 08:08:25 GMT - Mon, 14 Apr 2025 08:08:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D HTTP/1.1
Host: a4p.adpartner.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: text/html; charset=utf-8
content-length: 224
location: https://prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=0092eaad-c334-4cfe-9186-7fe678d0b388
cache-control: no-store no-transform
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-ar.png
200 OK 51 kB URL GET cdn.cuty.io/images/shared/locale-ar.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Hash c81b22802da2b0f2d79452c15098ddb3
abd99b0b24da4d6d74513bb6b2b3311289a3dacc
7b93d647c94f9591b74af237bd20641b982004b56285802a69a2d83fa4b3b8a5
GET /images/shared/locale-ar.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 51070
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-c77e"
expires: Tue, 10 Feb 2026 19:56:06 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3355653
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C%2BsMOs4xjWill6yn5GhVkUXAySWsGeYP2Ruh1HzBCbZ7nYxH%2F5ONbeiUJ8O%2BK8guJ8wdljCjX83lL1%2BDUcctPJI6fW10GED%2BvxrfpFA85h5BArEeZ5NDAoJBp46isA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af601bde756aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=853&min_rtt=383&rtt_var=520&sent=495&recv=213&lost=0&retrans=0&sent_bytes=667217&recv_bytes=3253&delivery_rate=32837079&cwnd=218&unsent_bytes=0&cid=03a635d91bd96ad4&ts=120&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kg1ITDKMPDbHX%2Bfz7LBNbj8GQJvukEVQb6g6iXArHibK9GMT18gsViOn2xS7N7MgRmrEnpj2wQIDP2qjxLuoddp4lR0VRIf%2F5XXamu44GnO4nGYitTuRYXiWwRQv90TmRlF2TB077MRbWcg%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 925af6052b8156ae-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1505
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_uzcnj3l1xdamw1jxiqp
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af60b7d785699-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GWEvW%2FUxXk%2FKatE%2BTIuHYSguDOPfJKXYbdJZRKub1JCMtf74NowShWmUrALMozuMQ4sk4R7AfFtuXdE9XvNlmNJStNdw%2FX92NZ0YPmx%2FdCXdSc0BbUuorJD%2FtWLmABcgLDFSi7fLHdGyv%2FBRY4E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af60bcc20b50f-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=708&min_rtt=386&rtt_var=676&sent=7&recv=13&lost=0&retrans=0&sent_bytes=2893&recv_bytes=1492&delivery_rate=5134751&cwnd=253&unsent_bytes=0&cid=0f72dcd269875e28&ts=144&x=0"
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 297
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af60b8d951c02-OSL
X-Firefox-Spdy: h2
dsp-service.admatic.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
302 Found 0 B URL GET dsp-service.admatic.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectdsp-service.admatic.com.tr
Fingerprint4A:46:A5:28:33:FA:59:3C:B4:57:40:DE:DE:FA:D7:07:E6:82:78:18
ValidityMon, 10 Mar 2025 03:46:23 GMT - Sun, 08 Jun 2025 03:46:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Cookie: adplus_digital_id=0.tg9olcazt3k
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 25 Mar 2025 02:26:06 GMT
content-type: text/html; charset=utf-8
location: https://prebid.admatic.com.tr/setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=44266bf3-bcdb-45d8-ba67-1cbaf543d2af
access-control-allow-origin: *
x-powered-by: AdMatic
vary: Accept, Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: admatic-k8s
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JT9sQl5wao3t8m9UQj7XYyI0v3btJn2h%2FKVB8buiALcK4FKjvLowhHJgbcHHnKKO%2B6bVTeYyKDIV2SRolmNZ9Jcy7uzVi4rX%2BhXg1Go9GVktx8WQzM%2FwswbMttMFZ5e8dksSmYLULfXs0PTt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925af6288c28b50c-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6727&min_rtt=479&rtt_var=11259&sent=6&recv=10&lost=0&retrans=0&sent_bytes=2864&recv_bytes=1426&delivery_rate=5971134&cwnd=253&unsent_bytes=0&cid=72af6da0f2bc3b1e&ts=115&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=InuKStydV1PmOqyUPJHpvipPxw65N%2BJfqdF1eI5FEQW0EMgGOLRm6cEQEsvwtqfk73%2BW6OK5JLwVJmD%2Fl4qRRNSSC%2BDJauim2jl6v0WRSI9RCwhd%2B7LlQmANImtPiDlnXWYtHRjyII3%2Fmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62e5b3c712a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5960&min_rtt=4189&rtt_var=1992&sent=21&recv=16&lost=0&retrans=0&sent_bytes=7020&recv_bytes=3829&delivery_rate=40408&cwnd=12000&unsent_bytes=0&cid=9020ac2439d05da6&ts=362&x=1", cfExtPri, cfHdrFlush;dur=0
prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZHRhcmdldCI6eyJ1aWQiOiJhMjMyYzNiMjExYTg5YTRlIiwiZXhwaXJlcyI6IjIwMjUtMDQtMDhUMDI6MjY6MDcuNzgwMDk5NDU0WiJ9fX0=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lpxmZuiA52USYKGQGv8adl1MRKSv8nyerx%2F2eGRkkW3P2C34wQPHTSFlQR2HX3YlxvPgoxMBFynyemMI%2FcT3Eri%2Bdy1oZ25jds1qOi6oOplCJRdmWBgKxFjYiHvWUCPh7z4qQzC1ZfV7EQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62e7b43712a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5960&min_rtt=4189&rtt_var=1992&sent=22&recv=16&lost=0&retrans=0&sent_bytes=7953&recv_bytes=3829&delivery_rate=40408&cwnd=12000&unsent_bytes=0&cid=9020ac2439d05da6&ts=382&x=1", cfExtPri, cfHdrFlush;dur=0
cdn.cuty.io/images/public/step-3.svg
200 OK 1.1 kB URL GET cdn.cuty.io/images/public/step-3.svg
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash 7183e196f55e65ce79742695036c23cd
a9e0fac30a2daa48fa55286152e4ddd1e16fa512
c4f5a911c7f89b1da640b9eba806fdf5ee40d0163702817838bf6409f16f5525
GET /images/public/step-3.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/svg+xml
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
etag: W/"67485f94-45b"
expires: Sat, 29 Nov 2025 02:02:06 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 8124905
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GgDEdvwELXcn4K3Y623sVbr2M45SGrEYcISJksWu%2FmfFaLRFX3pWdbkgjKAYqeNuAaqE3fxaIxNG%2FBZA8hfWjpZNb2Q09L5dkO9k3dTuyHfiVwdsTYquaftswzAnmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6016daa56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=485&min_rtt=392&rtt_var=147&sent=67&recv=29&lost=0&retrans=0&sent_bytes=70716&recv_bytes=2542&delivery_rate=27394594&cwnd=254&unsent_bytes=31856&cid=03a635d91bd96ad4&ts=72&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: text/html; charset=iso-8859-1
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ETrDEncvWEQlwz8F5BvoJRjyOYQd8Tx2PnzGfmTW%2FaaCFmOdJXy5bAEzuBepobYTvBTRspVGUhR%2FcPYoijbWXoUbISJLtDyOI2GHc%2BP4v64YeCpP8I2hqiICZR2phVpgwM9AqxT1ib1AUto%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af6034976b4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=692&min_rtt=496&rtt_var=268&sent=23&recv=17&lost=0&retrans=0&sent_bytes=7256&recv_bytes=1600&delivery_rate=7587772&cwnd=257&unsent_bytes=0&cid=433145a59e57db7e&ts=212&x=0"
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1685
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xfsF36zLcTEBX9qlevmO5o9OXHJ%2BVtdGMoNz3Wz2yGuGvMjw1hJJu67FrPgGI8dmSYKtO4FYHB%2BeSb4YOcyfvQNK5O7TGjLGuPNe7kechkG%2BRvrk%2FJfliGJ1%2FygScRZbOVRxuPPJWJBv2QlQjo4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af6107e22b50f-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=8336&min_rtt=386&rtt_var=14092&sent=13&recv=19&lost=0&retrans=0&sent_bytes=5436&recv_bytes=1705&delivery_rate=5134751&cwnd=257&unsent_bytes=0&cid=0f72dcd269875e28&ts=844&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531
200 OK 52 kB URL GET cdn.cuty.io/css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type ASCII text, with very long lines (52547)
Hash a66d1b3f490ee5b9c79bc9f7135b2531
dec1f851c99a7b3bedfc5eab237653e936492542
c6d2443a652a5a4d0ec21c76ab36874b2da6a67edefda281ba35875e82bb7f78
GET /css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: text/css
last-modified: Wed, 28 Dec 2022 14:22:02 GMT
vary: Accept-Encoding
etag: W/"63ac510a-cd44"
expires: Wed, 29 Oct 2025 05:03:46 GMT
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 10015346
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bz52Wp2k1B8v%2B8Ljc7l2Xmpu1BJKTH%2BsvKpAvk58wylmZIyubYrXB05ARk9tzA416ePC7ZlBY6C%2Fzwsc9xHkY%2FLCOJVZUN3PpINtvTbclB2xm5F9BVmBQN1qid92rQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af6015d9956aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=464&min_rtt=395&rtt_var=121&sent=27&recv=27&lost=0&retrans=0&sent_bytes=21373&recv_bytes=2457&delivery_rate=7240000&cwnd=254&unsent_bytes=0&cid=03a635d91bd96ad4&ts=70&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kOEvQHEj5gbhJOThTYPOA7XbalqIAMRP%2BlObkw3a4bBVZq6N3zBsf4%2BbBFYPNbKuoZhEWDaNdv0%2BUMEyhRSQcHE7zXeUw72YsjZtECvDLMAwVthFW%2BsKUwlq0CElCJa0Lolyj03Utc3d5p%2BUQsU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af60bfc39b50f-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1250&min_rtt=386&rtt_var=1592&sent=10&recv=14&lost=0&retrans=0&sent_bytes=4554&recv_bytes=1492&delivery_rate=5134751&cwnd=255&unsent_bytes=0&cid=0f72dcd269875e28&ts=175&x=0"
X-Firefox-Spdy: h2
hipanditlastedallth.com/R0VIdEUmJysZeiZ4KlIwNSl1UXcBYHoyIX82JBgzdiY/EiklMmYXKSgwLBI3KCs8WisiMW1GAy8cezE8Iy54NQ0rMhkXLSQcHh8xfxAjJQMWKyQjE3cMDT8EEQgdJQhyAiAcIQACBTUNK3wZPj0GIBA1HzAMIi4qAT94QwwSFHE7ETcGCiIEcgIaIRUVKDskAAEyGhcAEhAQNhMwECQQEQIscREXFRQLJBQwJAwDDDQAGi4SDywdNQ13Dxk7BA0IEAwudAYgRSABdyAmCzAhERIQHQEJGHFxBiBNEgARJyUTBgcPPT0jEAkxH38QeUwGEnZ8HBMGaAozCiAqLjYADSodMAgfFwBEJxUyEiAjLgMdNQAeYHoyAxEUCjp2PxQaJj0AHw0uAQYtDRsEBTUsIXZ/KRkDDw8jHjoEBi4sGxASAx08P38CDkV1CCQOMXYGdR5BERIAHTV2BRZuHjYoKzhJBAAfKQQdFzMDABx0cg
200 OK 3.1 kB URL GET hipanditlastedallth.com/R0VIdEUmJysZeiZ4KlIwNSl1UXcBYHoyIX82JBgzdiY/EiklMmYXKSgwLBI3KCs8WisiMW1GAy8cezE8Iy54NQ0rMhkXLSQcHh8xfxAjJQMWKyQjE3cMDT8EEQgdJQhyAiAcIQACBTUNK3wZPj0GIBA1HzAMIi4qAT94QwwSFHE7ETcGCiIEcgIaIRUVKDskAAEyGhcAEhAQNhMwECQQEQIscREXFRQLJBQwJAwDDDQAGi4SDywdNQ13Dxk7BA0IEAwudAYgRSABdyAmCzAhERIQHQEJGHFxBiBNEgARJyUTBgcPPT0jEAkxH38QeUwGEnZ8HBMGaAozCiAqLjYADSodMAgfFwBEJxUyEiAjLgMdNQAeYHoyAxEUCjp2PxQaJj0AHw0uAQYtDRsEBTUsIXZ/KRkDDw8jHjoEBi4sGxASAx08P38CDkV1CCQOMXYGdR5BERIAHTV2BRZuHjYoKzhJBAAfKQQdFzMDABx0cg
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerAmazon
Subjecthipanditlastedallth.com
Fingerprint3F:BD:EB:47:01:97:EA:0D:B1:C2:BE:9F:3A:F8:B8:E1:A1:22:CF:A1
ValiditySun, 09 Mar 2025 00:00:00 GMT - Tue, 07 Apr 2026 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (3093), with no line terminators
Hash b5cafc0a5a3cf601259b69600a1188bb
517206c4ddb445e6aad61dbeaac15bb3906f941f
38bba351f17117468c28247544902b3614fe07e43ebe3efd9eee44b265282907
GET /R0VIdEUmJysZeiZ4KlIwNSl1UXcBYHoyIX82JBgzdiY/EiklMmYXKSgwLBI3KCs8WisiMW1GAy8cezE8Iy54NQ0rMhkXLSQcHh8xfxAjJQMWKyQjE3cMDT8EEQgdJQhyAiAcIQACBTUNK3wZPj0GIBA1HzAMIi4qAT94QwwSFHE7ETcGCiIEcgIaIRUVKDskAAEyGhcAEhAQNhMwECQQEQIscREXFRQLJBQwJAwDDDQAGi4SDywdNQ13Dxk7BA0IEAwudAYgRSABdyAmCzAhERIQHQEJGHFxBiBNEgARJyUTBgcPPT0jEAkxH38QeUwGEnZ8HBMGaAozCiAqLjYADSodMAgfFwBEJxUyEiAjLgMdNQAeYHoyAxEUCjp2PxQaJj0AHw0uAQYtDRsEBTUsIXZ/KRkDDw8jHjoEBi4sGxASAx08P38CDkV1CCQOMXYGdR5BERIAHTV2BRZuHjYoKzhJBAAfKQQdFzMDABx0cg HTTP/1.1
Host: hipanditlastedallth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1212
date: Tue, 25 Mar 2025 02:26:01 GMT
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
set-cookie: AWSALB=PiaXBgnRjoNjwArRwLV6WyWKkSwfOM6rqeMgy1nGn50PH84Z0WoC06RfXGe9vZbcgjt6y40bvfZWIrgKbQ2L52CL2FzSfvzOleSGNiP/aUCtPehLOoKeYRkHaveN; Expires=Tue, 01 Apr 2025 02:26:01 GMT; Path=/
AWSALBCORS=PiaXBgnRjoNjwArRwLV6WyWKkSwfOM6rqeMgy1nGn50PH84Z0WoC06RfXGe9vZbcgjt6y40bvfZWIrgKbQ2L52CL2FzSfvzOleSGNiP/aUCtPehLOoKeYRkHaveN; Expires=Tue, 01 Apr 2025 02:26:01 GMT; Path=/; SameSite=None
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 419f3eb3d74bedebbef6fc91b3f54a36.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: -ZyUtUQm8Sy8iTPayK32-g8hHZu1axiTepk8nFTarxHByvFni_j9zw==
X-Firefox-Spdy: h2
script.4dex.io/a/latest/adagio.js
200 OK 62 kB URL GET script.4dex.io/a/latest/adagio.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectscript.4dex.io
Fingerprint85:83:5E:32:B3:48:93:75:71:3A:97:C5:4C:D8:9F:AA:FD:99:68:FF
ValidityTue, 18 Mar 2025 00:58:21 GMT - Mon, 16 Jun 2025 01:58:17 GMT
File type JavaScript source, ASCII text, with very long lines (62149)
Hash 4ebf7042f3ba84fbe39534d4fa8c5c86
f92b6bede1901b4f4c77612b44f711419b578816
9de56ba22416192d18869051fdaa33876a9b6b3c7ed326abc7c8cc8503027797
GET /a/latest/adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Mar 2025 02:26:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"4ebf7042f3ba84fbe39534d4fa8c5c86"
Last-Modified: Mon, 24 Mar 2025 20:04:09 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
Age: 19153
Expires: Mon, 24 Mar 2025 21:36:49 GMT
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ok2HK90y%2Bx9q47SrEAp0E8MxM3LTtgyl8GcHnKhyCwJkOj598ioZuVazTvaGh2dvJs26PAheV12G%2FvN5m7hj4Jixo8JifafhMEQCmXsLbNvbcGW14hETssD%2BYM%2Bik%2BzW"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 925af60d2aa656b7-OSL
Content-Encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=510&min_rtt=489&rtt_var=138&sent=5&recv=8&lost=0&retrans=0&sent_bytes=3103&recv_bytes=1014&delivery_rate=7607705&cwnd=252&unsent_bytes=0&cid=e267d8b6b531601c&ts=154&x=0"
a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
302 Found 86 B URL GET a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectadpartner.pro
FingerprintD6:53:9A:7B:8F:CD:3A:58:6A:19:B0:66:10:58:59:68:AE:5B:FA:BB
ValidityTue, 14 Jan 2025 08:08:25 GMT - Mon, 14 Apr 2025 08:08:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D HTTP/1.1
Host: a4p.adpartner.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: text/html; charset=utf-8
content-length: 224
location: https://prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=4cf82174-c150-4a37-907b-3eb0d17025c6
cache-control: no-store no-transform
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1504
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_lrxasoyusk1udxj74u7
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af60bcda05699-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVvW8ryQMMYiscJAe58IS_EmJOXQ4F-HDklOSkqU1dfhfVrdi7aMf-eQUUKGRm6TvRMNY3K_bA
302 Found 0 B URL GET accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVvW8ryQMMYiscJAe58IS_EmJOXQ4F-HDklOSkqU1dfhfVrdi7aMf-eQUUKGRm6TvRMNY3K_bA
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint57:E3:38:DA:15:E9:22:1D:17:E2:12:42:3A:88:03:62:6E:F5:C0:53
ValidityMon, 10 Mar 2025 08:36:06 GMT - Mon, 02 Jun 2025 08:36:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVvW8ryQMMYiscJAe58IS_EmJOXQ4F-HDklOSkqU1dfhfVrdi7aMf-eQUUKGRm6TvRMNY3K_bA HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:a9KjNj8-ambV1CrRjFCWDs6J9NaO-g:O5tSr31gxWSlWPur;Path=/;Expires=Thu, 25-Mar-2027 02:26:03 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:26:03 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVuw8ZCd6xVD_CVAFsRawlKUbAabQZRMDzPQc2usOrfQbJMCSgPj06JDP37-Lc4NPE2z1KDtYw&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1207885554%3A1742869563672859
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-Dw7J6fwebbmbagM8HJDQ9g' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 421
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
302 Found 86 B URL GET sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerZeroSSL
Subjectsync.console.adtarget.com.tr
FingerprintED:8C:47:D0:F4:82:C5:4F:57:FD:F5:2D:94:C8:7F:3B:9E:6E:E4:81
ValidityWed, 12 Mar 2025 00:00:00 GMT - Tue, 10 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D HTTP/1.1
Host: sync.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Adtarget
Date: Tue, 25 Mar 2025 02:26:07 GMT
Content-Length: 0
Etag: a232c3b211a89a4e
Location: https://prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e
Set-Cookie: vmuid=a232c3b211a89a4e; expires=Thu, 26 Jun 2025 02:26:07 GMT; domain=.console.adtarget.com.tr; path=/; secure; SameSite=None
www.googletagmanager.com/gtag/js?id=G-GGDCMPL4QP
200 OK 345 kB URL GET www.googletagmanager.com/gtag/js?id=G-GGDCMPL4QP
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT
File type JavaScript source, ASCII text, with very long lines (5436)
Size 345 kB (345159 bytes)
Hash a3fc0bce4d5546b39dce9f1c408eacc4
dbbeea1a9ea8e20e4f7e16889a47c9c6d3eff4ab
b659bc039999b7053d5313889852ceb3cd09c229d4e248ab98b8fa56b4e038d0
GET /gtag/js?id=G-GGDCMPL4QP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 25 Mar 2025 02:26:00 GMT
expires: Tue, 25 Mar 2025 02:26:00 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 118026
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20250325
200 OK 1.6 kB URL GET cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20250325
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C
ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1715), with no line terminators
Hash da2bcf12af7e70307855935dbfb4ccff
beb7c32b7b382ccfcf0f5184366c2c37d1d4f59b
d8d89bac91b40db341d9ddd6c7c2cd58e63806963947162c95d02145251b6ee7
GET /gh/prebid/currency-file@1/latest.json?date=20250325 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/json; charset=utf-8
x-jsd-version: 1.0.2370
x-jsd-version-type: version
etag: W/"629-w5mzzl6NtgNmT86s6lH3OnxwcmY"
content-encoding: br
accept-ranges: bytes
date: Tue, 25 Mar 2025 02:26:01 GMT
age: 37510
x-served-by: cache-fra-eddf8230103-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 814
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1893
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
pix.netpub.info/o?c=4.2349620175173275&x=netpub&e=0&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&v=1.6.0&r=250&zz=f62a2f3c90ba3d9b80971a0dbf417d427cb7bcd1ebd2410525c6b1acfcffd3f1&s=interactive&b=request&g=admatic&j=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&xx=PBAUCTION&t=1742869563905&f=pb&p=338&yy=df2078e488df0207092ca05dc81135f1&a=7&y=en-US&m=1024&aa=efa0c35c478e24f5b65a10692ab4e782&n=100&l=1280&h=0&ww=b11e4792e0a492b4b2fb9a909a479ccc&q=300&o=490&i=3&d=https%3A%2F%2Fcutyion.com%2Fsuo6JnQoG&k=div_netpub_campaign_uzcnj3l1xdamw1jxiqp
200 OK 633 B URL GET pix.netpub.info/o?c=4.2349620175173275&x=netpub&e=0&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&v=1.6.0&r=250&zz=f62a2f3c90ba3d9b80971a0dbf417d427cb7bcd1ebd2410525c6b1acfcffd3f1&s=interactive&b=request&g=admatic&j=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&xx=PBAUCTION&t=1742869563905&f=pb&p=338&yy=df2078e488df0207092ca05dc81135f1&a=7&y=en-US&m=1024&aa=efa0c35c478e24f5b65a10692ab4e782&n=100&l=1280&h=0&ww=b11e4792e0a492b4b2fb9a909a479ccc&q=300&o=490&i=3&d=https%3A%2F%2Fcutyion.com%2Fsuo6JnQoG&k=div_netpub_campaign_uzcnj3l1xdamw1jxiqp
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.info
Fingerprint56:17:64:34:08:12:75:29:07:B5:8D:B0:E2:DB:E0:AD:D1:5C:B7:4A
ValidityMon, 10 Feb 2025 19:21:32 GMT - Sun, 11 May 2025 20:21:25 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3
Hash 0db3b7ecf3992b4d3b0419c33136fc88
707cd84a9cfd9770b50dcd630ba0bd3b89797700
c58ea4bbb7f4e22e94cee51df43239bedfd87834c7a010bdc21a675f6285897f
GET /o?c=4.2349620175173275&x=netpub&e=0&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&v=1.6.0&r=250&zz=f62a2f3c90ba3d9b80971a0dbf417d427cb7bcd1ebd2410525c6b1acfcffd3f1&s=interactive&b=request&g=admatic&j=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&xx=PBAUCTION&t=1742869563905&f=pb&p=338&yy=df2078e488df0207092ca05dc81135f1&a=7&y=en-US&m=1024&aa=efa0c35c478e24f5b65a10692ab4e782&n=100&l=1280&h=0&ww=b11e4792e0a492b4b2fb9a909a479ccc&q=300&o=490&i=3&d=https%3A%2F%2Fcutyion.com%2Fsuo6JnQoG&k=div_netpub_campaign_uzcnj3l1xdamw1jxiqp HTTP/1.1
Host: pix.netpub.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:04 GMT
content-type: image/jpeg
content-length: 633
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Iklok%2BFs2SBF8SKkJFrNVbjiu3D5a45HYgyGQ9jPMOeMQuUWBB90qxO1%2BuFYnRCtF3PySOxnLQDcKVUIV9b60vxpFjGSoyS8Tuz3J3DqH%2FFKRksynIOqgz3%2B7%2Bx1Z8mFkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af617cc73b50b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=811&min_rtt=459&rtt_var=561&sent=13&recv=14&lost=0&retrans=0&sent_bytes=5650&recv_bytes=2603&delivery_rate=8305927&cwnd=257&unsent_bytes=0&cid=717a694a66310d30&ts=1116&x=0"
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1422
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:26:02 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
static.smilewanted.com/js/decode_consent/decode_consent.js
200 OK 50 kB URL GET static.smilewanted.com/js/decode_consent/decode_consent.js
IP
Requested by https://csync.smilewanted.com/
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
File type JavaScript source, ASCII text, with very long lines (49614), with no line terminators
Hash 00ff8001302d3748ba139466fc3910c1
8210e702fe525e6cddc84758ec51e96a4d703186
eb4db95cf7c97ce22bd98d1b95dfd82204843cc8854cbe0b3b6b93be4fa41a2f
GET /js/decode_consent/decode_consent.js HTTP/1.1
Host: static.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:06 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 17:11:55 GMT
etag: W/"607873db-c1ce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1114128
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6263bd71c02-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/burger.svg
200 OK 207 B URL GET cdn.cuty.io/images/shared/burger.svg
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash 573aef439a6b96a62a233ed0341072d5
875bae0f4d6c067b8faccf9a58799e789e480997
f6226868923f3764988c58d88d5136f2ecf3fb899365c8f418a2b81da8413d82
GET /images/shared/burger.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/svg+xml
last-modified: Fri, 15 Nov 2024 06:46:21 GMT
etag: W/"6736ee3d-cf"
expires: Wed, 26 Nov 2025 02:06:38 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 8204465
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6GVrzveHfQEIpEL8x7LDa9lx81OAgrnm2F0GcbaBKlqFfhISjDfWx80j8p2A7YQ0S%2F9CQAM2RPERaFM13jNOknbSDdJBM2PyjRJm4QwbUnOD5I3n0etrJKuWt%2FbIHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6015d9d56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=464&min_rtt=395&rtt_var=121&sent=25&recv=27&lost=0&retrans=0&sent_bytes=20653&recv_bytes=2457&delivery_rate=7240000&cwnd=254&unsent_bytes=0&cid=03a635d91bd96ad4&ts=70&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/js/public/layouts/app.js?id=c6f3544d59459ef4967d8d8075ae7bcc
200 OK 344 kB URL GET cdn.cuty.io/js/public/layouts/app.js?id=c6f3544d59459ef4967d8d8075ae7bcc
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
Size 344 kB (343687 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/public/layouts/app.js?id=c6f3544d59459ef4967d8d8075ae7bcc HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: application/javascript
last-modified: Thu, 28 Nov 2024 12:18:27 GMT
vary: Accept-Encoding
etag: W/"67485f93-53e87"
expires: Fri, 28 Nov 2025 12:18:30 GMT
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 10073247
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lFX7eSG2LN7miXJsxOE1pETxx6jB5HeeQm6zGVfFu%2BCmtpQKobk%2BHLjQy%2FZLXa1vg8SPjhKW%2FWGmljH26AiC7fHo2JNvOHJwwjo6VtnQxZjR6%2FmWWunXN7E5CR4iCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af601bdee56aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=714&min_rtt=383&rtt_var=261&sent=591&recv=241&lost=0&retrans=0&sent_bytes=796214&recv_bytes=3253&delivery_rate=59639846&cwnd=220&unsent_bytes=0&cid=03a635d91bd96ad4&ts=126&x=0"
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1418
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_olt7cgy2iduk3x3ev9
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af60bbd9c5699-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Mar 2025 02:26:05 GMT
location: https://prebid.admatic.com.tr/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1658
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:26:02 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
d8sllv1cwflbw.cloudfront.net/?vllsd=1157445
200 OK 191 kB URL GET d8sllv1cwflbw.cloudfront.net/?vllsd=1157445
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
Size 191 kB (190610 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?vllsd=1157445 HTTP/1.1
Host: d8sllv1cwflbw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 64315
date: Tue, 25 Mar 2025 02:26:00 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RKfIcotP_JxzEHP17hBhe7SYy10q-Axt2vi_U2ato85EaUOQ2OiyEg==
X-Firefox-Spdy: h2
call.cleverwebserver.com/?id=90136&c=NO&r=03&l=347&b=Firefox&bv=0&os=Win10&mob=0&v=2.34.1&lg=en-US&ref=aHR0cHM6Ly9jdXR5aW9uLmNvbS9zdW82Sm5Rb0c%3D&ruri=&s=59c814743d9b53e9945968f957f6778cabf284305e677a9d6c1f5c58d3bb5191&e=6FwcAII9&st=W&iv=-1
403 Forbidden 0 B URL GET call.cleverwebserver.com/?id=90136&c=NO&r=03&l=347&b=Firefox&bv=0&os=Win10&mob=0&v=2.34.1&lg=en-US&ref=aHR0cHM6Ly9jdXR5aW9uLmNvbS9zdW82Sm5Rb0c%3D&ruri=&s=59c814743d9b53e9945968f957f6778cabf284305e677a9d6c1f5c58d3bb5191&e=6FwcAII9&st=W&iv=-1
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcleverwebserver.com
Fingerprint3C:ED:1B:95:5A:8D:36:73:A6:5A:3D:6C:ED:F6:68:62:4B:0A:94:47
ValiditySat, 22 Mar 2025 15:00:18 GMT - Fri, 20 Jun 2025 15:59:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?id=90136&c=NO&r=03&l=347&b=Firefox&bv=0&os=Win10&mob=0&v=2.34.1&lg=en-US&ref=aHR0cHM6Ly9jdXR5aW9uLmNvbS9zdW82Sm5Rb0c%3D&ruri=&s=59c814743d9b53e9945968f957f6778cabf284305e677a9d6c1f5c58d3bb5191&e=6FwcAII9&st=W&iv=-1 HTTP/1.1
Host: call.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Tue, 25 Mar 2025 02:26:16 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6079d3256c6-OSL
content-encoding: br
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1422
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:26:01 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fadaptmx%2F
302 Found 0 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fadaptmx%2F
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://csync.smilewanted.com/
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fadaptmx%2F HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Mar 2025 02:26:06 GMT
location: https://csync.smilewanted.com/set_partner_userid_get/adaptmx/?gdpr=0
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XAoBoScpO7jtnTBfIQysx8WAZFUtnRGNGgKeU%2Fvw9YbJo0cynMqi%2FPZn6zDxxPk%2Fuy4cq3p21ICRxEz0QL6GzVFGxn4NrThPCmktNCTcgwtM%2FjVV4Txysp6K56Po%2Bz4rvm8TZs3JpnkQJZk%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 925af6052b7f56ae-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 985
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pQNVrSt1ikXNrt2RV8l4MjIYbu6eN5q38kFqiPQjzdt5DfhjFxNlIK2ogahQu2QIME5N5qyPHQAGaW8ctdh2qj%2F%2FzolXly%2FK94M3abheLhNgEpiEQV%2Bn0QwP1qG2i3U3QlGQfsN9m4AqCWxyPhE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af60d69475689-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1033&min_rtt=452&rtt_var=1248&sent=15&recv=17&lost=0&retrans=1&sent_bytes=2926&recv_bytes=5755&delivery_rate=5601547&cwnd=254&unsent_bytes=0&cid=5eea72440a4f3224&ts=489&x=0"
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 298
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af6103f0d1c02-OSL
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1383
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:26:02 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZHRhcmdldCI6eyJ1aWQiOiJhMjMyYzNiMjExYTg5YTRlIiwiZXhwaXJlcyI6IjIwMjUtMDQtMDhUMDI6MjY6MDcuODk4OTIxMzZaIn19fQ==; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S5EQTaMpxhUiwOEgoVr28HHl6GfApYOwUpsc6QWGNGOTSZHnZtwH%2Fy0KfJ%2BEZvXLu7rJY3hvOM9851f%2FKei0RYf8nBKd2y%2BmGexsWIK5%2FHdTeG9E7EB8fvkvYc66GNE4UUQrvrUagdQY2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62f3b96712a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5099&min_rtt=1611&rtt_var=2571&sent=26&recv=19&lost=0&retrans=0&sent_bytes=11105&recv_bytes=4332&delivery_rate=588653&cwnd=12000&unsent_bytes=0&cid=9020ac2439d05da6&ts=500&x=1", cfExtPri, cfHdrFlush;dur=0
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1680
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
200 OK 13 kB URL GET fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint69:99:38:F9:7C:82:8E:AC:7D:DA:EA:3E:1C:E4:7F:52:1B:36:41:AA
ValidityMon, 10 Mar 2025 08:37:02 GMT - Mon, 02 Jun 2025 08:37:01 GMT
Hash c9f36658dc59e8d22550c0578261f3fe
a1eba985bc4b782370a308070b807480e297c1c5
39f85da7dc77694bd52d522dd305c05fde96a07d3b44b3bdbc29ca11e7d93812
GET /css2?family=Inter:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cutyion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 25 Mar 2025 02:26:00 GMT
date: Tue, 25 Mar 2025 02:26:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-es.png
200 OK 13 kB URL GET cdn.cuty.io/images/shared/locale-es.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Hash cd2f27e52bb7592e28676a86a3309158
796b9f96cbd568743713d06478e26c8e690e3723
0e656966f1958200ae6fbba050fc6eaebb9b1c60edaaffca31d26525bc59c826
GET /images/shared/locale-es.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 12579
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-3123"
expires: Fri, 13 Feb 2026 16:29:04 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3355653
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CwXA97l4qpKUZ%2BKpS9jV2Y9fTA957kLVm2B2M%2FGqjtTvmSvJ9%2FHGFN70Z6M3Yx6y%2BnDF2Jcmfjf2K5baG9OYhglBrsAFGfqVSSSl7XGqVAiierdv%2F%2BU9030Oh9hWMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af601ade356aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1162&min_rtt=383&rtt_var=758&sent=484&recv=206&lost=0&retrans=0&sent_bytes=654062&recv_bytes=3039&delivery_rate=32837079&cwnd=218&unsent_bytes=0&cid=03a635d91bd96ad4&ts=117&x=0"
X-Firefox-Spdy: h2
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 2259
server: cloudflare
cf-ray: 925af606eaa87127-OSL
X-Firefox-Spdy: h2
id.ad-plus.com.tr/?token=0.tg9olcazt3k
200 OK 0 B URL GET id.ad-plus.com.tr/?token=0.tg9olcazt3k
IP
ASN #34984 Superonline Iletisim Hizmetleri A.S.
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerGlobalSign nv-sa
Subject*.ad-plus.com.tr
FingerprintA7:AE:D9:3F:30:57:D0:5A:1D:B6:47:78:DA:87:47:47:64:58:70:57
ValidityWed, 24 Jul 2024 13:16:11 GMT - Mon, 25 Aug 2025 13:16:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?token=0.tg9olcazt3k HTTP/1.1
Host: id.ad-plus.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Mar 2025 02:26:06 GMT
Content-Length: 0
Connection: keep-alive
set-cookie: tdid_u=190435.9105280086; Path=/; Max-Age=315569260
f7cbc1d14ffcb89e30f7296e35c2bcf5=ec1aa9c0679b41b39c92d6cc7b20d78f; path=/; HttpOnly
f5avraaaaaaaaaaaaaaaa_session_=HNJLLLGGOKNCANLNCBCBKBIKEKDOGNGFBCFKLKBLAELALFJNDBMELIBODOKIFFPNADIDIIBODDHNPBECFPAALFDHPBBJMHBCFNMHIKNEFIABENBPBPCNEADAFDOMFCGO; HttpOnly; secure;
cache-control: private
Access-Control-Max-Age: 0
Access-Control-Expose-Headers: Content-Length,Set-Cookie,Content-Range
Access-Control-Allow-Methods: GET, PUT, POST, OPTIONS, DELETE
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Slack-Request-Timestamp,X-Slack-Signature,Authorization,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Set-Cookie
prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=4cf82174-c150-4a37-907b-3eb0d17025c6
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=4cf82174-c150-4a37-907b-3eb0d17025c6
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=4cf82174-c150-4a37-907b-3eb0d17025c6 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJtZW1icmFuYSI6eyJ1aWQiOiI0Y2Y4MjE3NC1jMTUwLTRhMzctOTA3Yi0zZWIwZDE3MDI1YzYiLCJleHBpcmVzIjoiMjAyNS0wNC0wOFQwMjoyNjowNy42NjA5OTM2ODVaIn19fQ==; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ziOlFksjSR1AQ3Ov8G1M%2B4vWZuqazkZnCPKIhEgRgoQU5gWAMNBL75yYfJVGE3Sens1CgZZCDmz18WjEvwbXfuP0%2FpMQz7ES0BxI8CAPu%2FGVNDmj5NvrWRfSBomr%2Fx1Ha2PrB%2B61aB4yEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62d6ad6712a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5936&min_rtt=4189&rtt_var=2590&sent=16&recv=11&lost=0&retrans=0&sent_bytes=5856&recv_bytes=2201&delivery_rate=9323&cwnd=12000&unsent_bytes=0&cid=9020ac2439d05da6&ts=263&x=1", cfExtPri, cfHdrFlush;dur=0
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: text/html; charset=iso-8859-1
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e0hoSHaHNfmgkFxkglQ5ZAIil%2BRASxdWPF2%2BBe8wEMNm2vvv8rnqihOW4ll%2BwEHrBPYzuG4VwtKI3J50kW3xlyov%2BaqrcXgSAbLu2i3rA4NFAVHvMQj0oz3Fx88SdhYvSJO%2BZqhTKC7pPso%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af603396cb4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=657&min_rtt=496&rtt_var=264&sent=18&recv=16&lost=0&retrans=0&sent_bytes=5470&recv_bytes=1600&delivery_rate=7587772&cwnd=257&unsent_bytes=0&cid=433145a59e57db7e&ts=185&x=0"
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 761 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (789), with no line terminators
Hash b1019fcae461a2ad53d2a952ce301b70
64d07f505b0fc5a7f5f2c4681ea7b879359c59a1
6c69351772bf2809e4af95bae7f89e001419cc39dbd643f6309c86d17bb5d8e0
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 377
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:26:02 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 420
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
cdn.cuty.io/images/shared/logo.svg
200 OK 6.0 kB URL GET cdn.cuty.io/images/shared/logo.svg
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash 10818db4ec7670bce1cec5b9b1f02d75
22d063511fa1e4f3efb06b2abd9aa862146d019c
77a7737552b4e0954efe947589319270841bb3d0b5862ffed4820c61e3dba70d
GET /images/shared/logo.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/svg+xml
last-modified: Sun, 21 Jul 2024 07:29:21 GMT
etag: W/"669cb8d1-175a"
expires: Thu, 16 Oct 2025 22:32:55 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 13063946
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2jdtltDvCuUyT26sVx6QTwJpyyvtakwJRgnM5bjaMFuu4xp2c9Or6o%2BZfmd0rdu9r5N5LWHz9NHIzfVD5SRl%2BbvzgI3tWonrOWt%2Fne4XB%2FdaqBysPHPZMEWNSbmB5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6016dbb56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=758&min_rtt=392&rtt_var=351&sent=90&recv=40&lost=0&retrans=0&sent_bytes=98572&recv_bytes=2542&delivery_rate=18148612&cwnd=254&unsent_bytes=31856&cid=03a635d91bd96ad4&ts=78&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/linkedin-icon.png
200 OK 228 kB URL GET cdn.cuty.io/images/shared/linkedin-icon.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 976 x 970, 8-bit/color RGBA, non-interlaced
Size 228 kB (227769 bytes)
Hash c25b56612bfcb856e442fcb4fa58d958
10caff4d659c98702bd44b334e124402ef9649b4
53016dc352cde2e291cd6b4ba2fddf3cf5f4aec3c1cc75af07302ef63409222c
GET /images/shared/linkedin-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 227769
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-379b9"
expires: Tue, 10 Feb 2026 20:23:29 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3355653
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SAClJiaf0ylccsOClr%2FphRiR3TtisGV4P5HRjHUom2WoTdoOO5aS7S5xcNkcDDhlLLekV61JGlV9Ad7Ix6CBPrjw%2BmTLowMHxWs0z2H7S9izPuHsVgcu93vyFQduqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6015da356aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=485&min_rtt=392&rtt_var=147&sent=40&recv=29&lost=0&retrans=0&sent_bytes=33678&recv_bytes=2542&delivery_rate=27394594&cwnd=254&unsent_bytes=0&cid=03a635d91bd96ad4&ts=72&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560901
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560901
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560901 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: text/html
content-length: 167
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:26:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jCpUxGE%2Bh%2FWNm5H27t%2BhdDpVE%2BSduRVKbvLB2Jk4azb3ugGC4%2FgSKwrXJm6xyMQ%2BWnIBeWZ4aBm9DBj%2FuxMo8YhVvR5I8Pa9u52Biy%2F9sS5W%2F870jcI7vS1%2BEpHF%2FIlPVcPipzrtTAZY%2F5g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6044a17b4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6326&min_rtt=451&rtt_var=11417&sent=27&recv=21&lost=0&retrans=0&sent_bytes=8068&recv_bytes=1816&delivery_rate=8238975&cwnd=257&unsent_bytes=0&cid=433145a59e57db7e&ts=327&x=0"
X-Firefox-Spdy: h2
dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
200 OK 4.6 kB URL GET dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint74:FE:1E:F4:4F:B1:68:C0:81:16:C4:85:68:0D:7D:1F:61:EF:31:DF
ValidityTue, 11 Feb 2025 09:45:46 GMT - Mon, 12 May 2025 09:45:45 GMT
File type HTML document, ASCII text, with very long lines (4777), with no line terminators
Hash 2590b6193481af99a964220d7ae51120
30a09069934209bfe58eca9b1fa082261b73267c
4e3b6b23bb04e04f96a66977333a1cc99fe7a3c6b22131848abcde50095cb191
GET /cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u9ZmA3MHO0euqBosB%2BL5gd9dLuDnTCZC%2FhEwDpszRSFVZjh744a9iW0OjNAZw%2BBUEpviCwKSNFTmmWyZ8ooUtyx7eG9sv2Y%2BNry0RyPKvVselgdV1KiycqyB0JbjNQAUgDbxA7%2FBY4XvVWleGm%2Bj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62a785e56cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4547&min_rtt=3908&rtt_var=1922&sent=13&recv=7&lost=0&retrans=0&sent_bytes=3734&recv_bytes=2006&delivery_rate=162963&cwnd=12000&unsent_bytes=0&cid=68ceaf7e3b17a2a9&ts=304&x=1", cfExtPri, cfHdrFlush;dur=0
cdn.cuty.io/images/public/bitcoin.png
200 OK 31 kB URL GET cdn.cuty.io/images/public/bitcoin.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 2000 x 417, 8-bit colormap, non-interlaced
Hash c072d65a81198a616ea588f4654f1cfb
53ec193adf51c7fcb1a642f680443d90bb3ce91d
391c02102b6a7cce91c572feec8533ecf7b26f7fa1d040ffd940660221abfc4f
GET /images/public/bitcoin.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 30766
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-782e"
expires: Tue, 10 Feb 2026 22:06:50 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3355653
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HFYUQXXOAv14lyv1Iyu8A3yKS4%2F6dirdtG9%2BtDp127ZqgwMFUozobP8FYSGuwlhHyBLrgVgpd6osO4gi0lUaYRqcx5Yg7K3IqyoFYlhVikvooyjye5JHoyg7WXk1rw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6016dad56aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=640&min_rtt=392&rtt_var=151&sent=83&recv=38&lost=0&retrans=0&sent_bytes=89740&recv_bytes=2542&delivery_rate=30484210&cwnd=254&unsent_bytes=12832&cid=03a635d91bd96ad4&ts=73&x=0"
X-Firefox-Spdy: h2
id.a-mx.com/sync/?tagId=bmV0cHViLmNvbQ&ref=null&u=https://cutyion.com/suo6JnQoG&tl=https://cutyion.com/suo6JnQoG&nf=0&rt=true&v=8.52.2&av=2.0&vg=pbjs_broly241216&us_privacy=null&am=null&gdpr=0&gdpr_consent=
200 OK 66 B URL GET id.a-mx.com/sync/?tagId=bmV0cHViLmNvbQ&ref=null&u=https://cutyion.com/suo6JnQoG&tl=https://cutyion.com/suo6JnQoG&nf=0&rt=true&v=8.52.2&av=2.0&vg=pbjs_broly241216&us_privacy=null&am=null&gdpr=0&gdpr_consent=
IP
ASN #60068 Datacamp Limited
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerSectigo Limited
Subjectid.a-mx.com
Fingerprint80:DE:0D:11:57:5C:17:6D:06:7D:EA:45:FA:0C:4B:4F:04:49:4B:B4
ValidityMon, 11 Nov 2024 00:00:00 GMT - Thu, 11 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 1eaa79790e55b7bbf611c79bef9bbc2e
bce0541eb2cecc48edb304b90eb24bb6eb570996
d1ce846410d12dc54134cc5d7404aa18a15d3de80e2dae004c69a22828b27ce1
GET /sync/?tagId=bmV0cHViLmNvbQ&ref=null&u=https://cutyion.com/suo6JnQoG&tl=https://cutyion.com/suo6JnQoG&nf=0&rt=true&v=8.52.2&av=2.0&vg=pbjs_broly241216&us_privacy=null&am=null&gdpr=0&gdpr_consent= HTTP/1.1
Host: id.a-mx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Tue, 25 Mar 2025 03:26:05 +0100
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
content-type: application/json
content-length: 66
cdn.cuty.io/images/public/perfectMoney.png
200 OK 202 kB URL GET cdn.cuty.io/images/public/perfectMoney.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 5000 x 1023, 8-bit/color RGBA, non-interlaced
Size 202 kB (202386 bytes)
Hash 4d75a89e0baae4c6032c0fa68053830f
c9a28f03bf0e3fbbb2807db76921973872d8b390
0e007c0179add623da4b02762178d86c0d3ef3c69e8284b62f8d2e34380e0dbf
GET /images/public/perfectMoney.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 202386
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-31692"
expires: Tue, 10 Feb 2026 20:59:45 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3355653
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ebuqPoo7J5FimzhMXaNOl4swqtJ%2B31LKmZYQlkGE4kWJBPLRFBb70XcNB8TUMjRwTMk09C2iy0PRREa6foIvcGcafHluOg1uSw7Hrgi00TArRhIzYXxAMdeSO6GiGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6016db856aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=758&min_rtt=392&rtt_var=351&sent=83&recv=39&lost=0&retrans=0&sent_bytes=89740&recv_bytes=2542&delivery_rate=18148612&cwnd=254&unsent_bytes=12832&cid=03a635d91bd96ad4&ts=76&x=0"
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 763 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (791), with no line terminators
Hash bc7f2e5caaf10fc91e487ca3356be33a
59171619e3b6413725d12ba831cc97bb73e55ab7
4d9f8bd59ad176ef63be9d9ddc736f9208e0cc9672dd41d0221c6a2cdc9025f2
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 270
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:26:02 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 421
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 0 B URL HEAD pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
Fingerprint62:6A:C2:E9:1E:CD:CA:3F:55:5E:09:5E:16:A5:45:F1:3A:0B:1C:09
ValidityMon, 10 Mar 2025 08:35:58 GMT - Mon, 02 Jun 2025 08:35:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Tue, 25 Mar 2025 02:26:01 GMT
expires: Tue, 25 Mar 2025 02:26:01 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 17526092015955503060
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52672
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
200 OK 4.0 kB URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
File type JavaScript source, ASCII text, with very long lines (4133), with no line terminators
Hash d4497a9a50bf73aa3387cd461e61d9c3
2c6674277a13e253dbd8ca9f534e2984d33590bc
773d76831739cc23111f937854be740a5630af9f5d4afb7c48297b9529c9f516
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1818
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:03 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://cutyion.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
x-powered-by: Adtarget
etag: W/"f89-yhPX7Up1alkakNhW/jiSb34iGsM"
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6GOH80aWwVksfqBiodJzUoz8pwFxlL5nT4cI2s%2Bz%2FIVBim57bm2aIiqImnG8GR7RuYU%2FlCjjwABIR1ONnVmmgxQEn8t%2FBhXttRxRhYy6kLsrDzbDwOkkX5tIsgNFOd881HrKbTF6xuOFfje8sp0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af6100a4d5689-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=3601&min_rtt=452&rtt_var=5838&sent=28&recv=26&lost=0&retrans=1&sent_bytes=9907&recv_bytes=8798&delivery_rate=5601547&cwnd=254&unsent_bytes=0&cid=5eea72440a4f3224&ts=920&x=0"
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.admatic.com.tr/setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.tg9olcazt3k
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:06 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=admatic.com.tr; Expires=Mon, 23 Jun 2025 02:26:06 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=djGw4YsQ4WSgA8Oe30avEXA1LlEOTd6HInlpGQUSmh05iKSfFPKvgehJzVQWYE8Zs82nfSwdYUc2RGKzPzyiK7JBI2fGSwJffEUsHVnoiJoDLhcESy4T%2BpsuP8Y372IB0MC82CZWwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925af6291b2b5693-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1612&min_rtt=452&rtt_var=1553&sent=11&recv=13&lost=0&retrans=0&sent_bytes=4467&recv_bytes=1617&delivery_rate=2215761&cwnd=257&unsent_bytes=0&cid=5ff20599b4781d13&ts=112&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e
200 OK 0 B URL GET prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=97af9c43-cf82-4403-b347-4aede684559e HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZG1hdGljIjp7InVpZCI6Ijk3YWY5YzQzLWNmODItNDQwMy1iMzQ3LTRhZWRlNjg0NTU5ZSIsImV4cGlyZXMiOiIyMDI1LTA0LTA4VDAyOjI2OjA3LjY0ODM5MzM4OFoifX19; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z%2BpixJBwHw5T0ovTyiM%2F4Ow8X0Us4s%2Bj1MgJ9vYvG5B8Tq82%2Fm7LD6%2FJyKZgBaieG1vD%2BMvHirgw%2FQ4YCNKEaP1MGMLi9Oa7yD6y6JJzpMN6goi20d6fs%2BB8YTXdR4mD%2BwmGmdZZy%2BlzgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62daaf4712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6185&min_rtt=5897&rtt_var=2788&sent=15&recv=10&lost=0&retrans=0&sent_bytes=4874&recv_bytes=2157&delivery_rate=78085&cwnd=12000&unsent_bytes=0&cid=9020ac2439d05da6&ts=251&x=1", cfExtPri, cfHdrFlush;dur=0
cdn.cuty.io/images/public/money-tree.png
200 OK 28 kB URL GET cdn.cuty.io/images/public/money-tree.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 166 x 261, 8-bit/color RGBA, non-interlaced
Hash b9c1f6949e61fdf5272ce94b2d297eec
c60dda0dea1215405f6c2fba5f30ab6c92efc1d0
bb8ce1ceb98f2a5be933d8bd813e774cd03d3d37d54ac00fa6c6534a99a45dae
GET /images/public/money-tree.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 27646
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-6bfe"
expires: Fri, 13 Feb 2026 16:33:11 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3355653
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8rHmZ8Z2xyNkdzgkLHuxv2OEGLouNMz7VNl8pMvSL8h6XifjJBIKvApAl0w5Dd66mwir1LJfHjar24pwTYc7xbBwx0cQhm%2BNV%2BQ%2BQyUynSAP%2BKA%2BAqfWiOiGIKMeZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6016dac56aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=640&min_rtt=392&rtt_var=151&sent=83&recv=38&lost=0&retrans=0&sent_bytes=89740&recv_bytes=2542&delivery_rate=30484210&cwnd=254&unsent_bytes=12832&cid=03a635d91bd96ad4&ts=73&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/js/public/layouts/_partials/nav-links.js?id=feb56f52dc16955bcf984886eddb68b8
200 OK 3.0 kB URL GET cdn.cuty.io/js/public/layouts/_partials/nav-links.js?id=feb56f52dc16955bcf984886eddb68b8
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type JavaScript source, ASCII text, with very long lines (3042), with no line terminators
Hash feb56f52dc16955bcf984886eddb68b8
5a09c88aa68e7539c9ed86642f32024cacaac616
2e06d31fc20688f3d0b3c9e380adfe1a78d5d8a3c151e0c393a87c841d13421d
GET /js/public/layouts/_partials/nav-links.js?id=feb56f52dc16955bcf984886eddb68b8 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: application/javascript
last-modified: Thu, 28 Nov 2024 12:18:27 GMT
vary: Accept-Encoding
etag: W/"67485f93-be2"
expires: Thu, 19 Feb 2026 07:45:43 GMT
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1039802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UnBOOnb3%2B20g1WFHGoqHxb6UR26jszF8D95n2f1rEWTueu8gQRLQd1vtiEQPg%2BNDy3lcK%2Bghf5zAho%2B%2F3WI1pGfuKWPzQsMhmdFxBtcDE7%2F1IRL4xcYhpGtLP4oqfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af601bde956aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=616&min_rtt=383&rtt_var=116&sent=589&recv=236&lost=0&retrans=0&sent_bytes=794437&recv_bytes=3253&delivery_rate=32837079&cwnd=218&unsent_bytes=0&cid=03a635d91bd96ad4&ts=122&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XkYrw5saHOMHZ0KIOl0%2FX%2BS4fr%2FjB9aBD3YhJMnp4QelbnjMMwwByy2bzQoFu%2FhfLpNOhQVuKmAeyutGon1GR1HvZvFfcysK0bQWHdKK3uS8iAS0FZQ0M3FXnzRvQQ79WCshLwGWWBUN7kQ1nq0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af60bcc25b50f-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=708&min_rtt=386&rtt_var=676&sent=8&recv=13&lost=0&retrans=0&sent_bytes=3673&recv_bytes=1492&delivery_rate=5134751&cwnd=253&unsent_bytes=0&cid=0f72dcd269875e28&ts=144&x=0"
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 544
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af60feefa1c02-OSL
X-Firefox-Spdy: h2
ssp-service.adtarget.biz/impression/collect?data=eyJuZXR3b3JrSWQiOiI2NzUwMzUzY2M3ZGQyY2NmNmUwMDlkMTgiLCJiaWRkZXJJZCI6ImFkZm9ybSIsInB1Ymxpc2hlcklkIjoiY3V0eWlvbi5jb20iLCJzaXplIjoiNzI4eDkwIiwiZGV2aWNlIjoiZGVza3RvcCIsInByaWNlIjowLjA3MjMwOTI2MTcwODU5MjMyLCJjb3VudHJ5IjoiTk9SIiwib3MiOiJ3aW5kb3dzIiwiYnJvd3NlciI6IkZpcmVmb3giLCJjdXJyZW5jeSI6IlVTRCIsIm1vZGVsIjoic3RhbmRhcmQiLCJtZWRpYVR5cGUiOiJiYW5uZXIiLCJhZFVuaXQiOiJ1bmtub3duIiwidG9rZW4iOiJiYjFmMDY2OC1mMDI1LTRkY2EtYjZjMy05ZGUyNDRhZDU0ZTIiLCJjb21taXNzaW9uX3N0YXR1cyI6MSwiY3JlYXRlZEF0IjoxNzQyODY5NTYzMDIyLCJlbnZpcm9ubWVudCI6IldFQiIsIm5ldHdvcmtSZXZlbnVlIjowfQ==&n=5548533711&p=cutyion.com&t=1742869563022
200 OK 35 B URL GET ssp-service.adtarget.biz/impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742869563022
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subjectssp-service.adtarget.biz
Fingerprint28:42:BD:28:0C:E5:24:5B:02:96:CE:18:7E:D7:11:00:91:D8:6B:17
ValidityWed, 19 Mar 2025 17:55:20 GMT - Tue, 17 Jun 2025 17:55:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742869563022 HTTP/1.1
Host: ssp-service.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cutyion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:03 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-powered-by: Adtarget
etag: W/"23-X71HIiL+uKIs9biqXcW44Tr4jis"
strict-transport-security: max-age=31536000; includeSubDomains
working-on: programmatic
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nchGFc0DB%2Bgh2Jf472%2FytEfC%2FP54GM%2F%2FnFFVhGxlhYvuuLjgqOqk0euy%2BSEMNoW%2BeUA%2BBVScaGahAsxfmmhS6ELr%2FDM4sfI2mwb1GO%2Fa4AQ3HcCFXtFULILqF%2BWXpmUF5OR7C0x2qMr%2B5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af6112eb856be-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=980&min_rtt=460&rtt_var=334&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3602&recv_bytes=2131&delivery_rate=3147826&cwnd=255&unsent_bytes=0&cid=07f6f14c917dcc8b&ts=131&x=0"
X-Firefox-Spdy: h2
dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
200 OK 4.5 kB URL GET dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint74:FE:1E:F4:4F:B1:68:C0:81:16:C4:85:68:0D:7D:1F:61:EF:31:DF
ValidityTue, 11 Feb 2025 09:45:46 GMT - Mon, 12 May 2025 09:45:45 GMT
File type HTML document, ASCII text, with very long lines (4745), with no line terminators
Hash 933d32870f72e08832203f9b296e8f23
c0ec0c6e779394c13fd6f8480ca4a750f30af7d9
09d8ecf443794e3752a077ec9ede6309d3a663178ef11928306085de703cfac9
GET /cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:06 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
x-powered-by: Pixad
set-cookie: uid=97af9c43-cf82-4403-b347-4aede684559e; Max-Age=2592000; Domain=.netaddiction.tech; Path=/; Expires=Thu, 24 Apr 2025 02:26:06 GMT; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gCVeMJj9tHxb%2BQOkT377dY%2FZjto%2BGbLBZhybp%2FWa%2F8cCxs06f6YhVQ3gnBlyQHvfCSULcFuN4eUhW6xvmitpCQ%2F%2BuK%2FhbrZ0d%2BQi%2BzHOZPUWGaus3dEACoj4fhFrYMUmc9uWUO2nlYektOe5ck9P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af628780056b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1287&min_rtt=771&rtt_var=852&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2870&recv_bytes=1409&delivery_rate=2413333&cwnd=253&unsent_bytes=0&cid=219471cf424684de&ts=126&x=0"
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=6d54ede8-69a5-4616-8b0b-d65702e0bc67
200 OK 0 B URL GET prebid.admatic.com.tr/setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=6d54ede8-69a5-4616-8b0b-d65702e0bc67
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=6d54ede8-69a5-4616-8b0b-d65702e0bc67 HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.tg9olcazt3k
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:06 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJwaXhhZCI6eyJ1aWQiOiI2ZDU0ZWRlOC02OWE1LTQ2MTYtOGIwYi1kNjU3MDJlMGJjNjciLCJleHBpcmVzIjoiMjAyNS0wNC0wOFQwMjoyNjowNi45MjAzMzcwMTlaIn19fQ==; Path=/; Domain=admatic.com.tr; Expires=Mon, 23 Jun 2025 02:26:06 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sDotojaE3oRY0cyKC1TmwvE2ribaTHe%2F7yEAZNabJzC%2Fw1fdNp2ArPkK4cTAnGpILGuOvnXEQYn0x12NwNrsSkF%2F5GC%2BRSf3JF6wNnt5skXnhWTBu3W4nbuOVqw0GOs6Fs9p5fLRfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925af628fb1c5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1064&min_rtt=452&rtt_var=1181&sent=9&recv=11&lost=0&retrans=0&sent_bytes=3777&recv_bytes=1617&delivery_rate=2215761&cwnd=253&unsent_bytes=0&cid=5ff20599b4781d13&ts=92&x=0"
X-Firefox-Spdy: h2
static.cdn.admatic.com.tr/sync.html
200 OK 8.1 kB URL GET static.cdn.admatic.com.tr/sync.html
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subjectstatic.cdn.admatic.com.tr
Fingerprint23:64:E7:BE:D9:A0:62:12:F4:32:7D:11:53:C7:8C:F1:A6:78:3D:D3
ValiditySat, 08 Mar 2025 08:25:47 GMT - Fri, 06 Jun 2025 08:25:46 GMT
File type HTML document, ASCII text, with very long lines (9286), with no line terminators
Hash 03fa07d23ef614f748cb9a737ea28a3e
87da1fc240f5f917c9ac943415595ed802bb2a87
438f44f1aa3bc29a5f2bf8079a0f137c8e5a7c69e544403919fd6525d6bb8109
GET /sync.html HTTP/1.1
Host: static.cdn.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:06 GMT
content-type: text/html
cdn-pullzone: 1905149
cdn-uid: e7d0f040-08f3-443e-a640-656beb6c8b3b
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=3600
last-modified: Fri, 15 Nov 2024 07:02:35 GMT
cdn-storageserver: DE-676
cdn-fileserver: 639
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/24/2025 13:42:54
cdn-edgestorageid: 1075
cdn-requestid: e7bde69ee6fb4c61f71c58e1af1642e6
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=37Xp1HAdS24QeiwnV3nQXY7Vy%2BEfT9W9%2BTA38V%2FYgo1S%2B27PCwmP83K%2BXSJbae1qSaTb%2F2hJVV2MXVRDyiP%2B6JGo7XPFPuyDHaCChX%2Byk9tZmOcd9fS6X6lPRax%2BFMocbyaOkfegwutC0wY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925af623dc89b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=644&min_rtt=458&rtt_var=408&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2787&recv_bytes=1137&delivery_rate=4883642&cwnd=253&unsent_bytes=0&cid=8cf4582618717b31&ts=77&x=0"
X-Firefox-Spdy: h2
ghb.adtelligent.com/v2/auction/
0 B URL POST ghb.adtelligent.com/v2/auction/
IP
Requested by https://cutyion.com/suo6JnQoG
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 341
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KUDdx1EPgDZqQHAprzHIQO%2FjLbRWo0hLp2A2BE4LCMwI3q5RyzSTdxWIOi9h9OBERzW877WTGxbMmDGGMt6lmhR9Z%2F9fuEErflXqWzz2CVlW1KQjgRAEWe6BD2bTejVWu%2BxKKLVXGl0dfBZ970g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af60fcdd7b50f-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=3201&min_rtt=386&rtt_var=5095&sent=11&recv=16&lost=0&retrans=0&sent_bytes=4996&recv_bytes=1563&delivery_rate=5134751&cwnd=257&unsent_bytes=0&cid=0f72dcd269875e28&ts=733&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/facebook-icon.png
200 OK 409 B URL GET cdn.cuty.io/images/shared/facebook-icon.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Hash 681da37c7ab779001ee20a72b5d44412
8416f3e43fcde2f22c95a489f3f2d4fd876e5a74
691f00c0c64d110b68cf4237589633da601dfd5112c8c048c87ebd915db64bb7
GET /images/shared/facebook-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 409
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-199"
expires: Tue, 10 Feb 2026 20:39:34 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3355653
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pB0YTyXUUARMjw3nxeyCZnxHX6QcjtFYsUo98iyPNw2Fmuh%2BFmCbsPw1Nc549OlyS1cwlRwtehBqs7nnNYM4a3RIdfkhgYYozFWVIqRLnzqQ0sRTtHvPbYP63hpUTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6015da056aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=485&min_rtt=392&rtt_var=147&sent=67&recv=29&lost=0&retrans=0&sent_bytes=70716&recv_bytes=2542&delivery_rate=27394594&cwnd=254&unsent_bytes=31856&cid=03a635d91bd96ad4&ts=72&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560902
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560902
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742869560902 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 301 Moved Permanently
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: text/html
content-length: 167
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tA5kyisD2xW4AWCzxpSWOwzl8z2ePqgYiiqvx2viDLD8JNm6Kx5YRWN643TNhhy%2BQzS7Fn3Tthj0%2BHK0i%2BJWDAE9UEBtr2JdGLMGsGTcr6bU84ktxbliqdJM5emGFGp%2BWzkd6NdcMOVlVW4%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:26:01 GMT
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cf-ray: 925af6045b7b56ae-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
ghb.console.adtarget.com.tr/v2/auction/
200 OK 762 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (790), with no line terminators
Hash 6e43a112d497844824666a8aa3fa7e57
001f0d44689d82453d7cdd80928206b0e312800c
4176545e3b45246fffe8c73cfe6ab8653557d66bc44a4496cb37dd1845fce907
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 269
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:26:02 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 421
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1505
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:03 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_13tk8fur6vpmmwqd06j
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af6109f6d5699-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
302 Found 86 B URL GET sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerZeroSSL
Subjectsync.console.adtarget.com.tr
FingerprintED:8C:47:D0:F4:82:C5:4F:57:FD:F5:2D:94:C8:7F:3B:9E:6E:E4:81
ValidityWed, 12 Mar 2025 00:00:00 GMT - Tue, 10 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D HTTP/1.1
Host: sync.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Adtarget
Date: Tue, 25 Mar 2025 02:26:07 GMT
Content-Length: 0
Etag: a232c3b211a89a4e
Location: https://prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e
Set-Cookie: vmuid=a232c3b211a89a4e; expires=Thu, 26 Jun 2025 02:26:07 GMT; domain=.console.adtarget.com.tr; path=/; secure; SameSite=None
cdn.cuty.io/images/shared/twitter-icon.png
200 OK 809 B URL GET cdn.cuty.io/images/shared/twitter-icon.png
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 32 x 28, 8-bit/color RGBA, non-interlaced
Hash 057b26d74519a32a2e278d6c89d97d19
6e8f8c66b55bddf2c37c169babaf372e11015267
977c15df2295c7f457b797893def2a978abae8f05c957a2176f9c650ca9305d8
GET /images/shared/twitter-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:00 GMT
content-type: image/png
content-length: 809
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-329"
expires: Thu, 19 Feb 2026 08:30:48 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1119683
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k7pg2%2BnD80OxsqAJrDnw9ldYUsihKrtVedjioITpCGhCnBgjgigFf41T9d5NfYgPt49KHYjq4Wmq5H56tHMa%2BY1%2FFPvizC58lSRtko9EpTukykDFMpDZcqMif0w6pA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6015da256aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=485&min_rtt=392&rtt_var=147&sent=35&recv=29&lost=0&retrans=0&sent_bytes=31583&recv_bytes=2542&delivery_rate=27394594&cwnd=254&unsent_bytes=0&cid=03a635d91bd96ad4&ts=70&x=0"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 10:09:01 GMT
expires: Fri, 20 Mar 2026 10:09:01 GMT
cache-control: public, max-age=31536000
age: 404219
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn-adtech.com/1a0942083b83d8f3eb8ef33d4731b7e4.js
200 OK 63 kB URL GET cdn-adtech.com/1a0942083b83d8f3eb8ef33d4731b7e4.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectcdn-adtech.com
Fingerprint5D:99:60:F4:06:CA:EF:FA:7C:77:B1:B8:F9:BF:3F:23:5F:6C:41:14
ValidityFri, 21 Feb 2025 11:05:59 GMT - Thu, 22 May 2025 12:04:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1a0942083b83d8f3eb8ef33d4731b7e4.js HTTP/1.1
Host: cdn-adtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
x-amz-id-2: 1GsXJHxpUrYrQDU4apPiM1Wqz4ZbsFD5MLVRiKTIsJQ7d9cKbVS+lWzMFECd/0yshMa9z81GqUU=
x-amz-request-id: 18TE5FPRXRM811E7
last-modified: Fri, 14 Mar 2025 11:17:41 GMT
etag: W/"e29e26d34dd25f6dedc33ac66a65bac0"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4O.JwztvUL00Cd9_3yhLeJUUqWRZF_Jf
cache-control: max-age=14400
cf-cache-status: HIT
age: 19
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ctlmhzaCJQ572pSA2xIpwW%2BzXetBgmelK8DiHDvfcHeYqUnkTcrR9NfhxB6xyEljy%2B29OD%2B%2B5IUm%2FDdMZv8Bz562VedFK%2BSlyJ3Vuth3FV4mBypNb7U54bQtbCmeqSAB2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af60499540b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=553&min_rtt=441&rtt_var=246&sent=6&recv=10&lost=0&retrans=0&sent_bytes=3280&recv_bytes=1190&delivery_rate=6983922&cwnd=254&unsent_bytes=0&cid=3563680f774fb325&ts=31&x=0"
X-Firefox-Spdy: h2
script.4dex.io/localstore.js
200 OK 492 B URL GET script.4dex.io/localstore.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectscript.4dex.io
Fingerprint85:83:5E:32:B3:48:93:75:71:3A:97:C5:4C:D8:9F:AA:FD:99:68:FF
ValidityTue, 18 Mar 2025 00:58:21 GMT - Mon, 16 Jun 2025 01:58:17 GMT
File type JavaScript source, ASCII text, with very long lines (501), with no line terminators
Hash 3a461820d65554e3c9fac0513c78762d
b2e11ddb4a89841d83c2f79f6c06ac210c7acc9f
bd15ee919b19377c361ae64c6ad39732415574bfb109afb7fe28c1a83f45efb3
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Mar 2025 02:26:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"56dbef354a963eec89c1c0d552909198"
Last-Modified: Tue, 04 Mar 2025 09:40:49 GMT
Vary: Accept-Encoding
Expires: Mon, 24 Mar 2025 20:35:58 GMT
CF-Cache-Status: HIT
Age: 22803
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iPFwyRpAwuxCE%2BkYBBFhM6CfWaW7i%2F%2FBMx6a%2FpUOgADNRLPwGaVp64HuQ5dGRXMTLkymNnO%2BQNSY4FZXJBHloQpp7ZGiqHH06VKjy37v1At%2B87nFYrdbwJHizyejwomv"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 925af609eb8eb512-OSL
Content-Encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=469&min_rtt=436&rtt_var=145&sent=5&recv=8&lost=0&retrans=0&sent_bytes=3101&recv_bytes=984&delivery_rate=7812949&cwnd=252&unsent_bytes=0&cid=3d7d2eef46ef66cd&ts=35&x=0"
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1421
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_liqmgg247yphfz9hg
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af6104f465699-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
csync.smilewanted.com/drop_cookie_sw.php
200 OK 0 B URL GET csync.smilewanted.com/drop_cookie_sw.php
IP
Requested by https://csync.smilewanted.com/
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /drop_cookie_sw.php HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:06 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: sw_user_params_infos=8sdRREvsw7LjLys0YvGw88pXwwb2Y4nARNi%2F%2BgfwaOidEnxm6w2LL1rmIKi46SC2cbDzzhyhkBPBQnSSuNMQggETzxb2ORoHNPFOLNmDEN6Mia0dNse%2BBrdIA0FOk2u6Alf0suVb8sRbxN7HCi3Xiw%3D%3D; expires=Wed, 25 Mar 2026 08:15:18 GMT; Max-Age=31556952; path=/; domain=smilewanted.com; secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af6269bec1c02-OSL
content-encoding: br
X-Firefox-Spdy: h2
fstatic.netpub.media/extra/cmp/cmp-gdpr.js?v=1
307 Temporary Redirect 739 B URL GET fstatic.netpub.media/extra/cmp/cmp-gdpr.js?v=1
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /extra/cmp/cmp-gdpr.js?v=1 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: text/html
content-length: 169
location: https://gpp.netpub.media/init.js
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 925af6076afe7127-OSL
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 761 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (789), with no line terminators
Hash 728a31832e3458c7aab3b000eda21de2
b027c099be6aa82bda2bbf135c43dfa839bfd4c6
465c9ca208d8ba262b78483fb9bf879acd4be232e4216eac384c05f285d826d8
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 266
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:26:02 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 420
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 2259
server: cloudflare
cf-ray: 925af606daa07127-OSL
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1104
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:02 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rZvhOubOBIDgsR9nKUuSAnzkMmo7oBPH1%2FCghG%2FSj84mpRRgLqPpb7CLnpQAAojm1%2FuyLa0wPg7LotANdJcZ92C84VhmZz1hvZmtkDk4lJLH7VWInxQmpnk3SW9Ig7%2BGzg0ioVCPTLo2RdFGXvk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af60d49385689-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1052&min_rtt=452&rtt_var=988&sent=22&recv=19&lost=0&retrans=1&sent_bytes=9470&recv_bytes=5755&delivery_rate=5601547&cwnd=254&unsent_bytes=0&cid=5eea72440a4f3224&ts=526&x=0"
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 763 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (791), with no line terminators
Hash 80030ac85b2b3b978c64cbe561e8ce3d
22299579aca306af8b8affd75faf2a1251a233d5
690d25fd2f182496d97525f3c3f4e901271c669617a7b49b67f6127cbcf40695
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 286
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:26:02 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 421
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
302 Found 86 B URL GET sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerZeroSSL
Subjectsync.console.adtarget.com.tr
FingerprintED:8C:47:D0:F4:82:C5:4F:57:FD:F5:2D:94:C8:7F:3B:9E:6E:E4:81
ValidityWed, 12 Mar 2025 00:00:00 GMT - Tue, 10 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D HTTP/1.1
Host: sync.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Adtarget
Date: Tue, 25 Mar 2025 02:26:06 GMT
Content-Length: 0
Etag: a232c3b211a89a4e
Location: https://prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=a232c3b211a89a4e
Set-Cookie: vmuid=a232c3b211a89a4e; expires=Thu, 26 Jun 2025 02:26:07 GMT; domain=.console.adtarget.com.tr; path=/; secure; SameSite=None
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 334
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:26:01 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af609fd231c02-OSL
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Mar 2025 02:26:07 GMT
location: https://prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
fstatic.netpub.media/renderer/prebid_241216.js
200 OK 681 kB URL GET fstatic.netpub.media/renderer/prebid_241216.js
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (54063)
Size 681 kB (681336 bytes)
Hash 8e95e7a8fe634790d50e7da1f895e075
b80f5a78c1a450fb57be84061f84d1c1f7411a3e
792b9a55a780caaeccdd056084e57fe644b87caa9ba71062c6b3008726c1daac
GET /renderer/prebid_241216.js HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 16 Dec 2024 13:41:12 GMT
cache-control: max-age=14400
expires: Tue, 25 Mar 2025 02:26:02 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 925af607eb367127-OSL
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=0092eaad-c334-4cfe-9186-7fe678d0b388
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=0092eaad-c334-4cfe-9186-7fe678d0b388
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=0092eaad-c334-4cfe-9186-7fe678d0b388 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=97af9c43-cf82-4403-b347-4aede684559e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:26:07 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJtZW1icmFuYSI6eyJ1aWQiOiIwMDkyZWFhZC1jMzM0LTRjZmUtOTE4Ni03ZmU2NzhkMGIzODgiLCJleHBpcmVzIjoiMjAyNS0wNC0wOFQwMjoyNjowNy42MzczNzg0ODZaIn19fQ==; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:26:07 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gjFNdoC%2BEt1c2kDrvEu0OKCTBWHT0eLUBHEUDuZ0UNeIVNDH%2Bck2xch1jF6rZB6lAYnxu27WlU5jSKpot49mZvF%2BrBwafJEWfKSHixqNb%2BPbdzEp9ClnePwvaMRcBzFJILu4vo0lPbLvbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af62d3ac4712a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6185&min_rtt=5897&rtt_var=2788&sent=14&recv=10&lost=0&retrans=0&sent_bytes=3783&recv_bytes=2157&delivery_rate=78085&cwnd=12000&unsent_bytes=0&cid=9020ac2439d05da6&ts=239&x=1", cfExtPri, cfHdrFlush;dur=0
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Mar 2025 02:26:07 GMT
location: https://prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
gpp.netpub.media/init.js
200 OK 739 B IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (795), with no line terminators
Hash 69f3216b4691604f8ee9cc64c097a98e
05cf108a7180bb917aee6a58697b0b877689733d
df925a3541c1698a6f839b68c9e9f9760ac57891881bd80b81cf1ec506be9d0a
GET /init.js HTTP/1.1
Host: gpp.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 08 Dec 2024 00:36:50 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925af607cb277127-OSL
X-Firefox-Spdy: h2
ssp-service.adtarget.biz/impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742869562607
200 OK 35 B URL GET ssp-service.adtarget.biz/impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742869562607
IP
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subjectssp-service.adtarget.biz
Fingerprint28:42:BD:28:0C:E5:24:5B:02:96:CE:18:7E:D7:11:00:91:D8:6B:17
ValidityWed, 19 Mar 2025 17:55:20 GMT - Tue, 17 Jun 2025 17:55:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /impression/collect?data=eyJuZXR3b3JrSWQiOiI2NzUwMzUzY2M3ZGQyY2NmNmUwMDlkMTgiLCJiaWRkZXJJZCI6ImFkZm9ybSIsInB1Ymxpc2hlcklkIjoiY3V0eWlvbi5jb20iLCJzaXplIjoiNzI4eDkwIiwiZGV2aWNlIjoiZGVza3RvcCIsInByaWNlIjowLjEzOTcyMDI0MTkyOTk0MzMsImNvdW50cnkiOiJOT1IiLCJvcyI6IndpbmRvd3MiLCJicm93c2VyIjoiRmlyZWZveCIsImN1cnJlbmN5IjoiVVNEIiwibW9kZWwiOiJzdGFuZGFyZCIsIm1lZGlhVHlwZSI6ImJhbm5lciIsImFkVW5pdCI6InVua25vd24iLCJ0b2tlbiI6ImU2OWYzYmFmLTlkMjQtNGNmZS1iMTQ2LWMyOTUzNDMyMTdjZCIsImNvbW1pc3Npb25fc3RhdHVzIjoxLCJjcmVhdGVkQXQiOjE3NDI4Njk1NjI2MDcsImVudmlyb25tZW50IjoiV0VCIiwibmV0d29ya1JldmVudWUiOjB9&n=5548533711&p=cutyion.com&t=1742869562607 HTTP/1.1
Host: ssp-service.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cutyion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:26:03 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-powered-by: Adtarget
etag: W/"23-X71HIiL+uKIs9biqXcW44Tr4jis"
strict-transport-security: max-age=31536000; includeSubDomains
working-on: programmatic
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1YwEJ5F7yFWgXmQzdn5QFz0a%2BGCzHi%2BO6apyERJfXXJT2C0FzLvi8NvHDiTIyECotblDvdCLKDuONPct0fxfbFXzsIYsq%2FUo%2FnUhGQx%2Bz4QlwewYvBmatx6apA9FZMlOT%2BEcTfvF5suJXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925af6110eb156be-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=980&min_rtt=460&rtt_var=445&sent=6&recv=10&lost=0&retrans=0&sent_bytes=2834&recv_bytes=2131&delivery_rate=3147826&cwnd=253&unsent_bytes=0&cid=07f6f14c917dcc8b&ts=119&x=0"
X-Firefox-Spdy: h2
prebid.a-mo.net/isyn?gdpr_consent=&gdpr=0&us_privacy=&gpp=&gpp_sid=
204 No Content 0 B URL GET prebid.a-mo.net/isyn?gdpr_consent=&gdpr=0&us_privacy=&gpp=&gpp_sid=
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/suo6JnQoG
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /isyn?gdpr_consent=&gdpr=0&us_privacy=&gpp=&gpp_sid= HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:26:05 GMT
server: envoy
vary: accept-encoding, Accept-Encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
104.22.25.116
54.230.245.108
79.127.216.47
185.83.71.234
51.83.220.94
176.235.30.103
172.255.103.117
0.0.0.0