www.bublemore.xyz/?sl=5621056-7402e&data1=Track1&data2=Track2&tag=689a91z17hei4e98&website={subID}&placement={sub_subID}&eyeg=1
51.68.82.147 0 B URL www.bublemore.xyz/?sl=5621056-7402e&data1=Track1&data2=Track2&tag=689a91z17hei4e98&website={subID}&placement={sub_subID}&eyeg=1
IP 51.68.82.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?sl=5621056-7402e&data1=Track1&data2=Track2&tag=689a91z17hei4e98&website={subID}&placement={sub_subID}&eyeg=1 HTTP/1.1
Host: www.bublemore.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 25 May 2023 15:19:47 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-transform
Location: https://admoustache.media-412.com/sl?id=63ef5a2a8dec34873b6049c7&pid=503&sub1=31000cb584d20b5d677cedcc70d2402f676440525-202305-flb*5621056-7402e*689a91z17hei4e98*sl_5621056-7402e*dab4fb241a4e0d1e361898bd26da0e2a9fa37768*{subID}*{sub_subID}
admoustache.media-412.com/sl?id=63ef5a2a8dec34873b6049c7&pid=503&sub1=31000cb584d20b5d677cedcc70d2402f676440525-202305-flb*5621056-7402e*689a91z17hei4e98*sl_5621056-7402e*dab4fb241a4e0d1e361898bd26da0e2a9fa37768*{subID}*{sub_subID}
34.90.46.36 0 B URL admoustache.media-412.com/sl?id=63ef5a2a8dec34873b6049c7&pid=503&sub1=31000cb584d20b5d677cedcc70d2402f676440525-202305-flb*5621056-7402e*689a91z17hei4e98*sl_5621056-7402e*dab4fb241a4e0d1e361898bd26da0e2a9fa37768*{subID}*{sub_subID}
IP 34.90.46.36:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sl?id=63ef5a2a8dec34873b6049c7&pid=503&sub1=31000cb584d20b5d677cedcc70d2402f676440525-202305-flb*5621056-7402e*689a91z17hei4e98*sl_5621056-7402e*dab4fb241a4e0d1e361898bd26da0e2a9fa37768*{subID}*{sub_subID} HTTP/1.1
Host: admoustache.media-412.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Thu, 25 May 2023 15:19:47 GMT
content-length: 0
location: https://grix.offerlinker.xyz/rc/a91581ead4?affclick=646f7c93d85e1a0001ed5b91&pubid=503
x-adjust-use-original-forwarded-for: 1
referer:
referrer-policy: no-referrer
set-cookie: afclick=646f7c93d85e1a0001ed5b91; expires=Fri, 24 May 2024 15:19:47 GMT; secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
rezi.turetou.com/proc.php?6fc7401dd542a9b78ef43561d66451f19650c30d
67.212.184.146 2.7 kB URL rezi.turetou.com/proc.php?6fc7401dd542a9b78ef43561d66451f19650c30d
IP 67.212.184.146:0
File type gzip compressed data, from Unix\012- data
Hash 6882ec70edfc0dc7a83058ad1ce7649f
9eb9340a173a51c157349cfe979a6ef23bc5bc94
982a26b803086a61e3d7e56d56e9b1a490f26480f8b389e7078957892d6f2b8d
GET /proc.php?6fc7401dd542a9b78ef43561d66451f19650c30d HTTP/1.1
Host: rezi.turetou.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rezi.turetou.com/?utm_term=7237140101321457777&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b386b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c73
Cookie: u=c130573ecb5161900f069117d18b211b; split=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 May 2023 15:19:49 GMT
content-type: text/html; charset=UTF-8
location: https://www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140101321457777&website=13260-c20be91f-60df3a4c&placement=13260
vary: Accept-Encoding
x-powered-by: PHP/8.2.0
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140101321457777&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70
51.68.85.158 5.2 kB URL www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140101321457777&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70
IP 51.68.85.158:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3768)
Hash e21ad9297b0937b1113ffc1d9229a110
81ea118aca817caf221182348e920209a3d3fdc1
799c054552a9442256d1c7beb8abb6024564aede2360c90ce594fc423962fa06
GET /?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140101321457777&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70 HTTP/1.1
Host: www.turbotrck.art
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rezi.turetou.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 15:19:49 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-transform
Accept-CH: Sec-CH-UA-Platform-Version
www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140101321457777&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=0c6c80743d5601dba33ae596e78f0401&eyer=0.19790160611576646&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com
51.68.85.158 0 B URL www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140101321457777&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=0c6c80743d5601dba33ae596e78f0401&eyer=0.19790160611576646&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com
IP 51.68.85.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140101321457777&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=0c6c80743d5601dba33ae596e78f0401&eyer=0.19790160611576646&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com HTTP/1.1
Host: www.turbotrck.art
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 25 May 2023 15:19:49 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-transform
Location: https://www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140101321457777&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=3&eyer=0.19790160611576646&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com
www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140101321457777&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=3&eyer=0.19790160611576646&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com
51.68.85.158 0 B URL www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140101321457777&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=3&eyer=0.19790160611576646&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com
IP 51.68.85.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140101321457777&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=3&eyer=0.19790160611576646&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com HTTP/1.1
Host: www.turbotrck.art
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 25 May 2023 15:19:50 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-transform
Location: https://admoustache.media-412.com/sl?id=63ef5a2a8dec34873b6049c7&pid=503&sub1=3300052b995759d86d04f4481b3d597e0927c0525-202305-flb*5564921-b2be6*M7237140101321457777*sl_5564921-b2be6*e1e4a40382736d5ff9372f7c9a1d8e56c3e29d87*13260-c20be91f-60df3a4c*13260
admoustache.media-412.com/sl?id=63ef5a2a8dec34873b6049c7&pid=503&sub1=3300052b995759d86d04f4481b3d597e0927c0525-202305-flb*5564921-b2be6*M7237140101321457777*sl_5564921-b2be6*e1e4a40382736d5ff9372f7c9a1d8e56c3e29d87*13260-c20be91f-60df3a4c*13260
34.90.46.36 0 B URL admoustache.media-412.com/sl?id=63ef5a2a8dec34873b6049c7&pid=503&sub1=3300052b995759d86d04f4481b3d597e0927c0525-202305-flb*5564921-b2be6*M7237140101321457777*sl_5564921-b2be6*e1e4a40382736d5ff9372f7c9a1d8e56c3e29d87*13260-c20be91f-60df3a4c*13260
IP 34.90.46.36:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sl?id=63ef5a2a8dec34873b6049c7&pid=503&sub1=3300052b995759d86d04f4481b3d597e0927c0525-202305-flb*5564921-b2be6*M7237140101321457777*sl_5564921-b2be6*e1e4a40382736d5ff9372f7c9a1d8e56c3e29d87*13260-c20be91f-60df3a4c*13260 HTTP/1.1
Host: admoustache.media-412.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: afclick=646f7c93d85e1a0001ed5b91
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 25 May 2023 15:19:50 GMT
content-length: 0
location: https://grix.offerlinker.xyz/rc/a91581ead4?affclick=646f7c96a161810001ec68cb&pubid=503
x-adjust-use-original-forwarded-for: 1
referer:
referrer-policy: no-referrer
set-cookie: afclick=646f7c96a161810001ec68cb; expires=Fri, 24 May 2024 15:19:50 GMT; secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140109911392305&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70
51.68.82.147 5.2 kB URL www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140109911392305&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70
IP 51.68.82.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3768)
Hash edf28bf1c041a1bd00c0307f0f0a96fc
a79f01f3a47fc0e6c910c79e4023b3135c418686
b810bb4df3198a56efccd00027ca297b50fb177fc4a926aff853edae515b4cbb
GET /?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140109911392305&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70 HTTP/1.1
Host: www.turbotrck.art
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rezi.turetou.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 15:19:51 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-transform
Accept-CH: Sec-CH-UA-Platform-Version
www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140109911392305&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=a66e5952dac1e5c7398355a44beae4c4&eyer=0.5157904391314703&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com
51.68.82.147 0 B URL www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140109911392305&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=a66e5952dac1e5c7398355a44beae4c4&eyer=0.5157904391314703&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com
IP 51.68.82.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140109911392305&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=a66e5952dac1e5c7398355a44beae4c4&eyer=0.5157904391314703&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com HTTP/1.1
Host: www.turbotrck.art
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 25 May 2023 15:19:51 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-transform
Location: https://www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140109911392305&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=3&eyer=0.5157904391314703&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com
www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140109911392305&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=3&eyer=0.5157904391314703&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com
51.68.82.147 0 B URL www.turbotrck.art/?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140109911392305&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=3&eyer=0.5157904391314703&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com
IP 51.68.82.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?sl=5564921-b2be6&data1=Track1&data2=Track2&tag=M7237140109911392305&website=13260-c20be91f-60df3a4c&placement=13260&utm_content=e6c2c6dcd68fd49594fc9695a6a79597828bb8888e8d88bd87b3c5b1c3b7b484b8b3b889bfbfbeb982b380b086b5b4b4a2aaa8a9afafacada2a3a091a7979495868a868d9d8c8d9d87ce90938f8a859783fbc9f9fecdc8fdc0c7f0f1f6919599b9aec8c9ffcffdfffaf3c0f0f6f5f0c5dadbd8d9e9e9e8e9e5e6e3e5efefe0ed1e12101c70&eyeg=3&eyer=0.5157904391314703&eyei=0&eyew=1280&eyeh=1024&eyetd=220&eyef=rezi.turetou.com HTTP/1.1
Host: www.turbotrck.art
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 25 May 2023 15:19:51 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-transform
Location: https://harrenmedia.g2afse.com/sl?id=5db1a4743bf47917e8f252cf&pid=228&sub2=132435&sub1=230008e307ce7c236bed1049aa1a91bb196e00525-202305-flb*5564921-b2be6*M7237140109911392305*sl_5564921-b2be6*2b4bd7a5e94e8ead428dfa2409241a4c9d43d289*13260-c20be91f-60df3a4c*13260
harrenmedia.g2afse.com/sl?id=5db1a4743bf47917e8f252cf&pid=228&sub2=132435&sub1=230008e307ce7c236bed1049aa1a91bb196e00525-202305-flb*5564921-b2be6*M7237140109911392305*sl_5564921-b2be6*2b4bd7a5e94e8ead428dfa2409241a4c9d43d289*13260-c20be91f-60df3a4c*13260
34.91.142.64 0 B URL harrenmedia.g2afse.com/sl?id=5db1a4743bf47917e8f252cf&pid=228&sub2=132435&sub1=230008e307ce7c236bed1049aa1a91bb196e00525-202305-flb*5564921-b2be6*M7237140109911392305*sl_5564921-b2be6*2b4bd7a5e94e8ead428dfa2409241a4c9d43d289*13260-c20be91f-60df3a4c*13260
IP 34.91.142.64:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sl?id=5db1a4743bf47917e8f252cf&pid=228&sub2=132435&sub1=230008e307ce7c236bed1049aa1a91bb196e00525-202305-flb*5564921-b2be6*M7237140109911392305*sl_5564921-b2be6*2b4bd7a5e94e8ead428dfa2409241a4c9d43d289*13260-c20be91f-60df3a4c*13260 HTTP/1.1
Host: harrenmedia.g2afse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Thu, 25 May 2023 15:19:51 GMT
content-length: 0
location: https://armr.trckswrm.com/recommendation?rec_link_id=306&pub_id=107&pub_click_id=646f7c973857840001ad0091&pub_sub_id=&pub_sub_sub_id=228
x-adjust-use-original-forwarded-for: 1
referer:
referrer-policy: no-referrer
set-cookie: afclick=646f7c973857840001ad0091; expires=Fri, 24 May 2024 15:19:51 GMT; secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.turbotrck.art/favicon.ico
51.68.82.147 0 B URL www.turbotrck.art/favicon.ico
IP 51.68.82.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.turbotrck.art
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Date: Thu, 25 May 2023 15:19:51 GMT
Connection: keep-alive
armr.trckswrm.com/recommendation?rec_link_id=306&pub_id=107&pub_click_id=646f7c973857840001ad0091&pub_sub_id=&pub_sub_sub_id=228
5.9.5.213 196 B URL armr.trckswrm.com/recommendation?rec_link_id=306&pub_id=107&pub_click_id=646f7c973857840001ad0091&pub_sub_id=&pub_sub_sub_id=228
IP 5.9.5.213:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document, ASCII text
Hash 699a884af31833429f204e08299fa662
424957a14527deb00c7319f23db1d812bdcef0be
a0a28adb27c6c34c6e4efcdeeaaa88b968c4fe2ce1b6db8321453b10209b004d
GET /recommendation?rec_link_id=306&pub_id=107&pub_click_id=646f7c973857840001ad0091&pub_sub_id=&pub_sub_sub_id=228 HTTP/1.1
Host: armr.trckswrm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-length: 196
access-control-allow-methods: *
date: Thu, 25 May 2023 15:19:51 GMT
X-Firefox-Spdy: h2
armr.trckswrm.com/favicon.ico
5.9.5.213 0 B URL armr.trckswrm.com/favicon.ico
IP 5.9.5.213:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: armr.trckswrm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://armr.trckswrm.com/recommendation?rec_link_id=306&pub_id=107&pub_click_id=646f7c973857840001ad0091&pub_sub_id=&pub_sub_sub_id=228
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-length: 0
date: Thu, 25 May 2023 15:19:51 GMT
X-Firefox-Spdy: h2
go1.phoebedraw.com/click?pid=1057&offer_id=1296324&sub1=BB_C-1oAAAGIU36wTQAACzsAAABrAAABMgAAAAAP&sub2=107
0.0.0.0 0 B URL User Request GET go1.phoebedraw.com/click?pid=1057&offer_id=1296324&sub1=BB_C-1oAAAGIU36wTQAACzsAAABrAAABMgAAAAAP&sub2=107
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=1057&offer_id=1296324&sub1=BB_C-1oAAAGIU36wTQAACzsAAABrAAABMgAAAAAP&sub2=107 HTTP/1.1
Host: go1.phoebedraw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://armr.trckswrm.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache