datatechonert.com/log/add?cid=b11df4a5-b02c-4bff-b483-c91f3b797763
139.45.195.253 12 B URL datatechonert.com/log/add?cid=b11df4a5-b02c-4bff-b483-c91f3b797763
IP 139.45.195.253:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=b11df4a5-b02c-4bff-b483-c91f3b797763 HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1704
Origin: https://cdntechone.com
DNT: 1
Connection: keep-alive
Referer: https://cdntechone.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Mon, 29 May 2023 19:54:30 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://cdntechone.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
cdntechone.com/r.html?axcid=b11df4a5-b02c-4bff-b483-c91f3b797763&axtsid=direct-link&axaffid=edab040575df78ddae6dd30198827672&clid=508f47vg5us8w8nc0d&axfu=https://sweetbird.net/click.php?key=97xwtzyoopcwl3bwxl6v&click_id={clid}&source_id={axtsid}&pub_id_hash={axaffid}&axft=2&r=https://coupteew.com/?l=bC6IYNqSvRS0mok&b=16431177&z=5655689&s={clid}&var={axaffid}&ymid={clid}
188.114.96.1 8.0 kB URL cdntechone.com/r.html?axcid=b11df4a5-b02c-4bff-b483-c91f3b797763&axtsid=direct-link&axaffid=edab040575df78ddae6dd30198827672&clid=508f47vg5us8w8nc0d&axfu=https://sweetbird.net/click.php?key=97xwtzyoopcwl3bwxl6v&click_id={clid}&source_id={axtsid}&pub_id_hash={axaffid}&axft=2&r=https://coupteew.com/?l=bC6IYNqSvRS0mok&b=16431177&z=5655689&s={clid}&var={axaffid}&ymid={clid}
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (17871)
Hash 371d76622a7573644e9a6715843a826b
230e9cf1d67c6a50cc6f520292ad5e4ae44a5f8f
3564d5725c7689c8ad979092104fed4996834b1d8470b7d96c35c15c091035ee
GET /r.html?axcid=b11df4a5-b02c-4bff-b483-c91f3b797763&axtsid=direct-link&axaffid=edab040575df78ddae6dd30198827672&clid=508f47vg5us8w8nc0d&axfu=https://sweetbird.net/click.php?key=97xwtzyoopcwl3bwxl6v&click_id={clid}&source_id={axtsid}&pub_id_hash={axaffid}&axft=2&r=https://coupteew.com/?l=bC6IYNqSvRS0mok&b=16431177&z=5655689&s={clid}&var={axaffid}&ymid={clid} HTTP/1.1
Host: cdntechone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 29 May 2023 19:54:29 GMT
content-type: text/html
last-modified: Fri, 19 May 2023 08:43:53 GMT
link: <https://datatechone.com/>; rel=preconnect; crossorigin, <https://datatechonert.com/>; rel=preconnect; crossorigin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nyP0q1kzWgeo4jz9Eds2B7pwcAYC8grYSU3VGl1J930HwywI%2BphOTbohb95KCDT81Aku9Na7uPJoS3g1y1li40nBzporTO0pyBOuMpMZguBFGrG53kz81IJDEw4FdgjjNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cf14a1f3d56fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
6.lands.ninja/img/man.png
162.210.198.167200 OK 11 kB URL GET HTTP/2 6.lands.ninja/img/man.png
IP 162.210.198.167:443
ASN #30633 LEASEWEB-USA-WDC
Requested by https://6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
Certificate IssuerLet's Encrypt
Subject1.lands.ninja
Fingerprint39:07:A3:BB:C0:77:C1:18:45:3D:8C:83:18:33:3C:DD:63:73:F7:71
ValidityTue, 18 Apr 2023 03:03:46 GMT - Mon, 17 Jul 2023 03:03:45 GMT
File type PNG image data, 179 x 278, 8-bit colormap, non-interlaced\012- data
Hash a6fa8154cc36da494df7b5103329c15a
3a2310088bcec14f7c0187f8409a5af5395665e8
967b8859fedb2c63afc8ae6ae2839fdd40f0e26af85adc6605a629f3c0ed0837
GET /img/man.png HTTP/1.1
Host: 6.lands.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 29 May 2023 19:54:31 GMT
content-type: image/png
content-length: 10591
last-modified: Fri, 19 Aug 2022 17:54:25 GMT
etag: "295f-5e69bc9efa59f;5f0cb07c1a49c"
accept-ranges: bytes
X-Firefox-Spdy: h2
6.lands.ninja/img/logo.png
162.210.198.167200 OK 1.1 kB URL GET HTTP/2 6.lands.ninja/img/logo.png
IP 162.210.198.167:443
ASN #30633 LEASEWEB-USA-WDC
Requested by https://6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
Certificate IssuerLet's Encrypt
Subject1.lands.ninja
Fingerprint39:07:A3:BB:C0:77:C1:18:45:3D:8C:83:18:33:3C:DD:63:73:F7:71
ValidityTue, 18 Apr 2023 03:03:46 GMT - Mon, 17 Jul 2023 03:03:45 GMT
File type PNG image data, 94 x 19, 8-bit colormap, non-interlaced\012- data
Hash d708fbf0358752a082f5a394b74adda8
231c1527b4b039eb3af7d7e9eb5587ed87f6ea81
09d12e3c0e65fda26b9073e70e02fb24fa6941a4a3b1b81211b6470f00769ea5
GET /img/logo.png HTTP/1.1
Host: 6.lands.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 29 May 2023 19:54:31 GMT
content-type: image/png
content-length: 1061
last-modified: Fri, 19 Aug 2022 17:54:24 GMT
etag: "425-5e69bc9e23c07;5f0cb07c1a49c"
accept-ranges: bytes
X-Firefox-Spdy: h2
6.lands.ninja/img/bot.png
162.210.198.167200 OK 11 kB URL GET HTTP/2 6.lands.ninja/img/bot.png
IP 162.210.198.167:443
ASN #30633 LEASEWEB-USA-WDC
Requested by https://6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
Certificate IssuerLet's Encrypt
Subject1.lands.ninja
Fingerprint39:07:A3:BB:C0:77:C1:18:45:3D:8C:83:18:33:3C:DD:63:73:F7:71
ValidityTue, 18 Apr 2023 03:03:46 GMT - Mon, 17 Jul 2023 03:03:45 GMT
File type PNG image data, 260 x 260, 8-bit colormap, non-interlaced\012- data
Hash ca1f4de0ad1d4fad72d299a6411e6959
c9f6d409f09264a34ee8bac4265233c56c280d1a
f0434a1fc8ffba3a47bbb9f1fa5a2f789651a020e7b86e507ff300b7c367057f
GET /img/bot.png HTTP/1.1
Host: 6.lands.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 29 May 2023 19:54:31 GMT
content-type: image/png
content-length: 11043
last-modified: Fri, 19 Aug 2022 17:54:24 GMT
etag: "2b23-5e69bc9e22497;5f0cb07c1a49c"
accept-ranges: bytes
X-Firefox-Spdy: h2
6.lands.ninja/rp-cl-rd-ob.js?pubid=775186&siteid=312014&niche=33
162.210.198.167200 OK 5.8 kB URL GET HTTP/2 6.lands.ninja/rp-cl-rd-ob.js?pubid=775186&siteid=312014&niche=33
IP 162.210.198.167:443
ASN #30633 LEASEWEB-USA-WDC
Requested by https://6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
Certificate IssuerLet's Encrypt
Subject1.lands.ninja
Fingerprint39:07:A3:BB:C0:77:C1:18:45:3D:8C:83:18:33:3C:DD:63:73:F7:71
ValidityTue, 18 Apr 2023 03:03:46 GMT - Mon, 17 Jul 2023 03:03:45 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 2cbf36d9e90bbfe2b12495f85f580f05
34dd553e6535ab8d739d2cf1f431eab659766bba
e72b7c114bc0a18d1c6d96bb925da2d3d6d26a70cf3b8a268c2400a4d682340d
GET /rp-cl-rd-ob.js?pubid=775186&siteid=312014&niche=33 HTTP/1.1
Host: 6.lands.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 29 May 2023 19:54:31 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 27 Feb 2023 13:57:14 GMT
etag: W/"386a-5f5aedb3a5d3e;5f0cb07c1a49c"
content-encoding: gzip
X-Firefox-Spdy: h2
eu.wenga.xyz/pb/st?sctp=content-locker&m=ht&pid=775186&sid=312014&dm=6.lands.ninja&c1=https&c2=1&c3=https://eu.wenga.xyz/pb/st
38.100.129.67200 OK 0 B URL GET HTTP/2 eu.wenga.xyz/pb/st?sctp=content-locker&m=ht&pid=775186&sid=312014&dm=6.lands.ninja&c1=https&c2=1&c3=https://eu.wenga.xyz/pb/st
IP 38.100.129.67:443
Requested by https://6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
Certificate IssuerLet's Encrypt
Subject*.wenga.xyz
Fingerprint96:D4:49:AC:4D:4B:8E:B0:1A:16:E6:92:EC:4F:92:42:70:65:3B:CB
ValiditySun, 28 May 2023 23:08:36 GMT - Sat, 26 Aug 2023 23:08:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pb/st?sctp=content-locker&m=ht&pid=775186&sid=312014&dm=6.lands.ninja&c1=https&c2=1&c3=https://eu.wenga.xyz/pb/st HTTP/1.1
Host: eu.wenga.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://6.lands.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.15.8.3
date: Mon, 29 May 2023 19:54:31 GMT
content-type: text/html;charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
sweetbird.net/click.php?key=97xwtzyoopcwl3bwxl6v
34.192.29.125302 Found 14 kB URL User Request GET HTTP/1.1 sweetbird.net/click.php?key=97xwtzyoopcwl3bwxl6v
IP 34.192.29.125:443
Certificate IssuerLet's Encrypt
Subjectsweetbird.net
Fingerprint3E:E0:45:F6:85:42:86:58:D1:24:31:89:EA:EC:D1:70:D6:68:D1:F6
ValidityFri, 07 Apr 2023 02:08:41 GMT - Thu, 06 Jul 2023 02:08:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click.php?key=97xwtzyoopcwl3bwxl6v HTTP/1.1
Host: sweetbird.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdntechone.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.2
Date: Mon, 29 May 2023 19:54:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uclick=7vg58r166o; expires=Tue, 30-May-2023 19:54:30 GMT; Max-Age=86400; path=/; secure; SameSite=none
uclickhash=7vg58r166o-7vg58r166o-3zbl-0-m70-oj7v-oj8r-a37e86; expires=Tue, 30-May-2023 19:54:30 GMT; Max-Age=86400; path=/; secure; SameSite=none
Location: https://6.lands.ninja?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
Strict-Transport-Security: max-age=31536000
eu.wenga.xyz/pb/st
38.100.129.67200 OK 34 B IP 38.100.129.67:443
Requested by https://6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
Certificate IssuerLet's Encrypt
Subject*.wenga.xyz
Fingerprint96:D4:49:AC:4D:4B:8E:B0:1A:16:E6:92:EC:4F:92:42:70:65:3B:CB
ValiditySun, 28 May 2023 23:08:36 GMT - Sat, 26 Aug 2023 23:08:35 GMT
File type ASCII text, with no line terminators
Hash 027d3b7eb224476eeeef5fb4603d52ad
d8413242296f1eee3a3c40ff6e28f2211ac778da
6f9d4356870080ec8ace58f54cc9b6d006577cf9d192f5075d715db16a3f767a
GET /pb/st HTTP/1.1
Host: eu.wenga.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6.lands.ninja/
Origin: https://6.lands.ninja
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.15.8.3
date: Mon, 29 May 2023 19:54:31 GMT
content-type: text/html;charset=UTF-8
content-length: 34
access-control-allow-origin: https://6.lands.ninja
access-control-allow-credentials: true
X-Firefox-Spdy: h2
6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
162.210.198.167200 OK 14 kB URL User Request GET HTTP/2 6.lands.ninja/?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO
IP 162.210.198.167:443
ASN #30633 LEASEWEB-USA-WDC
Certificate IssuerLet's Encrypt
Subject1.lands.ninja
Fingerprint39:07:A3:BB:C0:77:C1:18:45:3D:8C:83:18:33:3C:DD:63:73:F7:71
ValidityTue, 18 Apr 2023 03:03:46 GMT - Mon, 17 Jul 2023 03:03:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?q=0816a7vg58r166o558&s=Unknown&var=Unknown&geo=NO HTTP/1.1
Host: 6.lands.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdntechone.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 29 May 2023 19:54:30 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
last-modified: Mon, 20 Feb 2023 18:23:51 GMT
etag: W/"34b3-5f525c3cc91db"
content-encoding: gzip
X-Firefox-Spdy: h2