ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash c74db17f871249d3df054a36ab699f09
2b363e108eb091a4d1c2b762672dd4cebd6c53a9
2a58ed6b6af2bb75f4ce077b241be5668d699c3b2f8ba328db7bf741da02d49e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 24 May 2023 15:19:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash c74db17f871249d3df054a36ab699f09
2b363e108eb091a4d1c2b762672dd4cebd6c53a9
2a58ed6b6af2bb75f4ce077b241be5668d699c3b2f8ba328db7bf741da02d49e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 24 May 2023 15:19:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash c02ea2eb31eb1af30ad378cddf6f94b5
f6190e85f669f8282ec9c4a36cf7f552c82f4989
e218cdd31cbdc6f9019a3ba5dbcd1451c74d4c9704bb0187b0b2dcc7481a4daa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 24 May 2023 15:19:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-144347007-1
142.250.74.168200 OK 47 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-144347007-1
IP 142.250.74.168:443
Requested by https://alginis.yoo7.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (2271)
Hash 4e8d4cae14840d6ed5ea279a81ac37b1
a68e9e197059e30a48c1d2a62e637bfffc37fc8b
517bd2b26d7bf3faece29060f8da0b6d9906346b2034683436c0a55df8b94e05
GET /gtag/js?id=UA-144347007-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 May 2023 15:19:28 GMT
expires: Wed, 24 May 2023 15:19:28 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 May 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46645
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
alginis.yoo7.com/1-rtl.css
94.23.159.185200 OK 55 kB URL GET HTTP/2 alginis.yoo7.com/1-rtl.css
IP 94.23.159.185:443
Requested by https://alginis.yoo7.com/
Certificate IssuerLet's Encrypt
Subjectm91.maxns.net
Fingerprint69:EF:04:FA:C7:BE:9A:17:81:50:30:BC:84:A5:4B:32:96:3B:D1:4D
ValiditySun, 21 May 2023 03:40:26 GMT - Sat, 19 Aug 2023 03:40:25 GMT
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 8d079d5a3c0ae034d317107a6588b484
623a2ac95756af10c274ed42705f75814fbeb09a
45ac97f42332f9302b9a87e5ec1393278f1040aedd61bf64e96e4d07805f0f83
GET /1-rtl.css HTTP/1.1
Host: alginis.yoo7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Cookie: exadd=168495
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:27 GMT
content-type: text/css
content-length: 55080
last-modified: Wed, 24 May 2023 00:00:00 GMT
content-security-policy: upgrade-insecure-requests
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-ma: MISS
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-12662501-1
142.250.74.168200 OK 47 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-12662501-1
IP 142.250.74.168:443
Requested by https://alginis.yoo7.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (2271)
Hash 5a49540caeed768de382cfdb65c30976
4e0449ac072b9a5f828b709576654fc4156588d2
118e065ce8108243c0fc7fcf531fbb39bb07e30526b7a13aa6d96fd6959863da
GET /gtag/js?id=UA-12662501-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 May 2023 15:19:28 GMT
expires: Wed, 24 May 2023 15:19:28 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 May 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46612
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
142.250.74.106200 OK 34 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
IP 142.250.74.106:443
Requested by https://alginis.yoo7.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash b8d64d0bc142b3f670cc0611b0aebcae
abcd2ba13348f178b17141b445bc99f1917d47af
47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4
GET /ajax/libs/jquery/1.7.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33845
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 03:44:18 GMT
expires: Wed, 22 May 2024 03:44:18 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 128110
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 1c49b47df797bc894bbd0501cd8055ef
eecda42994d95c5d9e016982cc55d069d3b6e74d
2dce59e5dd3b12fca67c7b94f490fcc398f9d3f04901c2e462f9a90f03a90ced
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Wed, 24 May 2023 15:19:28 GMT
Last-Modified: Wed, 24 May 2023 13:30:47 GMT
Server: ECAcc (dcb/731A)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6077RPR51VvE4k07fckv1hrBw_PmixX6btzL9U_x7un-J6nb3jl5RA==
Age: 6521
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash ad09d634b92d987d09b60cd53942e077
c21dec45b1cb5b339a1b564aec8b1b693b4371a8
e72489d3d3317ac6440c6337e9bec3fe383e8ced9e27e5729b2d25d4e85083c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 24 May 2023 15:19:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
illiweb.com/rs3/76/frm/jquery//ticker/ticker.js
172.67.162.141200 OK 1.7 kB URL GET HTTP/2 illiweb.com/rs3/76/frm/jquery//ticker/ticker.js
IP 172.67.162.141:443
Requested by https://alginis.yoo7.com/
Certificate IssuerCloudflare, Inc.
Subjectilliweb.com
Fingerprint8D:30:39:CD:DB:3E:FC:A9:EC:C9:A0:FB:D5:4A:1C:DC:4A:69:6C:E4
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (2009)
Hash 6f7a7570fe2514a8b055723dd4ebc157
d71785d3a5bb70d72698269798527cdbbcad016b
de8a9047726cfcd05302f4fdf912b21fd636b8f13f98a6f49e3f31dbdadde621
GET /rs3/76/frm/jquery//ticker/ticker.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:28 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=9485
access-control-allow-origin: *
expires: Sat, 18 May 2024 10:05:40 GMT
last-modified: Wed, 15 Mar 2023 11:21:26 GMT
x-cache-ne: EXPIRED
x-cache-pr: EXPIRED
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 450827
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XdzA8OEzs%2B%2FJcgXZaSXI%2F72ijqD21mgrfPJc9q4TiPQ8pHwIu72PZmjTFgHJ0SS4WtzW9mpqar63RgC%2BXACCLcZf50RAmZt0bwHreYNsgwlL5%2FK0FHTXpsRC3Dg%2Bfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc684620db6069b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash c02ea2eb31eb1af30ad378cddf6f94b5
f6190e85f669f8282ec9c4a36cf7f552c82f4989
e218cdd31cbdc6f9019a3ba5dbcd1451c74d4c9704bb0187b0b2dcc7481a4daa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 24 May 2023 15:19:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my-mdonti.googlecode.com/files/js-image-slider.js
173.194.221.82404 Not Found 1.6 kB URL GET HTTP/2 my-mdonti.googlecode.com/files/js-image-slider.js
IP 173.194.221.82:443
Requested by https://alginis.yoo7.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.googlecode.com
Fingerprint76:65:78:1F:74:83:DF:38:C8:1C:E0:8A:79:EF:E6:36:B1:2A:C9:C6
ValidityMon, 08 May 2023 08:24:34 GMT - Mon, 31 Jul 2023 08:24:33 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash e7e8f56d43323a00746e60ead62586aa
2d1be6dceafab8d162b2504be411099897586134
f47fa8d0df449a6e0ddaf61e64b706cb8d13a51111656a04da478ef1d5f89e2e
GET /files/js-image-slider.js HTTP/1.1
Host: my-mdonti.googlecode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1585
date: Wed, 24 May 2023 15:19:28 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash ad09d634b92d987d09b60cd53942e077
c21dec45b1cb5b339a1b564aec8b1b693b4371a8
e72489d3d3317ac6440c6337e9bec3fe383e8ced9e27e5729b2d25d4e85083c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 24 May 2023 15:19:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ac.audiencerun.com/gdpr
54.230.111.63200 OK 1 B IP 54.230.111.63:443
Requested by https://alginis.yoo7.com/
Certificate IssuerAmazon
Subject*.audiencerun.com
Fingerprint99:2D:07:90:91:4A:15:F9:15:13:B9:C1:3D:18:51:CE:F6:23:7D:00
ValidityFri, 24 Feb 2023 00:00:00 GMT - Fri, 25 Aug 2023 23:59:59 GMT
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
GET /gdpr HTTP/1.1
Host: ac.audiencerun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alginis.yoo7.com
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 1
server: CloudFront
date: Mon, 22 May 2023 08:22:04 GMT
access-control-allow-origin: *
audiencerun-country: NO
audiencerun-time: 2023-05-22T08:22:04.923Z
x-cache: Hit from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lKnY-XqRMZvIIb78eeLITmcRTYgUjkQUOyuA6JEnaLxYTbQvVXH4dg==
age: 197845
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 8cfbf255f2311d7da5bec0bced4f199a
31497ea7e27bde065dce6861963fda1888b28bf9
e29cf6d7dd864b685faf27870b7dae9de93933534141f4def95dc6fd04f591f5
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Wed, 24 May 2023 15:19:29 GMT
Last-Modified: Wed, 24 May 2023 13:29:44 GMT
Server: ECAcc (bsa/EA9A)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: N_XhI8kvyjDAFtE9DU4at1e8WQ5ZZW8IKoAUOC93vLSGXKLGP2dSHw==
Age: 6586
alginis.yoo7.com/images/icons-180.png
94.23.159.185200 OK 4.2 kB URL GET HTTP/2 alginis.yoo7.com/images/icons-180.png
IP 94.23.159.185:443
Requested by https://alginis.yoo7.com/
Certificate IssuerLet's Encrypt
Subjectm91.maxns.net
Fingerprint69:EF:04:FA:C7:BE:9A:17:81:50:30:BC:84:A5:4B:32:96:3B:D1:4D
ValiditySun, 21 May 2023 03:40:26 GMT - Sat, 19 Aug 2023 03:40:25 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 48cd492534332a77ac4efdbc7a8502f3
dd52d82b034fca42203376a3ae5a8b1f16bef233
87136b8ffe2f10ddd804519453e3e3167935938dce88d5de21f9947e58983e27
GET /images/icons-180.png HTTP/1.1
Host: alginis.yoo7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Cookie: exadd=168495
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:35 GMT
content-type: image/png
content-length: 4165
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 May 2023 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
x-cache-ic: MISS
X-Firefox-Spdy: h2
i.servimg.com/u/f69/14/79/50/46/algini10.png
0.0.0.0 0 B URL GET i.servimg.com/u/f69/14/79/50/46/algini10.png
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/f69/14/79/50/46/algini10.png HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
illiweb.com/rs3/76/frm/lang/ar.js
172.67.162.141200 OK 75 kB URL GET HTTP/2 illiweb.com/rs3/76/frm/lang/ar.js
IP 172.67.162.141:443
Requested by https://alginis.yoo7.com/
Certificate IssuerCloudflare, Inc.
Subjectilliweb.com
Fingerprint8D:30:39:CD:DB:3E:FC:A9:EC:C9:A0:FB:D5:4A:1C:DC:4A:69:6C:E4
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rs3/76/frm/lang/ar.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:28 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=74961
access-control-allow-origin: *
expires: Sat, 18 May 2024 09:58:36 GMT
last-modified: Tue, 16 May 2023 15:02:01 GMT
x-cache-ne: EXPIRED
x-cache-pr: EXPIRED
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 451251
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Op71y%2FKyodX5gZCMiq5FP8ydGLGw6JTVqlzus8KHpQeRP4fEheEWaimKiEQMZUAcli9f%2FOIQq%2BBiQvnTdus3UHp1W8AnfU3EnzpWyCcBlRSadisKzpuEP5eeHY02CA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc684623dd9069b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
illiweb.com/rs3/76/frm/mentions/tooltipster.js
172.67.162.141200 OK 18 kB URL GET HTTP/2 illiweb.com/rs3/76/frm/mentions/tooltipster.js
IP 172.67.162.141:443
Requested by https://alginis.yoo7.com/
Certificate IssuerCloudflare, Inc.
Subjectilliweb.com
Fingerprint8D:30:39:CD:DB:3E:FC:A9:EC:C9:A0:FB:D5:4A:1C:DC:4A:69:6C:E4
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (17499), with no line terminators
Hash c5c6a5cbc41364e0fbc73470d7ce7dfc
2c0a798e6fe124e3c58393c73ccb632be9058f48
a56d8fd2c346648167ab574f3be9f54f3a96707aeddcdd3ceabd3ac1201b8057
GET /rs3/76/frm/mentions/tooltipster.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:28 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
expires: Sat, 18 May 2024 09:46:40 GMT
last-modified: Tue, 27 Aug 2019 14:00:10 GMT
x-cache-ne: HIT
x-cache-pr: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 451970
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vJhdFdb6fAm%2BUK0DiBR0TXVdwrSe%2BtZoqnCry6KlXWYhEd1fCRRTB6YqCsKFsUM6iJSw4tQ0qqEcvRTqmqOd%2FSnN%2FYemGX015k0AsGJ03If05ucbcQtWUDGBNOykUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc68461bd80069b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/i/fa/empty.gif
0.0.0.0 0 B IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /i/fa/empty.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
2img.net/h/s.conduit.com/Mobile/86/5b/86baf9d1-6a5b-42bf-808d-76ea2fda00ff/Images/28cf854f-b73e-4edf-9328-b26adb71788f.png
0.0.0.0 0 B URL GET 2img.net/h/s.conduit.com/Mobile/86/5b/86baf9d1-6a5b-42bf-808d-76ea2fda00ff/Images/28cf854f-b73e-4edf-9328-b26adb71788f.png
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /h/s.conduit.com/Mobile/86/5b/86baf9d1-6a5b-42bf-808d-76ea2fda00ff/Images/28cf854f-b73e-4edf-9328-b26adb71788f.png HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
fbcdn-sphotos-c-a.akamaihd.net/hphotos-ak-prn2/988645_10151656968543446_1242326896_n.jpg
0.0.0.0 0 B URL GET fbcdn-sphotos-c-a.akamaihd.net/hphotos-ak-prn2/988645_10151656968543446_1242326896_n.jpg
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /hphotos-ak-prn2/988645_10151656968543446_1242326896_n.jpg HTTP/1.1
Host: fbcdn-sphotos-c-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
fbcdn-sphotos-h-a.akamaihd.net/hphotos-ak-prn1/946503_10151656968448446_2101164257_n.jpg
0.0.0.0 0 B URL GET fbcdn-sphotos-h-a.akamaihd.net/hphotos-ak-prn1/946503_10151656968448446_2101164257_n.jpg
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /hphotos-ak-prn1/946503_10151656968448446_2101164257_n.jpg HTTP/1.1
Host: fbcdn-sphotos-h-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
94.23.159.185200 OK 45 kB URL User Request GET HTTP/2 IP 94.23.159.185:443
Certificate IssuerLet's Encrypt
Subjectm91.maxns.net
Fingerprint69:EF:04:FA:C7:BE:9A:17:81:50:30:BC:84:A5:4B:32:96:3B:D1:4D
ValiditySun, 21 May 2023 03:40:26 GMT - Sat, 19 Aug 2023 03:40:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: alginis.yoo7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:26 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-cache, no-store
pragma: no-cache
expires: Wed, 24 May 2023 00:00:00 GMT
last-modified: Wed, 24 May 2023 15:19:24 GMT
vary: User-Agent
set-cookie: exadd=168495; expires=Wed, 24-May-2023 19:19:24 GMT; Max-Age=14400
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
i.servimg.com/u/f69/14/79/50/46/pictur62.png
0.0.0.0 0 B URL GET i.servimg.com/u/f69/14/79/50/46/pictur62.png
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/f69/14/79/50/46/pictur62.png HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
ac.aruncdn.com/f/nat/n.js?408
104.26.0.229200 OK 37 kB URL GET HTTP/3 ac.aruncdn.com/f/nat/n.js?408
IP 104.26.0.229:443
Requested by https://alginis.yoo7.com/
Certificate IssuerGoogle Trust Services LLC
Subjectaruncdn.com
Fingerprint6D:97:7C:9D:3E:30:99:E9:74:A9:16:27:59:55:FA:8E:74:5F:45:C8
ValidityMon, 22 May 2023 04:49:01 GMT - Sun, 20 Aug 2023 04:49:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f/nat/n.js?408 HTTP/1.1
Host: ac.aruncdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 15:19:29 GMT
content-type: application/javascript
last-modified: Mon, 17 Apr 2023 13:32:05 GMT
etag: W/"5792c6bdd6215bf3c3f7de7ccaa7e9c5"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-version-id: pTbTaG4v1.2TJIGYu7PttDdD6hov2eLi
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g9pd1gBYUotlVLgf26GRB2ZGMKxDy86WWgMK6n2h-T90k3hwTUwYSQ==
age: 3197060
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BaqPlLX3ZnIW%2BtysOln%2FH9ZW35wuPrcTd6VmjKZmQClnKhfIj%2BMr134PxgB%2BvQglZhV8vFTdyX97D4%2FEgR66%2B8xhf3cMqX2ZvwK3zUu15ZXlaGAUGkB5gFMCtAiBOP5Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc6846c09c4b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
i.servimg.com/u/f69/14/79/50/46/pictur20.png
0.0.0.0 0 B URL GET i.servimg.com/u/f69/14/79/50/46/pictur20.png
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/f69/14/79/50/46/pictur20.png HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
i.servimg.com/u/f69/14/79/50/46/oouu10.png
0.0.0.0 0 B URL GET i.servimg.com/u/f69/14/79/50/46/oouu10.png
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/f69/14/79/50/46/oouu10.png HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
fbcdn-sphotos-e-a.akamaihd.net/hphotos-ak-ash3/1044243_10151656968623446_1499314939_n.jpg
0.0.0.0 0 B URL GET fbcdn-sphotos-e-a.akamaihd.net/hphotos-ak-ash3/1044243_10151656968623446_1499314939_n.jpg
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /hphotos-ak-ash3/1044243_10151656968623446_1499314939_n.jpg HTTP/1.1
Host: fbcdn-sphotos-e-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
d.audiencerun.com/c/5eyky1py1w?rid=08b8305d-47c7-46b9-8c4b-3e8e3e8b19b9&spu=5fd3ee39-cb12-4372-949d-214bc3a63ea2&sui=e42852d4-0862-4277-9016-ee77905ef2b5&s=null&a=1&msk=null&m=null&v=1.2.16&d=1684941568752&r=&vu=&dv=desktop&os=linux&br=firefox%2F111.0&ce=1&sr=1280x1024&o=portrait&tz=0%20GMT&ul=en&inf=0&ift=&=0&url=https%3A%2F%2Falginis.yoo7.com%2F&es5=0&gdpr=0&gdpr_consent=
3.18.174.189200 OK 12 kB URL GET HTTP/2 d.audiencerun.com/c/5eyky1py1w?rid=08b8305d-47c7-46b9-8c4b-3e8e3e8b19b9&spu=5fd3ee39-cb12-4372-949d-214bc3a63ea2&sui=e42852d4-0862-4277-9016-ee77905ef2b5&s=null&a=1&msk=null&m=null&v=1.2.16&d=1684941568752&r=&vu=&dv=desktop&os=linux&br=firefox%2F111.0&ce=1&sr=1280x1024&o=portrait&tz=0%20GMT&ul=en&inf=0&ift=&=0&url=https%3A%2F%2Falginis.yoo7.com%2F&es5=0&gdpr=0&gdpr_consent=
IP 3.18.174.189:443
Requested by https://alginis.yoo7.com/
Certificate IssuerAmazon
Subject*.audiencerun.com
Fingerprint94:AB:58:9F:54:16:6D:D5:D2:60:7E:08:86:08:06:C3:EB:D3:C8:C8
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 09 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (11852), with no line terminators
Hash 776cbeb4c8d69a80dec0a6a7360e125a
358adecfe5d3d4601eaa7511be2dac19aaa481d3
65be4c81534839d093dbb3bc0514744b089cf6ae17ae03b817dd662313df076f
GET /c/5eyky1py1w?rid=08b8305d-47c7-46b9-8c4b-3e8e3e8b19b9&spu=5fd3ee39-cb12-4372-949d-214bc3a63ea2&sui=e42852d4-0862-4277-9016-ee77905ef2b5&s=null&a=1&msk=null&m=null&v=1.2.16&d=1684941568752&r=&vu=&dv=desktop&os=linux&br=firefox%2F111.0&ce=1&sr=1280x1024&o=portrait&tz=0%20GMT&ul=en&inf=0&ift=&=0&url=https%3A%2F%2Falginis.yoo7.com%2F&es5=0&gdpr=0&gdpr_consent= HTTP/1.1
Host: d.audiencerun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:29 GMT
content-type: application/javascript
set-cookie: AWSALBTG=XHFanx4LXHZlPFfDtPk1HWj4QmccMGOjbXYKIoepgiw3hmrX+zkedIRZgJzWo3UEFcU/hBXp3Cy3sKKqOfK4QbbjwXbSACEXXqsxWLAgHLn+yunErpdL4bOGpjfhwchtGOSz0Ng+393lmcmpjjPzA9gurA/1AwTgsla6xKCcs5K0; Expires=Wed, 31 May 2023 15:19:29 GMT; Path=/
AWSALBTGCORS=XHFanx4LXHZlPFfDtPk1HWj4QmccMGOjbXYKIoepgiw3hmrX+zkedIRZgJzWo3UEFcU/hBXp3Cy3sKKqOfK4QbbjwXbSACEXXqsxWLAgHLn+yunErpdL4bOGpjfhwchtGOSz0Ng+393lmcmpjjPzA9gurA/1AwTgsla6xKCcs5K0; Expires=Wed, 31 May 2023 15:19:29 GMT; Path=/; SameSite=None; Secure
AWSALB=cmcsWpiOhQzvwZuZKqKtiBKvpiEkywZKHJt56wDZyQqKgcOHYdvEu8qVcprvnIZltL5OEnExxpzllctD/Pguzt+ioLFM+zWCiiRhJK2em4+N7pns/Khv4LNaesRb; Expires=Wed, 31 May 2023 15:19:29 GMT; Path=/
AWSALBCORS=cmcsWpiOhQzvwZuZKqKtiBKvpiEkywZKHJt56wDZyQqKgcOHYdvEu8qVcprvnIZltL5OEnExxpzllctD/Pguzt+ioLFM+zWCiiRhJK2em4+N7pns/Khv4LNaesRb; Expires=Wed, 31 May 2023 15:19:29 GMT; Path=/; SameSite=None; Secure
ui=1646e2b01b50b3249053719; expires=Sat, 22-Jun-2024 15:19:29 GMT; path=/; domain=.audiencerun.com; SameSite=None; Secure
server: nginx
vary: Accept-Encoding
p3p: policyref="https://www.audiencerun.com/p3p.xml", CP="NOI DEVa TAIa OUR BUS UNI"
timing-allow-origin: *
report-to: { "url": "https://d.audiencerun.com/reports", "max_age": 10886400, "include_subdomains":true }
content-encoding: br
X-Firefox-Spdy: h2
illiweb.com/rs3/76/frm/jquery/ticker/ticker.css
172.67.162.141200 OK 388 B URL GET HTTP/2 illiweb.com/rs3/76/frm/jquery/ticker/ticker.css
IP 172.67.162.141:443
Requested by https://alginis.yoo7.com/
Certificate IssuerCloudflare, Inc.
Subjectilliweb.com
Fingerprint8D:30:39:CD:DB:3E:FC:A9:EC:C9:A0:FB:D5:4A:1C:DC:4A:69:6C:E4
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (388), with no line terminators
Hash ee8ffe728ee39c0d5a385b6c2d5fcf24
47d762132f9c7c1c7f5665fe1f2007cb6dc194aa
0915a998c8a41f69e82331eca861ccb6635aac2eeb5639348f370e6e189c663c
GET /rs3/76/frm/jquery/ticker/ticker.css HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:28 GMT
content-type: text/css;charset=UTF-8
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=390
access-control-allow-origin: *
expires: Sat, 18 May 2024 09:46:59 GMT
last-modified: Tue, 27 Aug 2019 14:00:13 GMT
vary: Accept-Encoding
x-cache-ne: HIT
x-cache-pr: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 451949
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JLaiIaKF4djyf%2FHju0buS2id9Q8UPgDrDXxJ%2F%2Br7Tr9xuErsO9ewBOCJSR4o0fPI5mDqrN%2BtS4%2BT7WVbG2RMR3NRi1r3THXMsGyEvYcmrE%2Bk5iP71uKnfg%2B0ZWqCLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc684621dc7069b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
illiweb.com/rs3/76/frm/jquery/cookie/jquery.cookie.js
172.67.162.141200 OK 1.0 kB URL GET HTTP/2 illiweb.com/rs3/76/frm/jquery/cookie/jquery.cookie.js
IP 172.67.162.141:443
Requested by https://alginis.yoo7.com/
Certificate IssuerCloudflare, Inc.
Subjectilliweb.com
Fingerprint8D:30:39:CD:DB:3E:FC:A9:EC:C9:A0:FB:D5:4A:1C:DC:4A:69:6C:E4
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (1011), with no line terminators
Hash 12a485a250e60806fbe4ab8bd03dfbf8
ea48bc03bfb90a966f28d302992ec02fe55da978
6cf7880d67c712bb6f85f1dfa1d26ea5e0a7195130a3e42c8b441cdd1de77a90
GET /rs3/76/frm/jquery/cookie/jquery.cookie.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:28 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
expires: Sat, 18 May 2024 09:46:40 GMT
last-modified: Wed, 09 Sep 2020 09:40:28 GMT
x-cache-ne: HIT
x-cache-pr: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 451971
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pVfs9j%2F2VKkT3rtOu4RnOXTtLwmRZq1hLyoW4kPOA%2FoykltrWzoIt%2BFfjP9l%2Bfr6q%2BQX%2F62vwhXvXcQdlyi2Rv7jmWJDmoscSAtHCKmyc2uEzNDp8EO6pveKmhj8xA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc684621dcc069b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ac.audiencerun.com/j/tag.js
54.230.111.63200 OK 12 kB URL GET HTTP/2 ac.audiencerun.com/j/tag.js
IP 54.230.111.63:443
Requested by https://alginis.yoo7.com/
Certificate IssuerAmazon
Subject*.audiencerun.com
Fingerprint99:2D:07:90:91:4A:15:F9:15:13:B9:C1:3D:18:51:CE:F6:23:7D:00
ValidityFri, 24 Feb 2023 00:00:00 GMT - Fri, 25 Aug 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/tag.js HTTP/1.1
Host: ac.audiencerun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 24 May 2023 06:50:28 GMT
last-modified: Mon, 17 Apr 2023 15:14:48 GMT
etag: W/"054d6461512dfdcea0024a17944a7000"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400,public
x-amz-version-id: xyYyC6OnLzBNuT1uHFp8RO6rezdaF2yP
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jW9V82yRt8SHJfeUNKtw_Tp2vO94rZGr8rd5AaMOoL4aRbAlqhPA-g==
age: 30541
X-Firefox-Spdy: h2
illiweb.com/rs3/76/frm/mentions/tooltipster.css
172.67.162.141200 OK 6.6 kB URL GET HTTP/2 illiweb.com/rs3/76/frm/mentions/tooltipster.css
IP 172.67.162.141:443
Requested by https://alginis.yoo7.com/
Certificate IssuerCloudflare, Inc.
Subjectilliweb.com
Fingerprint8D:30:39:CD:DB:3E:FC:A9:EC:C9:A0:FB:D5:4A:1C:DC:4A:69:6C:E4
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (6584), with no line terminators
Hash f3601bc25ac378cab49e80650323640a
302535c34033bebe00f521da5bd4248178fe6ef2
4d2393ec9a6d20fc58d60f8d9140fd7ccdd709ec1ab00036dce2847901c2ba92
GET /rs3/76/frm/mentions/tooltipster.css HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:28 GMT
content-type: text/css;charset=UTF-8
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=6667
access-control-allow-origin: *
expires: Sat, 18 May 2024 09:46:40 GMT
last-modified: Tue, 27 Aug 2019 14:00:10 GMT
vary: Accept-Encoding
x-cache-ne: HIT
x-cache-pr: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 451971
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AbMNIygjwyFT9ncuYV56SeEjVvUAnrgc%2BgjmBJdaeLbrMCX394PX%2FUmT2Hdkzl1dRDKPr3HOFh2rFIXUIBs14HR3e5%2FPsD6ZA8pbaiqDkhA4ajtOpQ3AK72dD0PXaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc68461ad5b069b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ac.aruncdn.com/f/nat/0.native.js?ver=222614
104.26.0.229200 OK 112 kB URL GET HTTP/3 ac.aruncdn.com/f/nat/0.native.js?ver=222614
IP 104.26.0.229:443
Requested by https://alginis.yoo7.com/
Certificate IssuerGoogle Trust Services LLC
Subjectaruncdn.com
Fingerprint6D:97:7C:9D:3E:30:99:E9:74:A9:16:27:59:55:FA:8E:74:5F:45:C8
ValidityMon, 22 May 2023 04:49:01 GMT - Sun, 20 Aug 2023 04:49:00 GMT
Size 112 kB (111831 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f/nat/0.native.js?ver=222614 HTTP/1.1
Host: ac.aruncdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 15:19:29 GMT
content-type: application/javascript
last-modified: Thu, 13 Apr 2023 08:03:03 GMT
etag: W/"057c03f785f28ded09961b24b88a9bf3"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-version-id: ZjFcoYWJZUTJVugE9qPL0FljRgzqZN9R
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uBnlMaZX3mGhn6gQC6b2pQYzWxTXING2UpZoXH_BFGRR6Pg3vDIgpw==
age: 3568564
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b10%2B52B6s00AR9%2FHXqvPlQ302Unq%2BWXzgnaSEcCGJkGyWARPGo9c35A%2FaMVv%2BvSDPFvyHqkxXGbhtW%2BjHSOUQ5LUw0QC39HhYmtvkel6%2BWpb1JGx3JxhBFR2HjrevRkq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc6846c4a31b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
d.audiencerun.com/js_log
3.18.174.189200 OK 0 B IP 3.18.174.189:443
Requested by https://alginis.yoo7.com/
Certificate IssuerAmazon
Subject*.audiencerun.com
Fingerprint94:AB:58:9F:54:16:6D:D5:D2:60:7E:08:86:08:06:C3:EB:D3:C8:C8
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 09 Dec 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /js_log HTTP/1.1
Host: d.audiencerun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 18690
Origin: https://alginis.yoo7.com
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:41 GMT
content-type: text/html; charset=UTF-8
set-cookie: AWSALBTG=4nhQvN6ApD8Tbvf7ncTa7U7/DWWDy6NR6IVr5SrcNs357Ww3xMDzKKHg+nbOfaKv9mQCsXadF0j9uhxBL1+C4jaZprA4OJ3YNwWK165uw96jKrROyKHjhfs20baFAkCZY2s39GZUEnl7KNbFiCdMQdcgd+sxDgGjOqSSPP1fnLQY; Expires=Wed, 31 May 2023 15:19:41 GMT; Path=/
AWSALBTGCORS=4nhQvN6ApD8Tbvf7ncTa7U7/DWWDy6NR6IVr5SrcNs357Ww3xMDzKKHg+nbOfaKv9mQCsXadF0j9uhxBL1+C4jaZprA4OJ3YNwWK165uw96jKrROyKHjhfs20baFAkCZY2s39GZUEnl7KNbFiCdMQdcgd+sxDgGjOqSSPP1fnLQY; Expires=Wed, 31 May 2023 15:19:41 GMT; Path=/; SameSite=None; Secure
AWSALB=fMlNvaGBvjAaKi9pa/QeChYOk0soTfbHcqdh8aSJyVF/LecBIrGlW/wNLuy0SqU86G1b1N7848MEg2KXoIyG/JMTjyNBPwpWmobKuofvZVylODxiN+jMpD2A9cA6; Expires=Wed, 31 May 2023 15:19:41 GMT; Path=/
AWSALBCORS=fMlNvaGBvjAaKi9pa/QeChYOk0soTfbHcqdh8aSJyVF/LecBIrGlW/wNLuy0SqU86G1b1N7848MEg2KXoIyG/JMTjyNBPwpWmobKuofvZVylODxiN+jMpD2A9cA6; Expires=Wed, 31 May 2023 15:19:41 GMT; Path=/; SameSite=None; Secure
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
i.servimg.com/u/f57/18/45/21/66/algini11.jpg
0.0.0.0 0 B URL GET i.servimg.com/u/f57/18/45/21/66/algini11.jpg
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/f57/18/45/21/66/algini11.jpg HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
ac.aruncdn.com/j/prebid/pre.js?47
104.26.0.229200 OK 478 kB URL GET HTTP/2 ac.aruncdn.com/j/prebid/pre.js?47
IP 104.26.0.229:443
Requested by https://alginis.yoo7.com/
Certificate IssuerGoogle Trust Services LLC
Subjectaruncdn.com
Fingerprint6D:97:7C:9D:3E:30:99:E9:74:A9:16:27:59:55:FA:8E:74:5F:45:C8
ValidityMon, 22 May 2023 04:49:01 GMT - Sun, 20 Aug 2023 04:49:00 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 478 kB (477474 bytes)
Hash 2fbe30d009abc54ff04795c6d14da709
0626ce35a7a48628dd7d2507cf1f08dfb02d496d
51b6b311805712db5a8d23981d54327822a438112649fa816c0e6abb731d9206
GET /j/prebid/pre.js?47 HTTP/1.1
Host: ac.aruncdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:29 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2023 13:03:56 GMT
etag: W/"2fbe30d009abc54ff04795c6d14da709"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-version-id: 3oRW8tSghcfXJE_15EP1tOtiWLRy.9G.
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Qh1iTMQB5KScGit8jz39QlX8FcqvPYXdngtPEyyHeALCy-icowiEwQ==
age: 9153103
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GfZeeknQZjxLOQJlw%2BkvZVJ46M6VKhCjofPByQi0WrPlguy9YcrAf2Yg7tCIZposNblHhr0k%2B0VdqUbHL%2B4Y4FBTsJyytwHP2ggJ3ZX1W1aLxYeY4LQ%2Bv3Z8LOp%2BzumE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
content-security-policy: upgrade-insecure-requests
server: cloudflare
cf-ray: 7cc684672a46b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ac.aruncdn.com/f/nat/1.native.js?ver=222614
104.26.0.229200 OK 16 kB URL GET HTTP/3 ac.aruncdn.com/f/nat/1.native.js?ver=222614
IP 104.26.0.229:443
Requested by https://alginis.yoo7.com/
Certificate IssuerGoogle Trust Services LLC
Subjectaruncdn.com
Fingerprint6D:97:7C:9D:3E:30:99:E9:74:A9:16:27:59:55:FA:8E:74:5F:45:C8
ValidityMon, 22 May 2023 04:49:01 GMT - Sun, 20 Aug 2023 04:49:00 GMT
File type ASCII text, with very long lines (15842), with no line terminators
Hash 0b8f24c6d87e1c425d170fcda6036e7e
24a57e3891f72e8f07b124f3cbe41f792670f394
cbeda8c681183b4cf452950ae66650e596ab8ecda43e51f32d411d466fc01c90
GET /f/nat/1.native.js?ver=222614 HTTP/1.1
Host: ac.aruncdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 15:19:29 GMT
content-type: application/javascript
last-modified: Thu, 13 Apr 2023 08:03:03 GMT
etag: W/"0b8f24c6d87e1c425d170fcda6036e7e"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-version-id: o54xlQuAZ9YyQk9xwk2k8kCH5dCNxQgE
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8meEiRyqG340JvIDNybpkQt5rcWYom_0a34qiC2wfbXh10g7t2NiuQ==
age: 3568564
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HBw47CGIb9mvJuS5U1TbkVfPliIZYQJScd93gI5osH%2FqSV0%2F3yQV%2FRU2T9c6ofzmBQFmluiJlYMprwpGlcu7nx2n6xpgJvgjcLLgs3bkOJgBesqYWqWoopSKFcQ6%2F%2Fnu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc6846c5a42b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ac.aruncdn.com/f/nat/fixedFooter.native.js?ver=222614
104.26.0.229200 OK 160 kB URL GET HTTP/3 ac.aruncdn.com/f/nat/fixedFooter.native.js?ver=222614
IP 104.26.0.229:443
Requested by https://alginis.yoo7.com/
Certificate IssuerGoogle Trust Services LLC
Subjectaruncdn.com
Fingerprint6D:97:7C:9D:3E:30:99:E9:74:A9:16:27:59:55:FA:8E:74:5F:45:C8
ValidityMon, 22 May 2023 04:49:01 GMT - Sun, 20 Aug 2023 04:49:00 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 160 kB (159611 bytes)
Hash 0708733879d93c42a1e77a9f4e148139
4c1ced02bc02b65892c75fc4c7cbde4ce7d141f4
3afb7f04f8cf0f2dd00750f51595dc7c067b8fd958a55a11f77e45fd0eb02b29
GET /f/nat/fixedFooter.native.js?ver=222614 HTTP/1.1
Host: ac.aruncdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 15:19:30 GMT
content-type: application/javascript
last-modified: Thu, 13 Apr 2023 08:03:04 GMT
etag: W/"0708733879d93c42a1e77a9f4e148139"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-version-id: Hc9gIMqej9zoy1oE0NerTerLfbamFB9R
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dTuOHMkZ4HtmFgOtcn2h5Vh3-TfqCWxfkNgDrBRB9_zIRuOt4ko3Cw==
age: 3568559
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9rwmLAnlH7UsSEYBtuLE9MAqQwk%2FbNnhIP3zn6i3Fqi4TmmLJSnI7ujxByEJ6JErfGRAjTAdrvtnUMZDf433sU8MKeiKr7BepiAO96%2Fc9q3Pfmo7BpOglNkXRVPRykGX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc6846c8a92b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
illiweb.com/rs3/76/frm/mentions/init.js
0.0.0.0 0 B URL GET illiweb.com/rs3/76/frm/mentions/init.js
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Certificate IssuerCloudflare, Inc.
Subjectilliweb.com
Fingerprint8D:30:39:CD:DB:3E:FC:A9:EC:C9:A0:FB:D5:4A:1C:DC:4A:69:6C:E4
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rs3/76/frm/mentions/init.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
illiweb.com/rs3/76/frm/twemoji/twemoji.min.js
172.67.162.141200 OK 17 kB URL GET HTTP/2 illiweb.com/rs3/76/frm/twemoji/twemoji.min.js
IP 172.67.162.141:443
Requested by https://alginis.yoo7.com/
Certificate IssuerCloudflare, Inc.
Subjectilliweb.com
Fingerprint8D:30:39:CD:DB:3E:FC:A9:EC:C9:A0:FB:D5:4A:1C:DC:4A:69:6C:E4
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rs3/76/frm/twemoji/twemoji.min.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 15:19:28 GMT
content-type: application/x-javascript
last-modified: Tue, 10 Jan 2023 08:34:14 GMT
expires: Sat, 18 May 2024 09:46:40 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
x-cache-ne: HIT
x-cache-pr: HIT
cf-cache-status: HIT
age: 451971
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x0FCKeyyabPP2z9qmcoMZwB2bLXFo3lj2YH%2B6I1Vm1XlqalDcQBt%2BwI%2BsvFA7akR6rAdxx9ZPXPPz3fWdMK5NWQk4S2IgGs9smrKZ5v0iuQUXAMCLiUyz5NZOx9uIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc68461ad68069b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.servimg.com/u/f69/14/79/50/46/pictur69.png
0.0.0.0 0 B URL GET i.servimg.com/u/f69/14/79/50/46/pictur69.png
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/f69/14/79/50/46/pictur69.png HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
alginis/
0.0.0.0 0 B IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: alginis
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
i.servimg.com/u/f69/14/79/50/46/pictur61.png
0.0.0.0 0 B URL GET i.servimg.com/u/f69/14/79/50/46/pictur61.png
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/f69/14/79/50/46/pictur61.png HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
i.servimg.com/u/f69/14/79/50/46/pictur66.png
0.0.0.0 0 B URL GET i.servimg.com/u/f69/14/79/50/46/pictur66.png
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/f69/14/79/50/46/pictur66.png HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
fbcdn-sphotos-d-a.akamaihd.net/hphotos-ak-ash4/1044030_10200543404846194_343819494_n.jpg
0.0.0.0 0 B URL GET fbcdn-sphotos-d-a.akamaihd.net/hphotos-ak-ash4/1044030_10200543404846194_343819494_n.jpg
IP 0.0.0.0:0
Requested by https://alginis.yoo7.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /hphotos-ak-ash4/1044030_10200543404846194_343819494_n.jpg HTTP/1.1
Host: fbcdn-sphotos-d-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alginis.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache