200 OK 49 kB URL User Request GET HTTP/1.1 IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1495), with CRLF, LF line terminators
Hash 5ad0b74a1e68813bdb1506c42affe424
a78b379a11bd7e2ea07ccacdfebf35494d9de5e6
bb5da5187c7567a198807c76c3fb39cf7c50a449fc1b7f78a3396f86049d955e
GET / HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
no-tabletki.ru/rtr/3-3.html
200 OK 317 B URL GET HTTP/1.1 no-tabletki.ru/rtr/3-3.html
IP
File type HTML document, Unicode text, UTF-8 text
Hash c5779bea2dc574b4840946789c062652
34c7de43c936841622c326e116b49dd7aefdbdcd
9bd55f672935a91bee8f559f8fa9db6200a44541697b3fa833164c8d87652b21
GET /rtr/3-3.html HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
no-tabletki.ru/rtr/3-4.html
200 OK 330 B URL GET HTTP/1.1 no-tabletki.ru/rtr/3-4.html
IP
File type HTML document, Unicode text, UTF-8 text, with very long lines (318)
Hash 5999b7eecd4cefc80cf82a3a842e30f8
ae344345b42685e0bf8b7e60d44b33aef527506e
14e61fb2c66c98730a0fe9b75edab05ec9a7359cb16e363724b1444a4c906101
GET /rtr/3-4.html HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
no-tabletki.ru/_st/my.css
200 OK 16 kB URL GET HTTP/1.1 no-tabletki.ru/_st/my.css
IP
Hash 544bce9a53930c3d0ab4b1a716ad48bb
458a2750784943e825ffdad7bc51994be9a5e72c
b97ff48383c05ff935fceccba010a7ced11ebc38dae1da1e80d980ebd1ca7463
GET /_st/my.css HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/css
Content-Length: 16206
Last-Modified: Sun, 20 Nov 2016 18:18:07 GMT
Connection: keep-alive
ETag: "5831e8df-3f4e"
Accept-Ranges: bytes
no-tabletki.ru/rtr/6.html
200 OK 354 B URL GET HTTP/1.1 no-tabletki.ru/rtr/6.html
IP
File type HTML document, Unicode text, UTF-8 text, with very long lines (333)
Hash 43b1bc2d2f35f1be0925f60d9cf6f7b0
00106d53df8c7a34c6d3360e17f2780b74aa9fd2
c18d10416ba98f473847b5cb61077fc528e4a4487bb852c31a627682347781ed
GET /rtr/6.html HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
no-tabletki.ru/rtr/5.html
200 OK 348 B URL GET HTTP/1.1 no-tabletki.ru/rtr/5.html
IP
File type HTML document, Unicode text, UTF-8 text, with very long lines (330)
Hash f45a8b8de888f0415d1aa37e3950b874
178b1fe36e779221368369464e3a2bdb45002330
e1e8c85cd6866467a4afb405115f762de0b2fae452ace73239e22213c6d7fcda
GET /rtr/5.html HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
no-tabletki.ru/rtr/2-1.html
200 OK 363 B URL GET HTTP/1.1 no-tabletki.ru/rtr/2-1.html
IP
File type HTML document, Unicode text, UTF-8 text, with very long lines (351)
Hash b4b409de2f2d49cba3a7c3126d78d26a
eb0d4db2e4ec1aadfa995c0a092c3ea9060f4e4a
bf6876a7a1bfcdc635c0022984428ad33dab09cb093e48e34654bc338c64f35c
GET /rtr/2-1.html HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
s68.ucoz.net/src/ulightbox/ulightbox.css
200 OK 1.7 kB URL GET HTTP/1.1 s68.ucoz.net/src/ulightbox/ulightbox.css
IP
ASN #204343 Compubyte Limited
Hash adf200d8744953fce35aa1035031dee6
a27ee15bd1b1aca2bfe85e1cb49fba9d91f07fdf
11e9aacfba158d4b2a6f253a70a93be535eeba72d43ce11295151845a344a3c2
GET /src/ulightbox/ulightbox.css HTTP/1.1
Host: s68.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: text/css
Last-Modified: Tue, 24 May 2022 12:36:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"628cd142-1726"
Expires: Fri, 29 Sep 2023 08:34:26 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
s68.ucoz.net/src/ulightbox/ulightbox.js
200 OK 9.2 kB URL GET HTTP/1.1 s68.ucoz.net/src/ulightbox/ulightbox.js
IP
ASN #204343 Compubyte Limited
File type ASCII text, with very long lines (658)
Hash 6a33f7a9329e346f5de3dced826200b6
e12f36bb0ef5f60af9d95686bebec4af5d6eb695
2c66d39433b13574e767145ca94d740ed620e502585fb8c257433a5446e1a665
GET /src/ulightbox/ulightbox.js HTTP/1.1
Host: s68.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: text/javascript
Last-Modified: Tue, 29 Aug 2023 07:45:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"64eda20d-74ea"
Expires: Fri, 29 Sep 2023 08:34:26 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
s68.ucoz.net/src/layer1.css
200 OK 6.0 kB URL GET HTTP/1.1 s68.ucoz.net/src/layer1.css
IP
ASN #204343 Compubyte Limited
File type ASCII text, with very long lines (1369)
Hash dff9865df0455458552b3557b8769abf
8dd00620dcf74c6992e70113b672b11c14a1606e
6af31ca76fc78881287d68681eef123809bdac781754613965c6658017a9ceec
GET /src/layer1.css HTTP/1.1
Host: s68.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: text/css
Last-Modified: Tue, 18 Jul 2023 12:40:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"64b6882b-6172"
Expires: Fri, 29 Sep 2023 08:34:26 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
s68.ucoz.net/src/jquery-1.7.2.js
200 OK 34 kB URL GET HTTP/1.1 s68.ucoz.net/src/jquery-1.7.2.js
IP
ASN #204343 Compubyte Limited
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash b8d64d0bc142b3f670cc0611b0aebcae
abcd2ba13348f178b17141b445bc99f1917d47af
47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4
GET /src/jquery-1.7.2.js HTTP/1.1
Host: s68.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: text/javascript
Last-Modified: Wed, 05 Apr 2023 11:25:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"642d5ab3-17278"
Expires: Fri, 29 Sep 2023 08:34:26 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
s68.ucoz.net/src/uwnd.js?2
200 OK 61 kB URL GET HTTP/1.1 s68.ucoz.net/src/uwnd.js?2
IP
ASN #204343 Compubyte Limited
File type ASCII text, with very long lines (14577)
Hash 53d15a28fc200e8a058d20063292ade9
24621483d80cde3ff5f80bd42e949ae315de0bb8
3b2b0b69c1bb1dfbd05899a7aea5ab1cfa6e83011da4dd9bec42feaaf8da854f
GET /src/uwnd.js?2 HTTP/1.1
Host: s68.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: text/javascript
Last-Modified: Wed, 05 Apr 2023 11:25:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"642d5ab3-3764f"
Expires: Fri, 29 Sep 2023 08:34:26 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
inetlog.ru/img/del.gif
200 OK 43 B IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /img/del.gif HTTP/1.1
Host: inetlog.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Fri, 13 Jan 2017 09:26:25 GMT
Connection: keep-alive
ETag: "58789d41-2b"
Accept-Ranges: bytes
livesurf.ru/banners/88-31-1.png
200 OK 169 B URL GET HTTP/1.1 livesurf.ru/banners/88-31-1.png
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjectlivesurf.ru
FingerprintEE:1F:F4:EF:2F:D5:6A:97:A4:98:C6:54:51:4B:C2:87:09:C8:BC:EC
ValiditySat, 19 Aug 2023 21:42:42 GMT - Fri, 17 Nov 2023 21:42:41 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 84855c13836b389d5ec7cfd4c9266173
1cf3056ff23c4176fd7ca9816a000ed461d6d323
502083c916ae481cdd413b8d93315300653df5fb3dcc5770c01991de19977eae
GET /banners/88-31-1.png HTTP/1.1
Host: livesurf.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://livesurf.ru/banners/88-31-1.png
no-tabletki.ru/cycounter_no-tabletki.ru
404 Not Found 222 B URL GET HTTP/1.1 no-tabletki.ru/cycounter_no-tabletki.ru
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 716f8381148b24099c0bb70fe7ed5c1f
3427b835f59479174e230c7b44c95fe481f8ece1
ebc5c0cbcc9cab20824c71623324425c630251ac2c39bf2c6e7162e40bc1f5ba
GET /cycounter_no-tabletki.ru HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
no-tabletki.ru/.s/t/904/3.jpg
200 OK 7.3 kB URL GET HTTP/1.1 no-tabletki.ru/.s/t/904/3.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 400x58, components 3\012- data
Hash 0bae5ac690a44d8260de603dea5f707f
710bb45afd66dbb9e9fae1aa5a11587638d8275e
a2e49fa3f9fb51c4fbf428023ff16320b06f0117d7735d0e3e2a59068d4ea21c
GET /.s/t/904/3.jpg HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/jpeg
Content-Length: 7305
Last-Modified: Sun, 20 Nov 2016 18:54:11 GMT
Connection: keep-alive
ETag: "5831f153-1c89"
Accept-Ranges: bytes
no-tabletki.ru/.s/t/904/1.jpg
200 OK 22 kB URL GET HTTP/1.1 no-tabletki.ru/.s/t/904/1.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 400x187, components 3\012- data
Hash f9d2380cf80e292df47949468036221c
1ebbf76fb3b680b711b94b92ef1d2a2ca86f07d2
e804d1dfc170afc76ac3ffaba72a3d46d8f2c36b864f281426d52280cfc9c067
GET /.s/t/904/1.jpg HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/jpeg
Content-Length: 22318
Last-Modified: Sun, 20 Nov 2016 18:54:11 GMT
Connection: keep-alive
ETag: "5831f153-572e"
Accept-Ranges: bytes
samopoznanie.ru/design/images/samopoznanie.gif
200 OK 179 B URL GET HTTP/2 samopoznanie.ru/design/images/samopoznanie.gif
IP
Certificate IssuerLet's Encrypt
Subjectsamopoznanie.ru
Fingerprint15:71:9D:60:70:EA:F5:B4:03:17:28:CB:EC:BF:88:10:68:A9:4C:C9
ValiditySun, 17 Sep 2023 01:31:34 GMT - Sat, 16 Dec 2023 01:31:33 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 2e80ba8bff71b4ebd5dd91a33801ec28
890ebf3f1d92bd251109723245c3c2c91654f04b
e229871f7c4a5d8d85827f811549a3e72246c75a5580b80084795794655741d8
GET /design/images/samopoznanie.gif HTTP/1.1
Host: samopoznanie.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx-reuseport/1.21.1
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html
Content-Length: 179
Connection: keep-alive
Keep-Alive: timeout=30
Location: https://samopoznanie.ru/design/images/samopoznanie.gif
no-tabletki.ru/.s/t/904/2.jpg
200 OK 15 kB URL GET HTTP/1.1 no-tabletki.ru/.s/t/904/2.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 400x75, components 3\012- data
Hash 11fab4ef62c6f8cf1fb76d90df4ff2a8
09d43f49e5f82ebb8d59a3815997796d52f4af65
60400282c64dbde231da3fc82b771689f9d1d285383854264c3c22d72d728f46
GET /.s/t/904/2.jpg HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/jpeg
Content-Length: 15223
Last-Modified: Sun, 20 Nov 2016 18:54:11 GMT
Connection: keep-alive
ETag: "5831f153-3b77"
Accept-Ranges: bytes
openstat.net/cnt.js
502 Bad Gateway 0 B IP
Certificate IssuerGoogle Trust Services LLC
Subjectopenstat.net
FingerprintBD:03:28:AD:9F:6E:BA:D2:52:40:AA:6D:89:F1:1C:2B:1B:38:EF:B4
ValiditySat, 05 Aug 2023 15:47:03 GMT - Fri, 03 Nov 2023 15:47:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cnt.js HTTP/1.1
Host: openstat.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Tue, 19 Sep 2023 08:34:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 19 Sep 2023 09:34:23 GMT
Location: https://openstat.net/cnt.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uWHxcd5%2Bmf8yPC1aCHD42lkucJjk%2BM8Xh3srUvCbo8R0SSeOXHVqdo6svu%2BivjPqkaYRPNHGGfXt1gUlugjXNhkyy67h54kBAt3WE%2B6ZPd5HaHeOTGyAaLbpmtf%2BhIE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 80907d40388cb523-OSL
alt-svc: h2=":443"; ma=60
noy-tabletka.ucoz.ru/stat/1355811720
200 OK 43 B URL GET HTTP/1.1 noy-tabletka.ucoz.ru/stat/1355811720
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /stat/1355811720 HTTP/1.1
Host: noy-tabletka.ucoz.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
Expires: Thu, 01 Dec 1994 16:00:00 GMT
no-tabletki.ru/magija_deneg_4.jpg
200 OK 17 kB URL GET HTTP/1.1 no-tabletki.ru/magija_deneg_4.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=ACDSee Pro 5, datetime=2012:11:30 14:06:39], baseline, precision 8, 468x65, components 3\012- data
Hash c7db6bdcb4472f137c113e27468b4d37
f415cf5d5a1553186866bd001ef035a5c0c7c1e7
29d2d2fbfb8edf68d88b9b49c735f5ceb55db6588c2c4118673b0aa364149843
GET /magija_deneg_4.jpg HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/jpeg
Content-Length: 17421
Last-Modified: Sun, 20 Nov 2016 17:52:44 GMT
Connection: keep-alive
ETag: "5831e2ec-440d"
Accept-Ranges: bytes
prlog.ru/images/counter/no-tabletki_ru.png
200 OK 1.5 kB URL GET HTTP/1.1 prlog.ru/images/counter/no-tabletki_ru.png
IP
File type PNG image data, 88 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash b8be37f8876a7b62674ce4e1de0c65ee
54c8599d5aae7db037a369f5246a7fc9f2718e1d
d8325fbdd580e411391fb807a6c3a101e82e081c669acfc8a5705c51bdd77def
GET /images/counter/no-tabletki_ru.png HTTP/1.1
Host: prlog.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=31536000
CF-Cache-Status: MISS
Last-Modified: Tue, 19 Sep 2023 08:34:23 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a5blGHDuTS1kTrSZx1yBCwD2R1gQN4XD8ZAYl1DNGHMcCrDlSAcWQObJSUmfItGsfVmXPUOl3ezBruCBoXR7v11AILcRVKn%2FOINB%2BCharDMIm%2F5Nd3%2BnWgA7JA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 80907d3fb9d656cb-OSL
alt-svc: h2=":443"; ma=60
www.webmoney.ru/img/icons/88x31_wm_v_blue_on_white_ru.png
200 OK 805 B URL GET HTTP/1.1 www.webmoney.ru/img/icons/88x31_wm_v_blue_on_white_ru.png
IP
File type PNG image data, 88 x 31, 8-bit colormap, non-interlaced\012- data
Hash ec0ae64ce7453bc407605ad9b75d8e47
782fc1ea6201bb9a230d9a8ed879e52124a5d10c
a8cb1a292789f28237522e7564bbe347e5eb9c76bec1f8e9d7a414ca4cff86ec
GET /img/icons/88x31_wm_v_blue_on_white_ru.png HTTP/1.1
Host: www.webmoney.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/png
Content-Length: 805
Connection: keep-alive
Last-Modified: Wed, 15 Jun 2011 10:36:00 GMT
ETag: "4df88b10-325"
Expires: Wed, 20 Sep 2023 08:34:23 GMT
Cache-Control: max-age=86400
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
satom.ru/pics/buttons_new/1_z.png
200 OK 296 B URL GET HTTP/1.1 satom.ru/pics/buttons_new/1_z.png
IP
File type PNG image data, 72 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash dafa800c3fbf3d58290370fadaaf5323
79d56393caabf099f7a7b888c95dc7bd2931853c
acf0983ccd401785e6b1056ec56a9a4ea535de0f4c8897227cdc3bc266b7dcd6
GET /pics/buttons_new/1_z.png HTTP/1.1
Host: satom.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/png
Content-Length: 296
Connection: keep-alive
Last-Modified: Fri, 21 Feb 2020 10:14:35 GMT
ETag: "5e4fad8b-128"
Expires: Thu, 19 Sep 2024 08:34:23 GMT
Cache-Control: max-age=31622400
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
no-tabletki.ru/.s/t/904/7.gif
200 OK 3.3 kB URL GET HTTP/1.1 no-tabletki.ru/.s/t/904/7.gif
IP
File type GIF image data, version 89a, 15 x 550\012- data
Hash f925d17609e3ec4bec5b663637b4b783
1c402d2f18ef3c7793479f5dcd90f6a273a72e18
e2b9a7216da14f08420afbfca2210fb4436dfd38a57ab88aa9cb51c9c827bab3
GET /.s/t/904/7.gif HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/_st/my.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/gif
Content-Length: 3312
Last-Modified: Sun, 20 Nov 2016 18:54:11 GMT
Connection: keep-alive
ETag: "5831f153-cf0"
Accept-Ranges: bytes
no-tabletki.ru/.s/t/904/12.gif
200 OK 54 B URL GET HTTP/1.1 no-tabletki.ru/.s/t/904/12.gif
IP
File type GIF image data, version 89a, 8 x 8\012- data
Hash 24720941fbbd7149e01afba95364cf36
db4028116190eb4a54706e950a303d42905946ec
a71715fc1a9dae632f26d5187208e2e548383136825b5f8f46ffcc8f1c9bba11
GET /.s/t/904/12.gif HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/_st/my.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/gif
Content-Length: 54
Last-Modified: Sun, 20 Nov 2016 18:54:10 GMT
Connection: keep-alive
ETag: "5831f152-36"
Accept-Ranges: bytes
no-tabletki.ru/.s/t/904/8.gif
200 OK 7.4 kB URL GET HTTP/1.1 no-tabletki.ru/.s/t/904/8.gif
IP
File type GIF image data, version 89a, 1500 x 75\012- data
Hash a66e7f60cc7e988079061e5cfd4e6b57
5a936e8ec7781f6aeb916f8a273ed71c14a09b87
df08b0207942a7ce72c1fe15c2451349286fc73c72e0ea94403c459da43b766e
GET /.s/t/904/8.gif HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/_st/my.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/gif
Content-Length: 7379
Last-Modified: Sun, 20 Nov 2016 18:54:11 GMT
Connection: keep-alive
ETag: "5831f153-1cd3"
Accept-Ranges: bytes
no-tabletki.ru/.s/t/904/10.gif
200 OK 2.3 kB URL GET HTTP/1.1 no-tabletki.ru/.s/t/904/10.gif
IP
File type GIF image data, version 89a, 208 x 800\012- data
Hash 0dce3843039e7878da8a5244cf46d160
97a1a7a2df06aa41e48e9eed66f97df4c61c849e
5d238f5a70144bc9eaa63892eb6ecc4aa8e7d11cb5ec441e15258485cfe2132c
GET /.s/t/904/10.gif HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/_st/my.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/gif
Content-Length: 2340
Last-Modified: Sun, 20 Nov 2016 18:54:10 GMT
Connection: keep-alive
ETag: "5831f152-924"
Accept-Ranges: bytes
no-tabletki.ru/.s/t/904/9.gif
200 OK 2.3 kB URL GET HTTP/1.1 no-tabletki.ru/.s/t/904/9.gif
IP
File type GIF image data, version 89a, 208 x 31\012- data
Hash 0864fb4d9dd6a492c80c727aa623ce1a
bf34c3b5b94bfdd866171497e1f291a9e8e6f002
d4cc89737ccb5940d456dbd6390136e2b4fa04a1fc8493def1d1bd044ac4da33
GET /.s/t/904/9.gif HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/_st/my.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/gif
Content-Length: 2256
Last-Modified: Sun, 20 Nov 2016 18:54:11 GMT
Connection: keep-alive
ETag: "5831f153-8d0"
Accept-Ranges: bytes
no-tabletki.ru/.s/img/wd/1/ar1.gif
200 OK 49 B URL GET HTTP/1.1 no-tabletki.ru/.s/img/wd/1/ar1.gif
IP
File type GIF image data, version 89a, 4 x 7\012- data
Hash 4ed1ae998f20cab9a52ec899590999bb
5d5cde2a289304840005fbfb0f2825837e35c731
68c66290ff9cfdc3863623a3533b742ad62ce6045395a8460d7ca8a8a9d2ee8c
GET /.s/img/wd/1/ar1.gif HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/_st/my.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/gif
Content-Length: 49
Last-Modified: Sun, 20 Nov 2016 19:03:00 GMT
Connection: keep-alive
ETag: "5831f364-31"
Accept-Ranges: bytes
no-tabletki.ru/web/20121218062155im_/http://satom.ru/pics/buttons_new/1b_middle.png
404 Not Found 265 B URL GET HTTP/1.1 no-tabletki.ru/web/20121218062155im_/http://satom.ru/pics/buttons_new/1b_middle.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 91f377c9531468d0ce87e1542901378e
52ffb372d642b2c508b779b76f55ed67d2a484bc
7874bad0c5e8104de23bd589c4238aaff714488c923a31cc48d39f5520880d98
GET /web/20121218062155im_/http://satom.ru/pics/buttons_new/1b_middle.png HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
no-tabletki.ru/.s/img/uidlogin/ulb-mid.png
200 OK 1.0 kB URL GET HTTP/1.1 no-tabletki.ru/.s/img/uidlogin/ulb-mid.png
IP
File type PNG image data, 1 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 7c10db42b36da0ef73cd4c633b6576c6
47ddea276c5c4a8ed90ce963b3bb5f96364fee36
e4663d8cec4d94537ce1803c61853ae1d4883ad035a21d9b08c91be102d269ef
GET /.s/img/uidlogin/ulb-mid.png HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/png
Content-Length: 1021
Last-Modified: Sun, 20 Nov 2016 18:54:09 GMT
Connection: keep-alive
ETag: "5831f151-3fd"
Accept-Ranges: bytes
no-tabletki.ru/.s/img/uidlogin/ulb-right.png
200 OK 1.4 kB URL GET HTTP/1.1 no-tabletki.ru/.s/img/uidlogin/ulb-right.png
IP
File type PNG image data, 20 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash f49481797cfe18692f6dfbe97f76bacb
f2ee3d73d8147e735d1afac3c7b4706adbe753cf
fec58070173d97d5e8490ad4e9ee46200e8e9a7c4753d199291512a0634158bd
GET /.s/img/uidlogin/ulb-right.png HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/png
Content-Length: 1382
Last-Modified: Sun, 20 Nov 2016 18:54:09 GMT
Connection: keep-alive
ETag: "5831f151-566"
Accept-Ranges: bytes
no-tabletki.ru/.s/img/uidlogin/ulb-left.png
200 OK 3.4 kB URL GET HTTP/1.1 no-tabletki.ru/.s/img/uidlogin/ulb-left.png
IP
File type PNG image data, 40 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f531c09ced5292f494280bd522165db
c79d25d362870bc7ab0111114113691a4e132086
3d8ce0e9e0595a3e340e648b9bb976142b6809b220cc8af30864720043a14cb7
GET /.s/img/uidlogin/ulb-left.png HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/png
Content-Length: 3424
Last-Modified: Sun, 20 Nov 2016 18:54:09 GMT
Connection: keep-alive
ETag: "5831f151-d60"
Accept-Ranges: bytes
ad.admitad.com/j/03ed75a4aa9a1194c22832d56e7890/?inject=admitad03ed75a4aa9a1194c22832d56e789069777535
200 OK 162 B URL GET HTTP/2 ad.admitad.com/j/03ed75a4aa9a1194c22832d56e7890/?inject=admitad03ed75a4aa9a1194c22832d56e789069777535
IP
ASN #44066 diva-e Datacenters GmbH
Certificate IssuerSectigo Limited
Subjectad.admitad.com
Fingerprint38:28:F3:57:7B:EB:D5:38:72:C0:2D:6C:B7:BD:24:D4:D4:DF:A9:5A
ValidityTue, 06 Dec 2022 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /j/03ed75a4aa9a1194c22832d56e7890/?inject=admitad03ed75a4aa9a1194c22832d56e789069777535 HTTP/1.1
Host: ad.admitad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://ad.admitad.com/j/03ed75a4aa9a1194c22832d56e7890/?inject=admitad03ed75a4aa9a1194c22832d56e789069777535
no-tabletki.ru/web/20121218062155im_/http://satom.ru/pics/buttons_new/1b_left.png
404 Not Found 263 B URL GET HTTP/1.1 no-tabletki.ru/web/20121218062155im_/http://satom.ru/pics/buttons_new/1b_left.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 01117007f563582dfa6957b02d391763
edc831fa206ab7f076b3e045d46329b98fd06f15
d44ae8aae9bb0f1397d685e9d313f8090512a6fbb45615b3152f77df6081d9e4
GET /web/20121218062155im_/http://satom.ru/pics/buttons_new/1b_left.png HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
no-tabletki.ru/web/20121218062155im_/http://satom.ru/pics/buttons_new/1b_right.png
404 Not Found 264 B URL GET HTTP/1.1 no-tabletki.ru/web/20121218062155im_/http://satom.ru/pics/buttons_new/1b_right.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0fcd824c22496ec0846d43d944af8a92
ad67c04a9af2e71b5a5f19b37411a35bc446403e
15ffc0b43e3b6acd14a900bbb7704b2fa04af6d51e8ce7c41b67a486f2377a3d
GET /web/20121218062155im_/http://satom.ru/pics/buttons_new/1b_right.png HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
ad.admitad.com/j/65ce30448a9a1194c2286fc015d692/?inject=admitad65ce30448a9a1194c2286fc015d6925767063
200 OK 162 B URL GET HTTP/2 ad.admitad.com/j/65ce30448a9a1194c2286fc015d692/?inject=admitad65ce30448a9a1194c2286fc015d6925767063
IP
ASN #44066 diva-e Datacenters GmbH
Certificate IssuerSectigo Limited
Subjectad.admitad.com
Fingerprint38:28:F3:57:7B:EB:D5:38:72:C0:2D:6C:B7:BD:24:D4:D4:DF:A9:5A
ValidityTue, 06 Dec 2022 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /j/65ce30448a9a1194c2286fc015d692/?inject=admitad65ce30448a9a1194c2286fc015d6925767063 HTTP/1.1
Host: ad.admitad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://ad.admitad.com/j/65ce30448a9a1194c2286fc015d692/?inject=admitad65ce30448a9a1194c2286fc015d6925767063
www.acint.net/aci.js
200 OK 8.4 kB IP
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type ASCII text, with very long lines (29844), with no line terminators
Hash d1e391ec30b1873d5ba17533864db834
4770a01d4a3d351ab6f9e0d6c7d613a1d02fcd27
9a4d4b0095f5dfd9adf1a509029b110a24bfc96c1cf3273c6d59718563e4c7db
GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:23 GMT
content-type: application/x-javascript
content-length: 8387
last-modified: Tue, 13 Jun 2023 08:01:41 GMT
etag: "64882265-20c3"
content-encoding: gzip
expires: Tue, 19 Sep 2023 20:34:23 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2
s68.ucoz.net/.s/img/wd/1/top-bottom.png
200 OK 1.4 kB URL GET HTTP/1.1 s68.ucoz.net/.s/img/wd/1/top-bottom.png
IP
ASN #204343 Compubyte Limited
File type PNG image data, 1 x 300, 8-bit/color RGB, non-interlaced\012- data
Hash 46cf6cdfb1de1fe7eeddd7023e22c43e
32466f4decac42ea622069884cd765b7044348a0
4b9c5deef2c777bd234c2e800ae1b397f50244d58745776a40dbece38d4ef9e9
GET /.s/img/wd/1/top-bottom.png HTTP/1.1
Host: s68.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://s68.ucoz.net/src/layer1.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: image/png
Content-Length: 1355
Last-Modified: Wed, 05 Apr 2023 11:25:37 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "642d5ab1-54b"
Expires: Fri, 29 Sep 2023 08:34:26 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
s68.ucoz.net/.s/img/wd/1/left-corners.png
200 OK 1.6 kB URL GET HTTP/1.1 s68.ucoz.net/.s/img/wd/1/left-corners.png
IP
ASN #204343 Compubyte Limited
File type PNG image data, 6 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash c9504a89f9b8c49fbbd9cdd701129589
2676575f2433de9acc89984cec18cac9a877de3c
08ecd5305e379dba84c0d1099a2c4ade22aaee335ad6e55e7564298284f60382
GET /.s/img/wd/1/left-corners.png HTTP/1.1
Host: s68.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://s68.ucoz.net/src/layer1.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: image/png
Content-Length: 1603
Last-Modified: Wed, 05 Apr 2023 11:25:37 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "642d5ab1-643"
Expires: Fri, 29 Sep 2023 08:34:26 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
s68.ucoz.net/.s/img/wd/1/right-corners.png
200 OK 1.6 kB URL GET HTTP/1.1 s68.ucoz.net/.s/img/wd/1/right-corners.png
IP
ASN #204343 Compubyte Limited
File type PNG image data, 6 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash da6b76c86e3c19a428481f4777c2f06b
5f9330241e287389b447920c182ac8c9c63e7850
09988b30500fdaeba4cf3136b57a0f14fca6662fae2e459f508a9be1ac3abcc1
GET /.s/img/wd/1/right-corners.png HTTP/1.1
Host: s68.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://s68.ucoz.net/src/layer1.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: image/png
Content-Length: 1602
Last-Modified: Wed, 05 Apr 2023 11:25:37 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "642d5ab1-642"
Expires: Fri, 29 Sep 2023 08:34:26 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
s68.ucoz.net/.s/img/wd/1/left-right.png
200 OK 140 B URL GET HTTP/1.1 s68.ucoz.net/.s/img/wd/1/left-right.png
IP
ASN #204343 Compubyte Limited
File type PNG image data, 12 x 1, 8-bit/color RGB, non-interlaced\012- data
Hash 0fcc36f4690bec08ef43bca652074df2
3e5eef3d5d5ad6e2edcab4b38869ff727587d809
cd6a75d53185657e4681d9859353300320241de4000c535ad31cf389547f24a9
GET /.s/img/wd/1/left-right.png HTTP/1.1
Host: s68.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://s68.ucoz.net/src/layer1.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: image/png
Content-Length: 140
Last-Modified: Wed, 05 Apr 2023 11:25:37 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "642d5ab1-8c"
Expires: Fri, 29 Sep 2023 08:34:26 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
s68.ucoz.net/.s/img/wd/1/shadow-h.png
200 OK 272 B URL GET HTTP/1.1 s68.ucoz.net/.s/img/wd/1/shadow-h.png
IP
ASN #204343 Compubyte Limited
File type PNG image data, 24 x 6, 8-bit/color RGBA, non-interlaced\012- data
Hash 677565c23b6d5fff50853f14751d1cb0
16339ea37cd29b063a39fb0acfbaeec92bb16e4c
d094276936d3601eb5999ecdc5c6641f76de36e989f4a6533d22607ae80089c7
GET /.s/img/wd/1/shadow-h.png HTTP/1.1
Host: s68.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://s68.ucoz.net/src/layer1.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: image/png
Content-Length: 272
Last-Modified: Wed, 05 Apr 2023 11:25:37 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "642d5ab1-110"
Expires: Fri, 29 Sep 2023 08:34:26 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
livesurf.ru/banners/88-31-1.png
200 OK 3.9 kB URL GET HTTP/1.1 livesurf.ru/banners/88-31-1.png
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjectlivesurf.ru
FingerprintEE:1F:F4:EF:2F:D5:6A:97:A4:98:C6:54:51:4B:C2:87:09:C8:BC:EC
ValiditySat, 19 Aug 2023 21:42:42 GMT - Fri, 17 Nov 2023 21:42:41 GMT
File type PNG image data, 88 x 31, 8-bit colormap, non-interlaced\012- data
Hash 46e2114baa9a52c728cf8b09d51660be
3ff9e420cd66200cb10b6916f6e0ce5504b39d83
93320a011b226779899b25b8a12b58f4ccf77c332b8e306f05a7e7fb534362bf
GET /banners/88-31-1.png HTTP/1.1
Host: livesurf.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://no-tabletki.ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: image/png
Content-Length: 3945
Last-Modified: Tue, 20 Sep 2022 12:18:44 GMT
Connection: keep-alive
ETag: "6329afa4-f69"
Expires: Tue, 26 Sep 2023 08:34:23 GMT
Cache-Control: max-age=604800
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: unsafe-url
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; preload
Accept-Ranges: bytes
s68.ucoz.net/.s/img/wd/1/shadow.png
200 OK 311 B URL GET HTTP/1.1 s68.ucoz.net/.s/img/wd/1/shadow.png
IP
ASN #204343 Compubyte Limited
File type PNG image data, 6 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 860bf4f690d2ea2aba7b11500925da62
9f8e529ab913563a27dd3389fec1dfd072fe0433
5fd64abe533b57dfb998f1cada792f8d30087179c65a7781f8f5fb923103c1bd
GET /.s/img/wd/1/shadow.png HTTP/1.1
Host: s68.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://s68.ucoz.net/src/layer1.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: image/png
Content-Length: 311
Last-Modified: Wed, 05 Apr 2023 11:25:37 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "642d5ab1-137"
Expires: Fri, 29 Sep 2023 08:34:26 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
cashpartner.net/img/projects/9.jpg
400 Bad Request 20 B URL GET HTTP/1.1 cashpartner.net/img/projects/9.jpg
IP
File type ASCII text, with no line terminators
Hash 64b3d0bcb16e406cdd665ec49fefb7f1
8da5d8ac9123e50bbd4293b111f6f640f864256b
cfe229c58e25f36ffab9053add1dcfdf3abe1cb26b7b0a3d22e9514f757b98d5
GET /img/projects/9.jpg HTTP/1.1
Host: cashpartner.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 400 Bad Request
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
X-Blocked: 11015.10
cashpartner.net/img/projects/8.jpg
400 Bad Request 20 B URL GET HTTP/1.1 cashpartner.net/img/projects/8.jpg
IP
File type ASCII text, with no line terminators
Hash 64b3d0bcb16e406cdd665ec49fefb7f1
8da5d8ac9123e50bbd4293b111f6f640f864256b
cfe229c58e25f36ffab9053add1dcfdf3abe1cb26b7b0a3d22e9514f757b98d5
GET /img/projects/8.jpg HTTP/1.1
Host: cashpartner.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 400 Bad Request
Date: Tue, 19 Sep 2023 08:34:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
X-Blocked: 11015.10
openstat.net/cnt.js
502 Bad Gateway 6.3 kB IP
Certificate IssuerGoogle Trust Services LLC
Subjectopenstat.net
FingerprintBD:03:28:AD:9F:6E:BA:D2:52:40:AA:6D:89:F1:1C:2B:1B:38:EF:B4
ValiditySat, 05 Aug 2023 15:47:03 GMT - Fri, 03 Nov 2023 15:47:02 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 1bef5bfcbebb049b65ddc11d202c89f8
969429349d9286de5efe4892b0f80e8884c57bcf
6124ab08a66e8ea4f7d5f70cb1db02a217ae67f14f040c766eee12b71204bd74
GET /cnt.js HTTP/1.1
Host: openstat.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://no-tabletki.ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 502 Bad Gateway
date: Tue, 19 Sep 2023 08:34:23 GMT
content-type: text/html; charset=UTF-8
content-length: 6308
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jpjrYvW5pfuKcJUzT2bzoTbnF5Axrcjj%2BMRlKZ78c00Y4LbHX1sG7pR5Xkf53GAo5DSZo5UY%2FT5TbGvgRUYN4JJm8vaGOjO8ozE9aHMVRl0wH8nA3dHQfuX0kORIMkc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
server: cloudflare
cf-ray: 80907d437f79b4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ad.admitad.com/j/03ed75a4aa9a1194c22832d56e7890/?inject=admitad03ed75a4aa9a1194c22832d56e789069777535
200 OK 6.9 kB URL GET HTTP/2 ad.admitad.com/j/03ed75a4aa9a1194c22832d56e7890/?inject=admitad03ed75a4aa9a1194c22832d56e789069777535
IP
ASN #44066 diva-e Datacenters GmbH
Certificate IssuerSectigo Limited
Subjectad.admitad.com
Fingerprint38:28:F3:57:7B:EB:D5:38:72:C0:2D:6C:B7:BD:24:D4:D4:DF:A9:5A
ValidityTue, 06 Dec 2022 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (6175)
Hash 35028702883cdda7ef68137f7e5924ec
ddfaebb71aba96fd16842ce8fdc65b5d8e296c9c
5e66ce014fd3786d86327635eba85f11c58f2e241fa0be7f939aa7a1965ed7db
GET /j/03ed75a4aa9a1194c22832d56e7890/?inject=admitad03ed75a4aa9a1194c22832d56e789069777535 HTTP/1.1
Host: ad.admitad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://no-tabletki.ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 19 Sep 2023 08:34:23 GMT
content-type: text/javascript
content-length: 6887
p3p: CP="NON DSP COR CURa TIA"
X-Firefox-Spdy: h2
www.acint.net/oci.js?t=1695112464133
302 Moved Temporarily 142 B URL GET HTTP/1.1 www.acint.net/oci.js?t=1695112464133
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /oci.js?t=1695112464133 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/oci.js?t=1695112464133
www.acint.net/mc/?dp=10
302 Found 142 B IP
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/mc/?dp=10
www.acint.net/hit/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=549051&u=http%3A%2F%2Fno-tabletki.ru%2F&r=&rs=1280x1024&t=%D0%96%D0%98%D0%97%D0%9D%D0%AC%20%D0%91%D0%95%D0%97%20%D0%A2%D0%90%D0%91%D0%9B%D0%95%D0%A2%D0%9A%D0%98%20-%20%D0%93%D0%9B%D0%90%D0%92%D0%9D%D0%90%D0%AF%20%D0%A1%D0%A2%D0%A0%D0%90%D0%9D%D0%98%D0%A6%D0%90&oE=1&oP=1&dT=2023-09-19T08%3A34%3A24.128&fu=3a8bf5be-8546-4b0c-a3bb-e8a0117d377a
302 Moved Temporarily 142 B URL GET HTTP/1.1 www.acint.net/hit/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=549051&u=http%3A%2F%2Fno-tabletki.ru%2F&r=&rs=1280x1024&t=%D0%96%D0%98%D0%97%D0%9D%D0%AC%20%D0%91%D0%95%D0%97%20%D0%A2%D0%90%D0%91%D0%9B%D0%95%D0%A2%D0%9A%D0%98%20-%20%D0%93%D0%9B%D0%90%D0%92%D0%9D%D0%90%D0%AF%20%D0%A1%D0%A2%D0%A0%D0%90%D0%9D%D0%98%D0%A6%D0%90&oE=1&oP=1&dT=2023-09-19T08%3A34%3A24.128&fu=3a8bf5be-8546-4b0c-a3bb-e8a0117d377a
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /hit/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=549051&u=http%3A%2F%2Fno-tabletki.ru%2F&r=&rs=1280x1024&t=%D0%96%D0%98%D0%97%D0%9D%D0%AC%20%D0%91%D0%95%D0%97%20%D0%A2%D0%90%D0%91%D0%9B%D0%95%D0%A2%D0%9A%D0%98%20-%20%D0%93%D0%9B%D0%90%D0%92%D0%9D%D0%90%D0%AF%20%D0%A1%D0%A2%D0%A0%D0%90%D0%9D%D0%98%D0%A6%D0%90&oE=1&oP=1&dT=2023-09-19T08%3A34%3A24.128&fu=3a8bf5be-8546-4b0c-a3bb-e8a0117d377a HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/hit/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=549051&u=http%3A%2F%2Fno-tabletki.ru%2F&r=&rs=1280x1024&t=%D0%96%D0%98%D0%97%D0%9D%D0%AC%20%D0%91%D0%95%D0%97%20%D0%A2%D0%90%D0%91%D0%9B%D0%95%D0%A2%D0%9A%D0%98%20-%20%D0%93%D0%9B%D0%90%D0%92%D0%9D%D0%90%D0%AF%20%D0%A1%D0%A2%D0%A0%D0%90%D0%9D%D0%98%D0%A6%D0%90&oE=1&oP=1&dT=2023-09-19T08%3A34%3A24.128&fu=3a8bf5be-8546-4b0c-a3bb-e8a0117d377a
ad.admitad.com/j/65ce30448a9a1194c2286fc015d692/?inject=admitad65ce30448a9a1194c2286fc015d6925767063
200 OK 6.9 kB URL GET HTTP/2 ad.admitad.com/j/65ce30448a9a1194c2286fc015d692/?inject=admitad65ce30448a9a1194c2286fc015d6925767063
IP
ASN #44066 diva-e Datacenters GmbH
Certificate IssuerSectigo Limited
Subjectad.admitad.com
Fingerprint38:28:F3:57:7B:EB:D5:38:72:C0:2D:6C:B7:BD:24:D4:D4:DF:A9:5A
ValidityTue, 06 Dec 2022 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (6175)
Hash cdcba055c58eee148c1e4e6924cb309b
2dee115879c1f5b7ff2030c98ca7a7c38008e425
5f44e53bd3159488272d608d9675eef562f67509d40049567b166c24fb9cce05
GET /j/65ce30448a9a1194c2286fc015d692/?inject=admitad65ce30448a9a1194c2286fc015d6925767063 HTTP/1.1
Host: ad.admitad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://no-tabletki.ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: text/javascript
content-length: 6886
p3p: CP="NON DSP COR CURa TIA"
X-Firefox-Spdy: h2
www.acint.net/mc/?dp=10
302 Found 154 B IP
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://no-tabletki.ru/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=10&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Tue, 19-Sep-23 08:44:24 GMT
aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
cdn.admitad-connect.com/public/default/banners/2010/03/04/219f9597f1c1d7c70cf66ca597f97df3.jpg
200 OK 18 kB URL GET HTTP/2 cdn.admitad-connect.com/public/default/banners/2010/03/04/219f9597f1c1d7c70cf66ca597f97df3.jpg
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF8:6A:CA:C2:93:5D:DB:A2:1C:40:92:B8:34:CB:01:CE:FB:F5:E2:E8
ValidityFri, 02 Jun 2023 00:00:00 GMT - Sat, 01 Jun 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 728x90, components 3\012- data
Hash a2a7dc641f04de998c361f22e1c137e5
40133e84bfa028f5c2379cd8088d48cb41cc5061
61e9da759738d3771f2feb5f4cb0290bc7df7a755990fc58da2b1e11623585da
GET /public/default/banners/2010/03/04/219f9597f1c1d7c70cf66ca597f97df3.jpg HTTP/1.1
Host: cdn.admitad-connect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/jpeg
content-length: 18008
cache-control: max-age=86400
cf-bgj: h2pri
etag: "a2a7dc641f04de998c361f22e1c137e5"
expires: Tue, 19 Sep 2023 08:38:36 GMT
last-modified: Tue, 03 Mar 2020 16:45:31 GMT
cf-cache-status: HIT
age: 86148
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sl%2Fn4sLP0YAWRzwMJNqkmJk5uIIiaccJbgMplSov%2BSIsElKMWeTRiadRGH0E3JCJTGtHAIBgfsMvKWelvi8iEc6iApBkEE2r%2BV%2F72EdBPlD1HBb0qRv4rzM6xJdI7wfLaF7ckRKHdUeZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80907d451e2ab527-OSL
X-Firefox-Spdy: h2
samopoznanie.ru/design/images/samopoznanie.gif
200 OK 11 kB URL GET HTTP/2 samopoznanie.ru/design/images/samopoznanie.gif
IP
Certificate IssuerLet's Encrypt
Subjectsamopoznanie.ru
Fingerprint15:71:9D:60:70:EA:F5:B4:03:17:28:CB:EC:BF:88:10:68:A9:4C:C9
ValiditySun, 17 Sep 2023 01:31:34 GMT - Sat, 16 Dec 2023 01:31:33 GMT
File type GIF image data, version 89a, 87 x 30\012- data
Hash 3f7e462ea8cde19fa64485b99170f590
e66e7112742772d85bb04618aa0800ce3268fbdd
0b47feb26ad012cbc6c874301faf82a8af1f28955dd5a3afb67cb380f88b4972
GET /design/images/samopoznanie.gif HTTP/1.1
Host: samopoznanie.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://no-tabletki.ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/gif
content-length: 11111
last-modified: Wed, 19 Jul 2023 04:57:49 GMT
etag: "64b76d4d-2b67"
expires: Thu, 19 Oct 2023 08:34:24 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.acint.net/hit/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=549051&u=http%3A%2F%2Fno-tabletki.ru%2F&r=&rs=1280x1024&t=%D0%96%D0%98%D0%97%D0%9D%D0%AC%20%D0%91%D0%95%D0%97%20%D0%A2%D0%90%D0%91%D0%9B%D0%95%D0%A2%D0%9A%D0%98%20-%20%D0%93%D0%9B%D0%90%D0%92%D0%9D%D0%90%D0%AF%20%D0%A1%D0%A2%D0%A0%D0%90%D0%9D%D0%98%D0%A6%D0%90&oE=1&oP=1&dT=2023-09-19T08%3A34%3A24.128&fu=3a8bf5be-8546-4b0c-a3bb-e8a0117d377a
302 Moved Temporarily 43 B URL GET HTTP/1.1 www.acint.net/hit/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=549051&u=http%3A%2F%2Fno-tabletki.ru%2F&r=&rs=1280x1024&t=%D0%96%D0%98%D0%97%D0%9D%D0%AC%20%D0%91%D0%95%D0%97%20%D0%A2%D0%90%D0%91%D0%9B%D0%95%D0%A2%D0%9A%D0%98%20-%20%D0%93%D0%9B%D0%90%D0%92%D0%9D%D0%90%D0%AF%20%D0%A1%D0%A2%D0%A0%D0%90%D0%9D%D0%98%D0%A6%D0%90&oE=1&oP=1&dT=2023-09-19T08%3A34%3A24.128&fu=3a8bf5be-8546-4b0c-a3bb-e8a0117d377a
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hit/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=549051&u=http%3A%2F%2Fno-tabletki.ru%2F&r=&rs=1280x1024&t=%D0%96%D0%98%D0%97%D0%9D%D0%AC%20%D0%91%D0%95%D0%97%20%D0%A2%D0%90%D0%91%D0%9B%D0%95%D0%A2%D0%9A%D0%98%20-%20%D0%93%D0%9B%D0%90%D0%92%D0%9D%D0%90%D0%AF%20%D0%A1%D0%A2%D0%A0%D0%90%D0%9D%D0%98%D0%A6%D0%90&oE=1&oP=1&dT=2023-09-19T08%3A34%3A24.128&fu=3a8bf5be-8546-4b0c-a3bb-e8a0117d377a HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://no-tabletki.ru/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.vivafigura.com/theme/default/images/banners/160_600.jpg
404 Not Found 146 B URL GET HTTP/1.1 www.vivafigura.com/theme/default/images/banners/160_600.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /theme/default/images/banners/160_600.jpg HTTP/1.1
Host: www.vivafigura.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
a.utraff.com/sync?ssp=8&id=1503420A105D0965FE235FA40250CDF0
204 No Content 0 B URL GET HTTP/2 a.utraff.com/sync?ssp=8&id=1503420A105D0965FE235FA40250CDF0
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGoogle Trust Services LLC
Subjectutraff.com
FingerprintC7:88:D1:2A:F6:AD:0D:49:1A:01:97:A2:B5:AF:8E:D2:5F:25:74:B1
ValidityMon, 14 Aug 2023 03:54:04 GMT - Sun, 12 Nov 2023 03:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=8&id=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Thu, 19 Oct 2023 10:34:24 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Thu, 19 Oct 2023 10:34:24 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nMQl47UkrayTl77PWXzIkYlUfSgeFqONOogPbMb23PzKsiqLx6U%2FscSvYbNQRttophBJyfvU1R10SUaB%2BrO8duw4oKZhIZ8T1f%2BO4RnoiN%2F7uFlCwzCnN4TNYj1eTLc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80907d46d9b15695-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
s.ccsyncuuid.net/match/5/?remote_uid=1503420A105D0965FE235FA40250CDF0
302 Found 0 B URL GET HTTP/2 s.ccsyncuuid.net/match/5/?remote_uid=1503420A105D0965FE235FA40250CDF0
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subjectccsyncuuid.net
Fingerprint0C:1D:D4:12:7B:1C:21:DD:8D:97:71:FD:C8:99:39:B1:66:AD:C4:C0
ValidityMon, 10 Jul 2023 10:09:14 GMT - Sun, 08 Oct 2023 10:09:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/5/?remote_uid=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: s.ccsyncuuid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Tue, 19 Sep 2023 08:34:24 GMT
content-length: 0
location: https://acint.net/match?dp=80&euid=AuQRW7eszctnXXJGG656
set-cookie: jcsuuid=AuQRW7eszctnXXJGG656; expires=Wed, 18 Sep 2024 08:34:24 GMT; domain=ccsyncuuid.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
302 Moved Temporarily 142 B URL GET HTTP/1.1 ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint5B:FF:7D:F3:EA:A8:35:A6:2E:5B:8A:B6:EC:10:EE:5D:EF:84:DA:60
ValidityWed, 09 Aug 2023 01:42:20 GMT - Tue, 07 Nov 2023 01:42:19 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=2A03420A105D09651A008C5102049AAD
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDKmUJXRBRjAAarZoEAgLYMtpg3B6wWYYSV/kjPD4lTsqO; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
no-tabletki.ru/favicon.ico
404 Not Found 209 B URL GET HTTP/1.1 no-tabletki.ru/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 18ffb59b61525f781cf9251045be575d
bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642
GET /favicon.ico HTTP/1.1
Host: no-tabletki.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Cookie: fid=3a8bf5be-8546-4b0c-a3bb-e8a0117d377a
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx/1.20.2
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
dm-eu.hybrid.ai/match?id=106&vid=1503420A105D0965FE235FA40250CDF0
204 No Content 0 B URL GET HTTP/2 dm-eu.hybrid.ai/match?id=106&vid=1503420A105D0965FE235FA40250CDF0
IP
ASN #58272 LeaderTelecom B.V.
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
FingerprintBC:E6:95:A6:22:29:B6:24:D7:E6:0C:34:42:6E:CB:21:F3:F3:B3:93
ValidityMon, 26 Sep 2022 00:00:00 GMT - Tue, 26 Sep 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 19 Sep 2023 08:34:24 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=23e60166113a9b956743; Expires=Wed, 18 Sep 2024 08:34:24 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 528
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
www.acint.net/oci/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=850935&oid=7e57a625dddcba431ef5a1422e13af30
302 Moved Temporarily 142 B URL GET HTTP/1.1 www.acint.net/oci/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=850935&oid=7e57a625dddcba431ef5a1422e13af30
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /oci/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=850935&oid=7e57a625dddcba431ef5a1422e13af30 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/oci/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=850935&oid=7e57a625dddcba431ef5a1422e13af30
s.uuidksinc.net/match/396/?remote_uid=1503420A105D0965FE235FA40250CDF0
302 Found 0 B URL GET HTTP/2 s.uuidksinc.net/match/396/?remote_uid=1503420A105D0965FE235FA40250CDF0
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subjectuuidksinc.net
Fingerprint1F:73:92:46:79:03:20:9A:6A:E0:6C:8D:59:77:57:10:54:4D:B7:10
ValiditySun, 10 Sep 2023 23:20:21 GMT - Sat, 09 Dec 2023 23:20:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Tue, 19 Sep 2023 08:34:24 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=F2hINHNxiVFQpBWf0ykm
set-cookie: jcsuuid=F2hINHNxiVFQpBWf0ykm; expires=Wed, 18 Sep 2024 08:34:24 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&uid=1503420A105D0965FE235FA40250CDF0
302 Moved Temporarily 0 B URL GET HTTP/1.1 sync.bumlam.com/?src=sap1&uid=1503420A105D0965FE235FA40250CDF0
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
FingerprintD1:BD:EE:74:87:29:DC:B3:E7:BE:D3:6E:5B:B4:64:E8:11:7F:53:5D
ValidityMon, 24 Jul 2023 05:35:03 GMT - Sun, 22 Oct 2023 05:35:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ1NjliMDg4ZS01NmM3LTExZWUtYjFkYS0wMDI1OTBjODI0Mzc*; Path=/; Expires=Mon, 14 Sep 2043 08:34:24 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARiQuqWoBmIgMTUwMzQyMEExMDVEMDk2NUZFMjM1RkE0MDI1MENERjCiARBWmwiOVscR7rHaACWQyCQ3
ETag: 569b088e-56c7-11ee-b1da-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
sync.dmp.otm-r.com/match/sape?id=1503420A105D0965FE235FA40250CDF0
204 No Content 0 B URL GET HTTP/2 sync.dmp.otm-r.com/match/sape?id=1503420A105D0965FE235FA40250CDF0
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.17.6
date: Tue, 19 Sep 2023 08:34:24 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
301 Moved Permanently 115 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 96a1e8366c6d8d942482b7f62f40b4ba
8c5840df486704abc2c87fef70dd5ed4f78b3db4
af3c904432b76d45c6487d3e46c2a95e7e158a1f5da53976afcecef288b41c50
GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=1ce87803-2e45-4c23-4caf-7c0ba48fa05f
serverid: TODO
X-Firefox-Spdy: h2
bs.yandex.ru/informer/18300928/3_1_FFFFFFFF_EFEFEFFF_0_pageviews
404 Not Found 30 B URL GET HTTP/1.1 bs.yandex.ru/informer/18300928/3_1_FFFFFFFF_EFEFEFFF_0_pageviews
IP
Hash ef81e41d11c9e7193ddd3d470dbb3eda
0c15d12755a0be84e6403445c427231c274919c6
7515bf959b73b956ceb967351c7e299cbb3668a53d35f9c770eb72e00d93ced6
GET /informer/18300928/3_1_FFFFFFFF_EFEFEFFF_0_pageviews HTTP/1.1
Host: bs.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Encoding: gzip
Content-Type: text/plain; charset=UTF-8
Date: Tue, 19 Sep 2023 08:34:24 GMT
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Strict-Transport-Security: max-age=31536000
Timing-Allow-Origin: *
Transfer-Encoding: chunked
X-XSS-Protection: 1; mode=block
static.ozone.ru/graphics/partner_banners/origin.html?prt=no-tabletki&type=2&bu=action
200 OK 2.1 kB URL GET HTTP/1.1 static.ozone.ru/graphics/partner_banners/origin.html?prt=no-tabletki&type=2&bu=action
IP
ASN #44386 LLC Internet Solutions
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (358), with CRLF line terminators
Hash 40648ed0b363c9e888b760f139a246ea
782d302d24310060ccf25cf4def53c43049faf6e
abeac76cda99f34e496f73a3836dfb88437323f6493199a56016c02a864cc017
GET /graphics/partner_banners/origin.html?prt=no-tabletki&type=2&bu=action HTTP/1.1
Host: static.ozone.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Etag: "40648ed0b363c9e888b760f139a246ea"
Last-Modified: Tue, 18 Oct 2022 19:35:53 GMT
Vary: Accept-Encoding
X-Amz-Meta-Mtime: 1334656972
X-Amz-Request-Id: tx000006cdbd4747544bf14-0064f99dee-b935985-default
X-O3-Trace-Id: 1ba019c8a43f2303
X-Rgw-Object-Type: Normal
Expires: Fri, 06 Sep 2024 09:54:54 GMT
Cache-Control: max-age=31536000
Server-Timing: o3_img_fetch;dur=24, o3_img_origin_cache;desc=MISS, o3_img_cache;desc=HIT
x-cached-nx: HIT 0.000
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Accept-Ranges: bytes, bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-T051=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=3600,h3-27=":443"; ma=2592000; v="46,43"
pix.bumlam.com/sync/sape/check?sspuid=1503420A105D0965FE235FA40250CDF0
302 Found 0 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/check?sspuid=1503420A105D0965FE235FA40250CDF0
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
FingerprintD1:BD:EE:74:87:29:DC:B3:E7:BE:D3:6E:5B:B4:64:E8:11:7F:53:5D
ValidityMon, 24 Jul 2023 05:35:03 GMT - Sun, 22 Oct 2023 05:35:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
sync.upravel.com/sape/sync
302 Found 0 B URL GET HTTP/2 sync.upravel.com/sape/sync
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.upravel.com
Fingerprint4C:ED:03:57:58:43:18:2C:CC:41:F3:3B:19:72:75:BD:29:C1:04:08
ValiditySat, 29 Apr 2023 07:48:21 GMT - Thu, 30 May 2024 07:48:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1695112464711;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1695112464711;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
acint.net/match?dp=80&euid=AuQRW7eszctnXXJGG656
200 OK 43 B URL GET HTTP/2 acint.net/match?dp=80&euid=AuQRW7eszctnXXJGG656
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=80&euid=AuQRW7eszctnXXJGG656 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; cSyncDp14v4=1695112464; cSyncDp17=1695112464; cSyncDp45v4=1695112464; cSyncDp53v4=1695112464; cSyncDp62=1695112464; cSyncDp67v2=1695112464; cSyncDp68=1695112464; cSyncDp71=1695112464; cSyncDp80=1695112464; cSyncDp85=1695112464; cSyncDp95v3=1695112464; cSyncDp98v2=1695112464; cSyncDp104v2=1695112464; cSyncDp107v1=1695112464; cSyncDp110v2=1695112464; cSyncDp125v3=1695112464; cSyncDp126=1695112464; cSyncDp127=1695112464; cSyncDp129=1695112464; cSyncDp136v2=1695112464; cSyncDp146=1695112464; cSyncDp148v1=1695112464; cSyncDp149v2=1695112464; cSyncDp151=1695112464; cSyncDp178=1695112464; cSyncDp186=1695112464; cSyncDp217=1695112464; cSyncDp221=1695112464; cSyncDp235v1=1695112464; cSyncDp239=1695112464; cSyncDp243=1695112464; cSyncDp260=1695112464; cSyncDp244=1695112464; cSyncDp248=1695112464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=2A03420A105D09651A008C5102049AAD
200 OK 43 B URL GET HTTP/2 acint.net/match?dp=14&euid=2A03420A105D09651A008C5102049AAD
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=2A03420A105D09651A008C5102049AAD HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; cSyncDp14v4=1695112464; cSyncDp17=1695112464; cSyncDp45v4=1695112464; cSyncDp53v4=1695112464; cSyncDp62=1695112464; cSyncDp67v2=1695112464; cSyncDp68=1695112464; cSyncDp71=1695112464; cSyncDp80=1695112464; cSyncDp85=1695112464; cSyncDp95v3=1695112464; cSyncDp98v2=1695112464; cSyncDp104v2=1695112464; cSyncDp107v1=1695112464; cSyncDp110v2=1695112464; cSyncDp125v3=1695112464; cSyncDp126=1695112464; cSyncDp127=1695112464; cSyncDp129=1695112464; cSyncDp136v2=1695112464; cSyncDp146=1695112464; cSyncDp148v1=1695112464; cSyncDp149v2=1695112464; cSyncDp151=1695112464; cSyncDp178=1695112464; cSyncDp186=1695112464; cSyncDp217=1695112464; cSyncDp221=1695112464; cSyncDp235v1=1695112464; cSyncDp239=1695112464; cSyncDp243=1695112464; cSyncDp260=1695112464; cSyncDp244=1695112464; cSyncDp248=1695112464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
302 Found 74 B URL GET HTTP/2 ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.bestssp.com
Fingerprint25:15:42:2E:1C:54:0F:74:CF:89:02:5A:5E:AC:98:DA:1C:34:B3:B3
ValidityMon, 24 Jul 2023 17:15:54 GMT - Sat, 24 Aug 2024 17:15:53 GMT
File type HTML document, ASCII text
Hash ccd618471824f4b7344baef1b6eb7765
3848ea263d4cceab772a9f5dee4aa6233f1c4b8c
e27f1fe543a2c61cdb766961c39bbed94f6841ce3784619890858642db9be8e0
GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: text/html; charset=utf-8
content-length: 74
location: https://www.acint.net/match?dp=95&euid=LLAEBHYM
set-cookie: uid=LLAEBHYM; Expires=Fri, 16 Sep 2033 08:34:24 GMT
X-Firefox-Spdy: h2
match.new-programmatic.com/userbind?src=sape&id=1503420A105D0965FE235FA40250CDF0
204 No Content 0 B URL GET HTTP/1.1 match.new-programmatic.com/userbind?src=sape&id=1503420A105D0965FE235FA40250CDF0
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subjectad.ad-blast.ru
FingerprintEB:3F:C9:E9:09:C1:3A:BE:D3:34:59:A1:B8:C6:23:6E:FF:58:76:7A
ValidityTue, 11 Jul 2023 09:00:28 GMT - Mon, 09 Oct 2023 09:00:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
sync.adspend.space/sape?uid=1503420A105D0965FE235FA40250CDF0
204 No Content 0 B URL GET HTTP/1.1 sync.adspend.space/sape?uid=1503420A105D0965FE235FA40250CDF0
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.adspend.space
FingerprintD2:A9:45:D9:7D:4F:04:B2:D9:24:CC:62:7C:3B:4A:4E:C5:5C:CD:24
ValidityTue, 29 Aug 2023 13:03:53 GMT - Mon, 27 Nov 2023 13:03:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape?uid=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.14.1
Date: Tue, 19 Sep 2023 08:34:24 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=15724800; includeSubDomains
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: PUT, GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type, authorization
Access-Control-Max-Age: 1728000
sync.programmatica.com/match/01
200 OK 43 B URL GET HTTP/2 sync.programmatica.com/match/01
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.programmatica.com
FingerprintE4:B6:ED:A7:02:18:8C:3F:D0:A3:8D:04:EE:40:21:0A:0E:83:D1:D6
ValidityThu, 15 Dec 2022 17:05:13 GMT - Tue, 16 Jan 2024 17:05:12 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/01 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/sape?id=1503420A105D0965FE235FA40250CDF0
200 OK 43 B URL GET HTTP/2 sync.dsp.solta.io/match/sape?id=1503420A105D0965FE235FA40250CDF0
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.dsp.solta.io
Fingerprint6D:7F:91:92:30:E1:6A:A0:9B:86:49:7A:21:7F:5B:A4:23:8F:92:BC
ValidityWed, 02 Aug 2023 16:38:38 GMT - Mon, 02 Sep 2024 16:38:37 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape?id=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.acint.net/oci/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=850935&oid=7e57a625dddcba431ef5a1422e13af30
302 Moved Temporarily 43 B URL GET HTTP/1.1 www.acint.net/oci/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=850935&oid=7e57a625dddcba431ef5a1422e13af30
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /oci/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=850935&oid=7e57a625dddcba431ef5a1422e13af30 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://no-tabletki.ru/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; cSyncDp14v4=1695112464; cSyncDp17=1695112464; cSyncDp45v4=1695112464; cSyncDp53v4=1695112464; cSyncDp62=1695112464; cSyncDp67v2=1695112464; cSyncDp68=1695112464; cSyncDp71=1695112464; cSyncDp80=1695112464; cSyncDp85=1695112464; cSyncDp95v3=1695112464; cSyncDp98v2=1695112464; cSyncDp104v2=1695112464; cSyncDp107v1=1695112464; cSyncDp110v2=1695112464; cSyncDp125v3=1695112464; cSyncDp126=1695112464; cSyncDp127=1695112464; cSyncDp129=1695112464; cSyncDp136v2=1695112464; cSyncDp146=1695112464; cSyncDp148v1=1695112464; cSyncDp149v2=1695112464; cSyncDp151=1695112464; cSyncDp178=1695112464; cSyncDp186=1695112464; cSyncDp217=1695112464; cSyncDp221=1695112464; cSyncDp235v1=1695112464; cSyncDp239=1695112464; cSyncDp243=1695112464; cSyncDp260=1695112464; cSyncDp244=1695112464; cSyncDp248=1695112464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=127&euid=F2hINHNxiVFQpBWf0ykm
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=127&euid=F2hINHNxiVFQpBWf0ykm
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=F2hINHNxiVFQpBWf0ykm HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; cSyncDp14v4=1695112464; cSyncDp17=1695112464; cSyncDp45v4=1695112464; cSyncDp53v4=1695112464; cSyncDp62=1695112464; cSyncDp67v2=1695112464; cSyncDp68=1695112464; cSyncDp71=1695112464; cSyncDp80=1695112464; cSyncDp85=1695112464; cSyncDp95v3=1695112464; cSyncDp98v2=1695112464; cSyncDp104v2=1695112464; cSyncDp107v1=1695112464; cSyncDp110v2=1695112464; cSyncDp125v3=1695112464; cSyncDp126=1695112464; cSyncDp127=1695112464; cSyncDp129=1695112464; cSyncDp136v2=1695112464; cSyncDp146=1695112464; cSyncDp148v1=1695112464; cSyncDp149v2=1695112464; cSyncDp151=1695112464; cSyncDp178=1695112464; cSyncDp186=1695112464; cSyncDp217=1695112464; cSyncDp221=1695112464; cSyncDp235v1=1695112464; cSyncDp239=1695112464; cSyncDp243=1695112464; cSyncDp260=1695112464; cSyncDp244=1695112464; cSyncDp248=1695112464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&s_data=CAIQARiQuqWoBmIgMTUwMzQyMEExMDVEMDk2NUZFMjM1RkE0MDI1MENERjCiARBWmwiOVscR7rHaACWQyCQ3
200 OK 0 B URL GET HTTP/1.1 sync.bumlam.com/?src=sap1&s_data=CAIQARiQuqWoBmIgMTUwMzQyMEExMDVEMDk2NUZFMjM1RkE0MDI1MENERjCiARBWmwiOVscR7rHaACWQyCQ3
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
FingerprintD1:BD:EE:74:87:29:DC:B3:E7:BE:D3:6E:5B:B4:64:E8:11:7F:53:5D
ValidityMon, 24 Jul 2023 05:35:03 GMT - Sun, 22 Oct 2023 05:35:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARiQuqWoBmIgMTUwMzQyMEExMDVEMDk2NUZFMjM1RkE0MDI1MENERjCiARBWmwiOVscR7rHaACWQyCQ3 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQ1NjliMDg4ZS01NmM3LTExZWUtYjFkYS0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ1NjliMDg4ZS01NmM3LTExZWUtYjFkYS0wMDI1OTBjODI0Mzc*; Path=/; Expires=Mon, 14 Sep 2043 08:34:24 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
www.acint.net/match?dp=126&euid=1ce87803-2e45-4c23-4caf-7c0ba48fa05f
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=126&euid=1ce87803-2e45-4c23-4caf-7c0ba48fa05f
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=126&euid=1ce87803-2e45-4c23-4caf-7c0ba48fa05f HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; cSyncDp14v4=1695112464; cSyncDp17=1695112464; cSyncDp45v4=1695112464; cSyncDp53v4=1695112464; cSyncDp62=1695112464; cSyncDp67v2=1695112464; cSyncDp68=1695112464; cSyncDp71=1695112464; cSyncDp80=1695112464; cSyncDp85=1695112464; cSyncDp95v3=1695112464; cSyncDp98v2=1695112464; cSyncDp104v2=1695112464; cSyncDp107v1=1695112464; cSyncDp110v2=1695112464; cSyncDp125v3=1695112464; cSyncDp126=1695112464; cSyncDp127=1695112464; cSyncDp129=1695112464; cSyncDp136v2=1695112464; cSyncDp146=1695112464; cSyncDp148v1=1695112464; cSyncDp149v2=1695112464; cSyncDp151=1695112464; cSyncDp178=1695112464; cSyncDp186=1695112464; cSyncDp217=1695112464; cSyncDp221=1695112464; cSyncDp235v1=1695112464; cSyncDp239=1695112464; cSyncDp243=1695112464; cSyncDp260=1695112464; cSyncDp244=1695112464; cSyncDp248=1695112464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
302 Found 0 B URL GET HTTP/2 sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.upravel.com
Fingerprint4C:ED:03:57:58:43:18:2C:CC:41:F3:3B:19:72:75:BD:29:C1:04:08
ValiditySat, 29 Apr 2023 07:48:21 GMT - Thu, 30 May 2024 07:48:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: session_tptc=1695112464711
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=08b99559-175b-4718-a69b-6fd01b91caf5;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=08b99559-175b-4718-a69b-6fd01b91caf5;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=08b99559-175b-4718-a69b-6fd01b91caf5
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sape
302 Moved Temporarily 0 B URL GET HTTP/1.1 sync.bumlam.com/?src=sape
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
FingerprintD1:BD:EE:74:87:29:DC:B3:E7:BE:D3:6E:5B:B4:64:E8:11:7F:53:5D
ValidityMon, 24 Jul 2023 05:35:03 GMT - Sun, 22 Oct 2023 05:35:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQ1NjliMDg4ZS01NmM3LTExZWUtYjFkYS0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ1NjliMDg4ZS01NmM3LTExZWUtYjFkYS0wMDI1OTBjODI0Mzc*; Path=/; Expires=Mon, 14 Sep 2043 08:34:24 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=569b088e-56c7-11ee-b1da-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
nr.bidderstack.com/sape/cm?user_id=1503420A105D0965FE235FA40250CDF0
302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=1503420A105D0965FE235FA40250CDF0
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint88:0D:CE:79:C4:DA:79:3B:37:94:98:4A:1A:FA:19:D3:62:A5:B9:84
ValiditySun, 20 Nov 2022 07:16:28 GMT - Sat, 18 Nov 2023 12:58:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Length: 0
Connection: keep-alive
Location: /sape/cm?user_id=1503420A105D0965FE235FA40250CDF0&pupa=1
Set-Cookie: pupa=4096b3dc-c011-21bb-e069-92664b67f354; domain=.bidderstack.com; path=/; expires=Wed, 18-Sep-2024 08:34:24 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
302 Found 0 B URL GET HTTP/2 match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subjectmatch.ohmy.bid
FingerprintFB:7F:6A:02:1D:10:B6:64:0D:24:21:08:EE:75:D4:22:84:72:94:DC
ValidityThu, 27 Jul 2023 14:30:40 GMT - Wed, 25 Oct 2023 14:30:39 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=sape&redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Tue, 19 Sep 2023 08:34:24 GMT
content-length: 0
bidder: bid-12
location: https://www.acint.net/match?dp=217&euid=811adc9f-f68d-4b15-a415-8df35caddddf
set-cookie: uid=811adc9f-f68d-4b15-a415-8df35caddddf.65095d10.7f6b203f2a7e75b6; domain=.ohmy.bid; path=/; expires=Thu, 19-Oct-2023 08:34:24 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cs.agency2.ru/p?ssp=sp&uid=1503420A105D0965FE235FA40250CDF0
301 Moved Permanently 0 B URL GET HTTP/1.1 cs.agency2.ru/p?ssp=sp&uid=1503420A105D0965FE235FA40250CDF0
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint61:82:32:09:D8:53:F1:DC:96:E3:E6:22:3A:24:85:F7:6F:1C:56:83
ValidityThu, 17 Aug 2023 23:34:39 GMT - Wed, 15 Nov 2023 23:34:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=755bc612-fe1f-41c8-8e86-54cdae5d1c19
Set-Cookie: uuid=755bc612-fe1f-41c8-8e86-54cdae5d1c19; expires=Mon, 09 Sep 2024 08:34:24 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
sync.gonet-ads.com/match/sape.js?id=1503420A105D0965FE235FA40250CDF0
200 OK 43 B URL GET HTTP/2 sync.gonet-ads.com/match/sape.js?id=1503420A105D0965FE235FA40250CDF0
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerSectigo Limited
Subject*.gonet-ads.com
Fingerprint2B:BE:BF:75:0A:67:AA:2D:FA:0A:7F:92:F4:37:AE:9B:DD:47:68:2D
ValidityWed, 07 Jun 2023 00:00:00 GMT - Tue, 11 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape.js?id=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
kimberlite.io/rtb/sync/sape2?u=1503420A105D0965FE235FA40250CDF0
307 Temporary Redirect 0 B URL GET HTTP/1.1 kimberlite.io/rtb/sync/sape2?u=1503420A105D0965FE235FA40250CDF0
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint94:44:D9:27:EE:9B:5F:DE:36:07:ED:BA:1A:1D:62:2A:31:B6:43:72
ValidityFri, 10 Mar 2023 07:40:01 GMT - Wed, 10 Apr 2024 07:40:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/sape2?u=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Tue, 19 Sep 2023 08:34:24 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=ZQldEJVem9s~j3ltyoa4z0_cUgslvMv3FdcIESc; path=/; max-age=7776000; samesite=none; httponly; secure
as=-WrUeGUJXRA; max-age=604800; samesite=none; httponly; secure
f=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D243%26euid%3DZQldEJVem9s; max-age=30; samesite=none; httponly; secure
n=1; max-age=30; samesite=none; httponly; secure
location: https://solta-sync.rutarget.ru/sync
referrer-policy: no-referrer
server-timing: app;srv=8;dur=0.0003
adx.com.ru/sape-sync?uid=1503420A105D0965FE235FA40250CDF0
302 Found 85 B URL GET HTTP/2 adx.com.ru/sape-sync?uid=1503420A105D0965FE235FA40250CDF0
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.adx.com.ru
FingerprintB6:86:21:C8:F9:AF:00:9E:42:EC:E3:77:AC:A3:5B:2B:E7:C4:46:B3
ValidityFri, 26 May 2023 11:44:59 GMT - Wed, 26 Jun 2024 11:44:58 GMT
File type HTML document, ASCII text
Hash 10fc44de1df2b7bb7423bbcdc661b24e
7ff596bf96d4f666d4f5f786eb5b6a7a9c170140
dd13019e69b4a599b46417f8e0e2ac41ab5b5d9cfb613a8ba0229b6b002503d6
GET /sape-sync?uid=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: text/html; charset=utf-8
content-length: 85
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
location: /sync?sspKey=25&sspUserID=1503420A105D0965FE235FA40250CDF0
p3p: CP="adx.com.ru does not have a P3P policy"
set-cookie: user=65095d10a897d80001809727; Path=/; Domain=adx.com.ru; Max-Age=31536000; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/match?dp=95&euid=LLAEBHYM
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=95&euid=LLAEBHYM
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=95&euid=LLAEBHYM HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; cSyncDp14v4=1695112464; cSyncDp17=1695112464; cSyncDp45v4=1695112464; cSyncDp53v4=1695112464; cSyncDp62=1695112464; cSyncDp67v2=1695112464; cSyncDp68=1695112464; cSyncDp71=1695112464; cSyncDp80=1695112464; cSyncDp85=1695112464; cSyncDp95v3=1695112464; cSyncDp98v2=1695112464; cSyncDp104v2=1695112464; cSyncDp107v1=1695112464; cSyncDp110v2=1695112464; cSyncDp125v3=1695112464; cSyncDp126=1695112464; cSyncDp127=1695112464; cSyncDp129=1695112464; cSyncDp136v2=1695112464; cSyncDp146=1695112464; cSyncDp148v1=1695112464; cSyncDp149v2=1695112464; cSyncDp151=1695112464; cSyncDp178=1695112464; cSyncDp186=1695112464; cSyncDp217=1695112464; cSyncDp221=1695112464; cSyncDp235v1=1695112464; cSyncDp239=1695112464; cSyncDp243=1695112464; cSyncDp260=1695112464; cSyncDp244=1695112464; cSyncDp248=1695112464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:25 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/match?dp=110&euid=ed6b397507654b2fbc335fef56078dc2
200 OK 43 B URL GET HTTP/2 acint.net/match?dp=110&euid=ed6b397507654b2fbc335fef56078dc2
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=110&euid=ed6b397507654b2fbc335fef56078dc2 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; cSyncDp14v4=1695112464; cSyncDp17=1695112464; cSyncDp45v4=1695112464; cSyncDp53v4=1695112464; cSyncDp62=1695112464; cSyncDp67v2=1695112464; cSyncDp68=1695112464; cSyncDp71=1695112464; cSyncDp80=1695112464; cSyncDp85=1695112464; cSyncDp95v3=1695112464; cSyncDp98v2=1695112464; cSyncDp104v2=1695112464; cSyncDp107v1=1695112464; cSyncDp110v2=1695112464; cSyncDp125v3=1695112464; cSyncDp126=1695112464; cSyncDp127=1695112464; cSyncDp129=1695112464; cSyncDp136v2=1695112464; cSyncDp146=1695112464; cSyncDp148v1=1695112464; cSyncDp149v2=1695112464; cSyncDp151=1695112464; cSyncDp178=1695112464; cSyncDp186=1695112464; cSyncDp217=1695112464; cSyncDp221=1695112464; cSyncDp235v1=1695112464; cSyncDp239=1695112464; cSyncDp243=1695112464; cSyncDp260=1695112464; cSyncDp244=1695112464; cSyncDp248=1695112464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:25 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
static.ozone.ru/graphics/partner_banners/action.xml?sid=4363258737757735
200 OK 152 B URL GET HTTP/1.1 static.ozone.ru/graphics/partner_banners/action.xml?sid=4363258737757735
IP
ASN #44386 LLC Internet Solutions
Requested by http://static.ozone.ru/graphics/partner_banners/origin.html?prt=no-tabletki&type=2&bu=action
File type XML 1.0 document text\012- XML document, ISO-8859 text, with CRLF line terminators
Hash c219bae40e365fa7ea9ada64f45bed94
ac8274465db1fbc7318d4b442a692d2e337db265
bd5c9296dd58b260090585d97647ccb955efffb5dfabc6be26be68b46bb98aa0
GET /graphics/partner_banners/action.xml?sid=4363258737757735 HTTP/1.1
Host: static.ozone.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Cache-Control: no-cache
DNT: 1
Connection: keep-alive
Referer: http://static.ozone.ru/graphics/partner_banners/origin.html?prt=no-tabletki&type=2&bu=action
Pragma: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:25 GMT
Content-Type: application/xml
Content-Length: 152
Connection: keep-alive
Content-Encoding: gzip
Etag: "c219bae40e365fa7ea9ada64f45bed94"
Last-Modified: Tue, 18 Oct 2022 19:35:31 GMT
Vary: Accept-Encoding
X-Amz-Meta-Mtime: 1344944350
X-Amz-Request-Id: tx00000519b025a690457f6-0065095d11-3ec0c06-default
X-O3-Trace-Id: 7669deeb39f74d04
X-Rgw-Object-Type: Normal
Expires: Wed, 18 Sep 2024 08:34:25 GMT
Cache-Control: max-age=31536000
Server-Timing: o3_img_fetch;dur=2, o3_img_origin_cache;desc=MISS, o3_img_cache;desc=MISS
x-cached-nx: MISS 0.007
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Accept-Ranges: bytes, bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-T051=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=3600,h3-27=":443"; ma=2592000; v="46,43"
www.acint.net/match?dp=71&euid=08b99559-175b-4718-a69b-6fd01b91caf5
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=71&euid=08b99559-175b-4718-a69b-6fd01b91caf5
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=71&euid=08b99559-175b-4718-a69b-6fd01b91caf5 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; cSyncDp14v4=1695112464; cSyncDp17=1695112464; cSyncDp45v4=1695112464; cSyncDp53v4=1695112464; cSyncDp62=1695112464; cSyncDp67v2=1695112464; cSyncDp68=1695112464; cSyncDp71=1695112464; cSyncDp80=1695112464; cSyncDp85=1695112464; cSyncDp95v3=1695112464; cSyncDp98v2=1695112464; cSyncDp104v2=1695112464; cSyncDp107v1=1695112464; cSyncDp110v2=1695112464; cSyncDp125v3=1695112464; cSyncDp126=1695112464; cSyncDp127=1695112464; cSyncDp129=1695112464; cSyncDp136v2=1695112464; cSyncDp146=1695112464; cSyncDp148v1=1695112464; cSyncDp149v2=1695112464; cSyncDp151=1695112464; cSyncDp178=1695112464; cSyncDp186=1695112464; cSyncDp217=1695112464; cSyncDp221=1695112464; cSyncDp235v1=1695112464; cSyncDp239=1695112464; cSyncDp243=1695112464; cSyncDp260=1695112464; cSyncDp244=1695112464; cSyncDp248=1695112464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:25 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/sync_ok?guid=569b088e-56c7-11ee-b1da-002590c82437
302 Found 0 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/sync_ok?guid=569b088e-56c7-11ee-b1da-002590c82437
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
FingerprintD1:BD:EE:74:87:29:DC:B3:E7:BE:D3:6E:5B:B4:64:E8:11:7F:53:5D
ValidityMon, 24 Jul 2023 05:35:03 GMT - Sun, 22 Oct 2023 05:35:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=569b088e-56c7-11ee-b1da-002590c82437 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQ1NjliMDg4ZS01NmM3LTExZWUtYjFkYS0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 19 Sep 2023 08:34:25 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://569b088e-56c7-11ee-b1da-002590c82437.n7.sync.bumlam.com/?src=sape
www.acint.net/match?dp=217&euid=811adc9f-f68d-4b15-a415-8df35caddddf
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=217&euid=811adc9f-f68d-4b15-a415-8df35caddddf
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=217&euid=811adc9f-f68d-4b15-a415-8df35caddddf HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; cSyncDp14v4=1695112464; cSyncDp17=1695112464; cSyncDp45v4=1695112464; cSyncDp53v4=1695112464; cSyncDp62=1695112464; cSyncDp67v2=1695112464; cSyncDp68=1695112464; cSyncDp71=1695112464; cSyncDp80=1695112464; cSyncDp85=1695112464; cSyncDp95v3=1695112464; cSyncDp98v2=1695112464; cSyncDp104v2=1695112464; cSyncDp107v1=1695112464; cSyncDp110v2=1695112464; cSyncDp125v3=1695112464; cSyncDp126=1695112464; cSyncDp127=1695112464; cSyncDp129=1695112464; cSyncDp136v2=1695112464; cSyncDp146=1695112464; cSyncDp148v1=1695112464; cSyncDp149v2=1695112464; cSyncDp151=1695112464; cSyncDp178=1695112464; cSyncDp186=1695112464; cSyncDp217=1695112464; cSyncDp221=1695112464; cSyncDp235v1=1695112464; cSyncDp239=1695112464; cSyncDp243=1695112464; cSyncDp260=1695112464; cSyncDp244=1695112464; cSyncDp248=1695112464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:25 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=186&euid=755bc612-fe1f-41c8-8e86-54cdae5d1c19
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=186&euid=755bc612-fe1f-41c8-8e86-54cdae5d1c19
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=755bc612-fe1f-41c8-8e86-54cdae5d1c19 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; cSyncDp14v4=1695112464; cSyncDp17=1695112464; cSyncDp45v4=1695112464; cSyncDp53v4=1695112464; cSyncDp62=1695112464; cSyncDp67v2=1695112464; cSyncDp68=1695112464; cSyncDp71=1695112464; cSyncDp80=1695112464; cSyncDp85=1695112464; cSyncDp95v3=1695112464; cSyncDp98v2=1695112464; cSyncDp104v2=1695112464; cSyncDp107v1=1695112464; cSyncDp110v2=1695112464; cSyncDp125v3=1695112464; cSyncDp126=1695112464; cSyncDp127=1695112464; cSyncDp129=1695112464; cSyncDp136v2=1695112464; cSyncDp146=1695112464; cSyncDp148v1=1695112464; cSyncDp149v2=1695112464; cSyncDp151=1695112464; cSyncDp178=1695112464; cSyncDp186=1695112464; cSyncDp217=1695112464; cSyncDp221=1695112464; cSyncDp235v1=1695112464; cSyncDp239=1695112464; cSyncDp243=1695112464; cSyncDp260=1695112464; cSyncDp244=1695112464; cSyncDp248=1695112464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:25 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=1503420A105D0965FE235FA40250CDF0&pupa=1
302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=1503420A105D0965FE235FA40250CDF0&pupa=1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint88:0D:CE:79:C4:DA:79:3B:37:94:98:4A:1A:FA:19:D3:62:A5:B9:84
ValiditySun, 20 Nov 2022 07:16:28 GMT - Sat, 18 Nov 2023 12:58:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=1503420A105D0965FE235FA40250CDF0&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 19 Sep 2023 08:34:25 GMT
Content-Length: 0
Connection: keep-alive
Location: https://sync.dmp.otm-r.com/match/hyper?id={UID}4096b3dc-c011-21bb-e069-92664b67f354
Set-Cookie: pupa=4096b3dc-c011-21bb-e069-92664b67f354; domain=.bidderstack.com; path=/; expires=Wed, 18-Sep-2024 08:34:25 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
adx.com.ru/sync?sspKey=25&sspUserID=1503420A105D0965FE235FA40250CDF0
302 Found 231 B URL GET HTTP/2 adx.com.ru/sync?sspKey=25&sspUserID=1503420A105D0965FE235FA40250CDF0
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.adx.com.ru
FingerprintB6:86:21:C8:F9:AF:00:9E:42:EC:E3:77:AC:A3:5B:2B:E7:C4:46:B3
ValidityFri, 26 May 2023 11:44:59 GMT - Wed, 26 Jun 2024 11:44:58 GMT
File type HTML document, ASCII text
Hash 1a4d23ec7edcca2185d4aedfb8f3d63f
5bec33a2b77c07a995cbf7a412f48adb3d710f18
60d8db2f9eaac71e7fb7218fb106d0548a6f0a76d50d02648ffc6d8e5334fb36
GET /sync?sspKey=25&sspUserID=1503420A105D0965FE235FA40250CDF0 HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: user=65095d10a897d80001809727
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.22.0
date: Tue, 19 Sep 2023 08:34:25 GMT
content-type: text/html; charset=utf-8
content-length: 231
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fadx.com.ru%2Fweborama-sync%3Furl%3Dhttps%253A%252F%252Fprodmp.ru%252Fyabbi.gif%253Fuid%253D65095d10a897d80001809727%2526r%253D%26webouid%3D{WEBO_CID}
p3p: CP="adx.com.ru does not have a P3P policy"
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/hyper?id={UID}4096b3dc-c011-21bb-e069-92664b67f354
204 No Content 0 B URL GET HTTP/2 sync.dmp.otm-r.com/match/hyper?id={UID}4096b3dc-c011-21bb-e069-92664b67f354
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/hyper?id={UID}4096b3dc-c011-21bb-e069-92664b67f354 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx/1.17.6
date: Tue, 19 Sep 2023 08:34:25 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
mmedia.ozon.ru/graphics/partner_banners/default_banner_240x400.jpg
200 OK 20 kB URL GET HTTP/1.1 mmedia.ozon.ru/graphics/partner_banners/default_banner_240x400.jpg
IP
ASN #44386 LLC Internet Solutions
Requested by http://static.ozone.ru/graphics/partner_banners/origin.html?prt=no-tabletki&type=2&bu=action
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 240x400, components 3\012- data
Hash 18e0489f918653fe651226f1f4e3ec34
aceeb2b870e8213d0898a57666aa6d9b11beb096
85cbed3313914eafe8b539ade67c489efc227f8e90f26ec0e2d12f3f1f4f8e19
GET /graphics/partner_banners/default_banner_240x400.jpg HTTP/1.1
Host: mmedia.ozon.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://static.ozone.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 08:34:25 GMT
Content-Type: image/jpeg
Content-Length: 20516
Connection: keep-alive
Etag: "18e0489f918653fe651226f1f4e3ec34"
Last-Modified: Tue, 18 Oct 2022 19:35:36 GMT
X-Amz-Meta-Mtime: 1302696389
X-Amz-Request-Id: tx00000268dc3b3301fd595-0064fcd5d1-b935985-default
X-O3-Trace-Id: 33d6c8d634ed4401
X-Rgw-Object-Type: Normal
Expires: Sun, 08 Sep 2024 20:30:09 GMT
Cache-Control: max-age=31536000
Server-Timing: o3_img_fetch;dur=15, o3_img_origin_cache;desc=MISS, o3_img_cache;desc=HIT
x-cached-nx: HIT 0.000
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Accept-Ranges: bytes, bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-T051=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=3600,h3-27=":443"; ma=2592000; v="46,43"
www.acint.net/ping/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=005554&dT=2023-09-19T08%3A34%3A27.134
302 Moved Temporarily 142 B URL GET HTTP/1.1 www.acint.net/ping/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=005554&dT=2023-09-19T08%3A34%3A27.134
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /ping/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=005554&dT=2023-09-19T08%3A34%3A27.134 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Tue, 19 Sep 2023 08:34:26 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/ping/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=005554&dT=2023-09-19T08%3A34%3A27.134
www.acint.net/ping/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=005554&dT=2023-09-19T08%3A34%3A27.134
302 Moved Temporarily 43 B URL GET HTTP/1.1 www.acint.net/ping/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=005554&dT=2023-09-19T08%3A34%3A27.134
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping/?v=0.6.0&uid=c9717153-99c4-405b-a2b9-a2d9cbef0711&dp=10&tz=%2B00%3A00&nc=005554&dT=2023-09-19T08%3A34%3A27.134 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://no-tabletki.ru/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU; cSyncDp14v4=1695112464; cSyncDp17=1695112464; cSyncDp45v4=1695112464; cSyncDp53v4=1695112464; cSyncDp62=1695112464; cSyncDp67v2=1695112464; cSyncDp68=1695112464; cSyncDp71=1695112464; cSyncDp80=1695112464; cSyncDp85=1695112464; cSyncDp95v3=1695112464; cSyncDp98v2=1695112464; cSyncDp104v2=1695112464; cSyncDp107v1=1695112464; cSyncDp110v2=1695112464; cSyncDp125v3=1695112464; cSyncDp126=1695112464; cSyncDp127=1695112464; cSyncDp129=1695112464; cSyncDp136v2=1695112464; cSyncDp146=1695112464; cSyncDp148v1=1695112464; cSyncDp149v2=1695112464; cSyncDp151=1695112464; cSyncDp178=1695112464; cSyncDp186=1695112464; cSyncDp217=1695112464; cSyncDp221=1695112464; cSyncDp235v1=1695112464; cSyncDp239=1695112464; cSyncDp243=1695112464; cSyncDp260=1695112464; cSyncDp244=1695112464; cSyncDp248=1695112464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:27 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
kurs-kvant.ru/images/den1.png
0 B URL GET kurs-kvant.ru/images/den1.png
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/den1.png HTTP/1.1
Host: kurs-kvant.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
www.acint.net/mc/?dp=10&tc=1
200 OK 5.5 kB URL GET HTTP/2 www.acint.net/mc/?dp=10&tc=1
IP
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintB8:F0:FC:C7:37:EC:45:14:38:CF:C1:E7:EA:4C:22:2A:D1:98:EE:DB
ValiditySat, 12 Aug 2023 02:11:54 GMT - Fri, 10 Nov 2023 02:11:53 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5718), with no line terminators
Hash e6e08709c2f1ae82ef98ff394887b546
84484509f07ebb38f40ee7f4c6944c2f16295d10
62a4f6e6760f43e261f8742197dbdc7c66000b0eb64b83a3a4405b4b613fad05
GET /mc/?dp=10&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://no-tabletki.ru/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWUJXRCkXyP+8M1QAoDjA1Z880sbP4uP1EqehHCUHiMU
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Tue, 19 Sep 2023 08:34:24 GMT
content-type: text/html
set-cookie: cSyncDp14v4=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v4=1695112464; expires=Wed, 20-Sep-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v4=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp80=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v2=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1695112464; expires=Tue, 03-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107v1=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110v2=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v3=1695112464; expires=Wed, 04-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148v1=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v2=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp217=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp235v1=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp239=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp243=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp260=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp244=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp248=1695112464; expires=Thu, 19-Oct-23 08:34:24 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
kurs-kvant.ru/images/obis.png
0 B URL GET kurs-kvant.ru/images/obis.png
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/obis.png HTTP/1.1
Host: kurs-kvant.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://no-tabletki.ru/
Pragma: no-cache
Cache-Control: no-cache
569b088e-56c7-11ee-b1da-002590c82437.n7.sync.bumlam.com/?src=sape
0 B URL GET 569b088e-56c7-11ee-b1da-002590c82437.n7.sync.bumlam.com/?src=sape
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: 569b088e-56c7-11ee-b1da-002590c82437.n7.sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQ1NjliMDg4ZS01NmM3LTExZWUtYjFkYS0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
ads.adlook.me/csync?pid=sape&uid=1503420A105D0965FE235FA40250CDF0&url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
302 Found 43 B URL GET HTTP/2 ads.adlook.me/csync?pid=sape&uid=1503420A105D0965FE235FA40250CDF0&url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP
ASN #48096 Enterprise Cloud Ltd.
Requested by https://www.acint.net/mc/?dp=10&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?pid=sape&uid=1503420A105D0965FE235FA40250CDF0&url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=ed6b397507654b2fbc335fef56078dc2
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=ed6b397507654b2fbc335fef56078dc2; expires=Tue, 17 Sep 2024 21:00:00 GMT; path=/; SameSite=None; secure; samesite=none
adlk_cmatch=sape%3A1503420A105D0965FE235FA40250CDF0; expires=Fri, 31 Dec 9999 20:59:59 GMT; path=/; SameSite=None; secure; samesite=none
date: Tue, 19 Sep 2023 08:34:24 GMT
X-Firefox-Spdy: h2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
0 B URL GET ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP
Requested by https://www.acint.net/mc/?dp=10&tc=1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
188.127.239.132
94.130.221.58
0.0.0.0
5.45.119.164
172.67.203.165
188.42.105.236
31.220.27.134
217.182.78.61
95.217.105.45
154.206.104.29