Report - steam.pildid.eu/qa/f541ebdadc9d2/

Report Overview

Submitted URL
steam.pildid.eu/qa/f541ebdadc9d2/
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2023-06-02 11:14:07
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	2005-12-10	2012-05-21	2023-06-02	898 B	68 kB	69.16.175.10
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-02	2.4 kB	4.9 kB	142.250.74.3
storage.googleapis.com	420	2005-01-25	2012-08-06	2023-06-02	1.7 kB	21 kB	216.58.207.240
site2text-2021.web.app	214809	2019-01-08	2021-01-26	2023-05-31	431 B	661 B	199.36.158.100
mos2.biz	unknown	unknown	2022-02-16	2023-02-28	415 B	462 B	185.177.92.30
cdn.zx-adnet.com	120818	2018-10-12	2018-10-26	2023-06-02	4.4 kB	427 kB	151.101.65.195
ocsp.globalsign.com	2075	1999-04-19	2012-07-20	2023-06-02	349 B	1.4 kB	104.18.21.226
steam.pildid.eu	unknown	unknown	No data	No data	6.4 kB	518 kB	188.114.96.1
geolocation.onetrust.com	802	2004-01-12	2018-02-07	2023-06-02	446 B	38 kB	104.18.28.38
yastatic.net	72282	2013-11-28	2014-03-11	2023-06-01	406 B	146 kB	178.154.131.216

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-02 11:13:47	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-06-02 11:13:47	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	cdn.zx-adnet.com/adx/abs.js?0.646719769990798	217 B	2023-03-07	2024-01-07
Pretty URL cdn.zx-adnet.com/adx/abs.js?0.646719769990798 IP 151.101.65.195 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:15 Last Seen2024-01-07 13:51:45 Times Seen148 Hash 75b0b6a17821553d4e1b4153e2558291 633db0d95db1f3fcbf5e16607ed53758de21d2fd a2862c9e532e9e51ea7ca8d7c96bb602a74e31396f9c5be127dbea7c5adfc227 Loading...

	steam.pildid.eu/templates/kassandra/wp-includes/js/jquery/jquery4a5f.js?ver=1.12.4-wp	97 kB	2023-03-07	2024-04-18
Pretty URL steam.pildid.eu/templates/kassandra/wp-includes/js/jquery/jquery4a5f.js?ver=1.12.4-wp IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-18 13:51:05 Times Seen17712 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	steam.pildid.eu/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-04-18
Pretty URL steam.pildid.eu/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-18 14:10:41 Times Seen42875 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	unknown	103 B	2023-06-02	2023-08-11
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-06-02 13:14:13 Last Seen2023-08-11 11:45:09 Times Seen2 Hash 155bd1fc4041e7ef4f8e894aadb7b9c0 c51f23539ac14dae18f268c881d70ae9e4fd284b 2c75c0c0ba73cbbf7c400e40f5286f8036da9b80629ca062abda671d4ddc4893 Loading...

	cdn.zx-adnet.com/adx/twstnv_19091901.js	148 kB	2023-03-08	2024-01-04
Pretty URL cdn.zx-adnet.com/adx/twstnv_19091901.js IP 151.101.65.195 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:16:27 Last Seen2024-01-04 11:25:58 Times Seen34 Hash 8683c4d8a7545b1923bbf2b27c5a5236 cca65a48aecbc8e30c24e9cd7cec754d9d92bf91 aa499187bbb18d6676e17d5fbb53cafac4627aceefc4b6f9d1c98e10a1593489 Loading...

	site2text-2021.web.app/gw_251221.js?0.07238380386751586	0 B	2023-03-07	2024-04-18
Pretty URL site2text-2021.web.app/gw_251221.js?0.07238380386751586 IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-18 14:22:29 Times Seen36942632 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	300 B	2023-03-07	2023-06-02
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:40 Last Seen2023-06-02 13:14:13 Times Seen2 Hash ef56d1f8149967e60b135ae86472cb34 2811a1249fcee87213fb63489da500ca6f09ea83 6912aee6a1cdba9e70e324ffbb08ccd781ceb6856293a7482242ac3db4ceb479 Loading...

	cdn.zx-adnet.com/checkabuse?surl=https%3A%2F%2Fsteam.pildid.eu%2Fqa%2Ff541ebdadc9d2%2F	56 B	2023-03-07	2024-01-07
Pretty URL cdn.zx-adnet.com/checkabuse?surl=https%3A%2F%2Fsteam.pildid.eu%2Fqa%2Ff541ebdadc9d2%2F IP 151.101.65.195 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:15 Last Seen2024-01-07 13:51:46 Times Seen265 Hash c6fb6e04ed0701a18c773a9c685933df aa7a3656d2ab286ac491e5b219e35be7950c56fa 8601386271d3ba06c1135a092613135c5da90b3732a8196e4761faf4b1afdc69 Loading...

	cdn.zx-adnet.com/consent/sdk.feda0fd8c5f2191f5c4b299585520859048f3705.js	349 kB	2023-03-07	2024-01-07
Pretty URL cdn.zx-adnet.com/consent/sdk.feda0fd8c5f2191f5c4b299585520859048f3705.js IP 151.101.65.195 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:15 Last Seen2024-01-07 13:51:45 Times Seen148 Hash 584b25cddd0511a7ab7394a1cbaca114 df525af3e4d7f2dde63414db57da0219a9cd0815 04149c43558d59b2f0f2cc3f679979b915401ca5c94e833479ca9ea754db0b89 Loading...

	storage.googleapis.com/s2t-images/mr.js?0.026470791099837077	24 kB	2023-03-07	2024-01-07
Pretty URL storage.googleapis.com/s2t-images/mr.js?0.026470791099837077 IP 216.58.207.240 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:40 Last Seen2024-01-07 11:26:23 Times Seen546 Hash 1df031e07974a6e44341a72529e3570d 503ddbd351e7efafb7cd8cd654adb196b54d980a 2a379cf63567796698d75a04f4f49c11fbf652effd3b69b3666c45c77789c56c Loading...

	unknown	103 B	2023-06-02	2023-08-11
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-06-02 13:14:13 Last Seen2023-08-11 11:45:09 Times Seen2 Hash 51f5e45c2b314936be416ad48acee3ca 80bf2dfa86d02ab410a9101ff564d94ef00d7475 1c009044688d115f9d96132d1f9d96e057dd908cd5824b3536da2eb51d8eac84 Loading...

	geolocation.onetrust.com/cookieconsentpub/v1/geo/location/ZxGetConsent	86 B	2023-03-08	2024-01-07
Pretty URL geolocation.onetrust.com/cookieconsentpub/v1/geo/location/ZxGetConsent IP 104.18.28.38 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:16:27 Last Seen2024-01-07 13:51:45 Times Seen47 Hash f7b5d7d5ab24913cd9a22e25d11f398c 1db7fc752ca494e85703417b69705b0ccac25bc1 b6211c495219ba256ea617d04f1c7aa3c31b99a447fd8e676869a8c838cdaad1 Loading...

	unknown	162 B	2023-03-07	2023-08-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:40 Last Seen2023-08-11 11:45:09 Times Seen3 Hash 96e933798ab9babad12894fc92fed3c7 453ab577411fbccea6d505c998b606609a012900 df0ff9e071ae3e893c8f442d91d84f8f25ba1467ab4289fa2eda37051ee66536 Loading...

	steam.pildid.eu/templates/kassandra/wp-includes/js/script.js	10 kB	2023-03-07	2023-08-11
Pretty URL steam.pildid.eu/templates/kassandra/wp-includes/js/script.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:40 Last Seen2023-08-11 11:45:10 Times Seen4 Hash 65fecd1588708e630551facff047f393 b5994f453a88353965b6d3ef00c413223392dcd2 16005e87467d73959cce421371f6957bab3087c68399b5aca7b5841acbcf32aa Loading...

	cdn.zx-adnet.com/consent/ui-gdpr-en.feda0fd8c5f2191f5c4b299585520859048f3705.js	235 kB	2023-04-09	2024-01-07
Pretty URL cdn.zx-adnet.com/consent/ui-gdpr-en.feda0fd8c5f2191f5c4b299585520859048f3705.js IP 151.101.65.195 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-09 15:38:47 Last Seen2024-01-07 13:51:45 Times Seen140 Hash 4b7f29c17821cb950fae5218d65d0583 0dd70bb8de714b4a86f3f720dfbb5220ca7995f1 af23cd02be23f80144e411aad2819db94c02c38d6a6b815b907e11db0a83f4fa Loading...

	code.jquery.com/jquery-1.12.4.min.js	97 kB	2023-03-07	2024-04-18
Pretty URL code.jquery.com/jquery-1.12.4.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-18 13:06:29 Times Seen118521 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	yastatic.net/share2/share.js	146 kB	2023-03-07	2023-09-30
Pretty URL yastatic.net/share2/share.js IP 178.154.131.216 ASN #13238 YANDEX LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-09-30 11:13:38 Times Seen761 Hash d62795f125042b279514d9fb23f826fc ff763b3030b737bb4759dbbad4c3c6019805573c 5eb599b7dd3d7c74c7ecd68cc8b416b0a3ba9b06e1ea9077e0219e4f35dc3627 Loading...

	mos2.biz/?te=mm4dgmzvge5ha3ddf4ztqmzw	10 B	2023-03-07	2024-04-18
Pretty URL mos2.biz/?te=mm4dgmzvge5ha3ddf4ztqmzw IP 185.177.92.30 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:06 Last Seen2024-04-18 08:05:48 Times Seen4482 Hash f495e69f2e9edc75eeae7dd3ea78a747 a89e38bbe70fa2de5db9d578975abd4e9dcda52e 8bf4c7cf443426b4cd8b5a56d22109b4e70314c1d2b8d0eb68887696722c132c Loading...

	steam.pildid.eu/templates/kassandra/wp-content/js/script.js	70 kB	2023-03-07	2023-08-11
Pretty URL steam.pildid.eu/templates/kassandra/wp-content/js/script.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:40 Last Seen2023-08-11 11:45:10 Times Seen5 Hash 8543d24dd07feb7f96c096cbb7113857 4e3203874d4e4f5347ba3d36690f825617db8b9a ad8859f3e1b056d87aa9d3d6648d60eb77bf4000cdbe7b7a167651ef3950ae02 Loading...

HTTP Transactions (40)

	URL	IP	Response	Size
	cdn.zx-adnet.com/adx/twstnv_19091901.js	151.101.65.195	200 OK	20 kB
URL GET HTTP/3 cdn.zx-adnet.com/adx/twstnv_19091901.js IP 151.101.65.195:443 ASN #54113 FASTLY Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectd.hive.properties Fingerprint14:DE:EC:DB:81:51:74:8A:F1:0F:8A:AE:1F:19:A7:2E:CC:38:7B:85 ValidityMon, 08 May 2023 10:26:18 GMT - Sun, 06 Aug 2023 11:24:36 GMT File type Unicode text, UTF-8 (with BOM) text, with very long lines (65052), with CRLF line terminators Size 20 kB (19609 bytes) Hash e3891118b73c57a6bc458b830ec874b6 1df90e1ce9f98fb8305193bafe0aafc7ca5815af 497f005dc49bab49befd0dfff7827e45d50199b318834b647231d3255bd44c41 HTTP Headers `GET /adx/twstnv_19091901.js HTTP/1.1 Host: cdn.zx-adnet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK cache-control: max-age=3600,public content-encoding: br content-type: text/javascript; charset=utf-8 etag: "13dd32dea1db289fc026f64b032369b84cbc2c546d68eedade23cbd7492ff8c3-br" last-modified: Mon, 22 May 2023 17:32:30 GMT strict-transport-security: max-age=31556926 x-robots-tag: noindex, nofollow, noarchive accept-ranges: bytes date: Fri, 02 Jun 2023 11:13:48 GMT x-served-by: cache-bma1636-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1685704428.121821,VS0,VE1 vary: accept-language, x-country-code, x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 19609 X-Firefox-Spdy: h2

	code.jquery.com/jquery-1.12.4.min.js	69.16.175.10	200 OK	34 kB
URL GET HTTP/2 code.jquery.com/jquery-1.12.4.min.js IP 69.16.175.10:443 ASN #20446 STACKPATH-CDN Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerSectigo Limited Subject.jquery.com Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83 ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT File type ASCII text, with very long lines (32077) Size 34 kB (33738 bytes) Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 HTTP Headers `GET /jquery-1.12.4.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://steam.pildid.eu DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-encoding: gzip content-length: 33738 content-type: application/javascript; charset=utf-8 last-modified: Wed, 16 Feb 2022 10:50:39 GMT accept-ranges: bytes server: nginx etag: W/"620cd6ff-17b8b" cache-control: max-age=315360000, public access-control-allow-origin: * vary: Accept-Encoding x-hw: 1685704428.dop220.sk1.t,1685704428.cds204.sk1.hn,1685704428.cds251.sk1.c X-Firefox-Spdy: h2`

	ocsp.globalsign.com/gseccovsslca2018	104.18.21.226		938 B
URL ocsp.globalsign.com/gseccovsslca2018 IP 104.18.21.226:0 ASN #13335 CLOUDFLARENET File type data Size 938 B (938 bytes) Hash c8ba194ab5d78eac46898e0823a57e89 6ef87b61757f362865d355a96528813fd62be3ad b9035334e3f37444e345eaed905f760657bab0ac42cce2cc42159f81c660b9f9 HTTP Headers `POST /gseccovsslca2018 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 02 Jun 2023 11:13:48 GMT Content-Type: application/ocsp-response Content-Length: 938 Connection: keep-alive Expires: Tue, 06 Jun 2023 09:59:08 GMT ETag: "6ef87b61757f362865d355a96528813fd62be3ad" Last-Modified: Fri, 02 Jun 2023 09:59:09 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 2622 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7d0f44e49d81b511-OSL`

	ocsp.pki.goog/s/gts1d4/GjXFgwvISyU	142.250.74.3		472 B
URL ocsp.pki.goog/s/gts1d4/GjXFgwvISyU IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 00f05ca0f1a646fdfd7e61f78b9db365 a429f9334a75e2116063f1165e61fdddbfef09ca da923ace502bb83a972b33a5e288f53266801d774ee800533a4d17f4609a5273 HTTP Headers `POST /s/gts1d4/GjXFgwvISyU HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 02 Jun 2023 11:13:48 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-700.woff2	188.114.96.1	200 OK	27 kB
URL GET HTTP/3 steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-700.woff2 IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 27024, version 1.0\012- data Size 27 kB (27024 bytes) Hash 0eafe432902c04d8f5504850e5476ec1 97a1b649ede4844b08872b28110a79a08e3e9954 86d8e39350cc56b80dfc5b3c283bf2ad1b438c5094bb2fb851887dfe5964f6ba HTTP Headers GET /templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-700.woff2 HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/templates/kassandra/wp-content/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-type: font/woff2 content-length: 27024 last-modified: Fri, 09 Apr 2021 12:22:13 GMT etag: "607046f5-6990" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ux1nK%2Bwzq7dDIYTMgySWBtl5bTs6Bz%2BJQjYrCBdwwBwje47GR0XSbzEfnz%2BCWBbjydiGN6k93LY%2BkqEurwlgR9%2BbntLMOjIX2jd%2FKPGaQlKVlq7nvG6k22ex0uNZn4R3PDk%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7d0f44e3a9f2b4eb-OSL alt-svc: h3=":443"; ma=86400

	steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-regular.woff2	188.114.96.1	200 OK	27 kB
URL GET HTTP/3 steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-regular.woff2 IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 26728, version 1.0\012- data Size 27 kB (26728 bytes) Hash c00ef0dcae0f19198a3343858e105663 44294baeda658c57f4decc1a24be96427e463c2b a7c5cfad7f2544c5134e3373999dbdc64d79f54b0f0641469fd3653a16f30a28 HTTP Headers GET /templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-regular.woff2 HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/templates/kassandra/wp-content/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-type: font/woff2 content-length: 26728 last-modified: Fri, 09 Apr 2021 12:22:30 GMT etag: "60704706-6868" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KUPY0UyiWPHbqIULznC1hp3FngYYuRXKGLNpivrFGPDqJgmJeJ%2FRkOc0czNZVTexrVksEvM89G93yOFGY5r3UfKb1IFFh2%2BjH8cQmVwUF3kpwTJ4ysvJvrMVp%2FcwrZM78MQ%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7d0f44e3a9f3b4eb-OSL alt-svc: h3=":443"; ma=86400

	steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-regular.woff2	188.114.96.1	200 OK	27 kB
URL GET HTTP/3 steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-regular.woff2 IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 26728, version 1.0\012- data Size 27 kB (26728 bytes) Hash c00ef0dcae0f19198a3343858e105663 44294baeda658c57f4decc1a24be96427e463c2b a7c5cfad7f2544c5134e3373999dbdc64d79f54b0f0641469fd3653a16f30a28 HTTP Headers GET /templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-regular.woff2 HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/templates/kassandra/wp-content/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-type: font/woff2 content-length: 26728 last-modified: Fri, 09 Apr 2021 12:22:30 GMT etag: "60704706-6868" cache-control: max-age=14400 cf-cache-status: HIT age: 0 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H0WYn1XSwUjoPtjWzlIwjX9wHRbwdQ6cArmJ5Z5AuzTfn63klGSnZ%2FIwtGSYZZMzgMeozTNnNjz6K7pFuEhnOKo8Z0O4xPhEUAtahcRicCGbBBuACX%2BgzGpobYgz5K1U6PQ%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7d0f44e60d31b4eb-OSL alt-svc: h3=":443"; ma=86400

	steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-700.woff2	188.114.96.1	200 OK	27 kB
URL GET HTTP/3 steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-700.woff2 IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 27024, version 1.0\012- data Size 27 kB (27024 bytes) Hash 0eafe432902c04d8f5504850e5476ec1 97a1b649ede4844b08872b28110a79a08e3e9954 86d8e39350cc56b80dfc5b3c283bf2ad1b438c5094bb2fb851887dfe5964f6ba HTTP Headers GET /templates/kassandra/wp-content/themes/kassandra/admin/fonts/alegreya-sans/alegreya-sans-v8-cyrillic_latin-700.woff2 HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/templates/kassandra/wp-content/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-type: font/woff2 content-length: 27024 last-modified: Fri, 09 Apr 2021 12:22:13 GMT etag: "607046f5-6990" cache-control: max-age=14400 cf-cache-status: HIT age: 0 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PuSlYB4RVutbFpMQV0hpE1VinxQu5Q26G1TVgdZAqGYjdznE3UkHJ8T%2FEyoaVmRM%2BeVUKFuDefV2vpcKg8nkh1LCJAT%2FgAoeoDhSKbBHMJPhX1QvAoORkiTbJoKULyX%2FKxg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7d0f44e60d2eb4eb-OSL alt-svc: h3=":443"; ma=86400

	steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/admin/fonts/font-awesome/fontawesome-webfont.woff2?v=4.7.0	188.114.96.1	200 OK	77 kB
URL GET HTTP/3 steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/admin/fonts/font-awesome/fontawesome-webfont.woff2?v=4.7.0 IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Size 77 kB (77160 bytes) Hash af7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe HTTP Headers GET /templates/kassandra/wp-content/themes/kassandra/admin/fonts/font-awesome/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/templates/kassandra/wp-content/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-type: font/woff2 content-length: 77160 last-modified: Fri, 09 Apr 2021 12:51:18 GMT etag: "60704dc6-12d68" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mVJ%2F5%2BZ%2FEPJuzdGVt29rCq4OI2HmqijOmJgvFFwovKsBuBRzU5dGPPRaEn1wUNDzJIJLpft3wKYhUYvRQ1ub%2FeSQScvyjEm%2F7FNV8rx%2FBd96zR3xdmY0cpBCHV7oBFoBJrc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7d0f44e3ba00b4eb-OSL alt-svc: h3=":443"; ma=86400

	code.jquery.com/jquery-1.12.4.min.js	69.16.175.10	200 OK	34 kB
URL GET HTTP/2 code.jquery.com/jquery-1.12.4.min.js IP 69.16.175.10:443 ASN #20446 STACKPATH-CDN Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerSectigo Limited Subject.jquery.com Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83 ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT File type ASCII text, with very long lines (32077) Size 34 kB (33738 bytes) Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 HTTP Headers `GET /jquery-1.12.4.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://steam.pildid.eu DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-encoding: gzip content-length: 33738 content-type: application/javascript; charset=utf-8 last-modified: Wed, 16 Feb 2022 10:50:39 GMT accept-ranges: bytes server: nginx etag: W/"620cd6ff-17b8b" cache-control: max-age=315360000, public access-control-allow-origin: * vary: Accept-Encoding x-hw: 1685704428.dop220.sk1.t,1685704428.cds204.sk1.hn,1685704428.cds251.sk1.c X-Firefox-Spdy: h2`

	cdn.zx-adnet.com/adx/twstnv_19091901.js	151.101.65.195	200 OK	20 kB
URL GET HTTP/3 cdn.zx-adnet.com/adx/twstnv_19091901.js IP 151.101.65.195:443 ASN #54113 FASTLY Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectd.hive.properties Fingerprint14:DE:EC:DB:81:51:74:8A:F1:0F:8A:AE:1F:19:A7:2E:CC:38:7B:85 ValidityMon, 08 May 2023 10:26:18 GMT - Sun, 06 Aug 2023 11:24:36 GMT File type Unicode text, UTF-8 (with BOM) text, with very long lines (65052), with CRLF line terminators Size 20 kB (19609 bytes) Hash e3891118b73c57a6bc458b830ec874b6 1df90e1ce9f98fb8305193bafe0aafc7ca5815af 497f005dc49bab49befd0dfff7827e45d50199b318834b647231d3255bd44c41 HTTP Headers `GET /adx/twstnv_19091901.js HTTP/1.1 Host: cdn.zx-adnet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-length: 19609 cache-control: max-age=3600,public content-encoding: br content-type: text/javascript; charset=utf-8 etag: "13dd32dea1db289fc026f64b032369b84cbc2c546d68eedade23cbd7492ff8c3-br" last-modified: Mon, 22 May 2023 17:32:30 GMT strict-transport-security: max-age=31556926 x-robots-tag: noindex, nofollow, noarchive accept-ranges: bytes date: Fri, 02 Jun 2023 11:13:48 GMT x-served-by: cache-bma1628-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1685704429.687807,VS0,VE1 vary: accept-language, x-country-code, x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

	cdn.zx-adnet.com/adx/twstnv_19091901.js	151.101.65.195	200 OK	20 kB
URL GET HTTP/3 cdn.zx-adnet.com/adx/twstnv_19091901.js IP 151.101.65.195:443 ASN #54113 FASTLY Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectd.hive.properties Fingerprint14:DE:EC:DB:81:51:74:8A:F1:0F:8A:AE:1F:19:A7:2E:CC:38:7B:85 ValidityMon, 08 May 2023 10:26:18 GMT - Sun, 06 Aug 2023 11:24:36 GMT File type Unicode text, UTF-8 (with BOM) text, with very long lines (65052), with CRLF line terminators Size 20 kB (19609 bytes) Hash e3891118b73c57a6bc458b830ec874b6 1df90e1ce9f98fb8305193bafe0aafc7ca5815af 497f005dc49bab49befd0dfff7827e45d50199b318834b647231d3255bd44c41 HTTP Headers `GET /adx/twstnv_19091901.js HTTP/1.1 Host: cdn.zx-adnet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-length: 19609 cache-control: max-age=3600,public content-encoding: br content-type: text/javascript; charset=utf-8 etag: "13dd32dea1db289fc026f64b032369b84cbc2c546d68eedade23cbd7492ff8c3-br" last-modified: Mon, 22 May 2023 17:32:30 GMT strict-transport-security: max-age=31556926 x-robots-tag: noindex, nofollow, noarchive accept-ranges: bytes date: Fri, 02 Jun 2023 11:13:48 GMT x-served-by: cache-bma1628-BMA x-cache: HIT x-cache-hits: 2 x-timer: S1685704429.738297,VS0,VE0 vary: accept-language, x-country-code, x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

	cdn.zx-adnet.com/adx/abs.js?0.646719769990798	151.101.65.195	200 OK	107 B
URL GET HTTP/3 cdn.zx-adnet.com/adx/abs.js?0.646719769990798 IP 151.101.65.195:443 ASN #54113 FASTLY Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectd.hive.properties Fingerprint14:DE:EC:DB:81:51:74:8A:F1:0F:8A:AE:1F:19:A7:2E:CC:38:7B:85 ValidityMon, 08 May 2023 10:26:18 GMT - Sun, 06 Aug 2023 11:24:36 GMT File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Size 107 B (107 bytes) Hash 36c3b4468856ac2028e3eb9b2c7bd798 f809af35e15792a88dd96466882bf6a1abee9469 e77b8be38aa44412abec0bc0699e78588e805606b9de5ac6cf381943562ec27b HTTP Headers `GET /adx/abs.js?0.646719769990798 HTTP/1.1 Host: cdn.zx-adnet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-length: 107 cache-control: max-age=3600,public content-encoding: br content-type: text/javascript; charset=utf-8 etag: "5fef2687ef3b38d2357073d43abb64a2f46b34fce9295b7d515ee95b7d79cfdb-br" last-modified: Mon, 22 May 2023 17:32:30 GMT strict-transport-security: max-age=31556926 x-robots-tag: noindex, nofollow, noarchive accept-ranges: bytes date: Fri, 02 Jun 2023 11:13:48 GMT x-served-by: cache-bma1628-BMA x-cache: MISS x-cache-hits: 0 x-timer: S1685704429.685800,VS0,VE56 vary: accept-language, x-country-code, x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

	cdn.zx-adnet.com/adx/twstnv_19091901.js	151.101.65.195	200 OK	20 kB
URL GET HTTP/3 cdn.zx-adnet.com/adx/twstnv_19091901.js IP 151.101.65.195:443 ASN #54113 FASTLY Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectd.hive.properties Fingerprint14:DE:EC:DB:81:51:74:8A:F1:0F:8A:AE:1F:19:A7:2E:CC:38:7B:85 ValidityMon, 08 May 2023 10:26:18 GMT - Sun, 06 Aug 2023 11:24:36 GMT File type Unicode text, UTF-8 (with BOM) text, with very long lines (65052), with CRLF line terminators Size 20 kB (19609 bytes) Hash e3891118b73c57a6bc458b830ec874b6 1df90e1ce9f98fb8305193bafe0aafc7ca5815af 497f005dc49bab49befd0dfff7827e45d50199b318834b647231d3255bd44c41 HTTP Headers `GET /adx/twstnv_19091901.js HTTP/1.1 Host: cdn.zx-adnet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-length: 19609 cache-control: max-age=3600,public content-encoding: br content-type: text/javascript; charset=utf-8 etag: "13dd32dea1db289fc026f64b032369b84cbc2c546d68eedade23cbd7492ff8c3-br" last-modified: Mon, 22 May 2023 17:32:30 GMT strict-transport-security: max-age=31556926 x-robots-tag: noindex, nofollow, noarchive accept-ranges: bytes date: Fri, 02 Jun 2023 11:13:48 GMT x-served-by: cache-bma1628-BMA x-cache: HIT x-cache-hits: 3 x-timer: S1685704429.775983,VS0,VE0 vary: accept-language, x-country-code, x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

	steam.pildid.eu/qa/a28e706f39811/	188.114.96.1	200 OK	26 kB
URL GET HTTP/3 steam.pildid.eu/qa/a28e706f39811/ IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1841) Size 26 kB (25931 bytes) Hash d481a3f7327dc23653b3fb6873485cc0 0423ab00a536cd7e6e2ca35a7f70a24edfb9de03 7ed2bc21b83256ba1b7ea9afe995abf7368739ebe774def239b64d3735b9db9a HTTP Headers `GET /qa/a28e706f39811/ HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Moz: prefetch DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/qa/f541ebdadc9d2/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nR3mpTn%2Fvq5uXruMHhIYfYWnOTEgbj4%2FFdevW9otj9vds6sg27QIGrtgtN4NM07wdVkNju3h4WCrMSHHfmv%2BEj9Jyf7Ft6R4Dy%2FolP1cxCeceOqOK7v2383Q9qOL6dNVuhg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d0f44e71ed7b4eb-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	steam.pildid.eu/templates/kassandra/wp-content/js/script.js	188.114.96.1	200 OK	20 kB
URL GET HTTP/3 steam.pildid.eu/templates/kassandra/wp-content/js/script.js IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (65470) Size 20 kB (20392 bytes) Hash 8543d24dd07feb7f96c096cbb7113857 4e3203874d4e4f5347ba3d36690f825617db8b9a ad8859f3e1b056d87aa9d3d6648d60eb77bf4000cdbe7b7a167651ef3950ae02 HTTP Headers `GET /templates/kassandra/wp-content/js/script.js HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/qa/f541ebdadc9d2/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-type: application/javascript last-modified: Fri, 09 Apr 2021 15:47:56 GMT vary: Accept-Encoding etag: W/"6070772c-10f8d" cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9Z2%2Fu2BASmes1RRhfHE31sRUxhgqr5lxo3DvQy09lD81BjDT8mTjwncnQi25hkExTMBA7IhPJ91mt6r1ogxl2GotX%2Fa%2FjzhT9rLRhlGBKcAXgcz%2BA3JjyDcsnJdZFILXMiU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d0f44e379b2b4eb-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	cdn.zx-adnet.com/adx/twstnv_19091901.js	151.101.65.195	200 OK	20 kB
URL GET HTTP/3 cdn.zx-adnet.com/adx/twstnv_19091901.js IP 151.101.65.195:443 ASN #54113 FASTLY Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectd.hive.properties Fingerprint14:DE:EC:DB:81:51:74:8A:F1:0F:8A:AE:1F:19:A7:2E:CC:38:7B:85 ValidityMon, 08 May 2023 10:26:18 GMT - Sun, 06 Aug 2023 11:24:36 GMT File type Unicode text, UTF-8 (with BOM) text, with very long lines (65052), with CRLF line terminators Size 20 kB (19609 bytes) Hash e3891118b73c57a6bc458b830ec874b6 1df90e1ce9f98fb8305193bafe0aafc7ca5815af 497f005dc49bab49befd0dfff7827e45d50199b318834b647231d3255bd44c41 HTTP Headers `GET /adx/twstnv_19091901.js HTTP/1.1 Host: cdn.zx-adnet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-length: 19609 cache-control: max-age=3600,public content-encoding: br content-type: text/javascript; charset=utf-8 etag: "13dd32dea1db289fc026f64b032369b84cbc2c546d68eedade23cbd7492ff8c3-br" last-modified: Mon, 22 May 2023 17:32:30 GMT strict-transport-security: max-age=31556926 x-robots-tag: noindex, nofollow, noarchive accept-ranges: bytes date: Fri, 02 Jun 2023 11:13:48 GMT x-served-by: cache-bma1628-BMA x-cache: HIT x-cache-hits: 5 x-timer: S1685704429.865355,VS0,VE0 vary: accept-language, x-country-code, x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

	cdn.zx-adnet.com/adx/twstnv_19091901.js	151.101.65.195	200 OK	20 kB
URL GET HTTP/3 cdn.zx-adnet.com/adx/twstnv_19091901.js IP 151.101.65.195:443 ASN #54113 FASTLY Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectd.hive.properties Fingerprint14:DE:EC:DB:81:51:74:8A:F1:0F:8A:AE:1F:19:A7:2E:CC:38:7B:85 ValidityMon, 08 May 2023 10:26:18 GMT - Sun, 06 Aug 2023 11:24:36 GMT File type Unicode text, UTF-8 (with BOM) text, with very long lines (65052), with CRLF line terminators Size 20 kB (19609 bytes) Hash e3891118b73c57a6bc458b830ec874b6 1df90e1ce9f98fb8305193bafe0aafc7ca5815af 497f005dc49bab49befd0dfff7827e45d50199b318834b647231d3255bd44c41 HTTP Headers `GET /adx/twstnv_19091901.js HTTP/1.1 Host: cdn.zx-adnet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-length: 19609 cache-control: max-age=3600,public content-encoding: br content-type: text/javascript; charset=utf-8 etag: "13dd32dea1db289fc026f64b032369b84cbc2c546d68eedade23cbd7492ff8c3-br" last-modified: Mon, 22 May 2023 17:32:30 GMT strict-transport-security: max-age=31556926 x-robots-tag: noindex, nofollow, noarchive accept-ranges: bytes date: Fri, 02 Jun 2023 11:13:48 GMT x-served-by: cache-bma1628-BMA x-cache: HIT x-cache-hits: 6 x-timer: S1685704429.866607,VS0,VE0 vary: accept-language, x-country-code, x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

	cdn.zx-adnet.com/checkabuse?surl=https%3A%2F%2Fsteam.pildid.eu%2Fqa%2Ff541ebdadc9d2%2F	151.101.65.195		65 B
URL GET cdn.zx-adnet.com/checkabuse?surl=https%3A%2F%2Fsteam.pildid.eu%2Fqa%2Ff541ebdadc9d2%2F IP 151.101.65.195:0 ASN #54113 FASTLY Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectd.hive.properties Fingerprint14:DE:EC:DB:81:51:74:8A:F1:0F:8A:AE:1F:19:A7:2E:CC:38:7B:85 ValidityMon, 08 May 2023 10:26:18 GMT - Sun, 06 Aug 2023 11:24:36 GMT File type ASCII text, with no line terminators Size 65 B (65 bytes) Hash c6fb6e04ed0701a18c773a9c685933df aa7a3656d2ab286ac491e5b219e35be7950c56fa 8601386271d3ba06c1135a092613135c5da90b3732a8196e4761faf4b1afdc69 HTTP Headers `GET /checkabuse?surl=https%3A%2F%2Fsteam.pildid.eu%2Fqa%2Ff541ebdadc9d2%2F HTTP/1.1 Host: cdn.zx-adnet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-length: 65 cache-control: max-age=3600,public content-encoding: gzip content-type: text/html; charset=utf-8 etag: W/"38-qno2VtKrKGrEkeWyGeNb55UMVvo" function-execution-id: 1z2200hbxddw server: Google Frontend strict-transport-security: max-age=31556926 x-cloud-trace-context: 0b86005d6da7a54dc31b8b22ef3eaac1 x-country-code: NO x-orig-accept-language: en-US,en;q=0.5 accept-ranges: bytes date: Fri, 02 Jun 2023 11:13:48 GMT x-served-by: cache-bma1628-BMA x-cache: MISS x-cache-hits: 0 x-timer: S1685704429.776489,VS0,VE163 vary: cookie,need-authorization, x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

	ocsp.pki.goog/gts1c3	142.250.74.3		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 679123d82bc8d87bc3c03fbd5da3ba64 79d8673d871e87ddf86b55c456a8a9425b6f52e1 a97158881a46088e71b75e4172dac545a22548ef1a69f1ef8b0ecd55654f7fab HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 02 Jun 2023 11:13:49 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 679123d82bc8d87bc3c03fbd5da3ba64 79d8673d871e87ddf86b55c456a8a9425b6f52e1 a97158881a46088e71b75e4172dac545a22548ef1a69f1ef8b0ecd55654f7fab HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 02 Jun 2023 11:13:49 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 679123d82bc8d87bc3c03fbd5da3ba64 79d8673d871e87ddf86b55c456a8a9425b6f52e1 a97158881a46088e71b75e4172dac545a22548ef1a69f1ef8b0ecd55654f7fab HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 02 Jun 2023 11:13:49 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 679123d82bc8d87bc3c03fbd5da3ba64 79d8673d871e87ddf86b55c456a8a9425b6f52e1 a97158881a46088e71b75e4172dac545a22548ef1a69f1ef8b0ecd55654f7fab HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 02 Jun 2023 11:13:49 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn.zx-adnet.com/consent/sdk.feda0fd8c5f2191f5c4b299585520859048f3705.js	151.101.65.195	200 OK	67 kB
URL GET HTTP/3 cdn.zx-adnet.com/consent/sdk.feda0fd8c5f2191f5c4b299585520859048f3705.js IP 151.101.65.195:443 ASN #54113 FASTLY Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectd.hive.properties Fingerprint14:DE:EC:DB:81:51:74:8A:F1:0F:8A:AE:1F:19:A7:2E:CC:38:7B:85 ValidityMon, 08 May 2023 10:26:18 GMT - Sun, 06 Aug 2023 11:24:36 GMT File type Unicode text, UTF-8 (with BOM) text, with very long lines (36913), with CRLF line terminators Size 67 kB (67057 bytes) Hash 6bdcc0ec07ed0853b70cf1456a734ffe 7c78670e592c78e30e8e98450534f15147039a08 e3ac1173c086c46b2f9e731504ced4f2d01bc76582f6b4c20cdd74b0502efe6b HTTP Headers `GET /consent/sdk.feda0fd8c5f2191f5c4b299585520859048f3705.js HTTP/1.1 Host: cdn.zx-adnet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-length: 67057 cache-control: public, max-age=315000 content-encoding: br content-type: text/javascript; charset=utf-8 etag: "903d4e9708a69e8cc899413e10c8bd8c12ff0e8553c05df46fc83d843518567b-br" last-modified: Mon, 22 May 2023 17:32:30 GMT strict-transport-security: max-age=31556926 accept-ranges: bytes date: Fri, 02 Jun 2023 11:13:49 GMT x-served-by: cache-bma1628-BMA x-cache: HIT x-cache-hits: 2 x-timer: S1685704429.154882,VS0,VE0 vary: accept-language, x-country-code, x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

	storage.googleapis.com/s2t-images/mr.js?0.3847650508473929	216.58.207.240	200 OK	4.4 kB
URL GET HTTP/2 storage.googleapis.com/s2t-images/mr.js?0.3847650508473929 IP 216.58.207.240:443 ASN #15169 GOOGLE Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectstorage.googleapis.com Fingerprint20:AF:2D:1C:39:BE:B8:DE:CC:8E:34:50:EB:6F:72:00:E6:2D:F6:99 ValidityMon, 08 May 2023 08:27:30 GMT - Mon, 31 Jul 2023 08:27:29 GMT File type ASCII text, with very long lines (23729), with no line terminators Size 4.4 kB (4449 bytes) Hash 1df031e07974a6e44341a72529e3570d 503ddbd351e7efafb7cd8cd654adb196b54d980a 2a379cf63567796698d75a04f4f49c11fbf652effd3b69b3666c45c77789c56c HTTP Headers `GET /s2t-images/mr.js?0.3847650508473929 HTTP/1.1 Host: storage.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-guploader-uploadid: ADPycdsbl5n5fpqMe_UHDAbk0kUiWGfKG2jJgClv8dg-Zv_RbfGNSfc-lE-Iq-wmx4fdmaqqX6DqOusz1-HgKPmx6aZKzg date: Fri, 02 Jun 2023 11:13:49 GMT cache-control: public, max-age=31536000 expires: Sat, 01 Jun 2024 11:13:49 GMT last-modified: Tue, 24 May 2022 13:22:38 GMT etag: "115f5664d494ea5e45aad8061e45949d" vary: Accept-Encoding x-goog-generation: 1653398558715037 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 4449 content-type: application/javascript content-encoding: gzip x-goog-hash: crc32c=1nfj4g==, md5=EV9WZNSU6l5FqtgGHkWUnQ== x-goog-storage-class: STANDARD accept-ranges: bytes content-length: 4449 server: UploadServer alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	storage.googleapis.com/s2t-images/mr.js?0.1656875425183918	216.58.207.240	200 OK	4.4 kB
URL GET HTTP/2 storage.googleapis.com/s2t-images/mr.js?0.1656875425183918 IP 216.58.207.240:443 ASN #15169 GOOGLE Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectstorage.googleapis.com Fingerprint20:AF:2D:1C:39:BE:B8:DE:CC:8E:34:50:EB:6F:72:00:E6:2D:F6:99 ValidityMon, 08 May 2023 08:27:30 GMT - Mon, 31 Jul 2023 08:27:29 GMT File type ASCII text, with very long lines (23729), with no line terminators Size 4.4 kB (4449 bytes) Hash 1df031e07974a6e44341a72529e3570d 503ddbd351e7efafb7cd8cd654adb196b54d980a 2a379cf63567796698d75a04f4f49c11fbf652effd3b69b3666c45c77789c56c HTTP Headers `GET /s2t-images/mr.js?0.1656875425183918 HTTP/1.1 Host: storage.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-guploader-uploadid: ADPycds3loG9Byc0s7OWcE56y0C3du7S-ryJ6agfmhOe5veMzKHKk1_JNedN0XvluLDUQ-Yr4309DP52EwYhm5_cLkQT3McLAgwe date: Fri, 02 Jun 2023 11:13:49 GMT cache-control: public, max-age=31536000 expires: Sat, 01 Jun 2024 11:13:49 GMT last-modified: Tue, 24 May 2022 13:22:38 GMT etag: "115f5664d494ea5e45aad8061e45949d" vary: Accept-Encoding x-goog-generation: 1653398558715037 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 4449 content-type: application/javascript content-encoding: gzip x-goog-hash: crc32c=1nfj4g==, md5=EV9WZNSU6l5FqtgGHkWUnQ== x-goog-storage-class: STANDARD accept-ranges: bytes content-length: 4449 server: UploadServer alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	storage.googleapis.com/s2t-images/mr.js?0.11386112618518118	216.58.207.240	200 OK	4.4 kB
URL GET HTTP/2 storage.googleapis.com/s2t-images/mr.js?0.11386112618518118 IP 216.58.207.240:443 ASN #15169 GOOGLE Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectstorage.googleapis.com Fingerprint20:AF:2D:1C:39:BE:B8:DE:CC:8E:34:50:EB:6F:72:00:E6:2D:F6:99 ValidityMon, 08 May 2023 08:27:30 GMT - Mon, 31 Jul 2023 08:27:29 GMT File type ASCII text, with very long lines (23729), with no line terminators Size 4.4 kB (4449 bytes) Hash 1df031e07974a6e44341a72529e3570d 503ddbd351e7efafb7cd8cd654adb196b54d980a 2a379cf63567796698d75a04f4f49c11fbf652effd3b69b3666c45c77789c56c HTTP Headers `GET /s2t-images/mr.js?0.11386112618518118 HTTP/1.1 Host: storage.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-guploader-uploadid: ADPycducO5dSL7dFahW82RumN3CZv9rYwklW7Dul2CCE9PGviWy8BmuVCtGkcUEAPnALWFf4RAKbKO_j4ES8YhRsFoh3BbhPOrsE date: Fri, 02 Jun 2023 11:13:49 GMT cache-control: public, max-age=31536000 expires: Sat, 01 Jun 2024 11:13:49 GMT last-modified: Tue, 24 May 2022 13:22:38 GMT etag: "115f5664d494ea5e45aad8061e45949d" vary: Accept-Encoding x-goog-generation: 1653398558715037 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 4449 content-type: application/javascript content-encoding: gzip x-goog-hash: crc32c=1nfj4g==, md5=EV9WZNSU6l5FqtgGHkWUnQ== x-goog-storage-class: STANDARD accept-ranges: bytes content-length: 4449 server: UploadServer alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	storage.googleapis.com/s2t-images/mr.js?0.026470791099837077	216.58.207.240	200 OK	4.4 kB
URL GET HTTP/2 storage.googleapis.com/s2t-images/mr.js?0.026470791099837077 IP 216.58.207.240:443 ASN #15169 GOOGLE Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectstorage.googleapis.com Fingerprint20:AF:2D:1C:39:BE:B8:DE:CC:8E:34:50:EB:6F:72:00:E6:2D:F6:99 ValidityMon, 08 May 2023 08:27:30 GMT - Mon, 31 Jul 2023 08:27:29 GMT File type ASCII text, with very long lines (23729), with no line terminators Size 4.4 kB (4449 bytes) Hash 1df031e07974a6e44341a72529e3570d 503ddbd351e7efafb7cd8cd654adb196b54d980a 2a379cf63567796698d75a04f4f49c11fbf652effd3b69b3666c45c77789c56c HTTP Headers `GET /s2t-images/mr.js?0.026470791099837077 HTTP/1.1 Host: storage.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-guploader-uploadid: ADPycdvexDbJPuq5AsuFmdG7OifyeHcYfCvZayjo36RRAM_QdAGnRz2G60zgF2fcYZE6TQRMuXdIGupSEQHMX-2HbMt65A date: Fri, 02 Jun 2023 11:13:49 GMT cache-control: public, max-age=31536000 expires: Sat, 01 Jun 2024 11:13:49 GMT last-modified: Tue, 24 May 2022 13:22:38 GMT etag: "115f5664d494ea5e45aad8061e45949d" vary: Accept-Encoding x-goog-generation: 1653398558715037 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 4449 content-type: application/javascript content-encoding: gzip x-goog-hash: crc32c=1nfj4g==, md5=EV9WZNSU6l5FqtgGHkWUnQ== x-goog-storage-class: STANDARD accept-ranges: bytes content-length: 4449 server: UploadServer alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 679123d82bc8d87bc3c03fbd5da3ba64 79d8673d871e87ddf86b55c456a8a9425b6f52e1 a97158881a46088e71b75e4172dac545a22548ef1a69f1ef8b0ecd55654f7fab HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 02 Jun 2023 11:13:49 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	geolocation.onetrust.com/cookieconsentpub/v1/geo/location/ZxGetConsent	104.18.28.38	200 OK	38 kB
URL GET HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location/ZxGetConsent IP 104.18.28.38:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectonetrust.com Fingerprint9E:F3:57:7F:94:76:6C:42:96:83:B5:15:57:B4:17:C4:0A:90:F6:3D ValidityTue, 13 Dec 2022 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 38 kB (37934 bytes) Hash f56b0676ef4800a0fc4ddfb1fd776e86 224684175a695957774fc7af36c6649594f0b740 fa0f6cf9258756d7a7aa22308a0ed1d62f68fdfdc41e80a03bcada72ce675a8a HTTP Headers `GET /cookieconsentpub/v1/geo/location/ZxGetConsent HTTP/1.1 Host: geolocation.onetrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 02 Jun 2023 11:13:49 GMT content-type: text/javascript vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7d0f44e9ecd5b505-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	site2text-2021.web.app/gw_251221.js?0.07238380386751586	199.36.158.100	200 OK	0 B
URL GET HTTP/2 site2text-2021.web.app/gw_251221.js?0.07238380386751586 IP 199.36.158.100:443 ASN #54113 FASTLY Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectweb.app Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22 ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /gw_251221.js?0.07238380386751586 HTTP/1.1 Host: site2text-2021.web.app User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK cache-control: private content-type: text/html function-execution-id: xdv4eriumfpf server: Google Frontend strict-transport-security: max-age=31556926; includeSubDomains; preload x-cloud-trace-context: 6666bd593fb54baf5a193fa480621d58 x-country-code: NO x-orig-accept-language: en-US,en;q=0.5 accept-ranges: bytes date: Fri, 02 Jun 2023 11:13:49 GMT x-served-by: cache-bma1660-BMA x-cache: MISS x-cache-hits: 0 x-timer: S1685704429.435415,VS0,VE182 vary: cookie,need-authorization, x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 0 X-Firefox-Spdy: h2

	ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8	142.250.74.3		472 B
URL ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c71533c4704c778fa30223cb4a41e7a6 b53f269f4dc4ed742c7b38be79958d37e8482f97 37988e16d2de6ebd0c9ed907a98806ddb4632296be5b9b6407fe4c72aa6eca2f HTTP Headers `POST /s/gts1d4int/wrllXI_-LL8 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 02 Jun 2023 11:13:49 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	steam.pildid.eu/qa/f541ebdadc9d2/	188.114.96.1	200 OK	25 kB
URL User Request GET HTTP/2 steam.pildid.eu/qa/f541ebdadc9d2/ IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type Size 25 kB (24577 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /qa/f541ebdadc9d2/ HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 02 Jun 2023 11:13:47 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s0QxdQdtfxCX%2BouZkVLs0MnHnHiThnC7%2F2ub72n2wA8wer%2Fw1ABXZr2C4CxZb7CIJXof%2FCAA0M40H5jvI5QWogJnlwMHHsITCuPc2C1qSGtfvHLGJf6rfqaNiuRgIAHQNHU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d0f44dd9a91b500-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	steam.pildid.eu/templates/kassandra/wp-content/css/style.css	188.114.96.1	200 OK	146 kB
URL GET HTTP/3 steam.pildid.eu/templates/kassandra/wp-content/css/style.css IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type Size 146 kB (146452 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /templates/kassandra/wp-content/css/style.css HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/qa/f541ebdadc9d2/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-type: text/css last-modified: Fri, 09 Apr 2021 15:48:29 GMT vary: Accept-Encoding etag: W/"6070774d-23c14" cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UqRsKmL1zhLdMHJvbZuj4cH859Q91MLnBuNCmfiMzO4p3L4D8obGjgZogH2ve7tMBI8h17o4RBV%2FmqJeIlgsnGGmZONwdDV0WocZqfA1w9P2TDSN%2FwMI3SGARDwmllDdmVk%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d0f44e0fe8eb4eb-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/img/demo/favicon.png	188.114.96.1	200 OK	675 B
URL GET HTTP/3 steam.pildid.eu/templates/kassandra/wp-content/themes/kassandra/img/demo/favicon.png IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type PNG image data, 50 x 50, 8-bit/color RGB, non-interlaced\012- data Size 675 B (675 bytes) Hash 78a13c98b49be7b64f1a2fc9404bd00e 3b945ef9d90b2fce842430871bbe4712542e53d2 80157b3d1cab1b0387d7a3f7ed579449f56ca2a5390214ca9442e357f5d65ace HTTP Headers `GET /templates/kassandra/wp-content/themes/kassandra/img/demo/favicon.png HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/qa/f541ebdadc9d2/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-type: image/png content-length: 675 last-modified: Wed, 07 Nov 2018 19:19:52 GMT etag: "5be33ad8-2a3" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P2H37YHGDCjjUU2pGXVxVBvLUworLH2aAmcImZ75LQ4zyFUasz7skTu%2Bw7fXYQyhn%2BpUosmpMBvizCX%2F5B9IBrbWcbvxEmQfCaXA%2F%2FjCIbVhANtKjCHlaj1sAsBhNU1IT7c%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7d0f44e6ce4bb4eb-OSL alt-svc: h3=":443"; ma=86400

	steam.pildid.eu/templates/kassandra/wp-includes/js/script.js	188.114.96.1	200 OK	10 kB
URL GET HTTP/3 steam.pildid.eu/templates/kassandra/wp-includes/js/script.js IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type HTML document, Unicode text, UTF-8 text, with very long lines (9847), with no line terminators Size 10 kB (10159 bytes) Hash 903be25fb3bbf1ad2324a318a674e2de a1d398dbbab34c5942fe61b5325b400004c1e9ee b016fafab9dc8cfac164a72096b4f97b42e9ad27fd23802e233b209705987066 HTTP Headers `GET /templates/kassandra/wp-includes/js/script.js HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/qa/f541ebdadc9d2/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-type: application/javascript last-modified: Tue, 22 Feb 2022 12:19:25 GMT vary: Accept-Encoding etag: W/"6214d4cd-27af" cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qwf1nqpbHRUPHN6RZL0TtwnLjuaxVZ27QRKP8Dz4lr8e5XsXUVD5PIk8hriexOwoWTKQu98m7zJMjA4irf0k5A8oBvE56%2FRzAFHQgj4nDx7nsb4clFl2jaRwTMmERAHUNK8%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d0f44e399d9b4eb-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	yastatic.net/share2/share.js	178.154.131.216	200 OK	146 kB
URL GET HTTP/2 yastatic.net/share2/share.js IP 178.154.131.216:443 ASN #13238 YANDEX LLC Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGlobalSign nv-sa Subject.yastatic-net.ru Fingerprint1E:9C:CB:51:80:B4:F8:82:7C:FD:A0:DC:F2:A3:29:78:CE:B1:38:00 ValidityWed, 01 Feb 2023 12:46:48 GMT - Tue, 01 Aug 2023 20:59:59 GMT File type Size 146 kB (145596 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /share2/share.js HTTP/1.1 Host: yastatic.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx/1.17.9 date: Fri, 02 Jun 2023 11:13:48 GMT content-type: application/javascript; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=216009 content-encoding: br etag: W/"d62795f125042b279514d9fb23f826fc" expires: Sun, 04 Jun 2023 23:13:31 GMT last-modified: Tue, 21 Jun 2022 14:09:09 GMT nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01} report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]} strict-transport-security: max-age=43200000; includeSubDomains; timing-allow-origin: * vary: Accept-Encoding x-content-type-options: nosniff x-robots-tag: noindex, noarchive, nofollow x-xss-protection: 1; mode=block X-Firefox-Spdy: h2

	cdn.zx-adnet.com/consent/ui-gdpr-en.feda0fd8c5f2191f5c4b299585520859048f3705.js	151.101.65.195	200 OK	235 kB
URL GET HTTP/3 cdn.zx-adnet.com/consent/ui-gdpr-en.feda0fd8c5f2191f5c4b299585520859048f3705.js IP 151.101.65.195:443 ASN #54113 FASTLY Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerGoogle Trust Services LLC Subjectd.hive.properties Fingerprint14:DE:EC:DB:81:51:74:8A:F1:0F:8A:AE:1F:19:A7:2E:CC:38:7B:85 ValidityMon, 08 May 2023 10:26:18 GMT - Sun, 06 Aug 2023 11:24:36 GMT File type Size 235 kB (235319 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /consent/ui-gdpr-en.feda0fd8c5f2191f5c4b299585520859048f3705.js HTTP/1.1 Host: cdn.zx-adnet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK content-length: 37832 cache-control: public, max-age=315000 content-encoding: br content-type: text/javascript; charset=utf-8 etag: "dad5947af947c84745a29032a526f3e68afd9ce38af7f41ee281defb94b29c84-br" last-modified: Mon, 22 May 2023 17:32:30 GMT strict-transport-security: max-age=31556926 accept-ranges: bytes date: Fri, 02 Jun 2023 11:13:49 GMT x-served-by: cache-bma1628-BMA x-cache: HIT x-cache-hits: 3 x-timer: S1685704429.371717,VS0,VE0 vary: accept-language, x-country-code, x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

	mos2.biz/?te=mm4dgmzvge5ha3ddf4ztqmzw	185.177.92.30	200 OK	10 B
URL GET HTTP/2 mos2.biz/?te=mm4dgmzvge5ha3ddf4ztqmzw IP 185.177.92.30:443 ASN #39572 DataWeb Global Group B.V. Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerLet's Encrypt Subjectmos5.biz FingerprintFC:5C:68:F4:D4:C0:EB:99:29:94:62:77:DF:95:A7:C2:9E:91:3E:31 ValidityThu, 01 Jun 2023 19:10:22 GMT - Wed, 30 Aug 2023 19:10:21 GMT File type ASCII text, with no line terminators Size 10 B (10 bytes) Hash f495e69f2e9edc75eeae7dd3ea78a747 a89e38bbe70fa2de5db9d578975abd4e9dcda52e 8bf4c7cf443426b4cd8b5a56d22109b4e70314c1d2b8d0eb68887696722c132c HTTP Headers `GET /?te=mm4dgmzvge5ha3ddf4ztqmzw HTTP/1.1 Host: mos2.biz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 02 Jun 2023 11:13:48 GMT content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * set-cookie: uuid=108e0d45-eeb8-4f08-a6d8-d57f7887eb63; expires=Sun, 02-Jul-2023 11:13:48 GMT; Max-Age=2592000; path=/; SameSite=None; domain=mos2.biz; secure strict-transport-security: max-age=31536000 content-security-policy: img-src https: data:; upgrade-insecure-requests X-Firefox-Spdy: h2`

	steam.pildid.eu/templates/kassandra/wp-includes/js/jquery/jquery4a5f.js?ver=1.12.4-wp	188.114.96.1	200 OK	97 kB
URL GET HTTP/3 steam.pildid.eu/templates/kassandra/wp-includes/js/jquery/jquery4a5f.js?ver=1.12.4-wp IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://steam.pildid.eu/qa/f541ebdadc9d2/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint88:43:6A:7E:F7:8C:CE:D9:58:BF:4C:52:5B:C6:45:B5:7D:8B:FA:00 ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT File type ASCII text, with very long lines (31997) Size 97 kB (96873 bytes) Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df HTTP Headers `GET /templates/kassandra/wp-includes/js/jquery/jquery4a5f.js?ver=1.12.4-wp HTTP/1.1 Host: steam.pildid.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://steam.pildid.eu/qa/f541ebdadc9d2/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 02 Jun 2023 11:13:48 GMT content-type: application/javascript last-modified: Sat, 25 May 2019 21:24:50 GMT vary: Accept-Encoding etag: W/"5ce9b2a2-17a69" cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xke0yM34nxpd8S6yT8F3rGjKsymmRoU%2FPoEL8%2FXHesFAAo%2FzaR1tcnodGHqj1cXHR%2Bk4gnoyzD%2B%2BIpkvy7y2oZ6hVCwGdMP0%2FGIA2DKgb5lEqaNRac0PdigwgtKvjyxLQXw%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d0f44e389c1b4eb-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by