exclusive-works.ru/index.php/en/2009-09-21-15-45-04/view/5
87.236.16.222 0 B URL exclusive-works.ru/index.php/en/2009-09-21-15-45-04/view/5
IP 87.236.16.222:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /index.php/en/2009-09-21-15-45-04/view/5 HTTP/1.1
Host: exclusive-works.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx-reuseport/1.21.1
date: Sat, 04 May 2024 19:31:50 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.0.30
vary: Accept-Encoding,Cookie
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
X-Firefox-Spdy: h2
exclusive-works.ru/en/2009-09-21-15-45-04/view/5
87.236.16.222404 Not Found 41 kB URL User Request GET HTTP/2 exclusive-works.ru/en/2009-09-21-15-45-04/view/5
IP 87.236.16.222:443
Certificate IssuerLet's Encrypt
Subjectexclusive-works.ru
FingerprintC6:F1:85:00:31:02:65:80:DF:66:0D:9C:20:FE:78:0D:DF:F7:6F:1B
ValidityWed, 01 May 2024 06:34:48 GMT - Tue, 30 Jul 2024 06:34:47 GMT
File type gzip compressed data, from Unix
Hash 4ce5e8899fdd5711f7701fee9d1515bc
39abe0827a53f78d3a12f07a913bb5f36073e2b8
ec4327e7c6a42013937397835ead424852628a6ba34dd5a163bfaf578bad8168
GET /en/2009-09-21-15-45-04/view/5 HTTP/1.1
Host: exclusive-works.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx-reuseport/1.21.1
date: Sat, 04 May 2024 19:31:51 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
vary: Accept-Encoding, Accept-Encoding,Cookie
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://exclusive-works.ru/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
X-Firefox-Spdy: h2
exclusive-works.ru/wp-content/uploads/2024/04/cropped-remont.jpg
87.236.16.222 2.6 kB URL exclusive-works.ru/wp-content/uploads/2024/04/cropped-remont.jpg
IP 87.236.16.222:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 200x27, components 3
Hash e8e1dbc28356a2c3191470d9ef52d8db
162fa30c3efdbf60e9ba454128d980749bb1f36c
f1f6853b33f840730435e389c86996b270477d35815fa451f4b453f20579ffb3
GET /wp-content/uploads/2024/04/cropped-remont.jpg HTTP/1.1
Host: exclusive-works.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 04 May 2024 19:31:51 GMT
content-type: image/jpeg
content-length: 2631
last-modified: Wed, 24 Apr 2024 05:53:05 GMT
etag: "66289e41-a47"
expires: Mon, 03 Jun 2024 19:31:51 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
exclusive-works.ru/wp-content/plugins/wp-postratings/images/stars/rating_over.gif
87.236.16.222 523 B URL exclusive-works.ru/wp-content/plugins/wp-postratings/images/stars/rating_over.gif
IP 87.236.16.222:0
File type GIF image data, version 89a, 12 x 12
Hash 00988ec60c7a0ed0e036851c9ec00dd6
8ffff7b5e7a8fa4827cab5f846d71fa1f62ea65b
71348f4f38512af6e6ba8062fe5545a783f91d1a07bcb300c246f1bad9b0d4b6
GET /wp-content/plugins/wp-postratings/images/stars/rating_over.gif HTTP/1.1
Host: exclusive-works.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 04 May 2024 19:31:51 GMT
content-type: image/gif
content-length: 523
last-modified: Wed, 24 Apr 2024 05:44:35 GMT
etag: "66289c43-20b"
expires: Mon, 03 Jun 2024 19:31:51 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.adlook.me/js/rlf.js
193.17.93.93200 OK 23 kB IP 193.17.93.93:443
ASN #210756 EdgeCenter LLC
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65499), with no line terminators
Hash ae89afef8020880f8f33570fc361915e
3a3dac359793f3b26edd7f314546c47dd05f6ab7
a05cc0f77829a2d1cd3c695b37f622fd3290b7176190d02d1ade0aab29618a4d
GET /js/rlf.js HTTP/1.1
Host: cdn.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:51 GMT
content-type: application/javascript,application/javascript;charset=utf-8
content-length: 22984
content-encoding: gzip
last-modified: Wed, 10 Apr 2024 12:24:32 GMT
etag: "006fa428bda1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache: HIT
x-cached-since: 2024-05-04T19:27:34+00:00
x-node: dt-up-gc37
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.adlook.me/js/vbf.js
193.17.93.93 23 kB IP 193.17.93.93:0
ASN #210756 EdgeCenter LLC
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65499), with no line terminators
Hash 316adf3dd428df877546530f237016bb
7246ed59b8c7b6d0cc21e6649d806972cb1f962a
2283f3784ed6d84741707167eed0eafc77899ce5e06d1c843e0fed14daa73ab2
GET /js/vbf.js HTTP/1.1
Host: cdn.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:51 GMT
content-type: application/javascript,application/javascript;charset=utf-8
content-length: 23063
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 10:01:40 GMT
etag: "0da5191f796da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache: HIT
x-cached-since: 2024-05-04T19:26:56+00:00
x-node: dt-up-gc37
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.adlook.me/u/cds.html
193.17.93.93 1.4 kB IP 193.17.93.93:0
ASN #210756 EdgeCenter LLC
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 092b935eec2ba1199c03c1c856472e77
90d533fb895dda57fd0645cf484a4ecb7a64c344
8719a7a7e474f30d7a1d5dbf2ab97bbd73437c28ef567b410361540ad38c985e
GET /u/cds.html HTTP/1.1
Host: cdn.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:52 GMT
content-type: text/html
content-length: 1439
last-modified: Thu, 06 Aug 2020 17:06:57 GMT
etag: "207a2dfe136cd61:0"
x-powered-by: ASP.NET
cache: HIT
x-cached-since: 2024-05-04T19:27:18+00:00
x-node: dt-up-gc37
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.adlook.me/css/rlf.css?1.6
193.17.93.93 1.1 kB URL cdn.adlook.me/css/rlf.css?1.6
IP 193.17.93.93:0
ASN #210756 EdgeCenter LLC
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
File type ASCII text, with very long lines (3927), with no line terminators
Hash bfacb6b02eff3ef2c33d4b93d390b2b7
625baf85d1b0804ede56f7cce7addbabb34b2ef4
a8ec9ce4d97e4d570b348e8a28115ee7ad56738f83ad9f99866bc7ebe62b646c
GET /css/rlf.css?1.6 HTTP/1.1
Host: cdn.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:52 GMT
content-type: text/css
content-length: 1080
content-encoding: gzip
last-modified: Wed, 07 Feb 2024 10:22:24 GMT
etag: "0b0948aaf59da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache: HIT
x-cached-since: 2024-05-04T19:27:35+00:00
x-node: dt-up-gc37
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.adlook.me/css/vbf.css?1.6
193.17.93.93 999 B URL cdn.adlook.me/css/vbf.css?1.6
IP 193.17.93.93:0
ASN #210756 EdgeCenter LLC
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
File type ASCII text, with very long lines (3450), with no line terminators
Hash eea9a0d5ffd3703872ae595dda763556
e00f401a210200d123102edbc5a5a574b092fece
30d7b1b8f0c978507fcafec13ae876364a31593a52b7671b06b3d328d7570bc7
GET /css/vbf.css?1.6 HTTP/1.1
Host: cdn.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:52 GMT
content-type: text/css
content-length: 999
content-encoding: gzip
last-modified: Fri, 19 Jan 2024 15:09:46 GMT
etag: "0d9c389e94ada1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache: HIT
x-cached-since: 2024-05-04T19:27:35+00:00
x-node: dt-up-gc37
accept-ranges: bytes
X-Firefox-Spdy: h2
exclusive-works.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
87.236.16.222200 OK 5.4 kB URL GET HTTP/2 exclusive-works.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP 87.236.16.222:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subjectexclusive-works.ru
FingerprintC6:F1:85:00:31:02:65:80:DF:66:0D:9C:20:FE:78:0D:DF:F7:6F:1B
ValidityWed, 01 May 2024 06:34:48 GMT - Tue, 30 Jul 2024 06:34:47 GMT
File type gzip compressed data, from Unix
Hash ab7177bff551d2b0cd882029acf073e6
13d40217efb042d2e362cd7743057c81f30e04fd
9f0b1c87e1732d5f572e83a93cd6bb719ae0d866c6a25d5b9a71e329a344872f
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: exclusive-works.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 04 May 2024 19:31:51 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Apr 2024 05:44:38 GMT
vary: Accept-Encoding
etag: W/"66289c46-3509"
expires: Sat, 11 May 2024 19:31:51 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.alfasense.net/js/layout_2879.js
136.144.31.36 20 kB URL cdn.alfasense.net/js/layout_2879.js
IP 136.144.31.36:0
ASN #52000 MIRhosting B.V.
File type gzip compressed data, max speed, from Unix
Hash a7b696c0a4880be4111b068e4ceab2ea
3969dbfd3dec91ab4e39a894ab78e57050d7bbff
6e2c0ea8509e9b1c502cd767479e0858682cf44218927e24f8b6c5a8b5d9a58d
GET /js/layout_2879.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:52 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 09:44:13 GMT
etag: W/"662b776d-12a61"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=dd92c318b574e2af8018c0207c5098f9; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
exclusive-works.ru/wp-content/themes/neve/assets/js/build/modern/frontend.js?ver=3.8.5
87.236.16.222200 OK 9.8 kB URL GET HTTP/2 exclusive-works.ru/wp-content/themes/neve/assets/js/build/modern/frontend.js?ver=3.8.5
IP 87.236.16.222:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subjectexclusive-works.ru
FingerprintC6:F1:85:00:31:02:65:80:DF:66:0D:9C:20:FE:78:0D:DF:F7:6F:1B
ValidityWed, 01 May 2024 06:34:48 GMT - Tue, 30 Jul 2024 06:34:47 GMT
File type gzip compressed data, from Unix
Hash 37f64165bb393a154653b874fabc801d
f86fa98bb2165b53e495f68f5b990f222f3024e0
e1a294722d9367c26552758020ed9db5faa6ace247a6dd93487755945da618b2
GET /wp-content/themes/neve/assets/js/build/modern/frontend.js?ver=3.8.5 HTTP/1.1
Host: exclusive-works.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 04 May 2024 19:31:51 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Apr 2024 05:44:36 GMT
vary: Accept-Encoding
etag: W/"66289c44-1c15"
expires: Sat, 11 May 2024 19:31:51 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
exclusive-works.ru/wp-content/uploads/2024/04/cropped-repair-32x32.jpg
87.236.16.222 827 B URL exclusive-works.ru/wp-content/uploads/2024/04/cropped-repair-32x32.jpg
IP 87.236.16.222:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 32x32, components 3
Hash 5ed1e3c293dd309e2239df1c6cd30922
90efac6e03e7ba15ff9161769f57ee5b56d29c04
c5f9781bff6479e1ae3fd57e9a6ce0ea35303b2f44a85b59dc4dd7489c708f34
GET /wp-content/uploads/2024/04/cropped-repair-32x32.jpg HTTP/1.1
Host: exclusive-works.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 04 May 2024 19:31:52 GMT
content-type: image/jpeg
content-length: 827
last-modified: Wed, 24 Apr 2024 05:50:44 GMT
etag: "66289db4-33b"
expires: Mon, 03 Jun 2024 19:31:52 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.alfasense.net/lib/alfadart.lib.min.js
136.144.31.36200 OK 182 kB URL GET HTTP/2 cdn.alfasense.net/lib/alfadart.lib.min.js
IP 136.144.31.36:443
ASN #52000 MIRhosting B.V.
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type gzip compressed data, max speed, from Unix
Size 182 kB (181861 bytes)
Hash df82e8b089e5f21a2d66dd4e900490a1
9f88079837dd9ce2ea61bcb0941ad114ad112927
d5b97fd16b350383ba28ce056e4f1bc535f4ef130c85523084f2b276a4a98ae6
GET /lib/alfadart.lib.min.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:51 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 10:46:13 GMT
etag: W/"6620f9f5-8dfa"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=e7a39e6e3385558e2f6a6a18cac7185b; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
cdn-a.adlook.me/vast/vk-vdisp/videodirect-vk-vdisp-1.xml
176.122.21.130 2.3 kB URL cdn-a.adlook.me/vast/vk-vdisp/videodirect-vk-vdisp-1.xml
IP 176.122.21.130:0
ASN #48096 Enterprise Cloud Ltd.
File type XML 1.0 document, ASCII text, with very long lines (1443), with CRLF line terminators
Hash 9ea0c7bff85631693b5beb15308d2ffd
5f70b622cb50fd8d325ef88e19b5be7e54708188
4a2f1afcdc7d327bd09679444cffe344cb81edd2a70c6faef192444ee1a3abb6
GET /vast/vk-vdisp/videodirect-vk-vdisp-1.xml HTTP/1.1
Host: cdn-a.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 2290
content-type: text/xml
last-modified: Wed, 06 Mar 2024 16:35:00 GMT
accept-ranges: bytes
etag: "1da6fe43b5c9af2"
server: Microsoft-IIS/10.0
access-control-allow-origin: https://exclusive-works.ru
access-control-allow-credentials: true
date: Sat, 04 May 2024 19:31:52 GMT
X-Firefox-Spdy: h2
exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByH1UD5_XFVca8/jsvpaid
188.40.114.28 114 B URL exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByH1UD5_XFVca8/jsvpaid
IP 188.40.114.28:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash b6f1cd46de3ae2cb86ac79f92ccdf255
edee9a1c75ea97b15626c66d76c176ccdaa0cc22
aa078d05ee2aa221faae0bbfafe453e1b59c764ff2dbe711042593d313568d3c
GET /adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByH1UD5_XFVca8/jsvpaid HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
server: nginx
date: Sat, 04 May 2024 19:31:53 GMT
content-type: text/html; charset=utf-8
content-length: 114
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, X-Aidata-FP, If-None-Match
access-control-allow-origin: https://exclusive-works.ru
access-control-expose-headers: Set-Cookie, Etag
location: /adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByH1UD5_XFVca8/jsvpaid?set_buzzoola_cookie=t
set-cookie: uuid=d9ab34da-3d2e-4398-5273-448f6d159783; Path=/; Domain=buzzoola.com; Expires=Mon, 03 Jun 2024 19:31:53 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHYBaHVOHr2Dk/jsvpaid
188.40.114.28307 Temporary Redirect 114 B URL GET HTTP/2 exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHYBaHVOHr2Dk/jsvpaid
IP 188.40.114.28:443
ASN #24940 Hetzner Online GmbH
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 0aee7f2b279ee74c9885e2c274475618
a2c46589fc5407aa5db06b7e889ac7a4ccba0bbd
191377512aa0855ce2e54f0c351911d3426a2d4d4cb258ba9e252cd2f5c901da
GET /adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHYBaHVOHr2Dk/jsvpaid HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
server: nginx
date: Sat, 04 May 2024 19:31:53 GMT
content-type: text/html; charset=utf-8
content-length: 114
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, X-Aidata-FP, If-None-Match
access-control-allow-origin: https://exclusive-works.ru
access-control-expose-headers: Set-Cookie, Etag
location: /adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHYBaHVOHr2Dk/jsvpaid?set_buzzoola_cookie=t
set-cookie: uuid=733dc175-9d02-4b39-494a-7cf6d6c78c8c; Path=/; Domain=buzzoola.com; Expires=Mon, 03 Jun 2024 19:31:53 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
exclusive-works.ru/wp-content/plugins/easy-fancybox/vendor/jquery.easing.min.js?ver=1.4.1
87.236.16.222 1.3 kB URL exclusive-works.ru/wp-content/plugins/easy-fancybox/vendor/jquery.easing.min.js?ver=1.4.1
IP 87.236.16.222:0
File type gzip compressed data, from Unix
Hash d7322589095424e4b0954fb03f2c590f
3cd6660dc52ea116303cf158233f072773e69b7b
216be463142cc855ce84918613cc36a1b039f614fa471d117882fc967f89d4b3
GET /wp-content/plugins/easy-fancybox/vendor/jquery.easing.min.js?ver=1.4.1 HTTP/1.1
Host: exclusive-works.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 04 May 2024 19:31:51 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Apr 2024 05:44:35 GMT
vary: Accept-Encoding
etag: W/"66289c43-8fe"
expires: Sat, 11 May 2024 19:31:51 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHNLXHR4S0hdM/jsvpaid
188.40.114.28307 Temporary Redirect 114 B URL GET HTTP/2 exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHNLXHR4S0hdM/jsvpaid
IP 188.40.114.28:443
ASN #24940 Hetzner Online GmbH
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash a9bf0675caf301c131ac02ef97913c4c
5192f28d0ab71a54487f3127289fa6f88e0ca72e
58435f49b5427aada16a74bcc361e700f64d4207d21bf5e8ee6c0e5b54078f46
GET /adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHNLXHR4S0hdM/jsvpaid HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
server: nginx
date: Sat, 04 May 2024 19:31:54 GMT
content-type: text/html; charset=utf-8
content-length: 114
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, X-Aidata-FP, If-None-Match
access-control-allow-origin: https://exclusive-works.ru
access-control-expose-headers: Set-Cookie, Etag
location: /adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHNLXHR4S0hdM/jsvpaid?set_buzzoola_cookie=t
set-cookie: uuid=40fb5c2d-277a-45fe-6055-70fde79f3407; Path=/; Domain=buzzoola.com; Expires=Mon, 03 Jun 2024 19:31:54 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHRt-bZ2f_jng/jsvpaid
188.40.114.28 114 B URL exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHRt-bZ2f_jng/jsvpaid
IP 188.40.114.28:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash cddb45c2397d6ae03b7558ce93ceb467
9d177b195d602378c41fb1460eb8fa562b451945
2afe0cb769e979044d33cb227b838ec098e0553565bd47e2c1186450f9d2ea9b
GET /adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHRt-bZ2f_jng/jsvpaid HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
server: nginx
date: Sat, 04 May 2024 19:31:53 GMT
content-type: text/html; charset=utf-8
content-length: 114
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, X-Aidata-FP, If-None-Match
access-control-allow-origin: https://exclusive-works.ru
access-control-expose-headers: Set-Cookie, Etag
location: /adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHRt-bZ2f_jng/jsvpaid?set_buzzoola_cookie=t
set-cookie: uuid=8997568d-8a75-4eeb-68a5-522d366e4a68; Path=/; Domain=buzzoola.com; Expires=Mon, 03 Jun 2024 19:31:53 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
exchange.buzzoola.com/adv/kbDH64c7yFY_jqB7YcKn5M6dGqNDbHMZffr_5APkVM07AVtRv698Lw/jsvpaid
188.40.114.28307 Temporary Redirect 125 B URL GET HTTP/2 exchange.buzzoola.com/adv/kbDH64c7yFY_jqB7YcKn5M6dGqNDbHMZffr_5APkVM07AVtRv698Lw/jsvpaid
IP 188.40.114.28:443
ASN #24940 Hetzner Online GmbH
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 434795e8e47d96c2db465eaaee5f94c5
8eb83321b29ac17a9c7178240c5b143ec985073c
cf5a11a45abe1d0b045078ccda390484423b9868020d490918cf93eb8cafe514
GET /adv/kbDH64c7yFY_jqB7YcKn5M6dGqNDbHMZffr_5APkVM07AVtRv698Lw/jsvpaid HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
server: nginx
date: Sat, 04 May 2024 19:31:52 GMT
content-type: text/html; charset=utf-8
content-length: 125
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, X-Aidata-FP, If-None-Match
access-control-allow-origin: https://exclusive-works.ru
access-control-expose-headers: Set-Cookie, Etag
location: /adv/kbDH64c7yFY_jqB7YcKn5M6dGqNDbHMZffr_5APkVM07AVtRv698Lw/jsvpaid?set_buzzoola_cookie=t
set-cookie: uuid=b92f18b8-8a6a-4891-78ed-97ae1a9e72b9; Path=/; Domain=buzzoola.com; Expires=Mon, 03 Jun 2024 19:31:52 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
yandex.ru/ads/adfox/390632/getCode?pp=cxgb&ps=gnpw&p2=iiqv
5.255.255.77 557 B URL yandex.ru/ads/adfox/390632/getCode?pp=cxgb&ps=gnpw&p2=iiqv
IP 5.255.255.77:0
File type gzip compressed data, from Unix
Hash 6c6c190eb96de84fbd1f568c033cbe76
4a8132dc37fe05587980886dbaae73ee5b05ec6c
b0176c11c9541a72d5de67e86612d1a4d13c378c8e6283d10ec96abe40bd6ffc
GET /ads/adfox/390632/getCode?pp=cxgb&ps=gnpw&p2=iiqv HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://exclusive-works.ru
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1714851113110761-1148855611185591318-balancer-l7leveler-kubr-yp-vla-51-BAL
last-modified: Sat, 04 May 2024 19:31:53 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
date: Sat, 04 May 2024 19:31:53 GMT
set-cookie: i=NFTwzl7XaV66fIgJ9dgahQoM95VW76yzFIby1k9XB7W98PB3YQIVQA3EoE4YAizan46eq4rpTY0n0fvSG7DeexoHVu4=; Expires=Mon, 04-May-2026 19:31:53 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6855913181714851113; Expires=Mon, 04-May-2026 19:31:53 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=9027245471714851113; Path=/; Domain=.yandex.ru; Expires=Sun, 04 May 2025 19:31:53 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Sun, 04 May 2025 19:31:53 GMT; SameSite=None; Secure; HttpOnly; Partitioned
content-type: text/xml; charset=utf-8
content-disposition: attachment; filename="null"
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
expires: Sat, 04 May 2024 19:31:53 GMT
x-adfox: {"default":true, "place_id":1338485, "code_type":"regular"}
X-Firefox-Spdy: h2
sync.bumlam.com/?src=adlook&uid=0871d198edad49d3ad1d67d3ed29da9b
31.172.81.158 0 B URL sync.bumlam.com/?src=adlook&uid=0871d198edad49d3ad1d67d3ed29da9b
IP 31.172.81.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=adlook&uid=0871d198edad49d3ad1d67d3ed29da9b HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Fri, 29 Apr 2044 19:31:53 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=adlook&s_data=CAIQARipmtqxBmIgMDg3MWQxOThlZGFkNDlkM2FkMWQ2N2QzZWQyOWRhOWKiARD1_LEyCkwR74bgACWQwGR8
ETag: f5fcb132-0a4c-11ef-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://exclusive-works.ru
Access-Control-Allow-Credentials: true
match.new-programmatic.com/userbind?src=adlook&id=0871d198edad49d3ad1d67d3ed29da9b
217.65.2.150 0 B URL match.new-programmatic.com/userbind?src=adlook&id=0871d198edad49d3ad1d67d3ed29da9b
IP 217.65.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=adlook&id=0871d198edad49d3ad1d67d3ed29da9b HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
exchange.buzzoola.com/cookiesync/ssp/adlook/?uid=0871d198edad49d3ad1d67d3ed29da9b
188.40.114.28 122 B URL exchange.buzzoola.com/cookiesync/ssp/adlook/?uid=0871d198edad49d3ad1d67d3ed29da9b
IP 188.40.114.28:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash a3322c7b3e0bf088abb2d6a1027aa084
67c0b6ab031a719fbc6427d02a163bf173020b7b
342bbe41d3f321b8ca3f239a18db036eaede1b61970fd48fcb73077148c93f5e
GET /cookiesync/ssp/adlook/?uid=0871d198edad49d3ad1d67d3ed29da9b HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
server: nginx
date: Sat, 04 May 2024 19:31:53 GMT
content-type: text/html; charset=utf-8
content-length: 122
location: /cookiesync/ssp/adlook/?set_buzzoola_cookie=t&uid=0871d198edad49d3ad1d67d3ed29da9b
set-cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6; Path=/; Domain=buzzoola.com; Expires=Mon, 03 Jun 2024 19:31:53 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
cdn.alfasense.net/ext/weboctxrun.js
136.144.31.36 683 B URL cdn.alfasense.net/ext/weboctxrun.js
IP 136.144.31.36:0
ASN #52000 MIRhosting B.V.
File type gzip compressed data, max speed, from Unix
Hash d15c44524d2b12d6d3f7910cc223d56c
c101a950706db306da0233aa99dbb5ef3467ca27
440917b36ed6d549f77dda8b9ba7850093276f268b99f3125f9b9acf1e4325d1
GET /ext/weboctxrun.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:53 GMT
content-type: application/javascript
last-modified: Wed, 12 Jul 2023 13:34:46 GMT
etag: W/"64aeabf6-d5"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=e7a39e6e3385558e2f6a6a18cac7185b; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
yandex.ru/ads/adfox/390632/getCode?pp=g&ps=hmtc&p2=iiqv
5.255.255.77 557 B URL yandex.ru/ads/adfox/390632/getCode?pp=g&ps=hmtc&p2=iiqv
IP 5.255.255.77:0
File type gzip compressed data, from Unix
Hash b04df0a2c17e2433a8b94f2d57a77558
8f7cd0c8b9be08770a23de80a73d9e1c9cb2b079
13ad02c0bd0faa2649bec7de8aa503c1bce7f55b6406f58eac28e986228352ba
GET /ads/adfox/390632/getCode?pp=g&ps=hmtc&p2=iiqv HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://exclusive-works.ru
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1714851113146374-10795956685157390149-balancer-l7leveler-kubr-yp-vla-51-BAL
last-modified: Sat, 04 May 2024 19:31:53 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
date: Sat, 04 May 2024 19:31:53 GMT
set-cookie: i=oDhkEp+BOShmCRLuiZIRterzbDgybxDAEznN1cmwBGOjECpqCVUMwn/+giW/yZvbKduaVCdWvEGtpKg7JvYG/OAztv4=; Expires=Mon, 04-May-2026 19:31:53 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=9573901491714851113; Expires=Mon, 04-May-2026 19:31:53 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=929981991714851113; Path=/; Domain=.yandex.ru; Expires=Sun, 04 May 2025 19:31:53 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Sun, 04 May 2025 19:31:53 GMT; SameSite=None; Secure; HttpOnly; Partitioned
content-type: text/xml; charset=utf-8
content-disposition: attachment; filename="null"
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
expires: Sat, 04 May 2024 19:31:53 GMT
x-adfox: {"default":true, "place_id":1402350, "code_type":"regular"}
X-Firefox-Spdy: h2
nr.bidderstack.com/adlook/cm?user_id=0871d198edad49d3ad1d67d3ed29da9b
94.130.221.58 0 B URL nr.bidderstack.com/adlook/cm?user_id=0871d198edad49d3ad1d67d3ed29da9b
IP 94.130.221.58:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adlook/cm?user_id=0871d198edad49d3ad1d67d3ed29da9b HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Length: 0
Connection: keep-alive
Location: /adlook/cm?user_id=0871d198edad49d3ad1d67d3ed29da9b&pupa=1
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Sun, 04-May-2025 19:31:53 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
dsp.tigra.dev/bid/vast-container?ssp=57
5.227.125.248 619 B URL dsp.tigra.dev/bid/vast-container?ssp=57
IP 5.227.125.248:0
File type XML 1.0 document, ASCII text
Hash 1f17b17f803927e610e73364cd5e5996
483afe5c543a070d7cf634f286b585a9967f1040
0cc39c60f2dd185ff1e403e43a4cb5639325838244921688e18a7e07a262a10b
GET /bid/vast-container?ssp=57 HTTP/1.1
Host: dsp.tigra.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 19:31:53 GMT
content-type: application/xml
content-length: 619
access-control-allow-credentials: true
access-control-allow-origin: https://exclusive-works.ru
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
vastroll.ru/vast/vpaid.php?pl=3149&domain_ref=exclusive-works.ru
185.60.135.47200 OK 33 B URL GET HTTP/1.1 vastroll.ru/vast/vpaid.php?pl=3149&domain_ref=exclusive-works.ru
IP 185.60.135.47:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subjectvastroll.ru
Fingerprint6A:EB:97:F8:29:CB:16:AB:A7:30:7D:CA:44:4C:11:12:E1:F5:C6:4F
ValidityTue, 12 Mar 2024 23:19:22 GMT - Mon, 10 Jun 2024 23:19:21 GMT
File type ASCII text, with no line terminators
Hash e4eecab14a9bc3181a77d27cc49f4db2
a5dc73937259e1c4d9122789394b7bb8497b09f3
cc9c13341678b544fc3f130671b4c481c56cf6207767bfebc065e24036192fb8
GET /vast/vpaid.php?pl=3149&domain_ref=exclusive-works.ru HTTP/1.1
Host: vastroll.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Type: text/xml; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI ADM DEV COM NAV OUR STP"
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Sat, 04 May 2024 19:31:53 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Access-Control-Allow-Origin: https://exclusive-works.ru
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
pixel.dsp.onetarget.ru/adlook/pixel?id=0871d198edad49d3ad1d67d3ed29da9b
130.193.53.230 0 B URL pixel.dsp.onetarget.ru/adlook/pixel?id=0871d198edad49d3ad1d67d3ed29da9b
IP 130.193.53.230:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adlook/pixel?id=0871d198edad49d3ad1d67d3ed29da9b HTTP/1.1
Host: pixel.dsp.onetarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 04 May 2024 19:31:53 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=5813217&id=f8d6704d-14b0-465b-a88e-83c8ff11f96a
set-cookie: USER_ID=f8d6704d-14b0-465b-a88e-83c8ff11f96a;max-age=2147483647;Secure;HttpOnly;SameSite=None
ADLOOK_USER_ID=0871d198edad49d3ad1d67d3ed29da9b;max-age=30758400;Secure;HttpOnly;SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2
kimberlite.io/rtb/sync/adlook?u=0871d198edad49d3ad1d67d3ed29da9b
217.199.220.44 0 B URL kimberlite.io/rtb/sync/adlook?u=0871d198edad49d3ad1d67d3ed29da9b
IP 217.199.220.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/adlook?u=0871d198edad49d3ad1d67d3ed29da9b HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=ZjaNKcbdRUw~XNFsCI45H3SkcEo9azGO7K3cJY4; path=/; max-age=7776000; samesite=none; httponly; secure
as=-WrUeGY2jSk; max-age=604800; samesite=none; httponly; secure
f=https%3A%2F%2Fads.adlook.me%2Fcsync%3Fpid%3Dsolta%26uid%3DZjaNKcbdRUw; max-age=30; samesite=none; httponly; secure
n=1; max-age=30; samesite=none; httponly; secure
location: https://solta-sync.rutarget.ru/sync
referrer-policy: no-referrer
server-timing: app;srv=0;dur=0.0001
utraff.com/vpaid/seJ3zN0PF6IRqC7-T5B3ZYAWkO1_y_w6KQT6t_Q9OHY.xml
172.67.74.180 579 B URL utraff.com/vpaid/seJ3zN0PF6IRqC7-T5B3ZYAWkO1_y_w6KQT6t_Q9OHY.xml
IP 172.67.74.180:0
Hash b3b59556415079f2ad5c46f1718d8672
db4514f00b27a6b5f2055718526a1e57f3b5c69f
249dee3a72be8eea03c6e14457a04e04be91cdc887db1a766a1a8bbd3514a5d0
GET /vpaid/seJ3zN0PF6IRqC7-T5B3ZYAWkO1_y_w6KQT6t_Q9OHY.xml HTTP/1.1
Host: utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 19:31:52 GMT
content-type: text/xml
last-modified: Fri, 03 May 2024 19:56:08 GMT
etag: W/"66354158-3ff"
access-control-allow-origin: https://exclusive-works.ru
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wiySw2r79WUYiJxpvhej%2B2vYY6OZDRkIs8xp1tcRkyui%2F3QjEG3j7V2edNF1USYgSzyDb5ScgpF1NkRRR9Gq1TEiPKntZURsf9kg95ZMf8NPp5IUJGJslA5hVuc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eae9df889956a5-OSL
content-encoding: br
X-Firefox-Spdy: h2
cs.alfasense.com/pixeljs
23.111.100.20 6.0 kB IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
File type JavaScript source, ASCII text, with very long lines (5963), with no line terminators
Hash 09586f2e91429c7cdd474e074e66c5fd
c5c4009b12ec35e7a1d2e504da27d2beff330de9
5e01c1318503b98c324f22f1ad290790fcf0d4325c0997d82a37f020d01c065a
GET /pixeljs HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Type: application/javascript
Content-Length: 5963
Connection: keep-alive
Server: fasthttp
Set-Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1; expires=Fri, 25 Apr 2025 19:31:53 GMT; domain=alfasense.com; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
ssp.al-adtech.com/api/sync/adlook
45.139.25.121 0 B URL ssp.al-adtech.com/api/sync/adlook
IP 45.139.25.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/adlook HTTP/1.1
Host: ssp.al-adtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://ads.adlook.me/csync?pid=alab&uid=01f861a4-04e7-4c33-b906-044c188b3f98
Set-Cookie: afp_cookie=gAAAAABmNo0p_El5x9-jX828_ESwy-agAHH6HFVK3tht6XTwmKeuCdA4rS9wQTNgkLN0UgXXiYFqcbCRju7auN97uFMpnccYCTtOjz4NcS8WGD-P4vdah7JKjhp-X1JrwPwJETafefBvR3Lfn8RV65CWC_SNqIt5-KcM1Y7RcpORg5mdHzArzwDmcshcHnBptFwG4nv91psNYd4LsRWvnHD_A8nSi8eapXYpT5kH_jGvkOPlypL4pl4=$; expires=Tue, 04 Jun 2024 19:31:53 GMT; path=/; secure; SameSite=None
sync.dmp.otm-r.com/match/adlook?id=0871d198edad49d3ad1d67d3ed29da9b
194.55.244.184 98 B URL sync.dmp.otm-r.com/match/adlook?id=0871d198edad49d3ad1d67d3ed29da9b
IP 194.55.244.184:0
File type HTML document, ASCII text
Hash 910f74819b800ce4fe9638f97186625b
3dba5e0bc8b7228bd7a9feb6d2b8e23ca764ee4a
b150cbb1746e6eb6c284c2ee604a3d46047ad53ef1a60108ce494babf01d2618
GET /match/adlook?id=0871d198edad49d3ad1d67d3ed29da9b HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Sat, 04 May 2024 19:31:53 GMT
content-type: text/html; charset=utf-8
content-length: 98
access-control-allow-origin: *
location: /match/adlook?id=0871d198edad49d3ad1d67d3ed29da9b&otcm_check=1714851113
set-cookie: mpid=NjYzNjhkMjkwODdjNDc1Zg==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/ssp/adlook/?set_buzzoola_cookie=t&uid=0871d198edad49d3ad1d67d3ed29da9b
188.40.114.28 43 B URL exchange.buzzoola.com/cookiesync/ssp/adlook/?set_buzzoola_cookie=t&uid=0871d198edad49d3ad1d67d3ed29da9b
IP 188.40.114.28:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /cookiesync/ssp/adlook/?set_buzzoola_cookie=t&uid=0871d198edad49d3ad1d67d3ed29da9b HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:53 GMT
content-type: image/gif
content-length: 43
serverid: TODO
X-Firefox-Spdy: h2
nr.bidderstack.com/adlook/cm?user_id=0871d198edad49d3ad1d67d3ed29da9b&pupa=1
94.130.221.58302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/adlook/cm?user_id=0871d198edad49d3ad1d67d3ed29da9b&pupa=1
IP 94.130.221.58:443
ASN #24940 Hetzner Online GmbH
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint7A:83:29:BF:37:01:78:02:DF:C1:07:D8:A2:10:AB:0A:DD:11:66:B0
ValidityTue, 21 Nov 2023 08:57:57 GMT - Sun, 22 Dec 2024 08:57:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adlook/cm?user_id=0871d198edad49d3ad1d67d3ed29da9b&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Length: 0
Connection: keep-alive
Location: https://exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Sun, 04-May-2025 19:31:53 GMT;
csorigin2=3; domain=.bidderstack.com; path=/; expires=Sat, 04-May-2024 19:36:53 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
sync.bumlam.com/?src=adlook&s_data=CAIQARipmtqxBmIgMDg3MWQxOThlZGFkNDlkM2FkMWQ2N2QzZWQyOWRhOWKiARD1_LEyCkwR74bgACWQwGR8
31.172.81.158200 OK 43 B URL GET HTTP/1.1 sync.bumlam.com/?src=adlook&s_data=CAIQARipmtqxBmIgMDg3MWQxOThlZGFkNDlkM2FkMWQ2N2QzZWQyOWRhOWKiARD1_LEyCkwR74bgACWQwGR8
IP 31.172.81.158:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT
File type GIF image data, version 89a, 1 x 1
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /?src=adlook&s_data=CAIQARipmtqxBmIgMDg3MWQxOThlZGFkNDlkM2FkMWQ2N2QzZWQyOWRhOWKiARD1_LEyCkwR74bgACWQwGR8 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Type: image/gif
Content-Length: 43
Connection: close
Set-Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Fri, 29 Apr 2044 19:31:53 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://exclusive-works.ru
Access-Control-Allow-Credentials: true
exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHNLXHR4S0hdM/jsvpaid?set_buzzoola_cookie=t
188.40.114.28 834 B URL exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHNLXHR4S0hdM/jsvpaid?set_buzzoola_cookie=t
IP 188.40.114.28:0
ASN #24940 Hetzner Online GmbH
File type XML 1.0 document, ASCII text, with very long lines (9084), with no line terminators
Hash 06b19a8a5503d51b717f83f1ebbf0a41
40469542cf12bb4c1da6f8344290d92c6ab37db9
313a55563cc87ef92d1da97e6179a008a13b760a444095810a94ff35f2c91406
GET /adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHNLXHR4S0hdM/jsvpaid?set_buzzoola_cookie=t HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:53 GMT
content-type: application/xml
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, X-Aidata-FP, If-None-Match
access-control-allow-origin: https://exclusive-works.ru
access-control-expose-headers: Set-Cookie, Etag
serverid: TODO
content-encoding: gzip
X-Firefox-Spdy: h2
kimberlite.io/rtb/bid/vast/al_all?domain=exclusive-works.ru&h=720&w=1280
217.199.220.44200 OK 133 B URL GET HTTP/1.1 kimberlite.io/rtb/bid/vast/al_all?domain=exclusive-works.ru&h=720&w=1280
IP 217.199.220.44:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint27:9B:57:5F:3C:19:A5:31:A3:1B:E6:A4:8E:CF:2F:73:78:4E:46:C1
ValidityThu, 29 Feb 2024 12:20:14 GMT - Tue, 01 Apr 2025 12:20:13 GMT
File type XML 1.0 document, ASCII text, with no line terminators
Hash 3ed89f7fb59e6250fcf88c5fc5b4c990
2fea6c4cd489548d0873a5012763caf5eb4de49c
bd48ba544b1801753b640ad08ac40b9a6158874aab143497bc42624ae66a9f96
GET /rtb/bid/vast/al_all?domain=exclusive-works.ru&h=720&w=1280 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Type: text/xml
Content-Length: 133
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://exclusive-works.ru
set-cookie: u=ZjaNKcdZON0~vxeO75pWbv4WAbTLhT1CBjxgk1o; path=/; max-age=7776000; samesite=none; httponly; secure
server-timing: app;srv=6;dur=0.3639
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL POST HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
content-type: application/json
Content-Length: 310
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 May 2024 19:31:53 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://exclusive-works.ru
set-cookie: vid=fc3529591264ce29094d; expires=Sun, 04 May 2025 19:31:54 GMT; domain=hybrid.ai; secure; samesite=none
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
kimberlite.io/rtb/bid/pbjs
217.199.220.44 0 B URL kimberlite.io/rtb/bid/pbjs
IP 217.199.220.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rtb/bid/pbjs HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
content-type: text/plain
Content-Length: 651
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Cookie: u=ZjaNKcbdRUw~XNFsCI45H3SkcEo9azGO7K3cJY4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Length: 0
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://exclusive-works.ru
set-cookie: u=ZjaNKcbdRUw~XNFsCI45H3SkcEo9azGO7K3cJY4; path=/; max-age=7776000; samesite=none; httponly; secure
server-timing: app;srv=0;dur=0.0773
s.alfasrv.com/events/1x1.png?s=121917&e=r&t=p
130.193.42.23 95 B URL s.alfasrv.com/events/1x1.png?s=121917&e=r&t=p
IP 130.193.42.23:0
ASN #200350 Yandex.Cloud LLC
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /events/1x1.png?s=121917&e=r&t=p HTTP/1.1
Host: s.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Sat, 04 May 2024 19:31:53 GMT
content-type: image/png
content-length: 95
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,X-Original-Referer
access-control-allow-credentials: true
cache-control: no-cache,no-store
expires: Tue, 01 Jan 1980 1:00:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
v.alfasrv.com/stats/2x2.png?s=121917&e=r&t=p
84.201.179.252 95 B URL v.alfasrv.com/stats/2x2.png?s=121917&e=r&t=p
IP 84.201.179.252:0
ASN #200350 Yandex.Cloud LLC
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /stats/2x2.png?s=121917&e=r&t=p HTTP/1.1
Host: v.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
Last-Modified: Saturday, 04-May-2024 19:31:53 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
Accept-Ranges: bytes
exchange.buzzoola.com/cookiesync/redirect?skip2=1294c1dc-51d5-4bc0-bf02-718515a023e1&redirect_url=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dbz%26uid%3D%24%7BUUID%7D
188.40.114.28 101 B URL exchange.buzzoola.com/cookiesync/redirect?skip2=1294c1dc-51d5-4bc0-bf02-718515a023e1&redirect_url=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dbz%26uid%3D%24%7BUUID%7D
IP 188.40.114.28:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash c5af559231bbd8d7a0ea96f8d76a74d9
d598ca8c7758f8f43712f7677516d548ea1c9562
71b894b72b5a33554d063b429b5a9e2665ca61ba6d393d6051839257dc8ad2af
GET /cookiesync/redirect?skip2=1294c1dc-51d5-4bc0-bf02-718515a023e1&redirect_url=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dbz%26uid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 May 2024 19:31:53 GMT
content-type: text/html; charset=utf-8
content-length: 101
location: https://cs.alfasense.com/p?ssp=bz&uid=5e79adf5-2011-4170-7ef3-975f002c87a6
serverid: TODO
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=185&euid=1294c1dc-51d5-4bc0-bf02-718515a023e1&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D
193.3.184.16 154 B URL www.acint.net/rmatch?dp=185&euid=1294c1dc-51d5-4bc0-bf02-718515a023e1&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=185&euid=1294c1dc-51d5-4bc0-bf02-718515a023e1&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:31:53 GMT
content-type: text/html
content-length: 154
location: https://ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcs.alfasense.com%252Fp%253Fssp%253Dsp%2526uid%253D%2524%257BUSER_ID%257D&dp=14
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
set-cookie: cSyncDp14v4=1714851113; expires=Mon, 03-Jun-24 19:31:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.adspend.space/alfasense?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
172.67.168.127204 No Content 0 B URL GET HTTP/2 sync.adspend.space/alfasense?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 172.67.168.127:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGoogle Trust Services LLC
Subjectadspend.space
Fingerprint86:42:73:83:B4:96:F1:E2:8E:8F:5F:67:2B:A5:20:3C:AE:F0:FE:57
ValiditySat, 16 Mar 2024 00:50:56 GMT - Fri, 14 Jun 2024 00:50:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /alfasense?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sat, 04 May 2024 19:31:53 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CYLLW3CS6VbHecHuqOgnG43sfYqm4pPGzhjbTs%2BtXGigo4J98%2FqnVprNyZ0FHfO4pGYHHhr6%2B8KpYgLjV%2F9jynNs9rk9h7Qq801%2BkQZtkupP8cJXPy6EA8igCadTJVyzBURDvD0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eae9e5cc985685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
const.uno/id.json?p=5
95.163.84.7200 OK 9 B IP 95.163.84.7:443
ASN #12695 LLC Digital Network
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subjectconst.uno
Fingerprint35:EC:06:80:32:96:F0:6A:FC:28:93:94:C9:5B:46:E0:84:21:7C:78
ValidityWed, 10 Apr 2024 08:16:01 GMT - Tue, 09 Jul 2024 08:16:00 GMT
Hash 7142df90fded5d00df2c0ba662f9b662
a6847802842e7c15d61b44aae555380a7e2f891e
72d427b7264997760074a94dcc1c9e54ae2c33b05276bfb3cfcd0f5d2d8bba3a
GET /id.json?p=5 HTTP/1.1
Host: const.uno
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
content-type: text/plain
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Type: application/json
Content-Length: 9
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://exclusive-works.ru
match.new-programmatic.com/userbind?src=alfasense&id=1294c1dc-51d5-4bc0-bf02-718515a023e1
217.65.2.150302 Found 0 B URL GET HTTP/1.1 match.new-programmatic.com/userbind?src=alfasense&id=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 217.65.2.150:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subjectnew-programmatic.com
FingerprintDC:66:9C:C9:66:1A:E4:EF:2D:CF:20:88:F1:EB:C8:72:0E:CE:CD:2D
ValidityThu, 04 Apr 2024 19:59:41 GMT - Wed, 03 Jul 2024 19:59:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=alfasense&id=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.22.1
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
Location: https://cs.alfasense.com/p?ssp=tg&redir=0&id=
yandex.ru/ads/adfox/1455849/getCode?p1=dbxee&p2=inuv&puid1=
5.255.255.77 54 B URL yandex.ru/ads/adfox/1455849/getCode?p1=dbxee&p2=inuv&puid1=
IP 5.255.255.77:0
File type XML 1.0 document, ASCII text, with no line terminators
Hash c8612434cadc3a081012e2144c026cea
22eb3b498ebd4cca9ab9f3fffe761d9b8392d68a
d75a5ae8cfa906a56ed852cb303f01968978daf562ad14da806f483cc35c6b6f
GET /ads/adfox/1455849/getCode?p1=dbxee&p2=inuv&puid1= HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://exclusive-works.ru
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1714851113193872-1014566461377948279-balancer-l7leveler-kubr-yp-vla-51-BAL
last-modified: Sat, 04 May 2024 19:31:53 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
date: Sat, 04 May 2024 19:31:53 GMT
set-cookie: i=YwXNz2GBdsE/fJDx/jc8SD1Y2cGXeP1ARf4vNXxX9LgV0JN5mZzhGf2LA8jnczUrmXL8CT1+NJjSXyrk3YE1KidA4tM=; Expires=Mon, 04-May-2026 19:31:53 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=2779482791714851113; Expires=Mon, 04-May-2026 19:31:53 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=2994608931714851113; Path=/; Domain=.yandex.ru; Expires=Sun, 04 May 2025 19:31:53 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Sun, 04 May 2025 19:31:53 GMT; SameSite=None; Secure; HttpOnly; Partitioned
content-type: text/xml; charset=utf-8
content-disposition: attachment; filename="null"
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
expires: Sat, 04 May 2024 19:31:53 GMT
x-adfox: {"default":true, "place_id":1404160, "code_type":"regular"}
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/alfasensor?id=1294c1dc-51d5-4bc0-bf02-718515a023e1
194.55.244.184 92 B URL sync.dmp.otm-r.com/match/alfasensor?id=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 194.55.244.184:0
File type HTML document, ASCII text
Hash a33f39c6c66e162cc0cf604e530060e8
8c7f80b38672b85324a48ef662d919f3223bca82
adfbb401239f2e88d1d504520df08fcf6e1bd35f1a386e49e6d5f5bdca570ae3
GET /match/alfasensor?id=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: mpid=NjYzNjhkMjkwODdjNDc1Zg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.23.2
date: Sat, 04 May 2024 19:31:53 GMT
content-type: text/html; charset=utf-8
content-length: 92
access-control-allow-origin: *
location: https://cs.alfasense.com/p?ssp=ot&id=NjYzNjhkMjkwODdjNDc1Zg%3D%3D
set-cookie: mpid=NjYzNjhkMjkwODdjNDc1Zg==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
ssp.al-adtech.com/api/sync/alfadart?skipme=1294c1dc-51d5-4bc0-bf02-718515a023e1
45.139.25.121 0 B URL ssp.al-adtech.com/api/sync/alfadart?skipme=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 45.139.25.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/alfadart?skipme=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: ssp.al-adtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: afp_cookie=gAAAAABmNo0p_El5x9-jX828_ESwy-agAHH6HFVK3tht6XTwmKeuCdA4rS9wQTNgkLN0UgXXiYFqcbCRju7auN97uFMpnccYCTtOjz4NcS8WGD-P4vdah7JKjhp-X1JrwPwJETafefBvR3Lfn8RV65CWC_SNqIt5-KcM1Y7RcpORg5mdHzArzwDmcshcHnBptFwG4nv91psNYd4LsRWvnHD_A8nSi8eapXYpT5kH_jGvkOPlypL4pl4=$
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://cs.alfasense.com/p?ssp=al&id=01f861a4-04e7-4c33-b906-044c188b3f98
Set-Cookie: afp_cookie=gAAAAABmNo0pbVdyJEWTjgNJw-Tzc3HnylKMNH0FArusPkGtHsId7ogRmxoz_ehvmREQ0wGFeyk3Ygr5-lYCM0r1_dIxU8obv38wnjLkqFNW9chDprd3hitWtVIqBjkOI7LBM3z2hbIpAku8Dd-zbF03y-pyqAqfP9I-cC6pfePVi6zbrTZ4F_MEjVAt9XcLsWVVjFMy8iKdaCqMo0N1zYo8UVdwEdSEFQ==$; expires=Tue, 04 Jun 2024 19:31:53 GMT; path=/; secure; SameSite=None
kimberlite.io/rtb/sync/alfasense?u=1294c1dc-51d5-4bc0-bf02-718515a023e1
217.199.220.44 0 B URL kimberlite.io/rtb/sync/alfasense?u=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 217.199.220.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/alfasense?u=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: as=-WrUeGY2jSk; f=https%3A%2F%2Fads.adlook.me%2Fcsync%3Fpid%3Dsolta%26uid%3DZjaNKcbdRUw; n=1; u=ZjaNKcdZON0~vxeO75pWbv4WAbTLhT1CBjxgk1o
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: as=-WrUeGY2jSk4WsfhZjaNKQ; max-age=604800; samesite=none; httponly; secure
n=2; max-age=30; samesite=none; httponly; secure
location: https://sm.rtb.mts.ru/p?ssp=toptraffic&id=ZjaNKcdZON0
referrer-policy: no-referrer
server-timing: app;srv=11;dur=0.0002
a.adiam.tech/sync?ssp=12&skip=1294c1dc-51d5-4bc0-bf02-718515a023e1
172.67.200.122204 No Content 0 B URL GET HTTP/2 a.adiam.tech/sync?ssp=12&skip=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 172.67.200.122:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGoogle Trust Services LLC
Subjectadiam.tech
Fingerprint7A:4A:CA:1F:8F:18:CD:97:D2:DB:66:4E:C7:B3:8D:D3:0A:B2:45:6F
ValiditySat, 04 May 2024 08:43:19 GMT - Fri, 02 Aug 2024 08:43:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=12&skip=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: a.adiam.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sat, 04 May 2024 19:31:53 GMT
content-type: text/plain
set-cookie: adiamutid=1; Expires=Mon, 03 Jun 2024 21:31:53 GMT; Domain=.adiam.tech; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JLGfGl2VQfRd%2B28xXtiuvoyGmEC10Me10uQCepC%2BEkE%2FLvqa72DOBVxHW%2F20LHedrpEaIMycqMVIDaORlBo9hdCoo3FW9qm9BYM93p08eNVI4p02%2FyrYZmroQ7qQc8s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eae9e62fb1712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
sync.bumlam.com/?src=asense&uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
31.172.81.158 43 B URL sync.bumlam.com/?src=asense&uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 31.172.81.158:0
File type GIF image data, version 89a, 1 x 1
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /?src=asense&uid=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 19:31:53 GMT
Content-Type: image/gif
Content-Length: 43
Connection: close
Set-Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Fri, 29 Apr 2044 19:31:53 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
rtb.segmel.io/als/sync/?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
172.67.181.120 0 B URL rtb.segmel.io/als/sync/?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 172.67.181.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /als/sync/?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: rtb.segmel.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sat, 04 May 2024 19:31:54 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=0; includeSubDomains; preload;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=to41efasJ7H1BbfpSDaiGztPBCCl8A%2BBUmmXPaayjpmZjlTLcp5h2pwDd1Ktn3LzZOa9FYUlAX2v62V245G1YSaG6Hqc4Yozcm42czLd9Mm44MBoe%2Fpzb0516s%2Bwbxev"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eae9e61b84b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
acint.net/cmatch/?dp=14&pi=1647232&skip_it=1294c1dc-51d5-4bc0-bf02-718515a023e1
193.3.184.16 154 B URL acint.net/cmatch/?dp=14&pi=1647232&skip_it=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch/?dp=14&pi=1647232&skip_it=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:31:53 GMT
content-type: text/html
content-length: 154
location: https://px.adhigh.net/p/cm/sape?u=0900007F298D3666DC343C3D026B580B
set-cookie: cSyncDp17v2=1714851113; expires=Mon, 03-Jun-24 19:31:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
a.utraff.com/sync?ssp=716&skipme=1294c1dc-51d5-4bc0-bf02-718515a023e1
172.67.74.180 0 B URL a.utraff.com/sync?ssp=716&skipme=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 172.67.74.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=716&skipme=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 May 2024 19:31:54 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Mon, 03 Jun 2024 22:31:54 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Mon, 03 Jun 2024 22:31:54 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OgLRBlvd9spU89k0HDHqNYrQUQWxApn0YhP1z842aDujJ1bGnBriih8yPYc6vs9Xhj8UT3uXSejW2yXr4fZ9KRaQRyu0fHM%2F47IOrTwtcPmbQfCszs32f8MU8CzYbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eae9e6690e56a5-OSL
X-Firefox-Spdy: h2
www.acint.net/rmatch?r=https%3A%2F%2Fads.adlook.me%2Fcsync%3Fpid%3Dsape%26uid%3D$%7BUSER_ID%7D&dp=110&tc=1
193.3.184.16 154 B URL www.acint.net/rmatch?r=https%3A%2F%2Fads.adlook.me%2Fcsync%3Fpid%3Dsape%26uid%3D$%7BUSER_ID%7D&dp=110&tc=1
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?r=https%3A%2F%2Fads.adlook.me%2Fcsync%3Fpid%3Dsape%26uid%3D$%7BUSER_ID%7D&dp=110&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:31:54 GMT
content-type: text/html
content-length: 154
location: https://ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fads.adlook.me%252Fcsync%253Fpid%253Dsape%2526uid%253D$%257BUSER_ID%257D&dp=14
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
set-cookie: cSyncDp14v4=1714851114; expires=Mon, 03-Jun-24 19:31:54 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
188.40.114.28200 OK 43 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
IP 188.40.114.28:443
ASN #24940 Hetzner Online GmbH
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:52 GMT
content-type: image/gif
content-length: 43
set-cookie: uuid=; Path=/; Domain=exchange.buzzoola.com; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Max-Age=0; Secure; SameSite=None
uuid=5e79adf5-2011-4170-7ef3-975f002c87a6; Path=/; Domain=buzzoola.com; Expires=Mon, 03 Jun 2024 19:31:52 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
ads.adlook.me/csync?pid=alab&uid=01f861a4-04e7-4c33-b906-044c188b3f98
176.122.21.130 43 B URL ads.adlook.me/csync?pid=alab&uid=01f861a4-04e7-4c33-b906-044c188b3f98
IP 176.122.21.130:0
ASN #48096 Enterprise Cloud Ltd.
File type ASCII text, with no line terminators
Hash 373c54931c4b86eb8b8094bb0d743996
57a9f0563b9dc135f14f53ce3df89d4725256f3d
ed3e720be75c9a738820139fce1b12e8f89f68ee9758c40a7064f1ad57e6119a
GET /csync?pid=alab&uid=01f861a4-04e7-4c33-b906-044c188b3f98 HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: adlm_userId=0871d198edad49d3ad1d67d3ed29da9b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=0871d198edad49d3ad1d67d3ed29da9b; expires=Sat, 03 May 2025 21:00:00 GMT; path=/; SameSite=None; secure; samesite=none
adlk_cmatch=alab%3A01f861a4-04e7-4c33-b906-044c188b3f98; expires=Fri, 31 Dec 9999 20:59:59 GMT; path=/; SameSite=None; secure; samesite=none
date: Sat, 04 May 2024 19:31:53 GMT
content-length: 43
X-Firefox-Spdy: h2
pbs.alfasense.com/yandex/auction
23.111.100.20 0 B URL pbs.alfasense.com/yandex/auction
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yandex/auction HTTP/1.1
Host: pbs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
content-type: text/plain
Content-Length: 272
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Date: Sat, 04 May 2024 19:31:54 GMT
Connection: keep-alive
server: adx
x-error: empty candidates
Access-Control-Allow-Origin: https://exclusive-works.ru
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Content-type: text/xml
sync.dmp.otm-r.com/match/adlook?id=0871d198edad49d3ad1d67d3ed29da9b&otcm_check=1714851113
194.55.244.184302 Found 95 B URL GET HTTP/2 sync.dmp.otm-r.com/match/adlook?id=0871d198edad49d3ad1d67d3ed29da9b&otcm_check=1714851113
IP 194.55.244.184:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT
File type HTML document, ASCII text
Hash c85ec31e7e6e1993bad6314cb972554f
bfc93f031b108b0cc69133c6967ebef5d5568d64
1ee0bc4cf3d9500001927a3289c60a1ad52b5c923399c80cb5bf78d9690de655
GET /match/adlook?id=0871d198edad49d3ad1d67d3ed29da9b&otcm_check=1714851113 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: mpid=NjYzNjhkMjkwODdjNDc1Zg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.23.2
date: Sat, 04 May 2024 19:31:54 GMT
content-type: text/html; charset=utf-8
content-length: 95
access-control-allow-origin: *
location: https://ads.adlook.me/csync?pid=otm&uid=NjYzNjhkMjkwODdjNDc1Zg%3D%3D
set-cookie: mpid=NjYzNjhkMjkwODdjNDc1Zg==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
s.uuidksinc.net/match/1215/?remote_uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
185.98.54.153 0 B URL s.uuidksinc.net/match/1215/?remote_uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 185.98.54.153:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/1215/?remote_uid=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Sat, 04 May 2024 19:31:54 GMT
content-length: 0
location: https://cs.alfasense.com/p?ssp=kd&uid=mtT7ZtqQDLtNZgqjuEss
set-cookie: jcsuuid=mtT7ZtqQDLtNZgqjuEss; expires=Sun, 04 May 2025 19:31:54 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
sync.upravel.com/alfadart/sync?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
46.4.61.163 0 B URL sync.upravel.com/alfadart/sync?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 46.4.61.163:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /alfadart/sync?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Sat, 04 May 2024 19:31:54 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/alfadart/sync?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1&session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9leGNsdXNpdmUtd29ya3MucnUvIl19fQ
set-cookie: session_tptc=1714851114179;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1714851114179;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
sync.programmatica.com/match/Alfasense?id=1294c1dc-51d5-4bc0-bf02-718515a023e1
158.160.128.78 43 B URL sync.programmatica.com/match/Alfasense?id=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 158.160.128.78:0
ASN #200350 Yandex.Cloud LLC
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/Alfasense?id=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 19:31:54 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
match.qtarget.tech/userbind?src=alfasense&id=1294c1dc-51d5-4bc0-bf02-718515a023e1
95.163.92.180204 No Content 0 B URL GET HTTP/1.1 match.qtarget.tech/userbind?src=alfasense&id=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 95.163.92.180:443
ASN #12695 LLC Digital Network
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subjectdsp.qtarget.tech
Fingerprint24:73:C6:BB:59:50:7A:E0:31:C6:8F:43:2D:DD:E3:63:4A:F7:F7:24
ValiditySun, 11 Feb 2024 18:29:31 GMT - Sat, 11 May 2024 18:29:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=alfasense&id=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
stat.adlook.me/reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=VzOimBKfwAZN5PSaf9%2FQSNaMsMCF0avvM6rwunU709dniJ6h2N7xupGuJBfBUf4pVsoTwW%2B45uOGk7Xwn3%2BOB7iqf7h25vcMkRiD2tvI9%2FFRX%2Feu%2Fq7oM6%2F%2FtjQzeSngjAqMve9i5xQxkdHhcvIY3hUiyMr17lxLUHES5huRFXbIAsc9ZvWeQTdOhT2e%2BF%2BgM6mT6Q%3D%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111383134669&_adlk_ts=171485111383134669
176.122.21.130200 OK 142 B URL GET HTTP/2 stat.adlook.me/reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=VzOimBKfwAZN5PSaf9%2FQSNaMsMCF0avvM6rwunU709dniJ6h2N7xupGuJBfBUf4pVsoTwW%2B45uOGk7Xwn3%2BOB7iqf7h25vcMkRiD2tvI9%2FFRX%2Feu%2Fq7oM6%2F%2FtjQzeSngjAqMve9i5xQxkdHhcvIY3hUiyMr17lxLUHES5huRFXbIAsc9ZvWeQTdOhT2e%2BF%2BgM6mT6Q%3D%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111383134669&_adlk_ts=171485111383134669
IP 176.122.21.130:443
ASN #48096 Enterprise Cloud Ltd.
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=VzOimBKfwAZN5PSaf9%2FQSNaMsMCF0avvM6rwunU709dniJ6h2N7xupGuJBfBUf4pVsoTwW%2B45uOGk7Xwn3%2BOB7iqf7h25vcMkRiD2tvI9%2FFRX%2Feu%2Fq7oM6%2F%2FtjQzeSngjAqMve9i5xQxkdHhcvIY3hUiyMr17lxLUHES5huRFXbIAsc9ZvWeQTdOhT2e%2BF%2BgM6mT6Q%3D%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111383134669&_adlk_ts=171485111383134669 HTTP/1.1
Host: stat.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Microsoft-IIS/10.0
date: Sat, 04 May 2024 19:31:53 GMT
X-Firefox-Spdy: h2
cs.agency2.ru/p?ssp=al&uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
23.111.107.44301 Moved Permanently 0 B URL GET HTTP/1.1 cs.agency2.ru/p?ssp=al&uid=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 23.111.107.44:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint02:6A:FB:9D:0A:83:4C:93:CA:FA:19:3D:E7:2F:70:6A:A8:40:97:BE
ValiditySun, 14 Apr 2024 23:34:36 GMT - Sat, 13 Jul 2024 23:34:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=al&uid=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://cs.alfasense.com/p?ssp=a2&uid=ec9facb1-5f4f-4e34-a6b5-f5b126b414bd
Set-Cookie: uuid=ec9facb1-5f4f-4e34-a6b5-f5b126b414bd; expires=Fri, 25 Apr 2025 19:31:54 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
cs.agency2.ru/p?ssp=ai&skipme=1294c1dc-51d5-4bc0-bf02-718515a023e1
23.111.107.44 0 B URL cs.agency2.ru/p?ssp=ai&skipme=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 23.111.107.44:0
ASN #39134 Edinaya Set Limited Liability Company
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint02:6A:FB:9D:0A:83:4C:93:CA:FA:19:3D:E7:2F:70:6A:A8:40:97:BE
ValiditySun, 14 Apr 2024 23:34:36 GMT - Sat, 13 Jul 2024 23:34:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=ai&skipme=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://x01.aidata.io/0.gif?pid=7140034&id=8a3cb389-1609-4302-bd12-c3510e752202
Set-Cookie: uuid=8a3cb389-1609-4302-bd12-c3510e752202; expires=Fri, 25 Apr 2025 19:31:54 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
ads.adlook.me/csync?pid=otm&uid=NjYzNjhkMjkwODdjNDc1Zg%3D%3D
176.122.21.130 43 B URL ads.adlook.me/csync?pid=otm&uid=NjYzNjhkMjkwODdjNDc1Zg%3D%3D
IP 176.122.21.130:0
ASN #48096 Enterprise Cloud Ltd.
File type ASCII text, with no line terminators
Hash 373c54931c4b86eb8b8094bb0d743996
57a9f0563b9dc135f14f53ce3df89d4725256f3d
ed3e720be75c9a738820139fce1b12e8f89f68ee9758c40a7064f1ad57e6119a
GET /csync?pid=otm&uid=NjYzNjhkMjkwODdjNDc1Zg%3D%3D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: adlm_userId=0871d198edad49d3ad1d67d3ed29da9b; adlk_cmatch=alab%3A01f861a4-04e7-4c33-b906-044c188b3f98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=0871d198edad49d3ad1d67d3ed29da9b; expires=Sat, 03 May 2025 21:00:00 GMT; path=/; SameSite=None; secure; samesite=none
adlk_cmatch=alab%3A01f861a4-04e7-4c33-b906-044c188b3f98%2Cotm%3ANjYzNjhkMjkwODdjNDc1Zg%3D%3D; expires=Fri, 31 Dec 9999 20:59:59 GMT; path=/; SameSite=None; secure; samesite=none
date: Sat, 04 May 2024 19:31:54 GMT
content-length: 43
X-Firefox-Spdy: h2
ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=exclusive-works.ru&l=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&s=38014&cur=RUB&bidid=103539bead8bf4d&transactionid=&auctionid=&bidfloor=0
195.201.152.107 2 B URL ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=exclusive-works.ru&l=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&s=38014&cur=RUB&bidid=103539bead8bf4d&transactionid=&auctionid=&bidfloor=0
IP 195.201.152.107:0
ASN #24940 Hetzner Online GmbH
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /adjson?tz=0&w=970&h=90&domain=exclusive-works.ru&l=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&s=38014&cur=RUB&bidid=103539bead8bf4d&transactionid=&auctionid=&bidfloor=0 HTTP/1.1
Host: ssp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
content-type: text/plain
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Cookie: mpid=NjYzNjhkMjkwODdjNDc1Zg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.6
date: Sat, 04 May 2024 19:31:54 GMT
content-type: application/javascript
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://exclusive-works.ru
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: mpid=NjYzNjhkMjkwODdjNDc1Zg==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
vary: Origin
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=bz&uid=5e79adf5-2011-4170-7ef3-975f002c87a6
23.111.100.20 35 B URL cs.alfasense.com/p?ssp=bz&uid=5e79adf5-2011-4170-7ef3-975f002c87a6
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=bz&uid=5e79adf5-2011-4170-7ef3-975f002c87a6 HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fads.adlook.me%252Fcsync%253Fpid%253Dsape%2526uid%253D$%257BUSER_ID%257D&dp=14
193.3.184.216302 Moved Temporarily 142 B URL GET HTTP/1.1 ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fads.adlook.me%252Fcsync%253Fpid%253Dsape%2526uid%253D$%257BUSER_ID%257D&dp=14
IP 193.3.184.216:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fads.adlook.me%252Fcsync%253Fpid%253Dsape%2526uid%253D$%257BUSER_ID%257D&dp=14 HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: sspuid=CkIDIGY2jSkWggAsnpztAnL/fNW9tc51Mhk11EwE2SkHxUX6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/rmatch?dp=14&euid=2003420A298D36662C00821602ED9C9E&r=https%3A%2F%2Fads.adlook.me%2Fcsync%3Fpid%3Dsape%26uid%3D$%7BUSER_ID%7D
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
cs.alfasense.com/p?ssp=kd&uid=mtT7ZtqQDLtNZgqjuEss
23.111.100.20200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=kd&uid=mtT7ZtqQDLtNZgqjuEss
IP 23.111.100.20:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
FingerprintCB:9E:EC:1E:29:96:7E:71:55:EA:3F:33:4D:45:A2:7D:8D:4B:D9:DE
ValidityWed, 27 Dec 2023 23:14:58 GMT - Mon, 27 Jan 2025 23:14:57 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=kd&uid=mtT7ZtqQDLtNZgqjuEss HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
sync.upravel.com/alfadart/sync?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1&session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9leGNsdXNpdmUtd29ya3MucnUvIl19fQ
46.4.61.163 0 B URL sync.upravel.com/alfadart/sync?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1&session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9leGNsdXNpdmUtd29ya3MucnUvIl19fQ
IP 46.4.61.163:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /alfadart/sync?uid=1294c1dc-51d5-4bc0-bf02-718515a023e1&session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9leGNsdXNpdmUtd29ya3MucnUvIl19fQ HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: session_tptc=1714851114179
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 May 2024 19:31:54 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://cs.alfasense.com/p?ssp=up&id=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=bv&uid=cjml0c1ozy
23.111.100.20200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=bv&uid=cjml0c1ozy
IP 23.111.100.20:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
FingerprintCB:9E:EC:1E:29:96:7E:71:55:EA:3F:33:4D:45:A2:7D:8D:4B:D9:DE
ValidityWed, 27 Dec 2023 23:14:58 GMT - Mon, 27 Jan 2025 23:14:57 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=bv&uid=cjml0c1ozy HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
stat.adlook.me/reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=9e9iRRUpENM4IFGJy8IrP4Xw17H8PhG7VdgOHqrEMOo3ZT6CPgNjGwaxpeFOn43PmM6zxccNcbxYj7d%2BKkqno1saARe9AKnoKdzTNcIn7ebE9EX0R5bCSDk3lyB7%2BHfXrmmyi%2FQHPLUsFcoUK9lbTOJzsi29kiyc%2FQJ3akRL4rHXBWUo%2BMNbrgK4vCxQF371251Dvg%3D%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111385750746&_adlk_ts=171485111385750746
176.122.21.130 0 B URL stat.adlook.me/reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=9e9iRRUpENM4IFGJy8IrP4Xw17H8PhG7VdgOHqrEMOo3ZT6CPgNjGwaxpeFOn43PmM6zxccNcbxYj7d%2BKkqno1saARe9AKnoKdzTNcIn7ebE9EX0R5bCSDk3lyB7%2BHfXrmmyi%2FQHPLUsFcoUK9lbTOJzsi29kiyc%2FQJ3akRL4rHXBWUo%2BMNbrgK4vCxQF371251Dvg%3D%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111385750746&_adlk_ts=171485111385750746
IP 176.122.21.130:0
ASN #48096 Enterprise Cloud Ltd.
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=9e9iRRUpENM4IFGJy8IrP4Xw17H8PhG7VdgOHqrEMOo3ZT6CPgNjGwaxpeFOn43PmM6zxccNcbxYj7d%2BKkqno1saARe9AKnoKdzTNcIn7ebE9EX0R5bCSDk3lyB7%2BHfXrmmyi%2FQHPLUsFcoUK9lbTOJzsi29kiyc%2FQJ3akRL4rHXBWUo%2BMNbrgK4vCxQF371251Dvg%3D%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111385750746&_adlk_ts=171485111385750746 HTTP/1.1
Host: stat.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Microsoft-IIS/10.0
date: Sat, 04 May 2024 19:31:53 GMT
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=ot&id=NjYzNjhkMjkwODdjNDc1Zg%3D%3D
23.111.100.20 35 B URL cs.alfasense.com/p?ssp=ot&id=NjYzNjhkMjkwODdjNDc1Zg%3D%3D
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=ot&id=NjYzNjhkMjkwODdjNDc1Zg%3D%3D HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
s.alfasrv.com/events/1x1.png?s=121917&a=fallback&k1=1&k2=1&e=i&t=p&c=0
130.193.42.23 95 B URL s.alfasrv.com/events/1x1.png?s=121917&a=fallback&k1=1&k2=1&e=i&t=p&c=0
IP 130.193.42.23:0
ASN #200350 Yandex.Cloud LLC
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /events/1x1.png?s=121917&a=fallback&k1=1&k2=1&e=i&t=p&c=0 HTTP/1.1
Host: s.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Sat, 04 May 2024 19:31:54 GMT
content-type: image/png
content-length: 95
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,X-Original-Referer
access-control-allow-credentials: true
cache-control: no-cache,no-store
expires: Tue, 01 Jan 1980 1:00:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
acint.net/rmatch?dp=14&euid=2003420A298D36662C00821602ED9C9E&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D
193.3.184.16302 Found 154 B URL GET HTTP/2 acint.net/rmatch?dp=14&euid=2003420A298D36662C00821602ED9C9E&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D
IP 193.3.184.16:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=14&euid=2003420A298D36662C00821602ED9C9E&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:31:54 GMT
content-type: text/html
content-length: 154
location: https://cs.alfasense.com/p?ssp=sp&uid=0900007F298D3666DC343C3D026B580B
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
stat.adlook.me/reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=i%2FOuR6zrRatW%2B7JbxvZet6hcCFR7VukydMmoy3d8W1Ux8oDbpLIMKUCPS7tQDgmZzgBDYo3TWg1fn5Kf9jpAsqsJmHbAfa2HPiJeExYuojlXjOfp3R3ByPJcQxSKcegopf15SpRelFJ%2F4eIFWY8XLRAqcK4qFoILsvb48OXLhR0pzlE7Cohe0%2FKaUQDVbs2pUZNlVlkOh2I%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111383042495&_adlk_ts=171485111383042495
176.122.21.130 95 B URL stat.adlook.me/reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=i%2FOuR6zrRatW%2B7JbxvZet6hcCFR7VukydMmoy3d8W1Ux8oDbpLIMKUCPS7tQDgmZzgBDYo3TWg1fn5Kf9jpAsqsJmHbAfa2HPiJeExYuojlXjOfp3R3ByPJcQxSKcegopf15SpRelFJ%2F4eIFWY8XLRAqcK4qFoILsvb48OXLhR0pzlE7Cohe0%2FKaUQDVbs2pUZNlVlkOh2I%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111383042495&_adlk_ts=171485111383042495
IP 176.122.21.130:0
ASN #48096 Enterprise Cloud Ltd.
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=i%2FOuR6zrRatW%2B7JbxvZet6hcCFR7VukydMmoy3d8W1Ux8oDbpLIMKUCPS7tQDgmZzgBDYo3TWg1fn5Kf9jpAsqsJmHbAfa2HPiJeExYuojlXjOfp3R3ByPJcQxSKcegopf15SpRelFJ%2F4eIFWY8XLRAqcK4qFoILsvb48OXLhR0pzlE7Cohe0%2FKaUQDVbs2pUZNlVlkOh2I%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111383042495&_adlk_ts=171485111383042495 HTTP/1.1
Host: stat.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Microsoft-IIS/10.0
date: Sat, 04 May 2024 19:31:53 GMT
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=al&id=01f861a4-04e7-4c33-b906-044c188b3f98
23.111.100.20 35 B URL cs.alfasense.com/p?ssp=al&id=01f861a4-04e7-4c33-b906-044c188b3f98
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=al&id=01f861a4-04e7-4c33-b906-044c188b3f98 HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
acint.net/rmatch?dp=14&euid=2003420A298D36662C00821602ED9C9E&r=https%3A%2F%2Fads.adlook.me%2Fcsync%3Fpid%3Dsape%26uid%3D$%7BUSER_ID%7D
193.3.184.16 154 B URL acint.net/rmatch?dp=14&euid=2003420A298D36662C00821602ED9C9E&r=https%3A%2F%2Fads.adlook.me%2Fcsync%3Fpid%3Dsape%26uid%3D$%7BUSER_ID%7D
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=14&euid=2003420A298D36662C00821602ED9C9E&r=https%3A%2F%2Fads.adlook.me%2Fcsync%3Fpid%3Dsape%26uid%3D$%7BUSER_ID%7D HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:31:54 GMT
content-type: text/html
content-length: 154
location: https://ads.adlook.me/csync?pid=sape&uid=0900007F298D3666DC343C3D026B580B
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=a2&uid=ec9facb1-5f4f-4e34-a6b5-f5b126b414bd
23.111.100.20200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=a2&uid=ec9facb1-5f4f-4e34-a6b5-f5b126b414bd
IP 23.111.100.20:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
FingerprintCB:9E:EC:1E:29:96:7E:71:55:EA:3F:33:4D:45:A2:7D:8D:4B:D9:DE
ValidityWed, 27 Dec 2023 23:14:58 GMT - Mon, 27 Jan 2025 23:14:57 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=a2&uid=ec9facb1-5f4f-4e34-a6b5-f5b126b414bd HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
cs.alfasense.com/p?ssp=up&id=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb
23.111.100.20 35 B URL cs.alfasense.com/p?ssp=up&id=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=up&id=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1; wist_ps=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
acint.net/cmatch/?dp=14&pi=1647232&skip_it=1294c1dc-51d5-4bc0-bf02-718515a023e1
193.3.184.16 154 B URL acint.net/cmatch/?dp=14&pi=1647232&skip_it=1294c1dc-51d5-4bc0-bf02-718515a023e1
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch/?dp=14&pi=1647232&skip_it=1294c1dc-51d5-4bc0-bf02-718515a023e1 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:31:54 GMT
content-type: text/html
content-length: 154
location: https://sape-sync.rutarget.ru/sync
set-cookie: cSyncDp104v2=1714851114; expires=Sat, 18-May-24 19:31:54 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.adlook.me/csync?pid=sape&uid=0900007F298D3666DC343C3D026B580B
176.122.21.130200 OK 43 B URL GET HTTP/2 ads.adlook.me/csync?pid=sape&uid=0900007F298D3666DC343C3D026B580B
IP 176.122.21.130:443
ASN #48096 Enterprise Cloud Ltd.
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
File type ASCII text, with no line terminators
Hash 373c54931c4b86eb8b8094bb0d743996
57a9f0563b9dc135f14f53ce3df89d4725256f3d
ed3e720be75c9a738820139fce1b12e8f89f68ee9758c40a7064f1ad57e6119a
GET /csync?pid=sape&uid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: adlm_userId=0871d198edad49d3ad1d67d3ed29da9b; adlk_cmatch=alab%3A01f861a4-04e7-4c33-b906-044c188b3f98%2Cotm%3ANjYzNjhkMjkwODdjNDc1Zg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=0871d198edad49d3ad1d67d3ed29da9b; expires=Sat, 03 May 2025 21:00:00 GMT; path=/; SameSite=None; secure; samesite=none
adlk_cmatch=alab%3A01f861a4-04e7-4c33-b906-044c188b3f98%2Cotm%3ANjYzNjhkMjkwODdjNDc1Zg%3D%3D%2Csape%3A0900007F298D3666DC343C3D026B580B; expires=Fri, 31 Dec 9999 20:59:59 GMT; path=/; SameSite=None; secure; samesite=none
date: Sat, 04 May 2024 19:31:54 GMT
content-length: 43
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=sp&uid=0900007F298D3666DC343C3D026B580B
23.111.100.20 35 B URL cs.alfasense.com/p?ssp=sp&uid=0900007F298D3666DC343C3D026B580B
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=sp&uid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1; wist_ps=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
ads.alfasense.net/adserver/www/delivery/asyncspc.php?zones=8&prefix=revive-0-&xcampaigns=%3A%3Abetween%3A%3Agetintent%3A%3Avox%3A%3Aotm%3A%3Aalfasense%3A%3Artbsape%3A%3Adefault-stub%3A%3Akimberlite%3A%3A&xsite=12487&xsitename=exclusive-works.ru&loc=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5
136.144.31.29 8.9 kB URL ads.alfasense.net/adserver/www/delivery/asyncspc.php?zones=8&prefix=revive-0-&xcampaigns=%3A%3Abetween%3A%3Agetintent%3A%3Avox%3A%3Aotm%3A%3Aalfasense%3A%3Artbsape%3A%3Adefault-stub%3A%3Akimberlite%3A%3A&xsite=12487&xsitename=exclusive-works.ru&loc=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5
IP 136.144.31.29:0
ASN #52000 MIRhosting B.V.
Hash 3e1a73ca001611064bb0cc290a72b31c
00b65b6a83eee72176df6a295134d1d3b436a12b
c86e0fcebca63450a4cffbd5af400473f14e62e139be0c27945820e450faf3a1
GET /adserver/www/delivery/asyncspc.php?zones=8&prefix=revive-0-&xcampaigns=%3A%3Abetween%3A%3Agetintent%3A%3Avox%3A%3Aotm%3A%3Aalfasense%3A%3Artbsape%3A%3Adefault-stub%3A%3Akimberlite%3A%3A&xsite=12487&xsitename=exclusive-works.ru&loc=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5 HTTP/1.1
Host: ads.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:54 GMT
content-type: application/json
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
p3p: CP="CUR ADM OUR NOR STA NID"
access-control-allow-origin: https://exclusive-works.ru
access-control-allow-credentials: true
content-security-policy: frame-ancestors 'self';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
set-cookie: OAID=01000111010001000101000001010010; expires=Sun, 04-May-2025 19:31:54 GMT; Max-Age=31536000; path=/; secure; SameSite=none
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
exchange.buzzoola.com/adn/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByH1UD5_XFVca8
188.40.114.28 0 B URL exchange.buzzoola.com/adn/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByH1UD5_XFVca8
IP 188.40.114.28:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /adn/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByH1UD5_XFVca8 HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-alt-referer,x-first-party-cookie
Referer: https://tube.buzzoola.com/
Origin: https://tube.buzzoola.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 04 May 2024 19:31:55 GMT
access-control-allow-origin: https://tube.buzzoola.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, X-Aidata-FP, If-None-Match, Content-Type
access-control-expose-headers: Set-Cookie, Etag
allow: GET, POST
X-Firefox-Spdy: h2
tube.buzzoola.com/build/buzzcommon.fpjs.js
151.236.127.161 72 kB URL tube.buzzoola.com/build/buzzcommon.fpjs.js
IP 151.236.127.161:0
ASN #204720 Global Cloud Network LLC
File type gzip compressed data, from Unix
Hash b82dd90a55c7096012bd871735daa137
6c939b706af8e5104994a392d49015b5ddac4b86
2e980b1b9acf6bd758a5e8b60c65b91f5b9ba3fd9f5dc7d2bd94a2b13c705ffd
GET /build/buzzcommon.fpjs.js HTTP/1.1
Host: tube.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:54 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 05 Apr 2024 09:35:03 GMT
expires: Sat, 04 May 2024 20:00:00 GMT
content-encoding: gzip
x-cdn-edge-cache: HIT
x-cdn-edge-id: 119
x-cdn-request-id: 7518a24db72e5fd949e1ce8badca08ec
X-Firefox-Spdy: h2
tube.buzzoola.com/js/lib/vpaid_js_proxy_hash_only.js
151.236.127.161 24 kB URL tube.buzzoola.com/js/lib/vpaid_js_proxy_hash_only.js
IP 151.236.127.161:0
ASN #204720 Global Cloud Network LLC
File type gzip compressed data, from Unix
Hash f7d2ad5e2bc044b137a1843ad54ab0b9
1d6713454e0cdc7020d863c1d4186742b1aa79d9
e838f289f745f13016f064a6b1fba3dbb4087e2db0b0eab474e2b5d7d917014f
GET /js/lib/vpaid_js_proxy_hash_only.js HTTP/1.1
Host: tube.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:54 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 05 Apr 2024 09:35:03 GMT
expires: Sat, 04 May 2024 20:00:00 GMT
content-encoding: gzip
x-cdn-edge-cache: HIT
x-cdn-edge-id: 119
x-cdn-request-id: 7b2888171d5f5ad999104412587ea422
X-Firefox-Spdy: h2
www.acint.net/aci.js
193.3.184.16200 OK 8.8 kB IP 193.3.184.16:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type JavaScript source, ASCII text, with very long lines (31112), with no line terminators
Hash e81f962d48edbcbedc89edfdb08d0b3c
324f1ffc62d43e229b192083b118b1ac4a5643c6
d9453129c16b0215069d80e4b526c0546b259fae8d615e1b3aa775a8d76bac57
GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:06 GMT
content-type: application/x-javascript
content-length: 8760
last-modified: Wed, 17 Jan 2024 22:00:10 GMT
etag: "65a84dea-2238"
content-encoding: gzip
expires: Sun, 05 May 2024 07:32:06 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2
www.acint.net/services/get_sspuid?callback=cid_66368d369_14235154
193.3.184.16 92 B URL www.acint.net/services/get_sspuid?callback=cid_66368d369_14235154
IP 193.3.184.16:0
File type ASCII text, with no line terminators
Hash 50142044b1c398cb0654b004d9d213c8
912b2a0318f9055921e41a76f3ccaa321dcb7974
f0a39935b11afce86d44042262cc41c61c2d86b994876a20c5fc3b90629e85e6
GET /services/get_sspuid?callback=cid_66368d369_14235154 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:06 GMT
content-type: application/javascript
content-length: 92
X-Firefox-Spdy: h2
pxl.acint.net/pxl/1?dp=16&id=119659.863532.165100553&sid=66368d36-8d91-68ps-bo38-eklypct1p040&aid=0900007F298D3666DC343C3D026B580B&ref=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&r=1714851127
193.3.184.16 43 B URL pxl.acint.net/pxl/1?dp=16&id=119659.863532.165100553&sid=66368d36-8d91-68ps-bo38-eklypct1p040&aid=0900007F298D3666DC343C3D026B580B&ref=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&r=1714851127
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pxl/1?dp=16&id=119659.863532.165100553&sid=66368d36-8d91-68ps-bo38-eklypct1p040&aid=0900007F298D3666DC343C3D026B580B&ref=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&r=1714851127 HTTP/1.1
Host: pxl.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.alfasense.net/adserver/www/delivery/lg.php?bannerid=104&campaignid=15&zoneid=8&loc=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&cb=e25d7584ca&zones=8&xcampaigns=::between::getintent::vox::otm::alfasense::rtbsape::default-stub::kimberlite::&xsite=12487&xsitename=exclusive-works.ru
136.144.31.29200 OK 99 B URL GET HTTP/2 ads.alfasense.net/adserver/www/delivery/lg.php?bannerid=104&campaignid=15&zoneid=8&loc=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&cb=e25d7584ca&zones=8&xcampaigns=::between::getintent::vox::otm::alfasense::rtbsape::default-stub::kimberlite::&xsite=12487&xsitename=exclusive-works.ru
IP 136.144.31.29:443
ASN #52000 MIRhosting B.V.
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type GIF image data, version 89a, 1 x 1
Hash f7c852532b22144188a3e3a294dff774
d075a83fb8e77ecfa1cb5379780d72403a808454
370aae8394aa5bd0eca94fa92ec18b716761ed36d47ff64c2bb8334826899427
GET /adserver/www/delivery/lg.php?bannerid=104&campaignid=15&zoneid=8&loc=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&cb=e25d7584ca&zones=8&xcampaigns=::between::getintent::vox::otm::alfasense::rtbsape::default-stub::kimberlite::&xsite=12487&xsitename=exclusive-works.ru HTTP/1.1
Host: ads.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:54 GMT
content-type: image/gif
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
content-security-policy: frame-ancestors 'self';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
set-cookie: OAID=01000111010001000101000001010010; expires=Sun, 04-May-2025 19:31:54 GMT; Max-Age=31536000; path=/; secure; SameSite=none
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
www.acint.net/hit/?v=0.7.0&uid=bbb31f4d-d61c-4ce6-83f2-205f6fccc215&dp=14&tz=%2B00%3A00&nc=987719&aid=0900007F298D3666DC343C3D026B580B&u=&r=&rs=1280x1024&t=&oE=1&oP=1&dT=2024-05-04T19%3A32%3A06.643&fu=0d6aaaba-0c80-4424-be37-291f3b3e7a46&if=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5
193.3.184.16 43 B URL www.acint.net/hit/?v=0.7.0&uid=bbb31f4d-d61c-4ce6-83f2-205f6fccc215&dp=14&tz=%2B00%3A00&nc=987719&aid=0900007F298D3666DC343C3D026B580B&u=&r=&rs=1280x1024&t=&oE=1&oP=1&dT=2024-05-04T19%3A32%3A06.643&fu=0d6aaaba-0c80-4424-be37-291f3b3e7a46&if=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hit/?v=0.7.0&uid=bbb31f4d-d61c-4ce6-83f2-205f6fccc215&dp=14&tz=%2B00%3A00&nc=987719&aid=0900007F298D3666DC343C3D026B580B&u=&r=&rs=1280x1024&t=&oE=1&oP=1&dT=2024-05-04T19%3A32%3A06.643&fu=0d6aaaba-0c80-4424-be37-291f3b3e7a46&if=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
193.3.184.216302 Moved Temporarily 142 B URL GET HTTP/1.1 ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP 193.3.184.216:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: sspuid=CkIDIGY2jSkWggAsnpztAnL/fNW9tc51Mhk11EwE2SkHxUX6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Sat, 04 May 2024 19:32:06 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=2003420A298D36662C00821602ED9C9E
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
www.acint.net/oci.js?t=1714851126647
193.3.184.16 15 kB URL www.acint.net/oci.js?t=1714851126647
IP 193.3.184.16:0
File type JavaScript source, ASCII text, with very long lines (32168)
Hash c3fa5133b6899a2abb39fb79ed94300f
dc1d5c75420b38cd7509a783ed09345d0ff78ac4
66b141eb9ae44c86efc510844a71cf208c02d02abe03af3a7d8cc26736d3e19c
GET /oci.js?t=1714851126647 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:06 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Jan 2024 22:00:10 GMT
etag: W/"65a84dea-7dac"
content-encoding: gzip
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/dsp/sape-banner?uid=0900007F298D3666DC343C3D026B580B&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
188.40.114.28302 Found 156 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/dsp/sape-banner?uid=0900007F298D3666DC343C3D026B580B&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
IP 188.40.114.28:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 08855177d88e8b88773c92aa783d5b16
b97cbf9ca6afbfa547c12213eb1e711c38bcedb4
c9a4de0efe524ec7d219007bca00f2d8236d5b77d967e1ba84093146db5880db
GET /cookiesync/dsp/sape-banner?uid=0900007F298D3666DC343C3D026B580B&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6; cookiesyncs=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 May 2024 19:32:06 GMT
content-type: text/html; charset=utf-8
content-length: 156
location: https://mc.acint.net/rmatch?dp=126&euid=5e79adf5-2011-4170-7ef3-975f002c87a6&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126
set-cookie: uuid=; Path=/; Domain=exchange.buzzoola.com; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Max-Age=0; Secure; SameSite=None
uuid=5e79adf5-2011-4170-7ef3-975f002c87a6; Path=/; Domain=buzzoola.com; Expires=Mon, 03 Jun 2024 19:32:06 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
tube.buzzoola.com/api_iframe.html
151.236.127.161 26 kB URL tube.buzzoola.com/api_iframe.html
IP 151.236.127.161:0
ASN #204720 Global Cloud Network LLC
File type HTML document, Unicode text, UTF-8 text, with very long lines (38114), with LF, NEL line terminators
Hash 3a226cb0b1fb0eb3d5bb4eef0cdb8b37
367c05ada9d9e66be7fbdc850bd9bba3b9493912
8fd6823b486a2b27d6e9dabb03ff89d31b98165ff2672d4d5a5cc7b53b6a0454
GET /api_iframe.html HTTP/1.1
Host: tube.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:54 GMT
content-type: text/html; charset=utf-8
last-modified: Fri, 05 Apr 2024 09:35:04 GMT
vary: Origin
access-control-allow-credentials: true
expires: Sat, 04 May 2024 20:00:00 GMT
content-encoding: gzip
x-cdn-edge-cache: HIT
x-cdn-edge-id: 119
x-cdn-request-id: f400b709839dc25f6d3d5edadb7ec3d3
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=0900007F298D3666DC343C3D026B580B
94.130.221.58302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=0900007F298D3666DC343C3D026B580B
IP 94.130.221.58:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint7A:83:29:BF:37:01:78:02:DF:C1:07:D8:A2:10:AB:0A:DD:11:66:B0
ValidityTue, 21 Nov 2023 08:57:57 GMT - Sun, 22 Dec 2024 08:57:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 May 2024 19:32:06 GMT
Content-Length: 0
Connection: keep-alive
Location: /sape/cm?user_id=0900007F298D3666DC343C3D026B580B&pupa=1
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Sun, 04-May-2025 19:32:06 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
cs.agency2.ru/p?ssp=sp&uid=0900007F298D3666DC343C3D026B580B
23.111.107.44 0 B URL cs.agency2.ru/p?ssp=sp&uid=0900007F298D3666DC343C3D026B580B
IP 23.111.107.44:0
ASN #39134 Edinaya Set Limited Liability Company
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint02:6A:FB:9D:0A:83:4C:93:CA:FA:19:3D:E7:2F:70:6A:A8:40:97:BE
ValiditySun, 14 Apr 2024 23:34:36 GMT - Sat, 13 Jul 2024 23:34:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: uuid=8a3cb389-1609-4302-bd12-c3510e752202
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 May 2024 19:32:06 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=8a3cb389-1609-4302-bd12-c3510e752202
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
sync.programmatica.com/match/01
158.160.128.78200 OK 43 B URL GET HTTP/2 sync.programmatica.com/match/01
IP 158.160.128.78:443
ASN #200350 Yandex.Cloud LLC
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectsync.programmatica.com
Fingerprint4A:E3:48:0E:7D:F3:3F:AA:D4:E0:E7:46:CC:AF:29:0A:F0:5A:C2:57
ValiditySun, 24 Mar 2024 10:21:50 GMT - Sat, 22 Jun 2024 10:21:49 GMT
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/01 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 19:32:06 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
s.uuidksinc.net/match/396/?remote_uid=0900007F298D3666DC343C3D026B580B
31.220.27.134 0 B URL s.uuidksinc.net/match/396/?remote_uid=0900007F298D3666DC343C3D026B580B
IP 31.220.27.134:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: jcsuuid=mtT7ZtqQDLtNZgqjuEss
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Sat, 04 May 2024 19:32:06 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=mtT7ZtqQDLtNZgqjuEss
set-cookie: jcsuuid=mtT7ZtqQDLtNZgqjuEss; expires=Sun, 04 May 2025 19:32:06 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
193.3.184.16 1.6 kB URL mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
IP 193.3.184.16:0
File type gzip compressed data, from Unix
Hash 5d8d0e7efeced1f808ba37cef7583760
a6ef4ba92bca9a700e2f2043e79386df8dbd8585
1464c6114b23be50379c118979f1c8623c4315edc63f7f79b886bbe42a33c49c
GET /mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:06 GMT
content-type: text/html
set-cookie: cSyncDp14v6=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v5=1714851126; expires=Sun, 05-May-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v5=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v3=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68v3=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp80v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v4=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v3=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110v3=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v4=1714851126; expires=Sun, 19-May-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126v3=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v3=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v3=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp251v1=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp217v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp235v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp239v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp243v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp260v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp244v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp248v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp261v1=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp289v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp293v1=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp296v2=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp312v1=1714851126; expires=Mon, 03-Jun-24 19:32:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
pixel.dsp.onetarget.ru/sape/pixel?id=0900007F298D3666DC343C3D026B580B
130.193.53.230 0 B URL pixel.dsp.onetarget.ru/sape/pixel?id=0900007F298D3666DC343C3D026B580B
IP 130.193.53.230:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/pixel?id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: pixel.dsp.onetarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sat, 04 May 2024 19:32:06 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=5813217&id=4f80fa57-0bb3-4d05-83e7-f8839f62e07f
set-cookie: USER_ID=4f80fa57-0bb3-4d05-83e7-f8839f62e07f;max-age=2147483647;Secure;HttpOnly;SameSite=None
SAPE_USER_ID=0900007F298D3666DC343C3D026B580B;max-age=30758400;Secure;HttpOnly;SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2
cdnrtbsape.ru/js/vast/vpaid-ssp.min.js
188.114.97.1200 OK 38 kB URL GET HTTP/2 cdnrtbsape.ru/js/vast/vpaid-ssp.min.js
IP 188.114.97.1:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGoogle Trust Services LLC
Subjectcdnrtbsape.ru
Fingerprint35:E0:98:F3:07:CB:9E:CD:7E:A8:3D:F7:4D:7C:D7:35:7C:95:00:65
ValidityMon, 01 Apr 2024 08:40:18 GMT - Sun, 30 Jun 2024 08:40:17 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65446), with no line terminators
Hash 40669df1843708467cd18dc6f640a7f3
686f4e9a0a1a4a6f004bcf83623c626e52719a9c
5e911ca59c3b8aff3868f81f5c5fc43ce7c7827b77db0bb16076e9192b82940b
GET /js/vast/vpaid-ssp.min.js HTTP/1.1
Host: cdnrtbsape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 19:32:06 GMT
content-type: text/javascript
content-security-policy: block-all-mixed-content
etag: W/"40669df1843708467cd18dc6f640a7f3"
last-modified: Wed, 10 Apr 2024 14:38:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 17CB0F28DE588B6B
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sun, 05 May 2024 18:39:36 GMT
cache-control: max-age=86400
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
x-cache-status: HIT
cf-cache-status: HIT
age: 3150
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7izD9jariYITMCc1IT9tbOMO%2Bt6%2BkER7i77ODkXYxs%2FSeXgO2aoInb7mFEHdLyqz8Ah6QWswi7PR7%2BKNoBlbw0ru%2BNAwL33nLAaDI9U1gY8kEHmfxEJYpf8TZsuNqiyP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eaea344829b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ssp.al-adtech.com/api/sync/sape
45.139.25.121302 Found 0 B URL GET HTTP/1.1 ssp.al-adtech.com/api/sync/sape
IP 45.139.25.121:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.al-adtech.com
Fingerprint09:19:46:AF:0C:12:1A:6D:06:41:56:6B:AF:2F:C2:69:A3:3F:1A:37
ValidityMon, 15 Apr 2024 04:45:07 GMT - Sun, 14 Jul 2024 04:45:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/sape HTTP/1.1
Host: ssp.al-adtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: afp_cookie=gAAAAABmNo0pbVdyJEWTjgNJw-Tzc3HnylKMNH0FArusPkGtHsId7ogRmxoz_ehvmREQ0wGFeyk3Ygr5-lYCM0r1_dIxU8obv38wnjLkqFNW9chDprd3hitWtVIqBjkOI7LBM3z2hbIpAku8Dd-zbF03y-pyqAqfP9I-cC6pfePVi6zbrTZ4F_MEjVAt9XcLsWVVjFMy8iKdaCqMo0N1zYo8UVdwEdSEFQ==$
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Sat, 04 May 2024 19:32:06 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://mc.acint.net/rmatch?dp=261&euid=01f861a4-04e7-4c33-b906-044c188b3f98&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
Set-Cookie: afp_cookie=gAAAAABmNo02_kTLv5Gl6_3Pr1-qZxxoJE6p5C-3m6CNi8g3FHePVlN1hpJZ2cKJDyVtpzgt517yeRXvp2_HPpVX3tDo8bU3T20Vim7n3NKOw07pdJWDEBB_ua6U1lrSNgNgDFpqdYxGdTZaooETWzpyhSuvcjmc-7IP0sFHcfqym2riAorYOnbmxkRF8Z-Sls0pjbDIghL3d6iwfAnjLqUSeAHpO184RVk1RLJU6_BSP5_5CjgET2Y=$; expires=Tue, 04 Jun 2024 19:32:06 GMT; path=/; secure; SameSite=None
pix.bumlam.com/sync/sape/check?sspuid=0900007F298D3666DC343C3D026B580B
31.172.81.160 0 B URL pix.bumlam.com/sync/sape/check?sspuid=0900007F298D3666DC343C3D026B580B
IP 31.172.81.160:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 May 2024 19:32:06 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://f5fcb132-0a4c-11ef-86e0-002590c0647c.n2.sync.bumlam.com/?src=sape
dm-eu.hybrid.ai/match?id=106&vid=0900007F298D3666DC343C3D026B580B
37.230.131.22 0 B URL dm-eu.hybrid.ai/match?id=106&vid=0900007F298D3666DC343C3D026B580B
IP 37.230.131.22:0
ASN #200197 Hybrid Adtech Sp.z.o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Cookie: vid=2739eccc436b8d464743
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sat, 04 May 2024 19:32:07 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://dmg.digitaltarget.ru/1/168/i/i?a=168&e=2739eccc436b8d464743&i=46525032
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 567
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mc.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
match.new-programmatic.com/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
217.65.2.150 0 B URL match.new-programmatic.com/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
IP 217.65.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 May 2024 19:32:07 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
cdn.alfasense.net/lib_test/config.js
136.144.31.36 1.3 kB URL cdn.alfasense.net/lib_test/config.js
IP 136.144.31.36:0
ASN #52000 MIRhosting B.V.
File type gzip compressed data, max speed, from Unix
Hash 8aae9e173154a98fe66cbf2c8a3c372e
7e51fbd1118c4d64ab6f836be96fcff35e9daefa
8284e958b41c87bdfa1a7daea27bfc4c7493be0ce9641fe2ad033210bee8635e
GET /lib_test/config.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:53 GMT
content-type: application/javascript
last-modified: Mon, 15 Apr 2024 11:58:49 GMT
etag: W/"661d1679-2d1"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=e7a39e6e3385558e2f6a6a18cac7185b; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
167.235.14.51302 Found 0 B URL GET HTTP/2 match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
IP 167.235.14.51:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectmatch.ohmy.bid
Fingerprint93:CC:18:6B:4E:10:D1:20:7F:8C:75:21:78:30:60:00:A2:B6:B0:39
ValiditySat, 23 Mar 2024 20:09:13 GMT - Fri, 21 Jun 2024 20:09:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-length: 0
bidder: bid-10 1.1542.871fc768
location: https://mc.acint.net/match?dp=217&euid=8d8e3375-3a5d-413e-941a-9a557ffd7b87
set-cookie: uid=8d8e3375-3a5d-413e-941a-9a557ffd7b87.66368d37.e4eaeaf3d3cf17d6; domain=.ohmy.bid; path=/; expires=Mon, 03-Jun-2024 19:32:07 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync
46.4.61.163302 Found 0 B URL GET HTTP/2 sync.upravel.com/sape/sync
IP 46.4.61.163:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerGlobalSign nv-sa
Subject*.upravel.com
Fingerprint4C:ED:03:57:58:43:18:2C:CC:41:F3:3B:19:72:75:BD:29:C1:04:08
ValiditySat, 29 Apr 2023 07:48:21 GMT - Thu, 30 May 2024 07:48:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Cookie: session_tptc=1714851114179; user_id=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/rmatch?dp=71&euid=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
s.uuidksinc.net/match/396/?remote_uid=0900007F298D3666DC343C3D026B580B
31.220.27.134 0 B URL s.uuidksinc.net/match/396/?remote_uid=0900007F298D3666DC343C3D026B580B
IP 31.220.27.134:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Cookie: jcsuuid=mtT7ZtqQDLtNZgqjuEss
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.23.2
date: Sat, 04 May 2024 19:32:07 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=mtT7ZtqQDLtNZgqjuEss
set-cookie: jcsuuid=mtT7ZtqQDLtNZgqjuEss; expires=Sun, 04 May 2025 19:32:07 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/check?sspuid=0900007F298D3666DC343C3D026B580B
31.172.81.160 0 B URL pix.bumlam.com/sync/sape/check?sspuid=0900007F298D3666DC343C3D026B580B
IP 31.172.81.160:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 May 2024 19:32:07 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://mc.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://f5fcb132-0a4c-11ef-86e0-002590c0647c.n6.sync.bumlam.com/?src=sape
sync.dmp.otm-r.com/match/sape?id=0900007F298D3666DC343C3D026B580B
194.55.244.184 94 B URL sync.dmp.otm-r.com/match/sape?id=0900007F298D3666DC343C3D026B580B
IP 194.55.244.184:0
File type HTML document, ASCII text
Hash a27ac0ac632ccbca2b9f6e6bc4c9dd73
6fed7aac451202096406f5563486a990054c7d14
125247c9b17f33812183870f0c54a9337a78641a55824c4df3c437fb0fd7522c
GET /match/sape?id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Cookie: mpid=NjYzNjhkMjkwODdjNDc1Zg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.23.2
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html; charset=utf-8
content-length: 94
access-control-allow-origin: *
location: https://www.acint.net/match?dp=68&euid=NjYzNjhkMjkwODdjNDc1Zg%3D%3D
set-cookie: mpid=NjYzNjhkMjkwODdjNDc1Zg==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
utraff.com/vpaid/3MzFq-V98d5K9xytG-0qjmla4J1Bn1LlPOMlI0MK0A8.xml
172.67.74.180 580 B URL utraff.com/vpaid/3MzFq-V98d5K9xytG-0qjmla4J1Bn1LlPOMlI0MK0A8.xml
IP 172.67.74.180:0
Hash 779a05adba506b1bb11c9f0fdac37550
9723a2d62b4c53ed4ae54aa042a931666714390b
01c8c0aaefbf533ea2ec050881b2bf87e882242fae239a3df08fc901336895ab
GET /vpaid/3MzFq-V98d5K9xytG-0qjmla4J1Bn1LlPOMlI0MK0A8.xml HTTP/1.1
Host: utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 19:31:52 GMT
content-type: text/xml
last-modified: Fri, 03 May 2024 19:55:29 GMT
etag: W/"66354131-3ff"
access-control-allow-origin: https://exclusive-works.ru
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T0Gbr8qPasnMZL8krSP%2Bm71pM9HATUQUvSedX%2FPKVSh%2B%2FH%2Bw5WuFf9DzhHgU2MugUa2zNBry%2B8tmt%2Fgmbo285ZndLwkeTcy6UhnPP6HPvLiJg3mJaB39uH67Sgg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eae9dfe8f656a5-OSL
content-encoding: br
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=0900007F298D3666DC343C3D026B580B
94.130.221.58302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=0900007F298D3666DC343C3D026B580B
IP 94.130.221.58:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint7A:83:29:BF:37:01:78:02:DF:C1:07:D8:A2:10:AB:0A:DD:11:66:B0
ValidityTue, 21 Nov 2023 08:57:57 GMT - Sun, 22 Dec 2024 08:57:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 May 2024 19:32:07 GMT
Content-Length: 0
Connection: keep-alive
Location: /sape/cm?user_id=0900007F298D3666DC343C3D026B580B&pupa=1
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Sun, 04-May-2025 19:32:07 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
167.235.14.51302 Found 0 B URL GET HTTP/2 match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
IP 167.235.14.51:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectmatch.ohmy.bid
Fingerprint93:CC:18:6B:4E:10:D1:20:7F:8C:75:21:78:30:60:00:A2:B6:B0:39
ValiditySat, 23 Mar 2024 20:09:13 GMT - Fri, 21 Jun 2024 20:09:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-length: 0
bidder: bid-20 1.1542.871fc768
location: https://mc.acint.net/match?dp=217&euid=8040d883-5cd0-4a58-9f50-145245ea7961
set-cookie: uid=8040d883-5cd0-4a58-9f50-145245ea7961.66368d37.f7f0ebb2338f130a; domain=.ohmy.bid; path=/; expires=Mon, 03-Jun-2024 19:32:07 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
match.new-programmatic.com/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
217.65.2.150 0 B URL match.new-programmatic.com/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
IP 217.65.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 May 2024 19:32:07 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
cs.agency2.ru/p?ssp=sp&uid=0900007F298D3666DC343C3D026B580B
23.111.107.44 0 B URL cs.agency2.ru/p?ssp=sp&uid=0900007F298D3666DC343C3D026B580B
IP 23.111.107.44:0
ASN #39134 Edinaya Set Limited Liability Company
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint02:6A:FB:9D:0A:83:4C:93:CA:FA:19:3D:E7:2F:70:6A:A8:40:97:BE
ValiditySun, 14 Apr 2024 23:34:36 GMT - Sat, 13 Jul 2024 23:34:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Cookie: uuid=8a3cb389-1609-4302-bd12-c3510e752202
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 May 2024 19:32:07 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=8a3cb389-1609-4302-bd12-c3510e752202
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
kimberlite.io/rtb/sync/sape2?u=0900007F298D3666DC343C3D026B580B
217.199.220.43 0 B URL kimberlite.io/rtb/sync/sape2?u=0900007F298D3666DC343C3D026B580B
IP 217.199.220.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/sape2?u=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: as=-WrUeGY2jSk4WsfhZjaNKQ; f=https%3A%2F%2Fads.adlook.me%2Fcsync%3Fpid%3Dsolta%26uid%3DZjaNKcbdRUw; n=2; u=ZjaNKcbdRUw~XNFsCI45H3SkcEo9azGO7K3cJY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 04 May 2024 19:32:07 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: as=-WrUeGY2jSmE8n8IZjaNNjhax-FmNo0p; max-age=604800; samesite=none; httponly; secure
n=3; max-age=30; samesite=none; httponly; secure
location: https://sync.dsp.solta.io/match/kimberlite?id=ZjaNKcbdRUw
referrer-policy: no-referrer
server-timing: app;srv=0;dur=0.0003
sync.programmatica.com/match/01
158.160.128.78200 OK 43 B URL GET HTTP/2 sync.programmatica.com/match/01
IP 158.160.128.78:443
ASN #200350 Yandex.Cloud LLC
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectsync.programmatica.com
Fingerprint4A:E3:48:0E:7D:F3:3F:AA:D4:E0:E7:46:CC:AF:29:0A:F0:5A:C2:57
ValiditySun, 24 Mar 2024 10:21:50 GMT - Sat, 22 Jun 2024 10:21:49 GMT
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/01 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
pixel.dsp.onetarget.ru/sape/pixel?id=0900007F298D3666DC343C3D026B580B
130.193.53.230 0 B URL pixel.dsp.onetarget.ru/sape/pixel?id=0900007F298D3666DC343C3D026B580B
IP 130.193.53.230:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/pixel?id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: pixel.dsp.onetarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Cookie: USER_ID=4f80fa57-0bb3-4d05-83e7-f8839f62e07f; SAPE_USER_ID=0900007F298D3666DC343C3D026B580B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sat, 04 May 2024 19:32:07 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=5813217&id=4f80fa57-0bb3-4d05-83e7-f8839f62e07f
set-cookie: USER_ID=4f80fa57-0bb3-4d05-83e7-f8839f62e07f;max-age=2147483647;Secure;HttpOnly;SameSite=None
SAPE_USER_ID=0900007F298D3666DC343C3D026B580B;max-age=30758400;Secure;HttpOnly;SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2
ssp.al-adtech.com/api/sync/sape
45.139.25.121302 Found 0 B URL GET HTTP/1.1 ssp.al-adtech.com/api/sync/sape
IP 45.139.25.121:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.al-adtech.com
Fingerprint09:19:46:AF:0C:12:1A:6D:06:41:56:6B:AF:2F:C2:69:A3:3F:1A:37
ValidityMon, 15 Apr 2024 04:45:07 GMT - Sun, 14 Jul 2024 04:45:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/sape HTTP/1.1
Host: ssp.al-adtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Cookie: afp_cookie=gAAAAABmNo02_kTLv5Gl6_3Pr1-qZxxoJE6p5C-3m6CNi8g3FHePVlN1hpJZ2cKJDyVtpzgt517yeRXvp2_HPpVX3tDo8bU3T20Vim7n3NKOw07pdJWDEBB_ua6U1lrSNgNgDFpqdYxGdTZaooETWzpyhSuvcjmc-7IP0sFHcfqym2riAorYOnbmxkRF8Z-Sls0pjbDIghL3d6iwfAnjLqUSeAHpO184RVk1RLJU6_BSP5_5CjgET2Y=$
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Sat, 04 May 2024 19:32:07 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://mc.acint.net/rmatch?dp=261&euid=01f861a4-04e7-4c33-b906-044c188b3f98&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
Set-Cookie: afp_cookie=gAAAAABmNo03XjokPSAj5fLU3--ZkJuPGtCFVJXKvIp8GiCsct4P37pP0hqFLQ-zhvgBthJ6MFX2_ApVb51Myls_BSoh77gOtHZ9CqA1k3379e0AljLqLS6_E1MCrPPdG0xLqMspND5jpHAKpzLfPOEAp0I0cv-IiODYJTan5VptI_t7br4bH7zEvkz2GzziBNXUU-mn4CbSTY-KkCUHPu68N7OaMTDoCBce-Luh3iVbjhsGIOl10gJq5GPTkWubzzisPIH5n_Ve$; expires=Tue, 04 Jun 2024 19:32:07 GMT; path=/; secure; SameSite=None
sync.bumlam.com/?src=sap1&uid=0900007F298D3666DC343C3D026B580B
31.172.81.158200 OK 0 B URL GET HTTP/1.1 sync.bumlam.com/?src=sap1&uid=0900007F298D3666DC343C3D026B580B
IP 31.172.81.158:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 19:32:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Fri, 29 Apr 2044 19:32:07 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
kimberlite.io/rtb/sync/sape2?u=0900007F298D3666DC343C3D026B580B
217.199.220.43 0 B URL kimberlite.io/rtb/sync/sape2?u=0900007F298D3666DC343C3D026B580B
IP 217.199.220.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/sape2?u=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Cookie: as=-WrUeGY2jSk4WsfhZjaNKQ; f=https%3A%2F%2Fads.adlook.me%2Fcsync%3Fpid%3Dsolta%26uid%3DZjaNKcbdRUw; n=2; u=ZjaNKcbdRUw~XNFsCI45H3SkcEo9azGO7K3cJY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 04 May 2024 19:32:07 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: as=OFrH4WY2jSmE8n8IZjaNNvlq1HhmNo0p; max-age=604800; samesite=none; httponly; secure
n=3; max-age=30; samesite=none; httponly; secure
location: https://sync.dsp.solta.io/match/kimberlite?id=ZjaNKcbdRUw
referrer-policy: no-referrer
server-timing: app;srv=9;dur=0.0002
stat.adlook.me/reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=S3Z9u5L5PL701HbynCyTX4rpjU5qKANvinXSI7j8BCnyoxi6pekURWuMLSNsANsvpe8H%2BtfS6c0JuhfqWLrqvFWw0LClDjgm1OtfM%2BW9M2A0kHutXfzw6O8p49vA8JfGpYUZYSK2kcsd1Whj73gGDt8n4SsSBDRBGSRSMQWlNtS3VGp8FDHKBRUKETSLEbn1dD%2BYm5waBuQ%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485112635573859&_adlk_ts=171485112635573859
176.122.21.130200 OK 43 B URL GET HTTP/2 stat.adlook.me/reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=S3Z9u5L5PL701HbynCyTX4rpjU5qKANvinXSI7j8BCnyoxi6pekURWuMLSNsANsvpe8H%2BtfS6c0JuhfqWLrqvFWw0LClDjgm1OtfM%2BW9M2A0kHutXfzw6O8p49vA8JfGpYUZYSK2kcsd1Whj73gGDt8n4SsSBDRBGSRSMQWlNtS3VGp8FDHKBRUKETSLEbn1dD%2BYm5waBuQ%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485112635573859&_adlk_ts=171485112635573859
IP 176.122.21.130:443
ASN #48096 Enterprise Cloud Ltd.
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=S3Z9u5L5PL701HbynCyTX4rpjU5qKANvinXSI7j8BCnyoxi6pekURWuMLSNsANsvpe8H%2BtfS6c0JuhfqWLrqvFWw0LClDjgm1OtfM%2BW9M2A0kHutXfzw6O8p49vA8JfGpYUZYSK2kcsd1Whj73gGDt8n4SsSBDRBGSRSMQWlNtS3VGp8FDHKBRUKETSLEbn1dD%2BYm5waBuQ%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485112635573859&_adlk_ts=171485112635573859 HTTP/1.1
Host: stat.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Microsoft-IIS/10.0
date: Sat, 04 May 2024 19:32:06 GMT
X-Firefox-Spdy: h2
www.acint.net/oci/?v=0.7.0&uid=bbb31f4d-d61c-4ce6-83f2-205f6fccc215&dp=14&tz=%2B00%3A00&nc=808440&aid=0900007F298D3666DC343C3D026B580B&oid=9ff350b615091c0f6cbf094af0928028
193.3.184.16 43 B URL www.acint.net/oci/?v=0.7.0&uid=bbb31f4d-d61c-4ce6-83f2-205f6fccc215&dp=14&tz=%2B00%3A00&nc=808440&aid=0900007F298D3666DC343C3D026B580B&oid=9ff350b615091c0f6cbf094af0928028
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /oci/?v=0.7.0&uid=bbb31f4d-d61c-4ce6-83f2-205f6fccc215&dp=14&tz=%2B00%3A00&nc=808440&aid=0900007F298D3666DC343C3D026B580B&oid=9ff350b615091c0f6cbf094af0928028 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=2003420A298D36662C00821602ED9C9E
193.3.184.16 43 B URL acint.net/match?dp=14&euid=2003420A298D36662C00821602ED9C9E
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=2003420A298D36662C00821602ED9C9E HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.opendsp.ru/match/sape_ex?id=0900007F298D3666DC343C3D026B580B
82.148.20.186200 OK 43 B URL GET HTTP/2 sync.opendsp.ru/match/sape_ex?id=0900007F298D3666DC343C3D026B580B
IP 82.148.20.186:443
ASN #50340 OOO Network of data-centers Selectel
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectsync.opendsp.ru
Fingerprint61:B4:DA:9F:EB:AB:9D:73:4C:76:FB:7C:3B:0B:80:A4:0F:14:18:28
ValidityThu, 04 Apr 2024 10:36:13 GMT - Wed, 03 Jul 2024 10:36:12 GMT
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape_ex?id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=71&euid=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
193.3.184.16302 Found 154 B URL GET HTTP/2 www.acint.net/rmatch?dp=71&euid=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=71&euid=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://acint.net/cmatch?dp=71
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
cdn.alfasense.net/lib/prebid.js
136.144.31.36 85 kB URL cdn.alfasense.net/lib/prebid.js
IP 136.144.31.36:0
ASN #52000 MIRhosting B.V.
File type gzip compressed data, max speed, from Unix
Hash 070e075b1d8a62514d17d631c9a5e97f
b4a392265dde43b0c170f117501dc7e684347387
d90615643c3efe88d2e244218da1481990d2191f4cb65d298830b7c78bbee3f1
GET /lib/prebid.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:53 GMT
content-type: application/javascript
last-modified: Thu, 14 Mar 2024 10:57:02 GMT
etag: W/"65f2d7fe-37314"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=dd92c318b574e2af8018c0207c5098f9; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
sync.opendsp.ru/match/UMG?id=c2081174-86c8-4fd3-9795-0434d8f6fae2
82.148.20.186200 OK 43 B URL GET HTTP/2 sync.opendsp.ru/match/UMG?id=c2081174-86c8-4fd3-9795-0434d8f6fae2
IP 82.148.20.186:443
ASN #50340 OOO Network of data-centers Selectel
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectsync.opendsp.ru
Fingerprint61:B4:DA:9F:EB:AB:9D:73:4C:76:FB:7C:3B:0B:80:A4:0F:14:18:28
ValidityThu, 04 Apr 2024 10:36:13 GMT - Wed, 03 Jul 2024 10:36:12 GMT
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/UMG?id=c2081174-86c8-4fd3-9795-0434d8f6fae2 HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
sync.opendsp.ru/match/sape_ex?id=0900007F298D3666DC343C3D026B580B
82.148.20.186200 OK 43 B URL GET HTTP/2 sync.opendsp.ru/match/sape_ex?id=0900007F298D3666DC343C3D026B580B
IP 82.148.20.186:443
ASN #50340 OOO Network of data-centers Selectel
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectsync.opendsp.ru
Fingerprint61:B4:DA:9F:EB:AB:9D:73:4C:76:FB:7C:3B:0B:80:A4:0F:14:18:28
ValidityThu, 04 Apr 2024 10:36:13 GMT - Wed, 03 Jul 2024 10:36:12 GMT
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape_ex?id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/sape?id=0900007F298D3666DC343C3D026B580B
217.199.220.72 43 B URL sync.dsp.solta.io/match/sape?id=0900007F298D3666DC343C3D026B580B
IP 217.199.220.72:0
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape?id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/sape?id=0900007F298D3666DC343C3D026B580B
217.199.220.72 43 B URL sync.dsp.solta.io/match/sape?id=0900007F298D3666DC343C3D026B580B
IP 217.199.220.72:0
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape?id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D
83.222.96.170 126 B URL ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D
IP 83.222.96.170:0
File type HTML document, ASCII text
Hash 9c770f3de4b804ae2e1cfee9f4f45007
8e61423f77b4aebaaf3a0487186fd2cca335cb0e
27d3358c0d34d86fc3da55a67e493f922e022ed64fb104e6449d3bed9316a24c
GET /sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html; charset=utf-8
content-length: 126
location: https://mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=CNEKDLOT
set-cookie: uid=CNEKDLOT; Expires=Tue, 02 May 2034 19:32:07 GMT
X-Firefox-Spdy: h2
www.acint.net/match?dp=129&euid=cjml0c1ozy
193.3.184.16200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=129&euid=cjml0c1ozy
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=cjml0c1ozy HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/rmatch?dp=110&euid=0871d198edad49d3ad1d67d3ed29da9b&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/rmatch?dp=110&euid=0871d198edad49d3ad1d67d3ed29da9b&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=110&euid=0871d198edad49d3ad1d67d3ed29da9b&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=110
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=186&euid=8a3cb389-1609-4302-bd12-c3510e752202
193.3.184.16 43 B URL www.acint.net/match?dp=186&euid=8a3cb389-1609-4302-bd12-c3510e752202
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=8a3cb389-1609-4302-bd12-c3510e752202 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=127&euid=mtT7ZtqQDLtNZgqjuEss
193.3.184.16200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=127&euid=mtT7ZtqQDLtNZgqjuEss
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=mtT7ZtqQDLtNZgqjuEss HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=0900007F298D3666DC343C3D026B580B&pupa=1
94.130.221.58302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=0900007F298D3666DC343C3D026B580B&pupa=1
IP 94.130.221.58:443
ASN #24940 Hetzner Online GmbH
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint7A:83:29:BF:37:01:78:02:DF:C1:07:D8:A2:10:AB:0A:DD:11:66:B0
ValidityTue, 21 Nov 2023 08:57:57 GMT - Sun, 22 Dec 2024 08:57:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0900007F298D3666DC343C3D026B580B&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 May 2024 19:32:07 GMT
Content-Length: 0
Connection: keep-alive
Location: https://exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Sun, 04-May-2025 19:32:07 GMT;
csorigin2=3; domain=.bidderstack.com; path=/; expires=Sat, 04-May-2024 19:37:07 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
www.acint.net/match?dp=68&euid=NjYzNjhkMjkwODdjNDc1Zg%3D%3D
193.3.184.16 43 B URL www.acint.net/match?dp=68&euid=NjYzNjhkMjkwODdjNDc1Zg%3D%3D
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=68&euid=NjYzNjhkMjkwODdjNDc1Zg%3D%3D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.gonet-ads.com/match/sape.js?id=0900007F298D3666DC343C3D026B580B
188.42.105.236200 OK 43 B URL GET HTTP/2 sync.gonet-ads.com/match/sape.js?id=0900007F298D3666DC343C3D026B580B
IP 188.42.105.236:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerSectigo Limited
Subject*.gonet-ads.com
Fingerprint2B:BE:BF:75:0A:67:AA:2D:FA:0A:7F:92:F4:37:AE:9B:DD:47:68:2D
ValidityWed, 07 Jun 2023 00:00:00 GMT - Tue, 11 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape.js?id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
mc.acint.net/rmatch?dp=261&euid=01f861a4-04e7-4c33-b906-044c188b3f98&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/rmatch?dp=261&euid=01f861a4-04e7-4c33-b906-044c188b3f98&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=261&euid=01f861a4-04e7-4c33-b906-044c188b3f98&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=261
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/rmatch?dp=126&euid=5e79adf5-2011-4170-7ef3-975f002c87a6&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/rmatch?dp=126&euid=5e79adf5-2011-4170-7ef3-975f002c87a6&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=126&euid=5e79adf5-2011-4170-7ef3-975f002c87a6&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=126
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
s.uuidksinc.net/match/1960/?remote_uid=c2081174-86c8-4fd3-9795-0434d8f6fae2
31.220.27.134200 OK 74 B URL GET HTTP/2 s.uuidksinc.net/match/1960/?remote_uid=c2081174-86c8-4fd3-9795-0434d8f6fae2
IP 31.220.27.134:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectuuidksinc.net
Fingerprint60:4F:7E:0B:93:FF:04:3B:02:AF:A2:9C:5C:5D:D8:F5:78:B9:39:3A
ValidityFri, 08 Mar 2024 23:20:32 GMT - Thu, 06 Jun 2024 23:20:31 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET /match/1960/?remote_uid=c2081174-86c8-4fd3-9795-0434d8f6fae2 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: jcsuuid=mtT7ZtqQDLtNZgqjuEss
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.2
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/png
content-length: 74
set-cookie: jcsuuid=mtT7ZtqQDLtNZgqjuEss; expires=Sun, 04 May 2025 19:32:07 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=2003420A298D36662C00821602ED9C9E
193.3.184.16 43 B URL acint.net/match?dp=14&euid=2003420A298D36662C00821602ED9C9E
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=2003420A298D36662C00821602ED9C9E HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/match?dp=217&euid=8d8e3375-3a5d-413e-941a-9a557ffd7b87
193.3.184.16200 OK 43 B URL GET HTTP/2 mc.acint.net/match?dp=217&euid=8d8e3375-3a5d-413e-941a-9a557ffd7b87
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=217&euid=8d8e3375-3a5d-413e-941a-9a557ffd7b87 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=71&euid=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
193.3.184.16302 Found 154 B URL GET HTTP/2 www.acint.net/rmatch?dp=71&euid=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=71&euid=37cbbcea-c95e-4576-b6c5-c7494f9cd5bb&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://acint.net/cmatch?dp=71
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.adspend.space/sape?uid=0900007F298D3666DC343C3D026B580B
172.67.168.127 192 B URL sync.adspend.space/sape?uid=0900007F298D3666DC343C3D026B580B
IP 172.67.168.127:0
Certificate IssuerGoogle Trust Services LLC
Subjectadspend.space
Fingerprint86:42:73:83:B4:96:F1:E2:8E:8F:5F:67:2B:A5:20:3C:AE:F0:FE:57
ValiditySat, 16 Mar 2024 00:50:56 GMT - Fri, 14 Jun 2024 00:50:55 GMT
Hash c83b594fe69fc9ed2070be54c20afa07
6ba48fd4f967aea7206488ff0c50cc93e66f7eb8
4487146a7eaed2993d086a6b7dca4eb7854257cd736c82bfa4b0139f0b4a637e
GET /sape?uid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 04 May 2024 19:32:06 GMT
content-type: text/html; charset=utf-8
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D7c5d3774-bcd3-4b99-a163-df49833602a6
set-cookie: as-user=7c5d3774-bcd3-4b99-a163-df49833602a6; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B0nmJcdnVtzo%2FheYQPxsPR1ky%2FtXY0XPXRPbHfG7ufTbYvPVgHMKJhqyc4Lb6PMb9SOOv%2B4ojaiGac4PiAONcYb9ZMeUWjAgt%2Fk%2BJ1O9h8dILXxFGcRq1Qs%2BpWD37cBc6fWqM4U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eaea36ad96569a-OSL
alt-svc: h3=":443"; ma=86400
www.acint.net/match?dp=68&euid=NjYzNjhkMjkwODdjNDc1Zg%3D%3D
193.3.184.16 43 B URL www.acint.net/match?dp=68&euid=NjYzNjhkMjkwODdjNDc1Zg%3D%3D
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=68&euid=NjYzNjhkMjkwODdjNDc1Zg%3D%3D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=129&euid=cjml0c1ozy
193.3.184.16200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=129&euid=cjml0c1ozy
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=cjml0c1ozy HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.adlook.me/csync?pid=sape&uid=0900007F298D3666DC343C3D026B580B&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D110%26euid%3D%7BuserId%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D110
176.122.21.130 154 B URL ads.adlook.me/csync?pid=sape&uid=0900007F298D3666DC343C3D026B580B&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D110%26euid%3D%7BuserId%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D110
IP 176.122.21.130:0
ASN #48096 Enterprise Cloud Ltd.
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /csync?pid=sape&uid=0900007F298D3666DC343C3D026B580B&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D110%26euid%3D%7BuserId%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D110 HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: adlm_userId=0871d198edad49d3ad1d67d3ed29da9b; adlk_cmatch=alab%3A01f861a4-04e7-4c33-b906-044c188b3f98%2Cotm%3ANjYzNjhkMjkwODdjNDc1Zg%3D%3D%2Csape%3A0900007F298D3666DC343C3D026B580B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mc.acint.net/rmatch?dp=110&euid=0871d198edad49d3ad1d67d3ed29da9b&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=0871d198edad49d3ad1d67d3ed29da9b; expires=Sat, 03 May 2025 21:00:00 GMT; path=/; SameSite=None; secure; samesite=none
adlk_cmatch=alab%3A01f861a4-04e7-4c33-b906-044c188b3f98%2Cotm%3ANjYzNjhkMjkwODdjNDc1Zg%3D%3D%2Csape%3A0900007F298D3666DC343C3D026B580B; expires=Fri, 31 Dec 9999 20:59:59 GMT; path=/; SameSite=None; secure; samesite=none
date: Sat, 04 May 2024 19:32:06 GMT
X-Firefox-Spdy: h2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
65.109.23.99 154 B URL ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP 65.109.23.99:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: bvuid=cjml0c1ozy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.22.0
date: Sat, 04 May 2024 19:32:06 GMT
x-request-id: 1d387433-6a39-4296-a509-38b1f2b22f98
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
set-cookie: bvuid=cjml0c1ozy; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=cjml0c1ozy; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
location: https://www.acint.net/match?dp=129&euid=cjml0c1ozy
X-Firefox-Spdy: h2
mc.acint.net/match?dp=217&euid=8040d883-5cd0-4a58-9f50-145245ea7961
193.3.184.16 43 B URL mc.acint.net/match?dp=217&euid=8040d883-5cd0-4a58-9f50-145245ea7961
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=217&euid=8040d883-5cd0-4a58-9f50-145245ea7961 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=186&euid=8a3cb389-1609-4302-bd12-c3510e752202
193.3.184.16 43 B URL www.acint.net/match?dp=186&euid=8a3cb389-1609-4302-bd12-c3510e752202
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=8a3cb389-1609-4302-bd12-c3510e752202 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=0900007F298D3666DC343C3D026B580B&pupa=1
94.130.221.58302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=0900007F298D3666DC343C3D026B580B&pupa=1
IP 94.130.221.58:443
ASN #24940 Hetzner Online GmbH
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint7A:83:29:BF:37:01:78:02:DF:C1:07:D8:A2:10:AB:0A:DD:11:66:B0
ValidityTue, 21 Nov 2023 08:57:57 GMT - Sun, 22 Dec 2024 08:57:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0900007F298D3666DC343C3D026B580B&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 May 2024 19:32:07 GMT
Content-Length: 0
Connection: keep-alive
Location: https://exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Sun, 04-May-2025 19:32:07 GMT;
csorigin2=3; domain=.bidderstack.com; path=/; expires=Sat, 04-May-2024 19:37:07 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D
47.253.61.56302 Found 0 B URL GET HTTP/2 gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D
IP 47.253.61.56:443
ASN #45102 Alibaba US Technology Co., Ltd.
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerDigiCert, Inc.
Subject*.ymmobi.com
FingerprintAA:CB:8B:48:C7:AB:0D:56:82:39:63:A5:E1:5E:34:8B:62:7B:6F:52
ValiditySun, 04 Feb 2024 00:00:00 GMT - Mon, 03 Feb 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D HTTP/1.1
Host: gw-iad-bid.ymmobi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 04 May 2024 19:32:07 GMT
content-length: 0
location: https://mc.acint.net/match?dp=293&euid=ym_user_9be06a4d-565f-401d-92cc-dc76af5a8ff4
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
access-control-allow-credentials: true
set-cookie: ym_user_cookie=ym_user_9be06a4d-565f-401d-92cc-dc76af5a8ff4; max-age=31104000; domain=ymmobi.com; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
mc.acint.net/rmatch?dp=261&euid=01f861a4-04e7-4c33-b906-044c188b3f98&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/rmatch?dp=261&euid=01f861a4-04e7-4c33-b906-044c188b3f98&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=261&euid=01f861a4-04e7-4c33-b906-044c188b3f98&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=261
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/kimberlite?id=ZjaNKcbdRUw
217.199.220.72 43 B URL sync.dsp.solta.io/match/kimberlite?id=ZjaNKcbdRUw
IP 217.199.220.72:0
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/kimberlite?id=ZjaNKcbdRUw HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
adx.com.ru/sape-sync?uid=0900007F298D3666DC343C3D026B580B
83.222.105.118 169 B URL adx.com.ru/sape-sync?uid=0900007F298D3666DC343C3D026B580B
IP 83.222.105.118:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 5974b7b0a4b06e9c2da4b0c7448ed7c0
f8260d70d9cffdb0522e4e5d326c07117fd8947c
c9878bc7dccad3a43bbe44367be20caf9ba94fb40e84c038ea49f6dafb19daa1
GET /sape-sync?uid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 429 Too Many Requests
server: nginx/1.26.0
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 169
X-Firefox-Spdy: h2
gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D
47.253.61.56302 Found 0 B URL GET HTTP/2 gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D
IP 47.253.61.56:443
ASN #45102 Alibaba US Technology Co., Ltd.
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerDigiCert, Inc.
Subject*.ymmobi.com
FingerprintAA:CB:8B:48:C7:AB:0D:56:82:39:63:A5:E1:5E:34:8B:62:7B:6F:52
ValiditySun, 04 Feb 2024 00:00:00 GMT - Mon, 03 Feb 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D HTTP/1.1
Host: gw-iad-bid.ymmobi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 04 May 2024 19:32:07 GMT
content-length: 0
location: https://mc.acint.net/match?dp=293&euid=ym_user_57cf7d0e-7b1b-418e-9e7e-43699d514fac
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
access-control-allow-credentials: true
set-cookie: ym_user_cookie=ym_user_57cf7d0e-7b1b-418e-9e7e-43699d514fac; max-age=31104000; domain=ymmobi.com; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/kimberlite?id=ZjaNKcbdRUw
217.199.220.72 43 B URL sync.dsp.solta.io/match/kimberlite?id=ZjaNKcbdRUw
IP 217.199.220.72:0
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/kimberlite?id=ZjaNKcbdRUw HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
acint.net/cmatch?dp=71
193.3.184.16302 Found 154 B IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=71 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://ads.betweendigital.com/match?bidder_id=73&external_user_id=0900007F298D3666DC343C3D026B580B
set-cookie: cSyncDp7v3=1714851127; expires=Mon, 03-Jun-24 19:32:07 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=UDDFHIEW
193.3.184.16 154 B URL mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=UDDFHIEW
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=UDDFHIEW HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=95
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
adx.com.ru/sape-sync?uid=0900007F298D3666DC343C3D026B580B
83.222.105.118 85 B URL adx.com.ru/sape-sync?uid=0900007F298D3666DC343C3D026B580B
IP 83.222.105.118:0
File type HTML document, ASCII text
Hash e6ffc0ed36bee4f3fb3895afe256d32f
c32f5045a68da7804f65f7d662410b559fd6b45c
8f492cca4a724cbe9bf6a80abbc6d4a08f995f50c2ded34b176862642b263061
GET /sape-sync?uid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.26.0
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html; charset=utf-8
content-length: 85
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
location: /sync?sspKey=25&sspUserID=0900007F298D3666DC343C3D026B580B
p3p: CP="adx.com.ru does not have a P3P policy"
set-cookie: user=66368d37991c7a0001ddc692; Path=/; Domain=adx.com.ru; Max-Age=31536000; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
mc.acint.net/cmatch?dp=110
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/cmatch?dp=110
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=110 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://ads.betweendigital.com/match?bidder_id=73&external_user_id=0900007F298D3666DC343C3D026B580B
set-cookie: cSyncDp7v3=1714851127; expires=Mon, 03-Jun-24 19:32:07 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
188.40.114.28200 OK 43 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
IP 188.40.114.28:443
ASN #24940 Hetzner Online GmbH
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6; cookiesyncs=000000000000000000000000cf0254a1ff024916b6cffeeea7f62ba9028583d6319a76e427a11356af61e369428f2acbefb867b4c83b8ed423f913fb234937735509570745901ecf7fb3ab0bb55929ed495157dc8bd54c6a81a4bd41d41705f4f89eb52b0347ddee00f0f0b2b9b28b26b2a8954a64a65dc97acb684e6953b81af374df92102c1d168d7535c5f37ff9224b95f6393181842a53ed49b723b144749f75a8fbf9e31052baf20d0e4af37db63f6ebf4408a97a1aa949b2d40efd16d04d6845ba7c47f498fe4c3eac1a53f0e31195f13b9758db136761ef0b6ef9cf60e6f42e8d4024344a1f4b90e058fdce805393ae1b90fb190274617bfd595c243ff4f31caf313ce98c23e6ebfe1ae0bd3972c7397dbc45bdc13e149921bd0e8c9f9244acaad16d863fc3b1429521e0bd3663b1368c4462b3ee43b31904f1c38a4143d9a09bb266142d4a24c37934e8e07b077d19c418861842d4dc1c0c7aba480494a3648ed483e765b6e4d9cd20fb179dac76153f4765b355824af501789b8725f914711da51263f2733656a2793a2617a01a25e6ab9198ef3c9688b05f63ff118efca143e655924f2ca080c838f728e4a9551a6d67ef7c6efcb20e365a5c3b7212868d9cab55e9f7014d4bc8ad9fdd1e1c2c8904af35e66da97561efd0b748ecc6ff2e4473d8a4a74995bca7fc2650c0855607959db18b81171ef42ca50caa57a41bcca178a9a453ef35b9f3c5e4225e98d5a8424473c410e4657611bda9de478010d2a9d4745de457dc73b347f2bfc1e55aee0d8191d5449ec79afdc7e831ae48fef8fb3748a27ea200f74df85eb5c06479acb19acfbd52c56e3e2e98568fe1a4c178432194e2412b08f2629d7183b0deca54d9d1d965ba9f26566e3e8954dffa07affc8c58be60a4df74d314a61ead6dccc8a2ae6de2dcb167cba5f3c834a8c5dc3b0283d8bce76c99d3bb04b4669467299ee6c210a3949f555921093e58669f018a5ec6c96bea0955d5d10d1e05b3a81160d690382d0d225dbd0f333be5c22f814afdfb9a2866520f938f1e23e925132af9505adf2053e7d226db9e6b666d5a99904faad18ae9a42d7ccba8b57be3c695d535c29e515456fb503acaac0707bb17653034785969a4f07968adbf6b5234af8aa7e6481dc1337dcd7dbc577819dad8e26a8398a8eab6bfed48e080db05e16480fc8b19653e836087489170c151e33681fa6e8ae7c38b51c92db68ca7c4c5acd441c68d883b08b6c06d6c37d456013725d09fe14ceeefe2795cbe98ae870171eae8bc6d24d97f3f9593d4cd917ed91df0ac45744d8cb67f3009d1471273db0655e29bc90a8b4ba096c7638b39f3edbbb25295dea9c18c284b8dec79108faa015acd7346aa49de235f4223f5f269b593944740a8d0baadc83625c8b090dbbd329500838a2d2f64bfbe87d4ec31e59eb55b8dd50aa46ce05eb3fe087ee77df27a421f3b6c188d74f530e3edbf9f7a419b36686f1d357c102c589b53aa59451389335fadec5e01064e44eb726fa522783e1e641e1f2f757fa327cfaa9e3f60792b7b033f9020adce25ca6de6a1ca3801c3752e2fdf69032c094eb03d51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
set-cookie: uuid=; Path=/; Domain=exchange.buzzoola.com; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Max-Age=0; Secure; SameSite=None
uuid=5e79adf5-2011-4170-7ef3-975f002c87a6; Path=/; Domain=buzzoola.com; Expires=Mon, 03 Jun 2024 19:32:07 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
mc.acint.net/cmatch?dp=261
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/cmatch?dp=261
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
set-cookie: cSyncDp241v2=1714851127; expires=Mon, 03-Jun-24 19:32:07 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/cmatch?dp=126
193.3.184.16 154 B URL mc.acint.net/cmatch?dp=126
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
set-cookie: cSyncDp241v2=1714851127; expires=Mon, 03-Jun-24 19:32:07 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=CNEKDLOT
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=CNEKDLOT
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=CNEKDLOT HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=95
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=98&euid=7c5d3774-bcd3-4b99-a163-df49833602a6
193.3.184.16200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=98&euid=7c5d3774-bcd3-4b99-a163-df49833602a6
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=98&euid=7c5d3774-bcd3-4b99-a163-df49833602a6 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/cmatch?dp=71
193.3.184.16302 Found 154 B IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=71 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
set-cookie: cSyncDp241v2=1714851127; expires=Mon, 03-Jun-24 19:32:07 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/cmatch?dp=126
193.3.184.16 154 B URL mc.acint.net/cmatch?dp=126
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
set-cookie: cSyncDp241v2=1714851127; expires=Mon, 03-Jun-24 19:32:07 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/cmatch?dp=110
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/cmatch?dp=110
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=110 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
set-cookie: cSyncDp241v2=1714851127; expires=Mon, 03-Jun-24 19:32:07 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/cmatch?dp=261
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/cmatch?dp=261
IP 193.3.184.16:443
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html
content-length: 154
location: https://match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
set-cookie: cSyncDp241v2=1714851127; expires=Mon, 03-Jun-24 19:32:07 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=98&euid=5cb5aae3-af0b-403e-95e0-15e6aa6f84b6
193.3.184.16 43 B URL www.acint.net/match?dp=98&euid=5cb5aae3-af0b-403e-95e0-15e6aa6f84b6
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=98&euid=5cb5aae3-af0b-403e-95e0-15e6aa6f84b6 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/match?dp=293&euid=ym_user_9be06a4d-565f-401d-92cc-dc76af5a8ff4
193.3.184.16 43 B URL mc.acint.net/match?dp=293&euid=ym_user_9be06a4d-565f-401d-92cc-dc76af5a8ff4
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=293&euid=ym_user_9be06a4d-565f-401d-92cc-dc76af5a8ff4 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127; cSyncDp241v2=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D7c5d3774-bcd3-4b99-a163-df49833602a6
172.67.168.127 145 B URL sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D7c5d3774-bcd3-4b99-a163-df49833602a6
IP 172.67.168.127:0
Certificate IssuerGoogle Trust Services LLC
Subjectadspend.space
Fingerprint86:42:73:83:B4:96:F1:E2:8E:8F:5F:67:2B:A5:20:3C:AE:F0:FE:57
ValiditySat, 16 Mar 2024 00:50:56 GMT - Fri, 14 Jun 2024 00:50:55 GMT
Hash 4ff9edd1a987e2168e15e667c226297c
d4da9a0c81a3ecd480234c848482114d7c629af2
442b9a7241f0c0c34bd60f02b4e403561f45d4e056a2b0d6ef5e2b921ecf1866
GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D7c5d3774-bcd3-4b99-a163-df49833602a6 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: as-user=5cb5aae3-af0b-403e-95e0-15e6aa6f84b6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html; charset=utf-8
location: https://www.acint.net/match?dp=98&euid=7c5d3774-bcd3-4b99-a163-df49833602a6
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: PUT, GET, POST, OPTIONS
access-control-allow-headers: Content-Type, authorization
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qa6tAN6Qmh77vvL6wgihr8W%2F%2BwSc%2FpFg%2FP56sT6XpUbdU%2BwLSZJlA2nfEprnkFkNyRDxT586TzBIkeJp6RO7rcmFQVmr0oOTnVe7Ef8y5%2F21cUyIyJpj24mNlCN1ITm0VpzVc64%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eaea398a05569a-OSL
alt-svc: h3=":443"; ma=86400
mc.acint.net/cmatch?dp=95
193.3.184.16200 OK 43 B URL GET HTTP/2 mc.acint.net/cmatch?dp=95
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cmatch?dp=95 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127; cSyncDp241v2=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
188.40.114.28200 OK 43 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
IP 188.40.114.28:443
ASN #24940 Hetzner Online GmbH
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6; cookiesyncs=000000000000000000000000cf0254a1ff024916b6cffeeea7f62ba9028583d6319a76e427a11356af61e369428f2acbefb867b4c83b8ed423f913fb234937735509570745901ecf7fb3ab0bb55929ed495157dc8bd54c6a81a4bd41d41705f4f89eb52b0347ddee00f0f0b2b9b28b26b2a8954a64a65dc97acb684e6953b81af374df92102c1d168d7535c5f37ff9224b95f6393181842a53ed49b723b144749f75a8fbf9e31052baf20d0e4af37db63f6ebf4408a97a1aa949b2d40efd16d04d6845ba7c47f498fe4c3eac1a53f0e31195f13b9758db136761ef0b6ef9cf60e6f42e8d4024344a1f4b90e058fdce805393ae1b90fb190274617bfd595c243ff4f31caf313ce98c23e6ebfe1ae0bd3972c7397dbc45bdc13e149921bd0e8c9f9244acaad16d863fc3b1429521e0bd3663b1368c4462b3ee43b31904f1c38a4143d9a09bb266142d4a24c37934e8e07b077d19c418861842d4dc1c0c7aba480494a3648ed483e765b6e4d9cd20fb179dac76153f4765b355824af501789b8725f914711da51263f2733656a2793a2617a01a25e6ab9198ef3c9688b05f63ff118efca143e655924f2ca080c838f728e4a9551a6d67ef7c6efcb20e365a5c3b7212868d9cab55e9f7014d4bc8ad9fdd1e1c2c8904af35e66da97561efd0b748ecc6ff2e4473d8a4a74995bca7fc2650c0855607959db18b81171ef42ca50caa57a41bcca178a9a453ef35b9f3c5e4225e98d5a8424473c410e4657611bda9de478010d2a9d4745de457dc73b347f2bfc1e55aee0d8191d5449ec79afdc7e831ae48fef8fb3748a27ea200f74df85eb5c06479acb19acfbd52c56e3e2e98568fe1a4c178432194e2412b08f2629d7183b0deca54d9d1d965ba9f26566e3e8954dffa07affc8c58be60a4df74d314a61ead6dccc8a2ae6de2dcb167cba5f3c834a8c5dc3b0283d8bce76c99d3bb04b4669467299ee6c210a3949f555921093e58669f018a5ec6c96bea0955d5d10d1e05b3a81160d690382d0d225dbd0f333be5c22f814afdfb9a2866520f938f1e23e925132af9505adf2053e7d226db9e6b666d5a99904faad18ae9a42d7ccba8b57be3c695d535c29e515456fb503acaac0707bb17653034785969a4f07968adbf6b5234af8aa7e6481dc1337dcd7dbc577819dad8e26a8398a8eab6bfed48e080db05e16480fc8b19653e836087489170c151e33681fa6e8ae7c38b51c92db68ca7c4c5acd441c68d883b08b6c06d6c37d456013725d09fe14ceeefe2795cbe98ae870171eae8bc6d24d97f3f9593d4cd917ed91df0ac45744d8cb67f3009d1471273db0655e29bc90a8b4ba096c7638b39f3edbbb25295dea9c18c284b8dec79108faa015acd7346aa49de235f4223f5f269b593944740a8d0baadc83625c8b090dbbd329500838a2d2f64bfbe87d4ec31e59eb55b8dd50aa46ce05eb3fe087ee77df27a421f3b6c188d74f530e3edbf9f7a419b36686f1d357c102c589b53aa59451389335fadec5e01064e44eb726fa522783e1e641e1f2f757fa327cfaa9e3f60792b7b033f9020adce25ca6de6a1ca3801c3752e2fdf69032c094eb03d51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
set-cookie: uuid=; Path=/; Domain=exchange.buzzoola.com; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Max-Age=0; Secure; SameSite=None
uuid=5e79adf5-2011-4170-7ef3-975f002c87a6; Path=/; Domain=buzzoola.com; Expires=Mon, 03 Jun 2024 19:32:07 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
mc.acint.net/cmatch?dp=95
193.3.184.16200 OK 43 B URL GET HTTP/2 mc.acint.net/cmatch?dp=95
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cmatch?dp=95 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127; cSyncDp241v2=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
adx.com.ru/sync?sspKey=25&sspUserID=0900007F298D3666DC343C3D026B580B
83.222.105.118 231 B URL adx.com.ru/sync?sspKey=25&sspUserID=0900007F298D3666DC343C3D026B580B
IP 83.222.105.118:0
File type HTML document, ASCII text
Hash 872218c015a92b69894c00c288cae8f3
31c27dfbd01938f5a16933b8b1af643488de535c
f1d1a4507a0bd7bfb735cfa079e31ab1121a6afd4ac58de808e6e6f5d2020b1f
GET /sync?sspKey=25&sspUserID=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: user=66368d37991c7a0001ddc692
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.26.0
date: Sat, 04 May 2024 19:32:07 GMT
content-type: text/html; charset=utf-8
content-length: 231
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fadx.com.ru%2Fweborama-sync%3Furl%3Dhttps%253A%252F%252Fprodmp.ru%252Fyabbi.gif%253Fuid%253D66368d37991c7a0001ddc692%2526r%253D%26webouid%3D{WEBO_CID}
p3p: CP="adx.com.ru does not have a P3P policy"
X-Firefox-Spdy: h2
match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
95.163.92.180204 No Content 0 B URL GET HTTP/1.1 match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
IP 95.163.92.180:443
ASN #12695 LLC Digital Network
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectdsp.qtarget.tech
Fingerprint24:73:C6:BB:59:50:7A:E0:31:C6:8F:43:2D:DD:E3:63:4A:F7:F7:24
ValiditySun, 11 Feb 2024 18:29:31 GMT - Sat, 11 May 2024 18:29:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 May 2024 19:32:08 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
95.163.92.180204 No Content 0 B URL GET HTTP/1.1 match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
IP 95.163.92.180:443
ASN #12695 LLC Digital Network
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectdsp.qtarget.tech
Fingerprint24:73:C6:BB:59:50:7A:E0:31:C6:8F:43:2D:DD:E3:63:4A:F7:F7:24
ValiditySun, 11 Feb 2024 18:29:31 GMT - Sat, 11 May 2024 18:29:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 May 2024 19:32:08 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
95.163.92.180204 No Content 0 B URL GET HTTP/1.1 match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
IP 95.163.92.180:443
ASN #12695 LLC Digital Network
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectdsp.qtarget.tech
Fingerprint24:73:C6:BB:59:50:7A:E0:31:C6:8F:43:2D:DD:E3:63:4A:F7:F7:24
ValiditySun, 11 Feb 2024 18:29:31 GMT - Sat, 11 May 2024 18:29:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 May 2024 19:32:08 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
95.163.92.180204 No Content 0 B URL GET HTTP/1.1 match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
IP 95.163.92.180:443
ASN #12695 LLC Digital Network
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectdsp.qtarget.tech
Fingerprint24:73:C6:BB:59:50:7A:E0:31:C6:8F:43:2D:DD:E3:63:4A:F7:F7:24
ValiditySun, 11 Feb 2024 18:29:31 GMT - Sat, 11 May 2024 18:29:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 May 2024 19:32:08 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
95.163.92.180204 No Content 0 B URL GET HTTP/1.1 match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
IP 95.163.92.180:443
ASN #12695 LLC Digital Network
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectdsp.qtarget.tech
Fingerprint24:73:C6:BB:59:50:7A:E0:31:C6:8F:43:2D:DD:E3:63:4A:F7:F7:24
ValiditySun, 11 Feb 2024 18:29:31 GMT - Sat, 11 May 2024 18:29:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 May 2024 19:32:08 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
95.163.92.180204 No Content 0 B URL GET HTTP/1.1 match.qtarget.tech/userbind?src=sape&id=0900007F298D3666DC343C3D026B580B
IP 95.163.92.180:443
ASN #12695 LLC Digital Network
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subjectdsp.qtarget.tech
Fingerprint24:73:C6:BB:59:50:7A:E0:31:C6:8F:43:2D:DD:E3:63:4A:F7:F7:24
ValiditySun, 11 Feb 2024 18:29:31 GMT - Sat, 11 May 2024 18:29:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 May 2024 19:32:08 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
f5fcb132-0a4c-11ef-86e0-002590c0647c.n6.sync.bumlam.com/?src=sape
185.43.4.87 0 B URL f5fcb132-0a4c-11ef-86e0-002590c0647c.n6.sync.bumlam.com/?src=sape
IP 185.43.4.87:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: f5fcb132-0a4c-11ef-86e0-002590c0647c.n6.sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.26.0
date: Sat, 04 May 2024 19:32:08 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/done
31.172.81.160200 OK 43 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/done
IP 31.172.81.160:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mc.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 19:32:08 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://mc.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
www.acint.net/ping/?v=0.7.0&uid=bbb31f4d-d61c-4ce6-83f2-205f6fccc215&dp=14&tz=%2B00%3A00&nc=090699&aid=0900007F298D3666DC343C3D026B580B&dT=2024-05-04T19%3A32%3A09.647
193.3.184.16 43 B URL www.acint.net/ping/?v=0.7.0&uid=bbb31f4d-d61c-4ce6-83f2-205f6fccc215&dp=14&tz=%2B00%3A00&nc=090699&aid=0900007F298D3666DC343C3D026B580B&dT=2024-05-04T19%3A32%3A09.647
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping/?v=0.7.0&uid=bbb31f4d-d61c-4ce6-83f2-205f6fccc215&dp=14&tz=%2B00%3A00&nc=090699&aid=0900007F298D3666DC343C3D026B580B&dT=2024-05-04T19%3A32%3A09.647 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAACWY2jSk9PDTcC1hrAlvqxdRd830Ea/zR//EGGwv56XY/; cSyncDp14v4=1714851114; cSyncDp17v2=1714851113; cSyncDp104v2=1714851114; cSyncDp14v6=1714851126; cSyncDp45v5=1714851126; cSyncDp53v5=1714851126; cSyncDp62v2=1714851126; cSyncDp67v3=1714851126; cSyncDp68v3=1714851126; cSyncDp71v2=1714851126; cSyncDp80v2=1714851126; cSyncDp85v2=1714851126; cSyncDp95v4=1714851126; cSyncDp98v3=1714851126; cSyncDp107v2=1714851126; cSyncDp110v3=1714851126; cSyncDp125v4=1714851126; cSyncDp126v3=1714851126; cSyncDp127v2=1714851126; cSyncDp129v2=1714851126; cSyncDp136v3=1714851126; cSyncDp146v2=1714851126; cSyncDp148v2=1714851126; cSyncDp149v3=1714851126; cSyncDp151v2=1714851126; cSyncDp251v1=1714851126; cSyncDp186v2=1714851126; cSyncDp217v2=1714851126; cSyncDp235v2=1714851126; cSyncDp239v2=1714851126; cSyncDp243v2=1714851126; cSyncDp260v2=1714851126; cSyncDp244v2=1714851126; cSyncDp248v2=1714851126; cSyncDp261v1=1714851126; cSyncDp289v2=1714851126; cSyncDp293v1=1714851126; cSyncDp296v2=1714851126; cSyncDp312v1=1714851126; cSyncDp7v3=1714851127; cSyncDp241v2=1714851127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:32:09 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
f5fcb132-0a4c-11ef-86e0-002590c0647c.n2.sync.bumlam.com/?src=sape
92.63.98.236302 Found 0 B URL GET HTTP/2 f5fcb132-0a4c-11ef-86e0-002590c0647c.n2.sync.bumlam.com/?src=sape
IP 92.63.98.236:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.n1.sync.bumlam.com
Fingerprint56:15:00:9D:2E:AA:5A:76:1C:B1:0B:D1:55:0B:30:25:EA:DA:C9:FA
ValidityTue, 12 Mar 2024 12:36:27 GMT - Mon, 10 Jun 2024 12:36:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: f5fcb132-0a4c-11ef-86e0-002590c0647c.n2.sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.26.0
date: Sat, 04 May 2024 19:32:10 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/done
31.172.81.160200 OK 43 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/done
IP 31.172.81.160:443
Requested by https://www.acint.net/mc/?dp=14&aid=0900007F298D3666DC343C3D026B580B
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRmNWZjYjEzMi0wYTRjLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 19:32:10 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL POST HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://exclusive-works.ru/
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 May 2024 19:32:13 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://exclusive-works.ru
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL POST HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
content-type: application/json
Content-Length: 311
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Cookie: vid=fc3529591264ce29094d; vid=2739eccc436b8d464743
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 May 2024 19:32:13 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://exclusive-works.ru
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/prebid
193.3.184.216 0 B IP 193.3.184.216:0
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
content-type: text/plain
Content-Length: 1913
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Cookie: sspuid=CkIDIGY2jSkWggAsnpztAnL/fNW9tc51Mhk11EwE2SkHxUX6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: openresty
Date: Sat, 04 May 2024 19:32:13 GMT
Content-Type: text/html
Connection: keep-alive
Access-Control-Allow-Origin: https://exclusive-works.ru
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST
X-YaRequestId: 769325d8892641d79715386850180854
X-YaSpanId: efa60791f53b90f5
X-YaTraceId: f25cde6c353742ebacb55815d6215405
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
pbs.alfasense.com/yandex/auction
23.111.100.20 0 B URL pbs.alfasense.com/yandex/auction
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yandex/auction HTTP/1.1
Host: pbs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
content-type: text/plain
Content-Length: 272
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1; wist_ps=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Date: Sat, 04 May 2024 19:32:13 GMT
Connection: keep-alive
server: adx
x-error: empty candidates
Access-Control-Allow-Origin: https://exclusive-works.ru
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Content-type: text/xml
ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=exclusive-works.ru&l=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&s=38014&cur=RUB&bidid=24fe30551b433a7&transactionid=&auctionid=&bidfloor=0
195.201.152.107 2 B URL GET ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=exclusive-works.ru&l=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&s=38014&cur=RUB&bidid=24fe30551b433a7&transactionid=&auctionid=&bidfloor=0
IP 195.201.152.107:0
ASN #24940 Hetzner Online GmbH
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /adjson?tz=0&w=970&h=90&domain=exclusive-works.ru&l=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&s=38014&cur=RUB&bidid=24fe30551b433a7&transactionid=&auctionid=&bidfloor=0 HTTP/1.1
Host: ssp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
content-type: text/plain
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Cookie: mpid=NjYzNjhkMjkwODdjNDc1Zg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.6
date: Sat, 04 May 2024 19:32:13 GMT
content-type: application/javascript
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://exclusive-works.ru
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: mpid=NjYzNjhkMjkwODdjNDc1Zg==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
vary: Origin
X-Firefox-Spdy: h2
kimberlite.io/rtb/bid/pbjs
217.199.220.43 0 B URL kimberlite.io/rtb/bid/pbjs
IP 217.199.220.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rtb/bid/pbjs HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
content-type: text/plain
Content-Length: 651
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Cookie: u=ZjaNKcbdRUw~XNFsCI45H3SkcEo9azGO7K3cJY4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx
Date: Sat, 04 May 2024 19:32:14 GMT
Content-Length: 0
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://exclusive-works.ru
set-cookie: u=ZjaNKcbdRUw~XNFsCI45H3SkcEo9azGO7K3cJY4; path=/; max-age=7776000; samesite=none; httponly; secure
server-timing: app;srv=6;dur=0.0604
exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHRt-bZ2f_jng/jsvpaid?set_buzzoola_cookie=t
188.40.114.28200 OK 11 kB URL GET HTTP/2 exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHRt-bZ2f_jng/jsvpaid?set_buzzoola_cookie=t
IP 188.40.114.28:443
ASN #24940 Hetzner Online GmbH
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type XML 1.0 document, ASCII text, with very long lines (11331), with no line terminators
Hash 7b10f2f4413bc940d8e954df0560bbd3
f6cdcdaa166cdc2f4771ef05b803a29346a11a74
3625f1383438e1b5a9566a3c8251b452fb6bfd1efd43507b5d366f2d18e59748
GET /adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHRt-bZ2f_jng/jsvpaid?set_buzzoola_cookie=t HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:53 GMT
content-type: application/xml
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, X-Aidata-FP, If-None-Match
access-control-allow-origin: https://exclusive-works.ru
access-control-expose-headers: Set-Cookie, Etag
serverid: TODO
content-encoding: gzip
X-Firefox-Spdy: h2
exclusive-works.ru/wp-content/plugins/easy-fancybox/fancybox/1.5.4/jquery.fancybox.min.js?ver=6.5.2
87.236.16.222200 OK 18 kB URL GET HTTP/2 exclusive-works.ru/wp-content/plugins/easy-fancybox/fancybox/1.5.4/jquery.fancybox.min.js?ver=6.5.2
IP 87.236.16.222:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subjectexclusive-works.ru
FingerprintC6:F1:85:00:31:02:65:80:DF:66:0D:9C:20:FE:78:0D:DF:F7:6F:1B
ValidityWed, 01 May 2024 06:34:48 GMT - Tue, 30 Jul 2024 06:34:47 GMT
File type JavaScript source, ASCII text, with very long lines (17738), with no line terminators
Hash b6b9fef2f7eb26c8b7553c5b0e46453b
77d77933496b2b389a8b1aca1989ab68498d8dc8
e0a709b63261993d42234f053ee43b75d43af3d7b0f147eced60c97c3e6c8f95
GET /wp-content/plugins/easy-fancybox/fancybox/1.5.4/jquery.fancybox.min.js?ver=6.5.2 HTTP/1.1
Host: exclusive-works.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 04 May 2024 19:31:51 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Apr 2024 05:44:35 GMT
vary: Accept-Encoding
etag: W/"66289c43-454a"
expires: Sat, 11 May 2024 19:31:51 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
ads.adlook.me/vast?id=22583&w=1280&h=720&mult=1&rw=0&ref=&loc=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&top=&_ts=1714851112057
176.122.21.130200 OK 172 kB URL GET HTTP/2 ads.adlook.me/vast?id=22583&w=1280&h=720&mult=1&rw=0&ref=&loc=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&top=&_ts=1714851112057
IP 176.122.21.130:443
ASN #48096 Enterprise Cloud Ltd.
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
Size 172 kB (171454 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vast?id=22583&w=1280&h=720&mult=1&rw=0&ref=&loc=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&top=&_ts=1714851112057 HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 171454
content-type: application/json
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=0871d198edad49d3ad1d67d3ed29da9b; expires=Sat, 03 May 2025 21:00:00 GMT; path=/; SameSite=None; secure; samesite=none
access-control-allow-origin: https://exclusive-works.ru
access-control-allow-credentials: true
date: Sat, 04 May 2024 19:31:52 GMT
X-Firefox-Spdy: h2
ads.alfasense.net/adserver/www/delivery/asyncjs.php
136.144.31.29200 OK 4.5 kB URL GET HTTP/2 ads.alfasense.net/adserver/www/delivery/asyncjs.php
IP 136.144.31.29:443
ASN #52000 MIRhosting B.V.
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type JavaScript source, ASCII text, with very long lines (4587), with no line terminators
Hash d7dc69fbefb36dd244926f1daa9cd21e
34792d8bd5f83f4dcef0200295ffa6ce1de96458
d9ed733c02eef8fc5a9e9d979cf8a02c5072a779c921d06be9971166941cc09b
GET /adserver/www/delivery/asyncjs.php HTTP/1.1
Host: ads.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:54 GMT
content-type: text/javascript;charset=UTF-8
etag: 1079f85a6f7f7d83640b17a26d3394d5
expire: Sat, 04 May 2024 20:31:54 GMT
cache-control: private, max-age=3600
p3p: CP="CUR ADM OUR NOR STA NID"
content-security-policy: frame-ancestors 'self';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
set-cookie: SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
s.ccsyncuuid.net/match/5/?remote_uid=0900007F298D3666DC343C3D026B580B
0.0.0.0 0 B URL GET s.ccsyncuuid.net/match/5/?remote_uid=0900007F298D3666DC343C3D026B580B
IP 0.0.0.0:0
Requested by https://mc.acint.net/mc/?dp=131&aid=0900007F298D3666DC343C3D026B580B
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /match/5/?remote_uid=0900007F298D3666DC343C3D026B580B HTTP/1.1
Host: s.ccsyncuuid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mc.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
cdn-rtb.sape.ru/rtb-b/vast/532/863532.xml
193.3.184.201200 OK 1.2 kB URL GET HTTP/2 cdn-rtb.sape.ru/rtb-b/vast/532/863532.xml
IP 193.3.184.201:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT
File type XML document, ASCII text, with very long lines (1234), with no line terminators
Hash 0a08abc13651e290611ff2444f481d4e
3b8c900cd67d43bee7df736867b09b06dbbb31d5
8f41a8746979d71df2cb254938dabbf9692f3d82231f0457046ca19e670e6f8a
GET /rtb-b/vast/532/863532.xml HTTP/1.1
Host: cdn-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Sat, 04 May 2024 19:31:53 GMT
content-type: text/xml; charset=UTF-8
content-security-policy: block-all-mixed-content
etag: W/"9b12512f6a5956d8cffa4d5aaf5a7feb"
last-modified: Tue, 30 Apr 2024 02:07:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 17CAECC226C1137A
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
expires: Sat, 04 May 2024 20:31:53 GMT
cache-control: max-age=3600
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://exclusive-works.ru
x-cache-status: HIT
X-Firefox-Spdy: h2
exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHYBaHVOHr2Dk/jsvpaid?set_buzzoola_cookie=t
188.40.114.28200 OK 8.0 kB URL GET HTTP/2 exchange.buzzoola.com/adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHYBaHVOHr2Dk/jsvpaid?set_buzzoola_cookie=t
IP 188.40.114.28:443
ASN #24940 Hetzner Online GmbH
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type XML document, ASCII text, with very long lines (8505), with no line terminators
Hash 5fed2828218deda1dcf41f51494a8944
7ebdf61a8702b32ff873aba55493225fcc566af5
e0580fbb3eadb0e7fdf67926defa46b4e001f4e72632c8eba97f29c63d037d8b
GET /adv/Pj83_mHbvbuHJs1LknWH2OGeGbBVUByHYBaHVOHr2Dk/jsvpaid?set_buzzoola_cookie=t HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://exclusive-works.ru
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=5e79adf5-2011-4170-7ef3-975f002c87a6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 19:31:49 GMT
content-type: application/xml
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, X-Aidata-FP, If-None-Match
access-control-allow-origin: https://exclusive-works.ru
access-control-expose-headers: Set-Cookie, Etag
serverid: TODO
content-encoding: gzip
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcs.alfasense.com%252Fp%253Fssp%253Dsp%2526uid%253D%2524%257BUSER_ID%257D&dp=14
193.3.184.216302 Moved Temporarily 35 B URL GET HTTP/1.1 ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcs.alfasense.com%252Fp%253Fssp%253Dsp%2526uid%253D%2524%257BUSER_ID%257D&dp=14
IP 193.3.184.216:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcs.alfasense.com%252Fp%253Fssp%253Dsp%2526uid%253D%2524%257BUSER_ID%257D&dp=14 HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: sspuid=CkIDIGY2jSkWggAsnpztAnL/fNW9tc51Mhk11EwE2SkHxUX6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/rmatch?dp=14&euid=2003420A298D36662C00821602ED9C9E&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
cs.alfasense.com/p?ssp=tg&redir=0&id=
23.111.100.20301 Moved Permanently 0 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=tg&redir=0&id=
IP 23.111.100.20:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
FingerprintCB:9E:EC:1E:29:96:7E:71:55:EA:3F:33:4D:45:A2:7D:8D:4B:D9:DE
ValidityWed, 27 Dec 2023 23:14:58 GMT - Mon, 27 Jan 2025 23:14:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=tg&redir=0&id= HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://exclusive-works.ru/
DNT: 1
Connection: keep-alive
Cookie: uuid=1294c1dc-51d5-4bc0-bf02-718515a023e1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 May 2024 19:31:54 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://acint.net/cmatch/?dp=14&pi=1647232&skip_it=1294c1dc-51d5-4bc0-bf02-718515a023e1
Set-Cookie: wist_ps=; expires=Fri, 25 Apr 2025 19:31:54 GMT; domain=alfasense.com; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
stat.adlook.me/reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=ISgT28TOUJ2TTRbNgMPg2glbbsSq6vsUjxsSeedL0w%2B%2BPDOJMn8D0diV%2FBOY7k9mkAoGqL%2F%2Fa%2Be%2FPPov%2B4ZrlyTMHy1pVYc%2FyfpPkPrxfKXi1B%2FtPtJvNTRqPFsUcqkW9bWX9k0WiRcqyNHvKbqXiHQRq6Lv4ApZIyio%2BoX4NuhQO2wc1Njo5OapuZzExBiUhAqbO4Jxc08%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111622736006&_adlk_ts=171485111622736006
176.122.21.130200 OK 0 B URL GET HTTP/2 stat.adlook.me/reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=ISgT28TOUJ2TTRbNgMPg2glbbsSq6vsUjxsSeedL0w%2B%2BPDOJMn8D0diV%2FBOY7k9mkAoGqL%2F%2Fa%2Be%2FPPov%2B4ZrlyTMHy1pVYc%2FyfpPkPrxfKXi1B%2FtPtJvNTRqPFsUcqkW9bWX9k0WiRcqyNHvKbqXiHQRq6Lv4ApZIyio%2BoX4NuhQO2wc1Njo5OapuZzExBiUhAqbO4Jxc08%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111622736006&_adlk_ts=171485111622736006
IP 176.122.21.130:443
ASN #48096 Enterprise Cloud Ltd.
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /reg?st=vast.supply,vast.demand,nroa.demand&ev=cli_request&sc=ISgT28TOUJ2TTRbNgMPg2glbbsSq6vsUjxsSeedL0w%2B%2BPDOJMn8D0diV%2FBOY7k9mkAoGqL%2F%2Fa%2Be%2FPPov%2B4ZrlyTMHy1pVYc%2FyfpPkPrxfKXi1B%2FtPtJvNTRqPFsUcqkW9bWX9k0WiRcqyNHvKbqXiHQRq6Lv4ApZIyio%2BoX4NuhQO2wc1Njo5OapuZzExBiUhAqbO4Jxc08%3D&r=https%3A%2F%2Fexclusive-works.ru%2Fen%2F2009-09-21-15-45-04%2Fview%2F5&eo=&cb=171485111622736006&_adlk_ts=171485111622736006 HTTP/1.1
Host: stat.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Microsoft-IIS/10.0
date: Sat, 04 May 2024 19:31:56 GMT
X-Firefox-Spdy: h2
exclusive-works.ru/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2
87.236.16.222200 OK 19 kB URL GET HTTP/2 exclusive-works.ru/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2
IP 87.236.16.222:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subjectexclusive-works.ru
FingerprintC6:F1:85:00:31:02:65:80:DF:66:0D:9C:20:FE:78:0D:DF:F7:6F:1B
ValidityWed, 01 May 2024 06:34:48 GMT - Tue, 30 Jul 2024 06:34:47 GMT
File type JavaScript source, ASCII text, with very long lines (15752)
Hash b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: exclusive-works.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 04 May 2024 19:31:52 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Apr 2024 05:44:38 GMT
vary: Accept-Encoding
etag: W/"66289c46-4926"
expires: Sat, 11 May 2024 19:31:52 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
exclusive-works.ru/wp-content/plugins/easy-fancybox/vendor/jquery.mousewheel.min.js?ver=3.1.13
87.236.16.222200 OK 2.6 kB URL GET HTTP/2 exclusive-works.ru/wp-content/plugins/easy-fancybox/vendor/jquery.mousewheel.min.js?ver=3.1.13
IP 87.236.16.222:443
Requested by https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Certificate IssuerLet's Encrypt
Subjectexclusive-works.ru
FingerprintC6:F1:85:00:31:02:65:80:DF:66:0D:9C:20:FE:78:0D:DF:F7:6F:1B
ValidityWed, 01 May 2024 06:34:48 GMT - Tue, 30 Jul 2024 06:34:47 GMT
File type JavaScript source, ASCII text, with very long lines (2696), with no line terminators
Hash d2c8f2ec155db31cedf5016adbf08fbd
ac0c269512306dc6ff09322d82134172ebeacc21
692a3efcf122e58b1ad5579170d37d79f83d44b24d89b8e54e8a5d5e8fc358ea
GET /wp-content/plugins/easy-fancybox/vendor/jquery.mousewheel.min.js?ver=3.1.13 HTTP/1.1
Host: exclusive-works.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://exclusive-works.ru/en/2009-09-21-15-45-04/view/5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 04 May 2024 19:31:51 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Apr 2024 05:44:35 GMT
vary: Accept-Encoding
etag: W/"66289c43-a31"
expires: Sat, 11 May 2024 19:31:51 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2