www.upload.ee/download/15205875/85815ee835d01cddafdb/Robloxssii_v2.0.zip
51.91.30.159 419 B URL www.upload.ee/download/15205875/85815ee835d01cddafdb/Robloxssii_v2.0.zip
IP 51.91.30.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (419), with no line terminators
Hash 1764040e827e27f0ce0c0aa86ac08838
242b897c77274111691fdbab69fc1f684cb640c9
fd989b010e596b46e52771376e59fc6072864f8408a2db94f133937945b25960
GET /download/15205875/85815ee835d01cddafdb/Robloxssii_v2.0.zip HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 07 May 2023 03:09:15 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 419
Connection: keep-alive
Keep-Alive: timeout=5
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1
P3P: CP="CAO PSA OUR"
www.upload.ee/download/15205875/85815ee835d01cddafdb/Robloxssii_v2.0.zip
51.91.30.159 419 B URL www.upload.ee/download/15205875/85815ee835d01cddafdb/Robloxssii_v2.0.zip
IP 51.91.30.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (419), with no line terminators
Hash 1764040e827e27f0ce0c0aa86ac08838
242b897c77274111691fdbab69fc1f684cb640c9
fd989b010e596b46e52771376e59fc6072864f8408a2db94f133937945b25960
GET /download/15205875/85815ee835d01cddafdb/Robloxssii_v2.0.zip HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 07 May 2023 03:09:15 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 419
Connection: keep-alive
Keep-Alive: timeout=5
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1
P3P: CP="CAO PSA OUR"
www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
51.91.30.159200 OK 8.9 kB URL User Request GET HTTP/1.1 www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
IP 51.91.30.159:443
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4526)
Hash 6da194078c94ca3ccbcef51f6d7abd40
208401f2f12d6dc6ce233ee303ce16f151716833
fd719b95d78272f5b5f6b732450660f7bf443b39bb06ee4b02d609f9f1ec1f93
GET /files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/download/15205875/85815ee835d01cddafdb/Robloxssii_v2.0.zip
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 07 May 2023 03:09:15 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 8929
Connection: keep-alive
Keep-Alive: timeout=20
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Sun, 07 May 2023 06:09:15 +0300
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1
P3P: CP="CAO PSA OUR"
Set-Cookie: lng=eng; expires=Sun, 04-Jun-2023 03:09:15 GMT; path=/; domain=www.upload.ee; secure; httponly; SameSite=None
Content-Encoding: gzip
www.upload.ee/static/ubr__style.css
51.91.30.159200 OK 2.9 kB URL GET HTTP/1.1 www.upload.ee/static/ubr__style.css
IP 51.91.30.159:443
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (591), with CRLF line terminators
Hash 7b736ade714db0c4ee6dbd432b2b1367
98b85ea1586315cba25380eca3c9785820a23042
e3d11bbf89fb8f84070b6616e4f422eef0182dbf937f0398d0d2c779509b07a1
GET /static/ubr__style.css HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Cookie: lng=eng
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 07 May 2023 03:09:15 GMT
Content-Type: text/css
Last-Modified: Fri, 04 Oct 2013 10:02:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
ETag: W/"524e9233-25a0"
Expires: Sun, 14 May 2023 03:09:15 GMT
Cache-Control: max-age=604800
Vary: Accept-Encoding
Content-Encoding: gzip
www.upload.ee/js/js__file_upload.js
51.91.30.159200 OK 27 kB URL GET HTTP/1.1 www.upload.ee/js/js__file_upload.js
IP 51.91.30.159:443
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (1853)
Hash 617f6d5a2744bc8c02e3d2c67544bd68
f57c068257c8bc85644d3be1e845c36506cd4625
62a3bb4d9d2b5a55b6d821a75d7b155fac47def3c241e4f1215d17e022f02658
GET /js/js__file_upload.js HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Cookie: lng=eng
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 07 May 2023 03:09:15 GMT
Content-Type: application/javascript
Content-Length: 27351
Last-Modified: Thu, 07 May 2020 19:13:28 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5eb45dd8-6ad7"
Expires: Sun, 14 May 2023 03:09:15 GMT
Cache-Control: max-age=604800
Vary: Accept-Encoding
Accept-Ranges: bytes
www.upload.ee/images/dl_.png
51.91.30.159200 OK 1.9 kB URL GET HTTP/1.1 www.upload.ee/images/dl_.png
IP 51.91.30.159:443
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type PNG image data, 154 x 32, 8-bit colormap, non-interlaced\012- data
Hash f3e8f284a4e98cdb91b6abfc142d94a4
fa9e618c2f56bea752ddd7e45a372c5539dadda9
2f13919383f54ca21e5b87f5644df8a875b99815c821dcbbabea352d854c6882
GET /images/dl_.png HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Cookie: lng=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 07 May 2023 03:09:15 GMT
Content-Type: image/png
Content-Length: 1900
Last-Modified: Thu, 01 Dec 2016 09:37:27 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "583fef57-76c"
Expires: Sun, 14 May 2023 03:09:15 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
www.upload.ee/images/arrow.gif
51.91.30.159200 OK 59 B URL GET HTTP/1.1 www.upload.ee/images/arrow.gif
IP 51.91.30.159:443
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 6 x 9\012- data
Hash 6675f814b94f13f91f1383707b250e36
31452650e8fce2095613a2010799bdb7548bdd51
061d01a0b85f948c6ec464870ecec4654c4bd2ff15cacda941bbbf16225ec411
GET /images/arrow.gif HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Cookie: lng=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 07 May 2023 03:09:15 GMT
Content-Type: image/gif
Content-Length: 59
Last-Modified: Sun, 14 Apr 2013 07:15:01 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "516a5775-3b"
Expires: Sun, 14 May 2023 03:09:15 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash df9a61446a4aa3ddbe888c855736f8d0
6608e220dd3d235ffa6de04a27b3127283d0d984
da4050fecb9a095a59461305b38e676279eeb928f1936ef1085a4042bd8bed82
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 03:09:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-6703115-1
142.250.74.168200 OK 47 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-6703115-1
IP 142.250.74.168:443
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT
File type ASCII text, with very long lines (2271)
Hash 58065cad499584fa8aa9532c359cdd62
8e358d96620c48e3bc05f20dc21788edf6264b7e
822479a0f66e0635acd22d68af50fe6d5d59140386234008b466063c47bf632a
GET /gtag/js?id=UA-6703115-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 07 May 2023 03:09:16 GMT
expires: Sun, 07 May 2023 03:09:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46818
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash df9a61446a4aa3ddbe888c855736f8d0
6608e220dd3d235ffa6de04a27b3127283d0d984
da4050fecb9a095a59461305b38e676279eeb928f1936ef1085a4042bd8bed82
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 03:09:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.upload.ee/favicon.ico
51.91.30.159200 OK 1.2 kB URL GET HTTP/1.1 www.upload.ee/favicon.ico
IP 51.91.30.159:443
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash f299cf2e651c19e48d27900ced493ccb
c2d1086d517d7a26292e0d7b32da7c55b166c23b
115c8eb4840245f7aed0cb2a17fa7e91b86f79bb2f223a25af8cc533e1dedff1
GET /favicon.ico HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Cookie: lng=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 07 May 2023 03:09:16 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Tue, 16 Dec 2008 17:17:25 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4947e2a5-47e"
Expires: Sun, 14 May 2023 03:09:16 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
www.googletagmanager.com/gtag/js?id=G-LT9YQX0N49&l=dataLayer&cx=c
142.250.74.168200 OK 80 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-LT9YQX0N49&l=dataLayer&cx=c
IP 142.250.74.168:443
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT
File type ASCII text, with very long lines (3288)
Hash a97fe1a904422b2f63cf31a81aa54921
840dacfe4ff17b80b4e10a610014a96e682c9706
a0ed7bb55200d3b5a243e34577811dfaa4b7574143d4d9768d9725ef942c06c5
GET /gtag/js?id=G-LT9YQX0N49&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 07 May 2023 03:09:16 GMT
expires: Sun, 07 May 2023 03:09:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79590
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
serving.bepolite.eu/script?space=50dd7b0f-4105-441f-8f60-18cc3fcb090c&type=direct&page_id=8918205&screen_width=1280&screen_height=1024&os=Linux%20x86_64&refurl=https%3A%2F%2Fwww.upload.ee%2Fdownload%2F15205875%2F85815ee835d01cddafdb%2FRobloxssii_v2.0.zip&pageurl=https%3A%2F%2Fwww.upload.ee%2Ffiles%2F15205875%2FRobloxssii_v2.0.zip.html%3Fmsg%3Dsess_error&rnd=1683428957499
212.47.222.21 2.3 kB URL GET serving.bepolite.eu/script?space=50dd7b0f-4105-441f-8f60-18cc3fcb090c&type=direct&page_id=8918205&screen_width=1280&screen_height=1024&os=Linux%20x86_64&refurl=https%3A%2F%2Fwww.upload.ee%2Fdownload%2F15205875%2F85815ee835d01cddafdb%2FRobloxssii_v2.0.zip&pageurl=https%3A%2F%2Fwww.upload.ee%2Ffiles%2F15205875%2FRobloxssii_v2.0.zip.html%3Fmsg%3Dsess_error&rnd=1683428957499
IP 212.47.222.21:0
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type ASCII text, with very long lines (394)
Hash c112138fe875de3b6c4504b179a3814e
5d038fd7dab85a8a2cdefa12aea4afae6f198f3a
86b408955227e9b4d4b93b549cc1635075070c9a96d95e836ac2795963aa680f
GET /script?space=50dd7b0f-4105-441f-8f60-18cc3fcb090c&type=direct&page_id=8918205&screen_width=1280&screen_height=1024&os=Linux%20x86_64&refurl=https%3A%2F%2Fwww.upload.ee%2Fdownload%2F15205875%2F85815ee835d01cddafdb%2FRobloxssii_v2.0.zip&pageurl=https%3A%2F%2Fwww.upload.ee%2Ffiles%2F15205875%2FRobloxssii_v2.0.zip.html%3Fmsg%3Dsess_error&rnd=1683428957499 HTTP/1.1
Host: serving.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private, must-revalidate, max-age=0
vary: accept-encoding
content-encoding: gzip
content-type: text/plain;charset=ISO-8859-1
date: Sun, 07 May 2023 03:07:06 GMT
set-cookie: bepolite_id=c54536356bd5134cb1c46da4e1d384b4; Max-Age=7776000; Expires=Sat, 05-Aug-2023 03:07:06 GMT; SameSite=None; Secure
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 82020351
age: 0
via: 1.1 varnish (Varnish/6.2)
accept-ranges: bytes
content-length: 2313
server: lighttpd/1.4.64
X-Firefox-Spdy: h2
static.bepolite.eu/scripts/saresponsive.js
212.47.222.21200 OK 175 kB URL GET HTTP/2 static.bepolite.eu/scripts/saresponsive.js
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type ASCII text, with very long lines (32077), with CRLF line terminators
Size 175 kB (174581 bytes)
Hash 5460c08214d99449b925ba6cba9044d4
61da313f0047e4ce6c97ad8b484f976ad51003ea
4ed2ec56f430465894d4a1f95c76f298d052084bffb775b3cb7685ad66c94c24
GET /scripts/saresponsive.js HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
etag: "20844406"
last-modified: Mon, 30 Jan 2023 22:16:03 GMT
content-length: 174581
date: Sun, 07 May 2023 03:04:08 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 78702175
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
212.47.222.21200 OK 1.6 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f29ac48e8322b36fd0e26754455249ed
db0103d2b6cf2ccb11e153c832f6c6b60e161305
7efdf6df467ff7cf521663aac8826121c87f79a315d8c765257a87af4b532a09
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
accept-ranges: bytes
etag: "1387578898"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 1553
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 77980876
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/55ef29b5-c93d-4a66-bdf9-6b5b6e642ae7/smartad-sisu-1000x200-100.jpg
212.47.222.21200 OK 56 kB URL GET HTTP/2 static.bepolite.eu/banners/55ef29b5-c93d-4a66-bdf9-6b5b6e642ae7/smartad-sisu-1000x200-100.jpg
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 1000x200, components 3\012- data
Hash 67ae88ca076058c2c3bcb3203cef19e1
b99304fba42731f1e0e5e8f4e7b9e90f2af0c364
c21e5aed75a427d453f24489720e853e367695e54c1cff471626827dda626c5e
GET /banners/55ef29b5-c93d-4a66-bdf9-6b5b6e642ae7/smartad-sisu-1000x200-100.jpg HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
accept-ranges: bytes
etag: "1209065016"
last-modified: Fri, 28 Apr 2023 07:35:24 GMT
content-length: 56362
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 30558567
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/297cbc7e-c1d7-4e6d-aa33-80889a04ff28/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Fbarbora.ee%252Fpuhastustarbed-ja-lemmikloomatooted%252Fpesupesemisvahendid%253Fbrands%253D1211%2526utm_source%253Dsmartad%2526utm_medium%253Dbanner%2526utm_term%253D%2526utm_content%253D%2526utm_campaign%253Dlovela&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2F297cbc7e-c1d7-4e6d-aa33-80889a04ff28%2Findex.html&clink=https%3A%2F%2Fbarbora.ee%2Fpuhastustarbed-ja-lemmikloomatooted%2Fpesupesemisvahendid%3Fbrands%3D1211%26utm_source%3Dsmartad%26utm_medium%3Dbanner%26utm_term%3D%26utm_content%3D%26utm_campaign%3Dlovela&banner_id=c5c7651e411e4d02a85ce1b3ebf69fbb50dd7b0f4105441f8f6018cc3fcb090c&bg=black&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
212.47.222.21200 OK 3.9 kB URL GET HTTP/2 static.bepolite.eu/banners/297cbc7e-c1d7-4e6d-aa33-80889a04ff28/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Fbarbora.ee%252Fpuhastustarbed-ja-lemmikloomatooted%252Fpesupesemisvahendid%253Fbrands%253D1211%2526utm_source%253Dsmartad%2526utm_medium%253Dbanner%2526utm_term%253D%2526utm_content%253D%2526utm_campaign%253Dlovela&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2F297cbc7e-c1d7-4e6d-aa33-80889a04ff28%2Findex.html&clink=https%3A%2F%2Fbarbora.ee%2Fpuhastustarbed-ja-lemmikloomatooted%2Fpesupesemisvahendid%3Fbrands%3D1211%26utm_source%3Dsmartad%26utm_medium%3Dbanner%26utm_term%3D%26utm_content%3D%26utm_campaign%3Dlovela&banner_id=c5c7651e411e4d02a85ce1b3ebf69fbb50dd7b0f4105441f8f6018cc3fcb090c&bg=black&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash ebce7dfb501335ea3da76e723096a9eb
dd5fb50aea19b8dec399a4e168afc4f5dce3dfd4
f554bfb5bad3e2729b38d9110916210ed626b79e47021c8ae7ffb02cb9540c67
GET /banners/297cbc7e-c1d7-4e6d-aa33-80889a04ff28/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Fbarbora.ee%252Fpuhastustarbed-ja-lemmikloomatooted%252Fpesupesemisvahendid%253Fbrands%253D1211%2526utm_source%253Dsmartad%2526utm_medium%253Dbanner%2526utm_term%253D%2526utm_content%253D%2526utm_campaign%253Dlovela&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2F297cbc7e-c1d7-4e6d-aa33-80889a04ff28%2Findex.html&clink=https%3A%2F%2Fbarbora.ee%2Fpuhastustarbed-ja-lemmikloomatooted%2Fpesupesemisvahendid%3Fbrands%3D1211%26utm_source%3Dsmartad%26utm_medium%3Dbanner%26utm_term%3D%26utm_content%3D%26utm_campaign%3Dlovela&banner_id=c5c7651e411e4d02a85ce1b3ebf69fbb50dd7b0f4105441f8f6018cc3fcb090c&bg=black&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
accept-ranges: bytes
etag: "3657117485"
last-modified: Thu, 27 Apr 2023 11:14:54 GMT
content-length: 3855
date: Sun, 07 May 2023 03:04:08 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 30558570
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/files/close-gray.png
212.47.222.21200 OK 1.5 kB URL GET HTTP/2 static.bepolite.eu/files/close-gray.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 41d9676ab94bece3f7a549b4769ddbe2
521f14490fc57fea51e2e5bf00e2299dce51561b
c2f89787bda82263fceb9ec11d398fa83a5f22abf248956df29bdee2987d2f34
GET /files/close-gray.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "801691811"
last-modified: Fri, 08 Apr 2022 18:07:56 GMT
content-length: 1497
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 81923514
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0qRmg6jpUS6DEoHAFxvOi-FOJ7AI98IS899WAq1eqzwvhjL1wEPqpgHfGKrp5IYLja5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g
212.47.222.21200 OK 0 B URL GET HTTP/2 serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0qRmg6jpUS6DEoHAFxvOi-FOJ7AI98IS899WAq1eqzwvhjL1wEPqpgHfGKrp5IYLja5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0qRmg6jpUS6DEoHAFxvOi-FOJ7AI98IS899WAq1eqzwvhjL1wEPqpgHfGKrp5IYLja5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g HTTP/1.1
Host: serving.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Cookie: bepolite_id=c54536356bd5134cb1c46da4e1d384b4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Sun, 07 May 2023 03:04:36 GMT
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 81569988
age: 0
via: 1.1 varnish (Varnish/6.2)
accept-ranges: bytes
server: lighttpd/1.4.64
X-Firefox-Spdy: h2
static.bepolite.eu/banners/297cbc7e-c1d7-4e6d-aa33-80889a04ff28/1000x200.js
212.47.222.21200 OK 133 kB URL GET HTTP/2 static.bepolite.eu/banners/297cbc7e-c1d7-4e6d-aa33-80889a04ff28/1000x200.js
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/297cbc7e-c1d7-4e6d-aa33-80889a04ff28/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Fbarbora.ee%252Fpuhastustarbed-ja-lemmikloomatooted%252Fpesupesemisvahendid%253Fbrands%253D1211%2526utm_source%253Dsmartad%2526utm_medium%253Dbanner%2526utm_term%253D%2526utm_content%253D%2526utm_campaign%253Dlovela&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2F297cbc7e-c1d7-4e6d-aa33-80889a04ff28%2Findex.html&clink=https%3A%2F%2Fbarbora.ee%2Fpuhastustarbed-ja-lemmikloomatooted%2Fpesupesemisvahendid%3Fbrands%3D1211%26utm_source%3Dsmartad%26utm_medium%3Dbanner%26utm_term%3D%26utm_content%3D%26utm_campaign%3Dlovela&banner_id=c5c7651e411e4d02a85ce1b3ebf69fbb50dd7b0f4105441f8f6018cc3fcb090c&bg=black&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type ASCII text, with very long lines (2208)
Size 133 kB (133084 bytes)
Hash d4ff298879e3312af7f107e45aef2c21
319902308e639152cfa5265c23a26b073c06e6c9
6d069192c85c35e4f69df38ebe5169bb4aca038e22b7836480c4650ed2cec2d8
GET /banners/297cbc7e-c1d7-4e6d-aa33-80889a04ff28/1000x200.js HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/297cbc7e-c1d7-4e6d-aa33-80889a04ff28/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Fbarbora.ee%252Fpuhastustarbed-ja-lemmikloomatooted%252Fpesupesemisvahendid%253Fbrands%253D1211%2526utm_source%253Dsmartad%2526utm_medium%253Dbanner%2526utm_term%253D%2526utm_content%253D%2526utm_campaign%253Dlovela&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2F297cbc7e-c1d7-4e6d-aa33-80889a04ff28%2Findex.html&clink=https%3A%2F%2Fbarbora.ee%2Fpuhastustarbed-ja-lemmikloomatooted%2Fpesupesemisvahendid%3Fbrands%3D1211%26utm_source%3Dsmartad%26utm_medium%3Dbanner%26utm_term%3D%26utm_content%3D%26utm_campaign%3Dlovela&banner_id=c5c7651e411e4d02a85ce1b3ebf69fbb50dd7b0f4105441f8f6018cc3fcb090c&bg=black&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
etag: "3729539995"
last-modified: Thu, 27 Apr 2023 11:14:54 GMT
content-length: 133084
date: Sun, 07 May 2023 03:04:08 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 60470370
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
animate.adobe.com/runtime/6.0.0/edge.6.0.0.min.js
23.33.119.17200 OK 34 kB URL GET HTTP/2 animate.adobe.com/runtime/6.0.0/edge.6.0.0.min.js
IP 23.33.119.17:443
ASN #20940 Akamai International B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerDigiCert Inc
Subject*.adobe.com
Fingerprint02:34:86:FC:43:9F:4B:35:C3:FC:67:0B:FF:3B:BC:BC:6E:5A:91:6A
ValidityMon, 10 Oct 2022 00:00:00 GMT - Wed, 11 Oct 2023 23:59:59 GMT
File type ASCII text, with very long lines (561)
Hash 7abd3002a743d28c0c1bd98a64eda18c
cca936df62e2dcfbf790b0ab14ab279ac8e2c353
2d616c4a760ea77e76af1c7fe272a225abeed861b85db2f7f23efe8b7514e559
GET /runtime/6.0.0/edge.6.0.0.min.js HTTP/1.1
Host: animate.adobe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Apache
last-modified: Tue, 05 May 2015 12:17:26 GMT
accept-ranges: bytes
content-type: text/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=900
expires: Sun, 07 May 2023 03:24:17 GMT
date: Sun, 07 May 2023 03:09:17 GMT
content-length: 33737
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px_edge.js
212.47.222.21200 OK 9.0 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px_edge.js
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type ASCII text, with very long lines (8540), with CRLF line terminators
Hash 94b3e90bfe185292429cbe15faa8c13e
f2d05475d636e4be5e17c759b83fd469c82c3259
0b027534a60c89f117943c66e8dbae50742b4a86c94aed2c690ab0acb0e4cec4
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px_edge.js HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
etag: "2686945947"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 9033
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 60470382
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px_edge.js
212.47.222.21200 OK 9.0 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px_edge.js
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type ASCII text, with very long lines (8540), with CRLF line terminators
Hash 94b3e90bfe185292429cbe15faa8c13e
f2d05475d636e4be5e17c759b83fd469c82c3259
0b027534a60c89f117943c66e8dbae50742b4a86c94aed2c690ab0acb0e4cec4
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px_edge.js HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
etag: "569876363"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 9033
date: Sun, 07 May 2023 03:04:09 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 77980906
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_bg_1000x400px.png
212.47.222.21200 OK 8.7 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_bg_1000x400px.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 1000 x 400, 8-bit colormap, non-interlaced\012- data
Hash ea4d8dfbaffe43195d020bb5f022641c
7b7990730d739a1ac8ca1931ae1632141ced10ef
9ce096faad25792df72bb7af060c475eab410eee1ea6a8634723329b0c9b8587
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_bg_1000x400px.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "3223954888"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 8680
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 80526710
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_pilv.png
212.47.222.21200 OK 2.0 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_pilv.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 416 x 193, 8-bit colormap, non-interlaced\012- data
Hash bea0fdc450f388a8b6797e4b8e32b6b8
38ef98568989bfade5b53b06d2377a08aa3cb268
f22fc5161b725645003464dab32c76210e1377f9a3ee103ed5b7e69fd5a3ca9e
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_pilv.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "2461033501"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 1955
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 80856463
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kukk_01.png
212.47.222.21200 OK 5.3 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kukk_01.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 231 x 224, 8-bit colormap, non-interlaced\012- data
Hash a18dca2db04677201adef7c147eaaee1
1d2acfcf1568089bc00379f7bc6fa4baebf86999
50b5069751ef2f345db8e67ca4aca96ccee6ebf2bc196a6d8fd3c0cfe73de3a7
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kukk_01.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "3269365980"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 5269
date: Sun, 07 May 2023 03:04:36 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 77980909
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kukemuts.png
212.47.222.21200 OK 9.6 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kukemuts.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 156 x 124, 8-bit colormap, non-interlaced\012- data
Hash 4c224a74d11b754caae384c45827efec
a0e744999978a9c95d758beab91e5a40f4c229cd
ab2ed3c051d656d36a8537cea5e623461854df0acd9851b6585bffd2ab83f830
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kukemuts.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "1643198704"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 9623
date: Sun, 07 May 2023 03:04:09 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 60470388
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_tekstimull.png
212.47.222.21200 OK 7.6 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_tekstimull.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 384 x 201, 8-bit colormap, non-interlaced\012- data
Hash 554ec5fe3b9f7def532e06848195b1db
590ff5d8135612f9189eef7eed45b178f4226cd2
d7c5467cf36c637a44c1c9d32d68663f6079e031b0a91565c7373b45bb8cd957
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_tekstimull.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "2710116840"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 7626
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 77980912
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_vaarikas.png
212.47.222.21200 OK 1.9 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_vaarikas.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 73 x 77, 8-bit colormap, non-interlaced\012- data
Hash 679520d8dc604f4f2fd521207da39398
ba0300f8921566f52a146696803fd85fcea31215
0f14ae7a0e4f6629bc1f4ef5bb176095dd14c2bd6f402dd0a78d939d40df22f7
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_vaarikas.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "1080175321"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 1878
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 60470391
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_laim.png
212.47.222.21200 OK 2.2 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_laim.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 73 x 76, 8-bit colormap, non-interlaced\012- data
Hash 3f94cfd811425b99bfe3de32fae2a553
433cb07d401fd9658d0665e9f9f93f86ab01ab2c
327f722ad2b89f9b635e25afd7f54d2da2d399bafc32a4c41351f50827c501d3
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_laim.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "1386899073"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 2188
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 30558588
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kirss.png
212.47.222.21200 OK 1.6 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kirss.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 76 x 83, 8-bit colormap, non-interlaced\012- data
Hash c523e6c947c03cd9e7d5ccf1113e3e17
98cb0979f8f04b3494e1028fbe5e043b31ce6bbb
08f82377fe2883b66a04517a8e189700cec45a4254df6b2f39f1e87b6da122b1
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kirss.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "1660937583"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 1570
date: Sun, 07 May 2023 03:04:36 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 60470394
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_ingver.png
212.47.222.21200 OK 1.7 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_ingver.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 88 x 81, 8-bit colormap, non-interlaced\012- data
Hash 7f0e71a037e3db03426e740cb0d013b3
b437fb036d1a0bbaacbaa83fc2151644106600e5
8b1bd2855b064c5df045f015532081edd409abdfbeff6e26f24e4500051ef4d5
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_ingver.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "3786511139"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 1671
date: Sun, 07 May 2023 03:04:09 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 82020369
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_lecoq%2Bmarat.png
212.47.222.21404 Not Found 341 B URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_lecoq%2Bmarat.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1ec31972ec65a65470d3b5d790c1f401
ff246ff3f34725545777856854cd50034c1eba55
664f2b1654c363a6348b688d5d475ed9ec0e7ef3c72f6f315f37fe97a2fe63eb
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_lecoq%2Bmarat.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
content-length: 341
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 60470397
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kukes2rk.png
212.47.222.21200 OK 16 kB URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kukes2rk.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 236 x 291, 8-bit colormap, non-interlaced\012- data
Hash 8bd00d314c612e5b7e7cf77ddf50216b
0fe6c2293dc5afc781c476439d131920031a7fa7
374702d0ffd5bcc12a29042129af7e580fdb931040e5b79e47334e4618eea6ea
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kukes2rk.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "1721449929"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 16427
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 951903405
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kuketiib_vasak.png
212.47.222.21200 OK 490 B URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kuketiib_vasak.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 61 x 76, 8-bit colormap, non-interlaced\012- data
Hash bb1e640de73a222b84e28de8f559d9f9
56f978c5e463afaad99afd84879d1d9e87ce658d
6f3631c57588d9418c807a35acbe5e1d2537014734bbd934b6f90fbb7dd34c58
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kuketiib_vasak.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "2629903638"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 490
date: Sun, 07 May 2023 03:07:07 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 78702187
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kuketiib_parem.png
212.47.222.21200 OK 488 B URL GET HTTP/2 static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kuketiib_parem.png
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
File type PNG image data, 61 x 76, 8-bit colormap, non-interlaced\012- data
Hash 9af697d2c8290476c649e6efd9a5de8b
d8ced2e431aebcd03fbde9988a80c19e88486195
d0624e3cc7f27c2b2e87b588050412d8f1384ce30e077074f2a52a431561c8cc
GET /banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_kuketiib_parem.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/b2920179-1ed2-46c2-bf3b-743de7bdef2f/kukemood_1000x400px.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D63343717&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fb2920179-1ed2-46c2-bf3b-743de7bdef2f%2Fkukemood_1000x400px.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D63343717&banner_id=3f646989018447d280be42b5eb000e8150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=400&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "725829181"
last-modified: Tue, 11 Apr 2023 11:07:35 GMT
content-length: 488
date: Sun, 07 May 2023 03:04:37 GMT
server: lighttpd/1.4.55
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 82020372
age: 0
via: 1.1 varnish (Varnish/6.2)
X-Firefox-Spdy: h2
serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g
212.47.222.21200 OK 0 B URL GET HTTP/2 serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g HTTP/1.1
Host: serving.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Cookie: bepolite_id=c54536356bd5134cb1c46da4e1d384b4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Sun, 07 May 2023 03:04:37 GMT
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 81894829
age: 0
via: 1.1 varnish (Varnish/6.2)
accept-ranges: bytes
server: lighttpd/1.4.64
X-Firefox-Spdy: h2
serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g
212.47.222.21200 OK 0 B URL GET HTTP/2 serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-2PJxKsWD3jPcIukn1KaZpgr7QyMqPyeG7ze8dXG2QB26WEke_9HGmhMrPdvNlG0pfa5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g HTTP/1.1
Host: serving.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Cookie: bepolite_id=c54536356bd5134cb1c46da4e1d384b4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Sun, 07 May 2023 03:04:09 GMT
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 81923541
age: 0
via: 1.1 varnish (Varnish/6.2)
accept-ranges: bytes
server: lighttpd/1.4.64
X-Firefox-Spdy: h2
serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnPQFkqynusZJvi-LzBjp4mA
212.47.222.21200 OK 0 B URL GET HTTP/2 serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnPQFkqynusZJvi-LzBjp4mA
IP 212.47.222.21:443
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/15205875/Robloxssii_v2.0.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
Fingerprint94:A6:1E:22:AF:B9:99:28:F0:8F:3E:00:81:D1:F5:13:22:A7:49:66
ValidityTue, 07 Mar 2023 22:09:49 GMT - Mon, 05 Jun 2023 22:09:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /event?key=FYFWuDany3hwv6rfuoAYF4M1Tq2s7MEBaZx7ApDxMRhLD0ie-JM_8h9V0YUQg-R4hrfAiWAXJ44FrJ8YqwO8cGL2Jt1JO7D1XhHvSVJXy0XaBB0SreN2Abk6K9TBAaSS2iPJSYG9tzhQO89CkHfg4MohX5byYMudBt801Hbd_p_zp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1hP2ntw-Dcdl4rOJA9PCNEELyg3Ph5UI1g5tJwkvL5YjSKIYSidhPxpyZUMy9ieH7a5hY8OvOxWaQQS9P0iYfnPQFkqynusZJvi-LzBjp4mA HTTP/1.1
Host: serving.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Cookie: bepolite_id=c54536356bd5134cb1c46da4e1d384b4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Sun, 07 May 2023 03:07:09 GMT
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 81894838
age: 0
via: 1.1 varnish (Varnish/6.2)
accept-ranges: bytes
server: lighttpd/1.4.64
X-Firefox-Spdy: h2