r10.o.lencr.org/
504 B IP
ASN #20940 Akamai International B.V.
Hash 5c35a3180482afadf4e89f4cc249fa7b
8a088c184606fe3e4e0da8cd90b6eb5e6d30fb97
146fe131cf8436e3de4832a23b351400b4819dbd9b9716302248d3ab447f000c
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "146FE131CF8436E3DE4832A23B351400B4819DBD9B9716302248D3AB447F000C"
Last-Modified: Sat, 15 Jun 2024 13:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15980
Expires: Sun, 16 Jun 2024 22:54:16 GMT
Date: Sun, 16 Jun 2024 18:27:56 GMT
Connection: keep-alive
rentry.co/static/css/bootstrap.min.css?v=85
200 OK 32 kB URL GET HTTP/2 rentry.co/static/css/bootstrap.min.css?v=85
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint7E:73:75:E4:E0:6E:98:37:8D:7C:D3:A7:D4:DC:FE:2D:10:90:6D:A8
ValiditySat, 20 Apr 2024 15:02:57 GMT - Fri, 19 Jul 2024 15:02:56 GMT
File type ASCII text, with very long lines (65324)
Hash db6a5aff114273b70b55e6d552d194c2
923880e0dbbb6d12fa2b798f7b3ffcb1b5cf81d2
03c7c488104260c3708fd7d862a7a181b6dd07e4d679d0113b9624e98d70541c
GET /static/css/bootstrap.min.css?v=85 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/tante-belle-rom-owo-3
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:57 GMT
content-type: text/css
last-modified: Wed, 15 May 2024 16:34:10 GMT
etag: W/"6644e402-2db3d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 285120
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QXhR3vMogRvtDs0HTnUJbC7OvM4avQzZmIZHpCNrghMfhN28BIEiggDLGIrT1mHHmfmmthlbavStJ7%2F1PRPR%2FO8Jh30%2Fpqjj6KPWIJzDvP0HZh8Etvsd01plOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894cdb5b9e141c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-LLFSDKZXET
200 OK 95 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-LLFSDKZXET
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint3B:2D:9B:5D:FC:63:04:40:77:0B:39:21:BE:1F:0A:0A:9F:C4:2F:52
ValidityMon, 27 May 2024 06:34:50 GMT - Mon, 19 Aug 2024 06:34:49 GMT
File type JavaScript source, ASCII text, with very long lines (5945)
Hash 7e573133bf9893c5d464767195da661e
34e21e7b811f72fb50b890b168627664545bda0d
fd402f15fb7160664c63128936581d9c5676341479a77bf3d61caa7b66039221
GET /gtag/js?id=G-LLFSDKZXET HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 16 Jun 2024 18:27:57 GMT
expires: Sun, 16 Jun 2024 18:27:57 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94807
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
e5.o.lencr.org/
346 B IP
ASN #20940 Akamai International B.V.
Hash ab974f4270fc3d30f5f3135f5b0efb7d
6587b8556f21d3640bfcfbc8908ed34082b88c36
5d3b936b3460ee4d93d94ddfddb08cea2d7ce203188d41ab3b11eb8885dbb20c
POST / HTTP/1.1
Host: e5.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "5D3B936B3460EE4D93D94DDFDDB08CEA2D7CE203188D41AB3B11EB8885DBB20C"
Last-Modified: Sat, 15 Jun 2024 01:48:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14866
Expires: Sun, 16 Jun 2024 22:35:43 GMT
Date: Sun, 16 Jun 2024 18:27:57 GMT
Connection: keep-alive
rentry.co/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 0 B URL GET HTTP/2 rentry.co/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint7E:73:75:E4:E0:6E:98:37:8D:7C:D3:A7:D4:DC:FE:2D:10:90:6D:A8
ValiditySat, 20 Apr 2024 15:02:57 GMT - Fri, 19 Jul 2024 15:02:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sun, 16 Jun 2024 18:27:57 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/6aac8896f227/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C4nGauSrMmBJ2Oj2miDB1fHQhVuq9HXnEnSfz3INxkgZmpcZRVAcR2XlZDwxKihzdTw7cG6Tn5lAwqRe54irPNbQtg1bGb4Io5KZiZBUwtUtiHGkVzgqrPzt%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894cdb5da9f31c06-OSL
X-Firefox-Spdy: h2
rentry.co/cdn-cgi/challenge-platform/h/g/jsd/r/894cdb5909551c06
200 OK 0 B URL POST HTTP/2 rentry.co/cdn-cgi/challenge-platform/h/g/jsd/r/894cdb5909551c06
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint7E:73:75:E4:E0:6E:98:37:8D:7C:D3:A7:D4:DC:FE:2D:10:90:6D:A8
ValiditySat, 20 Apr 2024 15:02:57 GMT - Fri, 19 Jul 2024 15:02:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/894cdb5909551c06 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12147
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Referer: https://rentry.co/tante-belle-rom-owo-3
Cookie: _ga_LLFSDKZXET=GS1.1.1718562477.1.0.1718562477.0.0.0; _ga=GA1.1.1420027708.1718562478
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.rentry.co; HttpOnly; Secure; SameSite=None
cf_clearance=cGzs8gKbOnEt0howUuqBr6DZKiuNfBqaKPC752PABbE-1718562478-1.0.1.1-XcmIKWV91qr84Q1y3V_75m9Y1J8vw9lY9f1uo85Q5VXXzQcQdcRQhGgEAT6VEJsCBSMBqpHkRH_cE7ehHPJ4NQ; Path=/; Expires=Mon, 16-Jun-25 18:27:58 GMT; Domain=.rentry.co; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S44KLu1OT3LdJPH7rXUxAeMPHwWRV66%2B3WhqvS0YUQIk0EvKEvf%2BXjs1Hj%2BZkW%2FvQ4sw2nJeoszAGlIuf1XEjBNaCh2xXWw9fY%2BzKPQtyVrSHpRahh0d4QvRxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894cdb600e541c06-OSL
X-Firefox-Spdy: h2
script.4dex.io/localstore.js
200 OK 580 B URL GET HTTP/1.1 script.4dex.io/localstore.js
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerCloudflare, Inc.
Subjectscript.4dex.io
FingerprintAB:9B:A2:70:ED:27:23:EF:84:14:22:FF:67:9F:5D:50:06:2D:04:28
ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 22 Oct 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1371)
Hash 00a8e13a83b2bbab51af8e55f52be363
57340eb5c07e50d96f4a04bd4c220f0f24cec649
3aec57ffa5c31e185202ddaa3b5b9d9872d4504f4546ab4eea1298baaf3c7cc7
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 16 Jun 2024 18:27:58 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"00a8e13a83b2bbab51af8e55f52be363"
Last-Modified: Tue, 28 May 2024 12:41:22 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 299281
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=whA4v1AWkoSDlsmvl1RR4keO2eCqFXrb2XnAlX%2BE0k%2F8Fo4Qt43emXvC4IdP8Ycxp1Lpg60ccbg4D7Xf4PlFZJ6uSTLCFt7M88I169Q9t0pozwrOVoYiATo0rnfcA4Ay"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 894cdb60cd7256ba-OSL
Content-Encoding: br
btloader.com/tag?o=5102648370397184&upapi=true
200 OK 22 kB URL GET HTTP/2 btloader.com/tag?o=5102648370397184&upapi=true
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services
Subjectbtloader.com
Fingerprint57:4E:02:4C:1F:5B:69:D5:23:7A:5D:7E:3C:A7:E2:85:4A:75:A1:FB
ValidityWed, 12 Jun 2024 07:44:00 GMT - Tue, 10 Sep 2024 07:43:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 87f41ecfc85c226c1e2b21772a8c97d8
9be0c38256ceb7583765011d7a122949be1a0a97
9eadeae84fa5e5a8da2e038c934a5b6c35dc0b6321cdaf3bd55a13d54c600c0a
GET /tag?o=5102648370397184&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: application/javascript
content-length: 21865
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
content-encoding: gzip
etag: "e2062fc90b8b9fbd304f0b7ce78f8108"
last-modified: Sun, 16 Jun 2024 18:08:44 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 943
accept-ranges: bytes
server: cloudflare
cf-ray: 894cdb60db5b10eb-CPH
X-Firefox-Spdy: h2
static.vidazoo.com/basev/vwpt.js
200 OK 45 kB URL GET HTTP/2 static.vidazoo.com/basev/vwpt.js
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectvidazoo.com
Fingerprint29:1B:C5:51:D9:66:53:AB:72:84:FB:66:39:32:F4:70:BA:49:AA:5D
ValidityThu, 02 May 2024 08:21:28 GMT - Wed, 31 Jul 2024 08:21:27 GMT
File type JavaScript source, ASCII text, with very long lines (65383)
Hash b83d9ca7efd722287f02f2e4f6326fcd
4c4893fc54dd94fdffca4a4021a8bd0cc2a3e7b1
344e32aabd694ad589620a10f2934ab81878f1bdfed3b6da64861c4d895d251b
GET /basev/vwpt.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: application/javascript
content-length: 45419
x-amz-id-2: WfCAtPOBCrGfgq8I9Nrg5PItk2GAbEmM+Wdv1vErvF9lN7mkhjao3e23Ulr5ez1xZkpNT9ZBAOU=
x-amz-request-id: D1FWRB87TCDWRGFR
last-modified: Sun, 16 Jun 2024 07:58:15 GMT
etag: "0faa1e8384604885aa9a78769d495afc"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 37782
expires: Mon, 17 Jun 2024 18:27:58 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 894cdb60fe5d56c3-OSL
X-Firefox-Spdy: h2
static.vidazoo.com/basev/tcf/1.0.3/tcf.js
200 OK 5.0 kB URL GET HTTP/2 static.vidazoo.com/basev/tcf/1.0.3/tcf.js
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectvidazoo.com
Fingerprint29:1B:C5:51:D9:66:53:AB:72:84:FB:66:39:32:F4:70:BA:49:AA:5D
ValidityThu, 02 May 2024 08:21:28 GMT - Wed, 31 Jul 2024 08:21:27 GMT
File type JavaScript source, ASCII text, with very long lines (15909)
Hash fae4a47e2ef8a40cf5a398527998a329
cbf85cab1c802d207cc26643b03376bd7c6de8a7
ced2b5e941867d92627d8f06c5ba98a4786f8fb5de8f4b89537112fc73bb8ed3
GET /basev/tcf/1.0.3/tcf.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: application/javascript
content-length: 5047
x-amz-id-2: 9HZKuP6JgHEuTRXZeYcuwleckz82XlKdCrLDpYF3vfmczkdGKhLkNrectJBB7TsbPD5Fxg5jz7BgrYATUGIvgNAHnm8Fs8JQ
x-amz-request-id: YJFZ2GSFQJZZBVYE
last-modified: Mon, 08 Jan 2024 10:40:28 GMT
etag: "c754706f000335ac7007603f04f43f2d"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 40060
expires: Mon, 17 Jun 2024 18:27:58 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 894cdb62991956c3-OSL
X-Firefox-Spdy: h2
static.vidazoo.com/basev/cmp/1.0.1/cmp.js
200 OK 1.4 kB URL GET HTTP/2 static.vidazoo.com/basev/cmp/1.0.1/cmp.js
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectvidazoo.com
Fingerprint29:1B:C5:51:D9:66:53:AB:72:84:FB:66:39:32:F4:70:BA:49:AA:5D
ValidityThu, 02 May 2024 08:21:28 GMT - Wed, 31 Jul 2024 08:21:27 GMT
File type JavaScript source, ASCII text, with very long lines (3389)
Hash c775abccacfe7d85e2c32a4da8ab177c
52364c286abb247ad1954d9687c7dbd513fe10e4
2345e6cbff5c4272c633dafc3d96b17107fa2bb3643fa3efa5ce4718c52adead
GET /basev/cmp/1.0.1/cmp.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: application/javascript
content-length: 1399
x-amz-id-2: YewMMiqP7b5hjVgAG0H/mDLSFKoiiicCgrCgWuHifwgG56a3PnyWoQqzrFisNqpNieScP43wZ2c=
x-amz-request-id: 3EP9P6Q4M1919TW5
last-modified: Tue, 12 Mar 2024 16:34:24 GMT
etag: "537d031a09119574ca284f3fe36dd61b"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 40063
expires: Mon, 17 Jun 2024 18:27:58 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 894cdb62991556c3-OSL
X-Firefox-Spdy: h2
cadmus.script.ac/dahhc4ozyvjm6/script.js
200 OK 3 B URL GET HTTP/2 cadmus.script.ac/dahhc4ozyvjm6/script.js
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerLet's Encrypt
Subjectscript.ac
Fingerprint3B:9E:A5:3A:A2:11:FD:79:D4:8E:1D:8D:B0:CB:89:51:98:DD:B4:EF
ValidityThu, 25 Apr 2024 16:57:40 GMT - Wed, 24 Jul 2024 16:57:39 GMT
Hash b519d08ef66fd54910edbedba6181ec2
8d06436c33a3086259f2f1ccaf03425707eeff17
101ead936a2281d53dcc064b7e2a2ab0d53b92ef3ef7b34b668673007895c860
GET /dahhc4ozyvjm6/script.js HTTP/1.1
Host: cadmus.script.ac
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: application/javascript
content-length: 3
age: 0
cache-control: public,max-age=259200,stale-while-revalidate=86400,stale-if-error=259200
etag: W/"601055f6a0c6408859f97b5f0a84bdb88441a80e"
last-modified: Mon, 01 Jan 2018 00:00:00 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 894cdb62bcf3b51d-OSL
X-Firefox-Spdy: h2
ad-delivery.net/px.gif?ch=2
200 OK 43 B URL GET HTTP/2 ad-delivery.net/px.gif?ch=2
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectad-delivery.net
Fingerprint03:7B:E9:04:33:1C:DF:29:E9:50:5E:D0:2F:B3:E2:A9:85:F2:3A:6A
ValidityFri, 17 May 2024 08:39:03 GMT - Thu, 15 Aug 2024 08:39:02 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=2 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: image/gif
content-length: 43
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
x-guploader-uploadid: ABPtcPqbKSdoxbAA410mrggZiKfDXsJhP9ixcj5r_g42RwC-BpGRQV1l4taKqygKMi5bdZIZlA
expires: Thu, 13 Jun 2024 08:19:58 GMT
cache-control: public, max-age=86400
age: 299280
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZDF88UZhmESps9qJZpt5nCSEvvSa3%2B%2BDnvtdlSyHenOaBSiDZjNygxawX%2BRCu6Ps%2FMwK8p3m%2Bm6hzufa6f873jMSA1ogzPuwS0AKo7F%2FTwfgWbq%2BVnxEShhCVom4k6Yqig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894cdb62dc63b4f7-OSL
X-Firefox-Spdy: h2
script.4dex.io/a/latest/adagio.js
200 OK 22 kB URL GET HTTP/1.1 script.4dex.io/a/latest/adagio.js
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerCloudflare, Inc.
Subjectscript.4dex.io
FingerprintAB:9B:A2:70:ED:27:23:EF:84:14:22:FF:67:9F:5D:50:06:2D:04:28
ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 22 Oct 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65354)
Hash 3d48eafa2e42753c913bb8e839134264
75679dff9b106345731fa6289373bbaea44f2510
028c14d2a81be1c7def3f60cfaed1289bb432ff402eff119df28ab9224575691
GET /a/latest/adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 16 Jun 2024 18:27:58 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"3d48eafa2e42753c913bb8e839134264"
Last-Modified: Tue, 28 May 2024 12:41:17 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
CF-Cache-Status: HIT
Age: 285106
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C202vEe%2BhwySYHw7rjfiHkQ0lwqnChNkCeAbuBGeq8%2BC6iik98zFeFSG0MAWfHmZmQa6B2O8JLw8I3KnUX84LPBZHiEPPOp1vBur8zoMTKlWu83Kv39wUYJyEV2xLSsF"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 894cdb62bb2ab4f1-OSL
Content-Encoding: br
ad-delivery.net/px.gif?ch=1&e=0.15820425130197902
200 OK 43 B URL GET HTTP/2 ad-delivery.net/px.gif?ch=1&e=0.15820425130197902
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectad-delivery.net
Fingerprint03:7B:E9:04:33:1C:DF:29:E9:50:5E:D0:2F:B3:E2:A9:85:F2:3A:6A
ValidityFri, 17 May 2024 08:39:03 GMT - Thu, 15 Aug 2024 08:39:02 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.15820425130197902 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: image/gif
content-length: 43
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
x-guploader-uploadid: ABPtcPqbKSdoxbAA410mrggZiKfDXsJhP9ixcj5r_g42RwC-BpGRQV1l4taKqygKMi5bdZIZlA
expires: Thu, 13 Jun 2024 08:19:58 GMT
cache-control: public, max-age=86400
age: 299280
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ln%2B3g%2FtirDRWoQ%2BASr7DppqGXQSa97UeGSh4Eec%2B9aDhNxsX%2FOAa5GPDp6YEG10wEpKAHCXVcPbWMadI%2F4UIx8aGki%2F3nnqwosSesfUavpDFldTL5GzaqqoQtEIdsFWBLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894cdb62dc5ab4f7-OSL
X-Firefox-Spdy: h2
hb.yellowblue.io/hb-multi
200 OK 85 B URL POST HTTP/2 hb.yellowblue.io/hb-multi
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerAmazon
Subject*.yellowblue.io
FingerprintF6:26:FE:49:4A:50:FB:11:34:86:E2:79:8F:43:68:A1:1E:B6:8D:6B
ValidityMon, 18 Mar 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hash 0f733df0cb57dd96e811b749016dd97a
1e1b08bdec37923b3def491e5811f4eb23b5d8d2
4826b6c1cdff4b9bccf1d89f84a121c96cd1137d2905b7c7ee12fab1ccd063e6
POST /hb-multi HTTP/1.1
Host: hb.yellowblue.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1395
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 85
date: Sun, 16 Jun 2024 18:27:58 GMT
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF, X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://rentry.co
x-reason: do not track ifa
x-envoy-upstream-service-time: 2
server: istio-envoy
x-cache: Miss from cloudfront
via: 1.1 70d3812e62d49cd4dca6f1dcec98b050.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS58-P3
x-amz-cf-id: vIX2fU-GRpP2TmpTRoEaqh8zD_ybO3gTbk46ufUBQJNzmhC789Hd4g==
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 41 B URL POST HTTP/2 onetag-sys.com/prebid-request
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1927
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://rentry.co
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
api.btloader.com/mw/state?bt_env=prod
204 No Content 0 B URL GET HTTP/2 api.btloader.com/mw/state?bt_env=prod
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint20:6D:74:AC:C1:C1:4A:1D:EA:AE:6D:51:9C:75:ED:A3:CE:86:87:16
ValidityTue, 04 Jun 2024 03:45:50 GMT - Mon, 02 Sep 2024 04:40:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mw/state?bt_env=prod HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: *
vary: Origin
date: Sun, 16 Jun 2024 18:27:58 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r10.o.lencr.org/
504 B IP
ASN #20940 Akamai International B.V.
Hash ede0b27def700f18bb6d4eb4c1d97352
c802c366cb2eee6b9339349aa21677fdb1bd5fa5
18ffb58da62f40b37a43b0baaceefe8bc3ef83ccdf9ee19ff874ccb0d802c9f2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "18FFB58DA62F40B37A43B0BAACEEFE8BC3EF83CCDF9EE19FF874CCB0D802C9F2"
Last-Modified: Sat, 15 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9706
Expires: Sun, 16 Jun 2024 21:09:44 GMT
Date: Sun, 16 Jun 2024 18:27:58 GMT
Connection: keep-alive
c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectc.4dex.io
Fingerprint9A:6A:2D:10:C7:90:C4:B8:5C:73:11:B7:EA:70:8A:7E:E1:24:C0:BC
ValidityWed, 24 Apr 2024 07:17:55 GMT - Tue, 23 Jul 2024 08:12:29 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r10.o.lencr.org/
504 B IP
ASN #20940 Akamai International B.V.
Hash ede0b27def700f18bb6d4eb4c1d97352
c802c366cb2eee6b9339349aa21677fdb1bd5fa5
18ffb58da62f40b37a43b0baaceefe8bc3ef83ccdf9ee19ff874ccb0d802c9f2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "18FFB58DA62F40B37A43B0BAACEEFE8BC3EF83CCDF9EE19FF874CCB0D802C9F2"
Last-Modified: Sat, 15 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9706
Expires: Sun, 16 Jun 2024 21:09:44 GMT
Date: Sun, 16 Jun 2024 18:27:58 GMT
Connection: keep-alive
r10.o.lencr.org/
504 B IP
ASN #20940 Akamai International B.V.
Hash ede0b27def700f18bb6d4eb4c1d97352
c802c366cb2eee6b9339349aa21677fdb1bd5fa5
18ffb58da62f40b37a43b0baaceefe8bc3ef83ccdf9ee19ff874ccb0d802c9f2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "18FFB58DA62F40B37A43B0BAACEEFE8BC3EF83CCDF9EE19FF874CCB0D802C9F2"
Last-Modified: Sat, 15 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9706
Expires: Sun, 16 Jun 2024 21:09:44 GMT
Date: Sun, 16 Jun 2024 18:27:58 GMT
Connection: keep-alive
c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectc.4dex.io
Fingerprint9A:6A:2D:10:C7:90:C4:B8:5C:73:11:B7:EA:70:8A:7E:E1:24:C0:BC
ValidityWed, 24 Apr 2024 07:17:55 GMT - Tue, 23 Jul 2024 08:12:29 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
exchange.cootlogix.com/prebid/multi/65e9e879eab3382166f737dc
204 No Content 0 B URL POST HTTP/2 exchange.cootlogix.com/prebid/multi/65e9e879eab3382166f737dc
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint42:4E:B5:0E:ED:B9:5B:73:77:57:21:E2:AA:3E:A0:B3:D5:3D:A9:D8
ValidityThu, 19 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/multi/65e9e879eab3382166f737dc HTTP/1.1
Host: exchange.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 889
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: https://rentry.co
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
set-cookie: vdz_sync=017a1404-7e35-c245-681d-e1e13a7e0e2c; Domain=.cootlogix.com; Path=/; Expires=Tue, 16 Jul 2024 18:27:58 GMT; Secure; SameSite=None
content-length: 0
date: Sun, 16 Jun 2024 18:27:58 GMT
X-Firefox-Spdy: h2
exchange.cootlogix.com/prebid/multi/65e9e879eab3382166f737dc
204 No Content 0 B URL POST HTTP/2 exchange.cootlogix.com/prebid/multi/65e9e879eab3382166f737dc
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint42:4E:B5:0E:ED:B9:5B:73:77:57:21:E2:AA:3E:A0:B3:D5:3D:A9:D8
ValidityThu, 19 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/multi/65e9e879eab3382166f737dc HTTP/1.1
Host: exchange.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 910
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: https://rentry.co
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
set-cookie: vdz_sync=12e267e9-4983-8a2c-8f84-3d5591953285; Domain=.cootlogix.com; Path=/; Expires=Tue, 16 Jul 2024 18:27:58 GMT; Secure; SameSite=None
content-length: 0
date: Sun, 16 Jun 2024 18:27:58 GMT
X-Firefox-Spdy: h2
rentry.co/static/js/jquery.min.js?v=21
200 OK 212 kB URL GET HTTP/2 rentry.co/static/js/jquery.min.js?v=21
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint7E:73:75:E4:E0:6E:98:37:8D:7C:D3:A7:D4:DC:FE:2D:10:90:6D:A8
ValiditySat, 20 Apr 2024 15:02:57 GMT - Fri, 19 Jul 2024 15:02:56 GMT
File type JavaScript source, ASCII text, with very long lines (65451)
Size 212 kB (212511 bytes)
Hash 0d9824e6289fa893434c354eadde4075
b9a1358f185c7239829712de6830333829e9bd33
4c1add9ba5d6cde3a03149a022b61163b35c4d5c738cf32470e7e7bd611e4ac6
GET /static/js/jquery.min.js?v=21 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/tante-belle-rom-owo-3
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:57 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 16:34:10 GMT
etag: W/"6644e402-166ee"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 285120
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7UKqeOc%2BfTN1lb%2FjCIf%2FkhGcg%2Fz6gslwBlccJ7yVcOkcNfaIzzGOHLICKcQAOOakDDm9tXCG7UYgiM3D2NuHBdXEpbrOIvSaM5%2BCwh3yeUVLVY2ha82PjTHs0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894cdb5bae251c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.btloader.com/pv?tid=3sNb87Sy9&w=5123465689956352&o=5102648370397184&cv=2.1.46-1-ge6dd43d&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2Ftante-belle-rom-owo-3&sid=rXj6qbv8T&pm=true&upapi=true
204 No Content 0 B URL GET HTTP/2 api.btloader.com/pv?tid=3sNb87Sy9&w=5123465689956352&o=5102648370397184&cv=2.1.46-1-ge6dd43d&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2Ftante-belle-rom-owo-3&sid=rXj6qbv8T&pm=true&upapi=true
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint20:6D:74:AC:C1:C1:4A:1D:EA:AE:6D:51:9C:75:ED:A3:CE:86:87:16
ValidityTue, 04 Jun 2024 03:45:50 GMT - Mon, 02 Sep 2024 04:40:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pv?tid=3sNb87Sy9&w=5123465689956352&o=5102648370397184&cv=2.1.46-1-ge6dd43d&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2Ftante-belle-rom-owo-3&sid=rXj6qbv8T&pm=true&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Sun, 16 Jun 2024 18:27:58 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
200 OK 250 B URL POST HTTP/2 ib.adnxs.com/ut/v3/prebid
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerDigiCert Inc
Subject*.adnxs.com
Fingerprint67:2D:49:EE:1E:AF:D8:2B:B2:85:1A:C5:39:29:91:05:8E:5E:6F:AA
ValidityWed, 14 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
Hash 3120dd844330f2b08d65c798a46d5406
7e9abb7397401f49829755252b42f3457e0c0902
80ad8a8c071b71c217ec3f1d5e7acf30b7df7f05ee345d57856c26ce749251ff
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1186
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.4
date: Sun, 16 Jun 2024 18:27:59 GMT
content-type: application/json; charset=utf-8
content-length: 250
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: https://rentry.co
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
an-x-request-uuid: 69c1a664-bffb-4fa6-bd0c-713e003b53b9
x-proxy-origin: 91.90.42.154; 91.90.42.154; 950.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
X-Firefox-Spdy: h2
c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectc.4dex.io
Fingerprint9A:6A:2D:10:C7:90:C4:B8:5C:73:11:B7:EA:70:8A:7E:E1:24:C0:BC
ValidityWed, 24 Apr 2024 07:17:55 GMT - Tue, 23 Jul 2024 08:12:29 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0 HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Jun 2024 18:27:59 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectc.4dex.io
Fingerprint9A:6A:2D:10:C7:90:C4:B8:5C:73:11:B7:EA:70:8A:7E:E1:24:C0:BC
ValidityWed, 24 Apr 2024 07:17:55 GMT - Tue, 23 Jul 2024 08:12:29 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=4a32f709-0d5f-4eb9-a339-9dde7b73e4b8&auct_id=5ebab1c7-52c7-46d6-bc44-4421d8057fa7&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0 HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Jun 2024 18:27:59 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
onetag-sys.com/usync/?cb=1718562478767
204 No Content 0 B URL GET HTTP/2 onetag-sys.com/usync/?cb=1718562478767
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1718562478767 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
rentry.co/favicon.ico
200 OK 1.5 kB IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint7E:73:75:E4:E0:6E:98:37:8D:7C:D3:A7:D4:DC:FE:2D:10:90:6D:A8
ValiditySat, 20 Apr 2024 15:02:57 GMT - Fri, 19 Jul 2024 15:02:56 GMT
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Hash b102d58bb28a83de9b59fedcd08d17ea
8b6edee7f5d96b69c6e4f0c4e8376c640a34aa63
93eab1e1c50b4ff5b4aa5eefa6e85ce7bae235b52886914529c8b8aa4319f26c
GET /favicon.ico HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/tante-belle-rom-owo-3
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:57 GMT
content-type: image/x-icon
last-modified: Wed, 15 May 2024 16:34:09 GMT
etag: W/"6644e401-3aee"
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400, vary
cf-cache-status: HIT
age: 6048
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=taHusn%2F6S2QYYdzY%2BmZ%2FSaYr7c9nGN%2F5RdoRNKhsxiyzz6lcadPex4rl2BizHZhNgMhXxTnB3dClFfrm7dP2MkKufjo0AY5HRc3U5Gu%2BRWdiknYOh1qBxX6Jbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894cdb5e8b771c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
ads.servenobid.com/adreq?cb=10486
200 OK 108 B URL POST HTTP/2 ads.servenobid.com/adreq?cb=10486
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
Hash 9130e987b4e1bc2e60ce050706ae7762
65b29fa67955ea5d6b935be74714e7debf05bebc
f8d80bedea6aeedc7a7e6c9a8bc0c8983a3a1546fc1aa823218359789fb96c49
POST /adreq?cb=10486 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 853
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: application/json
access-control-allow-origin: https://rentry.co
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sync.cootlogix.com/api/sync/iframe/?cid=&gdpr=0&gdpr_consent=&us_privacy=
200 OK 109 B URL GET HTTP/2 sync.cootlogix.com/api/sync/iframe/?cid=&gdpr=0&gdpr_consent=&us_privacy=
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint42:4E:B5:0E:ED:B9:5B:73:77:57:21:E2:AA:3E:A0:B3:D5:3D:A9:D8
ValidityThu, 19 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 9b7355ecddaf0c12398a48659278a7e6
5181162df39733dda7a615293993d26df753d769
a1aa01f31d4087317f5d4e5ef4ea70a73e38124a45f1553dbe8968ea16068b84
GET /api/sync/iframe/?cid=&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: sync.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Cookie: vdz_sync=12e267e9-4983-8a2c-8f84-3d5591953285
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-credentials: true
p3p: CP="NOI DSP COR PSAo PSDo OUR IND UNI COM NAV ADMa"
access-control-allow-methods: GET, HEAD, OPTIONS, POST
content-type: text/html
content-length: 109
date: Sun, 16 Jun 2024 18:28:02 GMT
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
200 OK 0 B URL GET HTTP/2 ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=327&uid=&us_privacy=1YN-&gdpr=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:28:02 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.e2m03.amazontrust.com/
280 B URL ocsp.e2m03.amazontrust.com/
IP
Hash e5a26f03c938a8ad50baff8ac5adf0da
1f1a21b34d06e40c792e289d747f9049757fb0b1
fb6a786cf5c5ef63b1ad8f0bc7c04765b6915599bf5627b306330066fa2c82f8
POST / HTTP/1.1
Host: ocsp.e2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 16 Jun 2024 18:28:02 GMT
Last-Modified: Sun, 16 Jun 2024 16:40:55 GMT
Server: ECAcc (ama/48A4)
X-Cache: Miss from cloudfront
Via: 1.1 95ff0d830848b741160e24f658d880e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS58-P1
X-Amz-Cf-Id: vCNqh4pSVwXmYyRe_4XVa5vLWTB8Es0qdUvoe6Eg8CrE2Wz5oemHzg==
Age: 6427
ocsp.r2m03.amazontrust.com/
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash 8fa55ea1b5909df0b93883472e82b8dc
4cf960a9013246ca3ef22a55c9f38ec8f90c2ff4
8a2c07254d84af1915c8dd4d078c41f0bffbb2e1666aae7636cae62588a2f5f5
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 16 Jun 2024 18:28:02 GMT
Last-Modified: Sun, 16 Jun 2024 17:11:49 GMT
Server: ECAcc (ama/48A5)
X-Cache: Miss from cloudfront
Via: 1.1 a4f5633e78f92f983940236e96220232.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS58-P1
X-Amz-Cf-Id: UPmDV6gG26EdNaPo4IpdzC8YbM3Y1AkTj4fcZNUQ2afpcjR5jm3C0Q==
Age: 4573
cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D
204 No Content 0 B URL GET HTTP/2 cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subject*.yellowblue.io
Fingerprint3E:2F:02:15:24:62:BE:D4:BC:D1:64:8E:24:5F:A0:20:D8:CD:E1:DA
ValidityMon, 18 Mar 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D HTTP/1.1
Host: cs-server-s2s.yellowblue.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sun, 16 Jun 2024 18:28:02 GMT
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
ads.dxkulture.com/xuid
200 OK 0 B IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
Fingerprint09:B8:DB:65:34:D0:63:E4:DA:3F:04:45:00:FD:95:B3:1F:19:C7:B7
ValiditySun, 26 May 2024 06:57:27 GMT - Sat, 24 Aug 2024 06:57:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xuid HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 16 Jun 2024 18:28:02 GMT
Content-Length: 0
Connection: close
Cache-Control: no-cache, no-store
Set-Cookie: mtuid=76b7c25c-7e6c-49e3-9f04-c2cacc938a44; Path=/; Domain=dxkulture.com; Expires=Fri, 13 Dec 2024 18:28:02 GMT; Secure; SameSite=None
Vary: Origin
Strict-Transport-Security: max-age=15724800; includeSubDomains
ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
204 No Content 0 B URL GET HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subjectssp.disqus.com
Fingerprint96:FD:73:B5:E9:EF:6E:2E:4D:32:F8:DA:60:AD:74:67:56:BA:B7:89
ValiditySat, 21 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sun, 16 Jun 2024 18:28:03 GMT
cache-control: no-store
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
ads.dxkulture.com/usync/lr.gif
302 Found 107 B URL GET HTTP/1.1 ads.dxkulture.com/usync/lr.gif
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
Fingerprint09:B8:DB:65:34:D0:63:E4:DA:3F:04:45:00:FD:95:B3:1F:19:C7:B7
ValiditySun, 26 May 2024 06:57:27 GMT - Sat, 24 Aug 2024 06:57:26 GMT
File type HTML document, ASCII text
Hash 28ab4d3ef670767a28e96cc14dab80f9
8ad2dd90b6bc08ad5924e167bc9fd593626cb6b1
f6cc0058f9f33f4a102738ea06c1d3288eab028e76378d046fd5a54ccc52289d
GET /usync/lr.gif HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Cookie: mtuid=76b7c25c-7e6c-49e3-9f04-c2cacc938a44
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Sun, 16 Jun 2024 18:28:04 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 107
Connection: close
Location: https://idsync.rlcdn.com/712910.gif?partner_uid=76b7c25c-7e6c-49e3-9f04-c2cacc938a44
Vary: Origin
Strict-Transport-Security: max-age=15724800; includeSubDomains
ads.dxkulture.com/usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID
301 Moved Permanently 119 B URL GET HTTP/1.1 ads.dxkulture.com/usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
Fingerprint09:B8:DB:65:34:D0:63:E4:DA:3F:04:45:00:FD:95:B3:1F:19:C7:B7
ValiditySun, 26 May 2024 06:57:27 GMT - Sat, 24 Aug 2024 06:57:26 GMT
File type HTML document, ASCII text
Hash 1c81df20cc291f07a986906450e7e122
47f8de5061688bfa1992eb20628ea20a198b39cc
6ad2e7b08f1fc86b6f1a323fc1173ef336d3850e7b9435957fd643d8d48ed873
GET /usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Cookie: mtuid=76b7c25c-7e6c-49e3-9f04-c2cacc938a44
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sun, 16 Jun 2024 18:28:04 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 119
Connection: close
Location: https://ads.servenobid.com/sync?pid=369&uid=76b7c25c-7e6c-49e3-9f04-c2cacc938a44
Vary: Origin
Strict-Transport-Security: max-age=15724800; includeSubDomains
ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26uid%3D%24UID&partner=kulturemedia
204 No Content 0 B URL GET HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26uid%3D%24UID&partner=kulturemedia
IP
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerAmazon
Subjectssp.disqus.com
Fingerprint96:FD:73:B5:E9:EF:6E:2E:4D:32:F8:DA:60:AD:74:67:56:BA:B7:89
ValiditySat, 21 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26uid%3D%24UID&partner=kulturemedia HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sun, 16 Jun 2024 18:28:04 GMT
cache-control: no-store
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=369&uid=76b7c25c-7e6c-49e3-9f04-c2cacc938a44
200 OK 0 B URL GET HTTP/2 ads.servenobid.com/sync?pid=369&uid=76b7c25c-7e6c-49e3-9f04-c2cacc938a44
IP
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=369&uid=76b7c25c-7e6c-49e3-9f04-c2cacc938a44 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdn.dxkulture.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:28:04 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_369=76b7c25c-7e6c-49e3-9f04-c2cacc938a44; domain=servenobid.com; SameSite=None; Expires=Sun, 23 Jun 2024 18:28:04 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
rentry.co/static/js/bootstrap.min.js?v=21
200 OK 58 kB URL GET HTTP/2 rentry.co/static/js/bootstrap.min.js?v=21
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint7E:73:75:E4:E0:6E:98:37:8D:7C:D3:A7:D4:DC:FE:2D:10:90:6D:A8
ValiditySat, 20 Apr 2024 15:02:57 GMT - Fri, 19 Jul 2024 15:02:56 GMT
File type JavaScript source, ASCII text, with very long lines (57791)
Hash e1d98d47689e00f8ecbc5d9f61bdb42e
6778fed3cf095a318141a31f455c8f4663885bde
0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b
GET /static/js/bootstrap.min.js?v=21 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/tante-belle-rom-owo-3
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:57 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 16:34:09 GMT
etag: W/"6644e401-e2d8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 285120
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G54BWUH7ZNO3FBTU14GsyW7wR9DMDnM7OxdnQy1lsuYJ1l33T3y%2BZzJex8H0HX56WgoodnhcjN1waaYGMehpjKuHkJCJdsOFIt5Z3W0nssAZAmPxklGMaeKCZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894cdb5bae2b1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
204 No Content 0 B URL GET HTTP/2 onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
api.btloader.com/country?o=5102648370397184
200 OK 37 B URL GET HTTP/2 api.btloader.com/country?o=5102648370397184
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint20:6D:74:AC:C1:C1:4A:1D:EA:AE:6D:51:9C:75:ED:A3:CE:86:87:16
ValidityTue, 04 Jun 2024 03:45:50 GMT - Mon, 02 Sep 2024 04:40:04 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 184e332312061d1740184beb07bef7af
f8535d5ac4207eebee8a59f4014f916ae66c151f
637e3640e1e3ff9c0a20073ffb4dee2a6f1ea584b4ac2308cc3f4a4c413d41bc
GET /country?o=5102648370397184 HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: private, max-age=300, stale-while-revalidate=600, stale-if-error=600
content-type: application/json
vary: Origin
date: Sun, 16 Jun 2024 18:27:58 GMT
content-length: 37
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint02:E1:92:C5:72:6D:E0:64:4A:46:05:69:81:98:7C:43:13:E7:15:7A
ValidityTue, 01 Aug 2023 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1822
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:58 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://rentry.co
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Shapings: no adunits with size and seat and mapping
x-version: 3.0.0-gcp-ams
x-warn: Process Floors. 2 inventory rules not found for mediatype: banner and adUnitCode: bsa-zone_1699624989460-1_123456, Process Floors. 3 inventory rules not found for mediatype: banner and adUnitCode: bsa-zone_1700727262982-7_123456
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 894cdb627d270b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
public.servenobid.com/sync.html
200 OK 8.8 kB URL GET HTTP/2 public.servenobid.com/sync.html
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerAmazon
Subject*.servenobid.com
Fingerprint96:33:3B:11:8E:FE:89:CB:05:31:59:EF:8B:B5:EF:32:91:13:48:BB
ValidityFri, 08 Dec 2023 00:00:00 GMT - Sun, 05 Jan 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (9050), with no line terminators
Hash d67951daa3131c75fbfad1a09ec4b178
2d2a8e0c9cf93db5cfa9078610ecb308de963fe7
0cd88a27c3ff89128c7be5bef21ba5565b81b475e9fb5e0e1edd628edc5dbf0b
GET /sync.html HTTP/1.1
Host: public.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
last-modified: Thu, 11 Apr 2024 21:40:36 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-codebuild-content-sha256: 0046597e275c679c7baf4bc17a16f7541f9f38f204ecbef154219cfbfe8dbe01
x-amz-version-id: null
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-1:559734745816:build/adserver-public-prod:69374897-8ebf-443f-b8c0-1cc68fdce58a
x-amz-meta-codebuild-content-md5: 7222d9b5c21ee453bec6e6836a76e694
server: AmazonS3
content-encoding: gzip
date: Sun, 16 Jun 2024 07:58:11 GMT
cache-control: max-age=86400
etag: W/"ff07c8e3bd68ae557c7783f563f2e16b"
x-cache: Hit from cloudfront
via: 1.1 ff51bc3614c373d274030fe4ca1a34fc.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: rVVT7dNt-RTIo_Zy8JARtSMF5zv9lz8iqKrzvZaiN53JS3QgX1VG6w==
age: 37791
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cdn.dxkulture.com/x/sync.html
200 OK 2.1 kB URL GET HTTP/2 cdn.dxkulture.com/x/sync.html
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerLet's Encrypt
Subjectcdn.dxkulture.com
Fingerprint3F:4C:6A:47:56:3E:F9:42:BD:F5:33:FC:C5:2C:F8:5D:06:9D:2A:C8
ValidityMon, 27 May 2024 06:09:50 GMT - Sun, 25 Aug 2024 06:09:49 GMT
File type HTML document, ASCII text, with very long lines (2210), with no line terminators
Hash 61e832c0472a4d6652dfd506a43b6ccc
3b67fede88d42920d4c05032e5a100286d66bece
0676f5135f1c813b6f2d6e04c0dadf01443d3ebb48090e71a5b82bd5581cc586
GET /x/sync.html HTTP/1.1
Host: cdn.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:28:02 GMT
content-type: text/html
last-modified: Wed, 10 Apr 2024 13:45:25 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx0000064f73e8cb47ba9eb-006627bf40-921a0ba7-nyc3c
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: 4cf2344c-b5f4-4372-87f8-a2f54204ed44
cache-control: max-age=3600
x-envoy-upstream-healthchecked-cluster:
cf-cache-status: HIT
age: 1611
set-cookie: __cf_bm=71EM_ZPpS4vQphXegH.nfguhfzSge5aZ1u34a49VxyI-1718562482-1.0.1.1-5XXer9XhZpIDx_g1Zd8Xi9Ayi1zrI_Qw_IaajThoE7soQNHeBF_zQrdlx9oVaLW5WMQ4FVoek6b1Kt1_QqDlKw; path=/; expires=Sun, 16-Jun-24 18:58:02 GMT; domain=.cdn.dxkulture.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 894cdb7c2d05b50f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
rentry.co/cdn-cgi/challenge-platform/h/g/scripts/jsd/6aac8896f227/main.js
200 OK 7.8 kB URL GET HTTP/2 rentry.co/cdn-cgi/challenge-platform/h/g/scripts/jsd/6aac8896f227/main.js
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint7E:73:75:E4:E0:6E:98:37:8D:7C:D3:A7:D4:DC:FE:2D:10:90:6D:A8
ValiditySat, 20 Apr 2024 15:02:57 GMT - Fri, 19 Jul 2024 15:02:56 GMT
File type JavaScript source, ASCII text, with very long lines (7809), with no line terminators
Hash b600d788cb74ddf8c7ba50d7869c51e3
2fec04a47a18c34b688a0bde2aff03c4057fa385
d120ae92a5826f65cbdcaba3afb3f8c21b45f72181faabcd74c711289038befa
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/6aac8896f227/main.js HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:57 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DVxVOAn2Cba9XJSYz4GS5K8eYO%2B3SBd5lpe0aj52h93okyuzdPHbCWPguiCE%2BbQXgmXESO5GZRpdjaInGNiK4j7yQeZ7T0t2VnaMNkpK53gE95im45fEzmqm2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894cdb5e9b7f1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
302 Found 0 B URL GET HTTP/2 prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintC4:70:11:35:C8:44:C9:33:89:20:3A:0D:10:63:D9:93:3F:F1:AC:9D
ValiditySun, 05 May 2024 10:53:54 GMT - Sat, 03 Aug 2024 10:53:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Sun, 16 Jun 2024 18:28:01 GMT
location: https://ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
rentry.co/tante-belle-rom-owo-3
200 OK 175 kB URL User Request GET HTTP/2 rentry.co/tante-belle-rom-owo-3
IP
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint7E:73:75:E4:E0:6E:98:37:8D:7C:D3:A7:D4:DC:FE:2D:10:90:6D:A8
ValiditySat, 20 Apr 2024 15:02:57 GMT - Fri, 19 Jul 2024 15:02:56 GMT
Size 175 kB (174861 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tante-belle-rom-owo-3 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 16 Jun 2024 18:27:57 GMT
content-type: text/html; charset=utf-8
vary: Origin, Cookie
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: Vary
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fKp5oirPOj%2BsBR1L8qBpluOOhrawnsGwRtQbPxW%2F52b8NtW1Diq7%2Fp4WoP4vAVKNJJevPXtaCyWC2am%2FZEV2V0uWzfGL%2B%2BVjZ4D50%2BkafS7Mo1tkOBa6akaHEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894cdb5909551c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn4.buysellads.net/pub/rentryco.js?1718562000000
200 OK 653 kB URL GET HTTP/2 cdn4.buysellads.net/pub/rentryco.js?1718562000000
IP
Requested by https://rentry.co/tante-belle-rom-owo-3
Certificate IssuerLet's Encrypt
Subjectcdn4.buysellads.net
Fingerprint26:DD:C1:9D:2A:25:96:4F:EA:78:E3:85:9B:61:53:9E:C9:8D:72:21
ValidityFri, 07 Jun 2024 12:40:39 GMT - Thu, 05 Sep 2024 12:40:38 GMT
Size 653 kB (652810 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pub/rentryco.js?1718562000000 HTTP/1.1
Host: cdn4.buysellads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=3600, stale-while-revalidate
content-encoding: gzip
content-type: application/javascript
etag: 2150b01950642d294cbcea79b79d4ca50443dbfb
server: srv-ams3-0
vary: Accept-Encoding
date: Sun, 16 Jun 2024 18:27:57 GMT
X-Firefox-Spdy: h2
172.67.75.40
104.18.34.178
145.40.97.67
23.36.77.32
185.89.210.141
34.255.239.183
51.89.9.254
0.0.0.0