r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 460af93786e1eaa666f135e6c3fdc634
bc8aeba36225c79718f5de73d79928fe817c5490
471f4e7ae29bcf6ba1f749c0f5d4ab446cebfac5aa80c3e19c6edf21be456eb5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "471F4E7AE29BCF6BA1F749C0F5D4AB446CEBFAC5AA80C3E19C6EDF21BE456EB5"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2985
Expires: Sun, 18 Dec 2022 20:43:22 GMT
Date: Sun, 18 Dec 2022 19:53:37 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9f3cf7e36f17a535e53e5213c02cf2b4
e65acbc03135ce135b9e91b4f74b3e1439faa6f6
a2317476862acd0a92fe523454c3991752b07ba14e7667f421dd9624e0233758
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2317476862ACD0A92FE523454C3991752B07BA14E7667F421DD9624E0233758"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8773
Expires: Sun, 18 Dec 2022 22:19:50 GMT
Date: Sun, 18 Dec 2022 19:53:37 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bcade8542361774f13ecd22557ff8fb8
5e67a3753b0856c765f3b17f1742d3ed684ffb6d
647f8d9d3d1170e60a60e15fdfd9b59445feb56a6ce9d9bb2fa4720f0bfc3a14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "647F8D9D3D1170E60A60E15FDFD9B59445FEB56A6CE9D9BB2FA4720F0BFC3A14"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2950
Expires: Sun, 18 Dec 2022 20:42:47 GMT
Date: Sun, 18 Dec 2022 19:53:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 18 Dec 2022 19:45:29 GMT
content-type: application/json
age: 488
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LfSuNVAzd9Dfw4+nEq02cTEjWOvvXvpsItQiKx9Qxl/LEJw/S4pGoD9J/Crvr6s0v5LqhrluLMI=
x-amz-request-id: MAA9VNM8H8MFQ33V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 18 Dec 2022 18:54:13 GMT
age: 3564
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:37 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/Pkm1ZSV
104.21.94.136200 OK 9.0 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/Pkm1ZSV
IP 104.21.94.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2970), with CRLF, LF line terminators
Hash c22de053f435861c8011ed32656dfb1a
7011e8889ee0e3140669b5a0098551512e85a3d4
9708152e71a11171c67e66882fc7bc3978668c2ddc35a00791301258b91ba039
GET /Pkm1ZSV HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
X-Robots-Tag: noindex, nofollow
Set-Cookie: lang=en_US; expires=Wed, 13-Dec-2023 19:53:37 GMT; Max-Age=31104000; path=/
AppSession=98b1538a8812dd1be049bcb78ccb939d; path=/; HttpOnly
csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2; path=/; HttpOnly
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OzunvQ2lHF5HmGMF2VGMy%2FgWmqt7Pgi2eCNO7eKZtGKWJeSidGZk0lB6%2BccY7MD29Sdy8r%2B%2BNybU1QhzKs8tUJzCGrowWmgVyLVia7Erlikn%2BtprbonUL0xIEbJ9Td5FfASW96pB2xdaJ6F4%2B5zRNtw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba72165998b4f1-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/bootstrap.min.css
104.21.94.136200 OK 24 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/bootstrap.min.css
IP 104.21.94.136:0
File type ASCII text, with very long lines (65324)
Hash d8b8037e618e0918d03629a24a43a355
7077dc2c260d5f0d65986a308a38f3053c290458
acbb0054514eb6bd2c1abf982c5a077e8e2b1feaf59beb0dfc4ccec937f16bef
GET /zshorte_theme/css/bootstrap.min.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: text/css
Content-Length: 23845
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:09 GMT
Cache-Control: max-age=2592000
Expires: Fri, 23 Dec 2022 11:03:07 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 2191830
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UG31Rqwwc7Gtr4wy%2B4LnYCZZEmsVahr6aNUOr%2FrISFhMXsGfgr0tFBkCUmuuzZxP6wAIpNtS3FSbi8kdtsmhsgMtuqtKwa9GtX%2FFkPlFykjAmuLYhZJL9PPcfcBbDxeOO8uqDyw4jJExYvGFcG1S6sA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a4f50b4f1-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/magnific-popup.css
104.21.94.136200 OK 1.9 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/magnific-popup.css
IP 104.21.94.136:0
Hash 17122c906dd1a862f96624fd2e672e7a
f14c3934989971cb348262fe16c8a846ad2ae224
fd821f975c1022810af8626972a55610a1a7bea8e05d8f3d5494fc1e8acb3c8e
GET /zshorte_theme/css/magnific-popup.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: text/css
Content-Length: 1938
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:06 GMT
Cache-Control: max-age=2592000
Expires: Mon, 16 Jan 2023 01:47:24 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 151573
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3pMR97lL0yKDRoqCm5gZ%2FKFN6EhoEz9X9pCKuLPHa1bU4xJg6hZ8CLvAL0NzZ1zPMHieQLcyVQoeBtJQuDwCyKbuD3XnNnbMGs7QjFbI1rYBxWigI5H1WZdauv7UlwHD4HB6p9sBLPnhnCY8pjoslrA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a4b4fb505-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/style-dark.css
104.21.94.136200 OK 18 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/style-dark.css
IP 104.21.94.136:0
File type assembler source, ASCII text
Hash 2fc9d9ff40827e61fc7f51892735e720
d9d394e53cc2031d5e21420392f9cd72736dfe0e
30d118c410b1ae35f7dddb1d35a22966a356c7ec3b80359e30b47a1a84d08067
GET /zshorte_theme/css/style-dark.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: text/css
Content-Length: 18195
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:10 GMT
Cache-Control: max-age=2592000
Expires: Fri, 23 Dec 2022 11:03:08 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 2191829
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eLMPBPXIVDeui%2BheVYe7J5cD0qwXMugcekvWG81t4W5bNrLQ9zqqcEI0uNfrXvlQDBRP6DnBZl3tXDxYa74MCC8D5KwT%2FlKS%2FwixJy%2FG8L8ahavjIfQ58L1ARxtGkRVL8Rj0zttP1aBCjS%2FstQT%2FIXY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a5f5db4f1-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/materialdesignicons.min.css
104.21.94.136200 OK 40 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/materialdesignicons.min.css
IP 104.21.94.136:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1c13974888b04609978ba00d6861f6f9
e86980ee488c614cf4d8b3acbc361ce00739d270
1d563a9838ae252a4de14e821cb64fee3d8e757c995c7bfae6d3a94011dc4e82
GET /zshorte_theme/css/materialdesignicons.min.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: text/css
Content-Length: 39896
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:10 GMT
Cache-Control: max-age=2592000
Expires: Fri, 23 Dec 2022 11:03:08 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 2191829
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KUgcoSnzFiuzi0i%2BCEpvCKUT33Ja%2F5MUD1z5f95LorK%2BLyC%2BCrBo7lVpIQE2xZgRqqzbSlyw%2B0O0OEHjo9H31DYvEVu%2FbTA%2FYVfazxcGRN8VIrnpHdnpE08qvO0u7Dm4ut7oKSYzyREJp%2BB4FKBDj6Y%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a48f6b521-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/owl.carousel.min.css
104.21.94.136200 OK 1.1 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/owl.carousel.min.css
IP 104.21.94.136:0
File type ASCII text, with very long lines (3184)
Hash 8864ff6a1198eecf45821c602593ff9a
c6097cea47ac44fcec94781f2af0110cb677ab0a
19eaae3fdfe574cd1b1cfd78d30633a4527bde9711dde88b467fe43ca854cda5
GET /zshorte_theme/css/owl.carousel.min.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: text/css
Content-Length: 1068
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:07 GMT
Cache-Control: max-age=2592000
Expires: Fri, 23 Dec 2022 11:03:08 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 2191829
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oaCCyLLXezZDrF4EqDpDBwN01nfVhBlney90nLcQZK7z%2BXrtosL9ksIPxXIRvt%2BLdlsl4pvIwce2pbjp%2FhGrk5gJfcIeXmGMDZnAiCydEnyKYB6hiiUSN0wmnkxfH5XK4WvKyJGy%2F379XBigmMZ00iI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a4b830b49-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/aos.css
104.21.94.136200 OK 2.3 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/aos.css
IP 104.21.94.136:0
File type ASCII text, with very long lines (25948)
Hash 8fc87e71c70b219e7d44152acf9a4e06
29b03c24a2abc1d40f6f2a5c3f171e511ca9cb3b
19a7b180bf5722c8541da27f3ebbf046c764830bbc5e5432798897e5f527f022
GET /zshorte_theme/css/aos.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: text/css
Content-Length: 2260
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:05 GMT
Cache-Control: max-age=2592000
Expires: Wed, 04 Jan 2023 23:37:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 1109781
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bu3wNSYKG1q43JIYw036%2B8AL%2Bo3uOTjtZwQGhg2%2B5KtQ4X4zOVDpNONvh4J8FYoxuOnmp8F4jTS6L%2FjOJeDUgkElTiVdZ6O%2BOnQ7H3l3cBuT4aMkW5Jt2J1OYId1gm11aCcbxB6TYRTClyCobcAKFZQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a5d021c0e-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/owl.theme.default.min.css
104.21.94.136200 OK 479 B URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/owl.theme.default.min.css
IP 104.21.94.136:0
File type ASCII text, with very long lines (846)
Hash ed01e339cf287cc8556f302210540fc9
4d4319bfb04d9a9939d387c7ff44dfa29b3772ef
4fdb569f083e05758aa13c7dc42c4b83c7c191ebc0c267c4afe926a81d4109fe
GET /zshorte_theme/css/owl.theme.default.min.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: text/css
Content-Length: 479
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:07 GMT
Cache-Control: max-age=2592000
Expires: Mon, 16 Jan 2023 01:47:25 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 151572
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0O0V0P2188lg1MgO8SYSClEbbGJzynCnXv%2FUWMW14NjiuJYh8QrPfbd64crzs8cD%2F2f6Y9p3JWBIeDX20DHnXe0ikGBzSqNbbL6%2FoSENRzdaQ8POHFp5M06KVgUVdfb14b0RcshfnQs7GyNRwIrin3w%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a4fdbfac0-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/css/colors/skyblue.css
104.21.94.136200 OK 1.6 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/css/colors/skyblue.css
IP 104.21.94.136:0
File type CSV text\012- assembler source text\012- assembler source, ASCII text
Hash 048a5c45178a2765d40e8899e7ec366d
8371c17b5c81b2e7390cf1da3175324265a55e4c
441515df9d10403ad43e63867d185ac25c99d30f1859b8b4b45dcdc9cec781ba
GET /zshorte_theme/css/colors/skyblue.css HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: text/css
Content-Length: 1559
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:09:38 GMT
Cache-Control: max-age=2592000
Expires: Fri, 23 Dec 2022 11:03:08 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 2191829
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lbcYQ1koU9Z5MUEhRyiq5lezR%2BFv7lcev7txU0znsPeg45OXjxXReYGQYjnoZGLAwd4IMtrHoW8tE%2B7PX9hs%2B1BW7UJK%2FbOPGYLZogPrCMDMI5xlcpU4jNaQ0gpFNA2MpHw9KDEmIxpmANN4UQAz%2FT8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a5b62b505-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/scrollspy.min.js
104.21.94.136200 OK 654 B URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/scrollspy.min.js
IP 104.21.94.136:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1310), with no line terminators
Hash 52eb89a8cb5d149605707452a5b121ed
93a275664a44bc9eadc52740ba10b5b69ed153fb
b1fc99a4dd46cb4f26c6422a5f5bb57f9ba240637477a2f57dcdca96e1e39d08
GET /zshorte_theme/js/scrollspy.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Content-Length: 654
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:46 GMT
Cache-Control: max-age=2592000
Expires: Fri, 23 Dec 2022 11:03:27 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 2191810
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UR%2B49V4fH%2FDfCAxSDUVLBcgBtKUTyoBYPGxziXejUTlqx5HKXDVvBrGP%2BBhi2osNAgvDlMbZ7FIWlLlOPaQClxMbJBiOEy1rhUDpENsHKTgjIFwfJINV26V2nxZwY5LyFhRD8GLuMI5ngWhvVHalZzQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a8bd60b49-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/jquery.easing.min.js
104.21.94.136200 OK 817 B URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/jquery.easing.min.js
IP 104.21.94.136:0
File type ASCII text, with very long lines (2532), with no line terminators
Hash d1a8f2ab3b6408f68a4f01d31ac90bc1
42b49a5c362f0cc5ca31dab43a8b98d499cdbf78
17368cc18bda01725115cb1ea484fe4059f425c73ec69fdbc3708fb4a597d1a3
GET /zshorte_theme/js/jquery.easing.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Content-Length: 817
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:44 GMT
Cache-Control: max-age=2592000
Expires: Mon, 16 Jan 2023 01:47:34 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 151562
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mi%2FkVYTaZQZUdn4bIaPZ5sZ3RAHX6tGS9l2ZGPd1ihxfejDNp6IT4ORgxtvusnGlvEFFOKEaAQr86ybtbh8zPmU%2F02NVCEuoPbD4KBAvIgQGCQPx%2Fd2nS8evxqhhwOGxEaKfrCeaUyFZ89VfPCzcENk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a8d381c0e-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/jquery.magnific-popup.min.js
104.21.94.136200 OK 7.6 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/jquery.magnific-popup.min.js
IP 104.21.94.136:0
File type ASCII text, with very long lines (20818)
Hash d3369104b2439ab727a1e8b6cb361d2a
0c99633f0c742643a13a66aed4ad22c39cbb5d0c
52a6ae90714006abcdec4e137b978d3c846025e6ae8c20bbb05f1929dad6383f
GET /zshorte_theme/js/jquery.magnific-popup.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Content-Length: 7594
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:45 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 20:55:24 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1465092
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gV1ggwiEO0PgThi7GBAzYNIpSUR%2Ff7LU0gm1pW9OCNLcvtsGDMLm2sIpLCY%2FhaOoReWS641hgyVvumHCVdzVE9I7DBVGergqnYD1DOxc%2BYFvC%2FVrkhLZ3B8dvgGSkB%2FG8f8Epd1ShKeZSz1d05BIC4A%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a8fbeb4f1-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/bootstrap.bundle.min.js
104.21.94.136200 OK 22 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/bootstrap.bundle.min.js
IP 104.21.94.136:0
File type ASCII text, with very long lines (65297)
Hash e0d6bd060ae45edfcf1426b1cf67930c
1a28940ee80d86a3d326239e2d9f974cac657f5b
ee7a5c9ac9eb841e8ad7ff86dc6fb9126c4cf850922618e9c7b650b327565ae0
GET /zshorte_theme/js/bootstrap.bundle.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Content-Length: 21724
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:42 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 20:55:25 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 1465092
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oMbuqaHVdasS9U7uyBCspmXrOlVz8zutu4gjTnXYftqoo%2BYjzBdqXc2N7%2BoyQ5NixANj0H3HftTnEUaDiTxm0fATe9bZy6EhGGFO0BArn11c05gsejypowxpyj%2FsxJJDTlOXfLN93T8XuoEBP4uRO08%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a8963b521-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/feather.min.js
104.21.94.136200 OK 20 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/feather.min.js
IP 104.21.94.136:0
File type Unicode text, UTF-8 text, with very long lines (61490)
Hash f9a0e93e4d3e9da3a0ff9e3c7c887e6b
5c269e6f3860110826cb284c491c3e765a8e824f
a02a93d1a33fe837780f076fa0bff00b752d29d284f3e0d3a6c49460bb00bd89
GET /zshorte_theme/js/feather.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Content-Length: 20514
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:42 GMT
Cache-Control: max-age=2592000
Expires: Fri, 23 Dec 2022 11:03:28 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 2191809
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B1odeIh0zf8dLsnbMg0dnIsGyqUnmm8l%2F69GomVgr7RcPoBp1ENIC7KOTqBEl3SscNfwMBlrBQ%2BJfnM61CzqH2yWcilbrCzxn2vChS5LTHSDiThrzEnAwQ2yFkEqjT5KUNehh2BaNkMK1gHw98g92Eg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721aafd1b4f1-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/owl.carousel.min.js
104.21.94.136200 OK 11 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/owl.carousel.min.js
IP 104.21.94.136:0
File type ASCII text, with very long lines (31997)
Hash 147ac1c530c19c721f2f08015355831f
36666c04ebfd91eb34a2bccfd77d5921f149719e
ad388396f2600caf304c74c3255d0cb91ec3eb6979eece045c096b4b8f0e0f3c
GET /zshorte_theme/js/owl.carousel.min.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Content-Length: 11412
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:46 GMT
Cache-Control: max-age=2592000
Expires: Sun, 01 Jan 2023 14:53:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 1400382
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pbnGQZISvgcTzEYD7pvKkqmL1b94avJiqweRbJj9rpB7eAhpX%2FkiwZ%2B0KaYyRQF%2FULIAsuQePVlQughSXCUIdxXQYq%2FVkSoc%2F%2BOlyml4YTbScd%2BUmCDc0omJV3KUPEXlXqCGqxzTuEc3TDPqjf%2BSfuQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a9ba7b505-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/app.js
104.21.94.136200 OK 1.1 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/app.js
IP 104.21.94.136:0
Hash b9e4d33520dc7d4923312ea7fa86be17
9903ed1c790dee38ccd18d39413cde0f1502ba07
22e17b2197c2664879557f334ef825037e57db88bbaa2b4955c95b3d13b1fe9d
GET /zshorte_theme/js/app.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Content-Length: 1059
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:40 GMT
Cache-Control: max-age=2592000
Expires: Mon, 16 Jan 2023 01:47:36 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 151561
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dUEGKal4AK8eOSysM%2BLGD1DxB%2Fymg761aP78SAevyQy7LVtsmtZ3a%2ByxrXeoKm4PgTaUkeytHr74MpvFcfdydlSaOc0suekQH6n7T5KfTfb%2BaaLcimuY6HMB1AzUWUVtklw3h0xiFvCPRWBMhdFqSsY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721aa97bb521-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/owl.init.js
104.21.94.136200 OK 249 B URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/owl.init.js
IP 104.21.94.136:0
Hash 1178357de405dc512ad0141d032d4f7f
6bfbde16bb45c61844e8203ab1cc9792b2f40e68
3e75659a73869029299e5c33792296ee0905c097347dbc92d93b6a78efb25fbc
GET /zshorte_theme/js/owl.init.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Content-Length: 249
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:46 GMT
Cache-Control: max-age=2592000
Expires: Sun, 01 Jan 2023 14:53:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 1400382
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QV%2B3Gsq1RyBd4mf2GMWZj4Aw6SrZCaEGmr8y%2FLAwWuQSwQ%2FouYF9TsoQDe%2FsdYpoubfdMcUb0SBjJ4Srs%2BlWv1jWV%2BSbGmVrplbP6mX26RQ4Lr6W3%2BBgT%2FOk2ORPm5jYWI%2B%2FaBcCZWpy78o3MaOKl3M%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a9be70b49-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/js/magnific.init.js
104.21.94.136200 OK 166 B URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/magnific.init.js
IP 104.21.94.136:0
Hash 40cec554fbaaf74145b9780c26962cd7
026dd27f403947cb0aecd23240e198018aaad910
bf1ebcf850056eabbb1d9657ed32008a7e1e841efc3e20145c3d73d21aeb32d3
GET /zshorte_theme/js/magnific.init.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Content-Length: 166
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:45 GMT
Cache-Control: max-age=2592000
Expires: Fri, 23 Dec 2022 11:03:28 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 2191809
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6KSaueTKf1kGOd2rZmHOujl5cn9vuyn%2FLE3o4ZvPeR%2Fsud%2B23KnPaJUKn%2BB%2B4DjyP6FuJNyKraq2enUGDsO%2BlvJmAFKTIdFHV4w94x0f2X0nOK3umkQv5NJEU%2BZWROfripNpqosl4f9wRDePNje%2FT3c%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a9805fac0-OSL
alt-svc: h2=":443"; ma=60
ads.themoneytizer.com/s/gen.js?type=11
185.76.9.17200 OK 2.4 kB URL HTTP/1.1 ads.themoneytizer.com/s/gen.js?type=11
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (2659)
Hash befbfe8e008d3a1fc9b0a2991443888c
725357c328900ef423354fb678553a0dc29d22db
58fdbded093edae1662ccf0163a2a1e807029bcbc62a820d67795d0ef4253f67
GET /s/gen.js?type=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=604800
X-Accel-Expires: @1671771797
Server: CDN77-Turbo
X-77-NZT: AblMCQ0+WKD/rHMDAA
X-77-NZT-Ray: c0a4cc28fd396673c16f9f63c9836e33
X-Cache: HIT
X-Age: 226220
X-77-POP: stockholmSE
X-77-Cache: HIT
Content-Encoding: gzip
ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=11
185.76.9.17200 OK 19 kB URL HTTP/1.1 ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=11
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (29846)
Hash a7bef4a7c7e7359707d678c8c9135d59
88c3c9749e79b83c87f18a19a92f6c5b617ca6e1
89b7cb34c3b1f9417e1ef24df3a2e0149817603b07f89b0b62309b573f275dd3
GET /s/requestform.js?siteId=52788&formatId=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=604800
X-Accel-Expires: @1671786569
Server: CDN77-Turbo
X-77-NZT: AblMCQ35HR/v+DkDAA
X-77-NZT-Ray: c0a4cc2876426573c16f9f6313826a33
X-Cache: HIT
X-Age: 211448
X-77-POP: stockholmSE
X-77-Cache: HIT
Content-Encoding: gzip
iononetravoy.com/1clkn/33405
142.91.159.198200 OK 26 B URL HTTP/1.1 iononetravoy.com/1clkn/33405
IP 142.91.159.198:0
File type ASCII text, with no line terminators
Hash 414a242a6fee8464282857e475d3ef61
f669890350347f53aa9bd19c1a355692e8d17d2f
d4914e81dd0b4c1d8ee8e789f6b369d107b93ac886f862930e1a98580e79aafa
GET /1clkn/33405 HTTP/1.1
Host: iononetravoy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Mon, 19-Dec-2022 19:53:37 GMT; Max-Age=86400; path=/
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Mon, 19-Dec-2022 19:53:37 GMT; Max-Age=86400; path=/
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d62c4eea8ea4b9e5545fc952781c3b1d
47ca338b2d6be9d8a22c052d0838bce364463dce
75f6054477e9c699a1ee189cc77b20c5696ec306db93af0396a98b3b5b49bbc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
arbourrenewal.com/cf/62/1e/cf621eb24aa5b4a128894819698170b8.js
192.243.61.227200 OK 11 kB URL HTTP/1.1 arbourrenewal.com/cf/62/1e/cf621eb24aa5b4a128894819698170b8.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (32147), with no line terminators
Hash 3084e5b48a0d621e9023141d19714f20
c03ca63a1c4ff147ce0eb80a6db4c9e4ac1c1f1b
c629c6788e431b6ee1619428879f1b1593304a7ea7d63ff2529b271888f0c299
GET /cf/62/1e/cf621eb24aa5b4a128894819698170b8.js HTTP/1.1
Host: arbourrenewal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1cc9d6cd1016dd40f991acb4bfe16b99
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.googletagmanager.com/gtag/js?id=UA-77394287-2
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-77394287-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 93fc015c12e6204cbcd17ce7e56e1f1b
648ab2eeb446e3e58c2336062408fa69549b44d2
1ce75d4e6c7179245e58552d006d9e7f7f04907f0d059997f90ac88eb502e7b0
GET /gtag/js?id=UA-77394287-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 18 Dec 2022 19:53:37 GMT
expires: Sun, 18 Dec 2022 19:53:37 GMT
cache-control: private, max-age=900
last-modified: Sun, 18 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43583
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 51194868593d48a4183f94aece654949
09f06164b789806b3218f83cabdd6266d0f6fe53
f4d52e6063554167147e6a867ee5cb67f43be48c3328ed90597040ceaa40838b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=88618
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:37 GMT
Etag: "639e26eb-118"
Expires: Mon, 19 Dec 2022 20:30:35 GMT
Last-Modified: Sat, 17 Dec 2022 20:30:35 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 063f05b1d77da74981c52358219aa4ec
44535e93131ef91bc3a7d4ddc3f9866d282540d2
f574a70cf67d308126097b75dae476d00b01b00376019e7671c6ac6ef415079e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=87533
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:37 GMT
Etag: "639e22ae-118"
Expires: Mon, 19 Dec 2022 20:12:31 GMT
Last-Modified: Sat, 17 Dec 2022 20:12:30 GMT
Server: nginx
Content-Length: 280
arbourrenewal.com/2a/6d/fa/2a6dfa22c42f41c1c5d4b95b66a5509c.js
192.243.61.227200 OK 21 kB URL HTTP/1.1 arbourrenewal.com/2a/6d/fa/2a6dfa22c42f41c1c5d4b95b66a5509c.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (60151), with no line terminators
Hash a017a24fab48b797340bef07aa0d4c7d
42fd30a2932dd54d7347b77a1bcd66517701d06c
12d65d6890f057b7404e108e51475de54e20a37e271de1723ab221d840a6e4e9
GET /2a/6d/fa/2a6dfa22c42f41c1c5d4b95b66a5509c.js HTTP/1.1
Host: arbourrenewal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ee1a7f1607380a594f9b385d994497b0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 18 Dec 2022 19:33:23 GMT
age: 1215
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 10a3a852ef62dc4d4ccbbf6ff396688b
953e40775326102f6c3fc09a18a7039239df656f
30872c631302c914fc93b789892b200beb6284a3ba6753e1ee7f909a1231f2dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
m.imagenesderopaparaperros.com/img/banner300x250.png?v=2
104.21.94.136200 OK 22 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/img/banner300x250.png?v=2
IP 104.21.94.136:0
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Hash 4dd187d299becdea20c32d192f53ffa3
8c5a9ccd16ce767b02e7bb73cee89a5f68603769
a3049a20cd7d731f0ba6ffe3d7dde64728068c971bb913077bd6383978bb35b7
GET /img/banner300x250.png?v=2 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: image/png
Content-Length: 22442
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 22 Jun 2020 20:22:42 GMT
Cache-Control: max-age=31536000
Expires: Mon, 23 Oct 2023 21:46:31 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Vary: User-Agent, Accept-Encoding
CF-Cache-Status: HIT
Age: 4831627
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BDsIU7XII08eS3cCyS%2FXzElUOYEKLIa961tIFVdPSoRMapuLTcX2eQulfIEPi%2Ff%2FAUXtlzTH6Dyvo4hkcpbHuFP2ybzxVuqjrdK0O1LGn59cLFKDsOfy4gJCLrD1z3ahwOjcHgHcdbINLmepr5iQqzs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721d4eb20b49-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/images/logo-dark-2.png
104.21.94.136200 OK 45 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/images/logo-dark-2.png
IP 104.21.94.136:0
File type PNG image data, 857 x 155, 8-bit/color RGBA, non-interlaced\012- data
Hash 28ed5694cb52b688df8f6cb9d3c38e9c
2ec4b679e43cd8bf66919b860bfd830f2b23c7d9
0541ab488abc3b9fcc067d1085aae4fadba1c42910207a8260a909dbf489ed31
GET /zshorte_theme/images/logo-dark-2.png HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: image/png
Content-Length: 44788
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:34 GMT
Cache-Control: max-age=31536000
Expires: Thu, 28 Sep 2023 19:19:37 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Vary: User-Agent, Accept-Encoding
CF-Cache-Status: HIT
Age: 7000441
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Rvj7NwfI1mUx7OiG7noFqKqFIiguZlOohB2bu9UjHTYTDirEsvMgH5X3qk%2BHaye6VyqPb5dOV%2FzMviqIUYpiPGBdIjJrREjeITQj%2BzuQA5c%2B0RmgiOPMK0H9om8b5DJM33gMv8foUmmI2caxEZOu28%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721d4f4ab505-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/images/illustrator/Marketing_strategy_SVG.svg
104.21.94.136200 OK 4.4 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/images/illustrator/Marketing_strategy_SVG.svg
IP 104.21.94.136:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (11474), with no line terminators
Hash b0a442730d51099bd296582a33752941
bfc11997a02571df978e1924408668b290e9177b
87d8d2fa765a20cf746844b634c4ff948fc3cf82ec6780c1a50e97714b57ccd7
GET /zshorte_theme/images/illustrator/Marketing_strategy_SVG.svg HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: image/svg+xml
Content-Length: 4373
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:12:33 GMT
Cache-Control: max-age=31536000
Expires: Mon, 23 Oct 2023 21:46:31 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 4831627
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9TIgxdVt2Z0s8f38%2B8XIS2HXw2f2N%2FGHw%2FkdhCvfctfteBrtTQVAryWYppNsL4PMBFG5Ugy38h0mk%2FHHUlGcwtGKqvodBqjLoJ1C1Mr46UJRZGH5vaROuIqxmhSO0iZxztCXXpdFAbOZh2dW%2FI13670%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721d4d1bb521-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/zshorte_theme/images/illustrator/Startup_SVG.svg
104.21.94.136200 OK 7.3 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/images/illustrator/Startup_SVG.svg
IP 104.21.94.136:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (19895), with no line terminators
Hash 427943d2300981717c994360d8568b72
ec958f6ab8fd3266262e778436f518611b732977
140ce571749413f2d23ec657b47e6025e3fd81b91d1b0439dbdae69cd8b4abda
GET /zshorte_theme/images/illustrator/Startup_SVG.svg HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: image/svg+xml
Content-Length: 7290
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:12:35 GMT
Cache-Control: max-age=31536000
Expires: Fri, 17 Nov 2023 01:45:14 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Served-By: m.imagenesderopaparaperros.com
CF-Cache-Status: HIT
Age: 2743704
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QPtgFEZT2QePk0IRiSKox63OAkw%2B8lcuA1ZgWtDb2XksrAzdqcCFBlESZYgPYEAbl8vxGVL0OmEMy9ETFpf7Tr9Twfgc5htkyvd%2BZldRJena%2B%2FMA9kMQQAqm5AneI%2BWJnaiHeMH3UBzOznSyVuAsWSM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721d48871c0e-OSL
alt-svc: h2=":443"; ma=60
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 1a407b6ee37e3065d7c803a096c89de3
00347116440a772ad55046962fa1b44bf17424d8
cbd9c2ca31e19f8ed066bd2d49dcc5e90972667f63a2502e9c19136672b06d02
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 22:16:03 GMT
Expires: Sat, 24 Dec 2022 22:16:02 GMT
Etag: "00347116440a772ad55046962fa1b44bf17424d8"
Cache-Control: max-age=526343,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ba721d2a5e0b55-OSL
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 51194868593d48a4183f94aece654949
09f06164b789806b3218f83cabdd6266d0f6fe53
f4d52e6063554167147e6a867ee5cb67f43be48c3328ed90597040ceaa40838b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=88618
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639e26eb-118"
Expires: Mon, 19 Dec 2022 20:30:36 GMT
Last-Modified: Sat, 17 Dec 2022 20:30:35 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 063f05b1d77da74981c52358219aa4ec
44535e93131ef91bc3a7d4ddc3f9866d282540d2
f574a70cf67d308126097b75dae476d00b01b00376019e7671c6ac6ef415079e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=87533
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639e22ae-118"
Expires: Mon, 19 Dec 2022 20:12:31 GMT
Last-Modified: Sat, 17 Dec 2022 20:12:30 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b09c5fd392d9d40a99ab4c70e59fd24e
40e39676ca8052fd8b9eab501750f0011737f507
8c2b60b0ec0a8121d5c5a8dda2ec1a57b923efe10246386262f359f6a458cdcd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 51194868593d48a4183f94aece654949
09f06164b789806b3218f83cabdd6266d0f6fe53
f4d52e6063554167147e6a867ee5cb67f43be48c3328ed90597040ceaa40838b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=88617
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639e26eb-118"
Expires: Mon, 19 Dec 2022 20:30:35 GMT
Last-Modified: Sat, 17 Dec 2022 20:30:35 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 51194868593d48a4183f94aece654949
09f06164b789806b3218f83cabdd6266d0f6fe53
f4d52e6063554167147e6a867ee5cb67f43be48c3328ed90597040ceaa40838b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=88617
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639e26eb-118"
Expires: Mon, 19 Dec 2022 20:30:35 GMT
Last-Modified: Sat, 17 Dec 2022 20:30:35 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 51194868593d48a4183f94aece654949
09f06164b789806b3218f83cabdd6266d0f6fe53
f4d52e6063554167147e6a867ee5cb67f43be48c3328ed90597040ceaa40838b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=88617
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639e26eb-118"
Expires: Mon, 19 Dec 2022 20:30:35 GMT
Last-Modified: Sat, 17 Dec 2022 20:30:35 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bc27cdcd6c42d7f8eece6c074bc452f
ff1234b58f7381f51f9082c1ef4894b1ac5700ff
672fc3b7ba7ee7a8b376c73a86a5bab00b1a1aead54c3ca64c0bff83d831348e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 651
Cache-Control: max-age=134644
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639ed82b-1d7"
Expires: Tue, 20 Dec 2022 09:17:42 GMT
Last-Modified: Sun, 18 Dec 2022 09:06:51 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
m.imagenesderopaparaperros.com/zshorte_theme/images/marketing/marketing-shape.png
104.21.94.136200 OK 25 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/images/marketing/marketing-shape.png
IP 104.21.94.136:0
File type PNG image data, 2000 x 1333, 8-bit/color RGBA, non-interlaced\012- data
Hash 5eed74255fa67e5173ba6228cbbd9526
ef9724a6d2dbbb351754e00d9eff520a9577b8d2
bfd1e4251879dbb016cdc9efe9c85b21759d4d49d05c469f2dd0b556215402af
GET /zshorte_theme/images/marketing/marketing-shape.png HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: image/png
Content-Length: 24960
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:12:47 GMT
Cache-Control: max-age=31536000
Expires: Mon, 23 Oct 2023 21:46:31 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Vary: User-Agent, Accept-Encoding
CF-Cache-Status: HIT
Age: 4831627
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AjrtPCe9mg%2Fe%2FKonJieDc%2BLsbD7lsdFOnENQC9cbUpIJyl%2Bpj%2BKAQPon0k5RIBKkDvYas2qLU40pUC8EfNBNULnlp1dbZ5AV0jO8uZcQ8sK3roYyLnG1i0uu6n0%2Fux31bAx%2FzByxa%2ByFuhHSvjG28jw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721e2829b505-OSL
alt-svc: h2=":443"; ma=60
ads.vidoomy.com/imagenesderopaparaperros_14871.js
3.19.54.139200 OK 4.8 kB URL HTTP/1.1 ads.vidoomy.com/imagenesderopaparaperros_14871.js
IP 3.19.54.139:0
File type ASCII text, with very long lines (4753)
Hash dca7d770c45a86e8ed98a1a70b16b30a
8d09f9f86cd4dd3f0cf8cef950e4e1ade9ce9c1b
3cfd562889f90c112dadbb1d22fcc0a37235cb8a95484d4c285a13ae670042c9
GET /imagenesderopaparaperros_14871.js HTTP/1.1
Host: ads.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:38 GMT
Server: Apache/2.4.54 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 4755
Keep-Alive: timeout=2, max=300
Connection: Keep-Alive
Content-Type: application/javascript
m.imagenesderopaparaperros.com/zshorte_theme/fonts/materialdesignicons-webfont.woff2?v=5.3.45
104.21.94.136200 OK 290 kB URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/fonts/materialdesignicons-webfont.woff2?v=5.3.45
IP 104.21.94.136:0
File type Web Open Font Format (Version 2), TrueType, length 290164, version 1.0\012- data
Size 290 kB (290164 bytes)
Hash dc85ceeb0daba687e36d8dde4ed4d352
07b7375770ca6989fdf9872a960727743bd9da5d
f94a9bc93d318bc1bc5d07ca5aad4eb651553ef7a0e6a3b06f6f5abbc72fea75
GET /zshorte_theme/fonts/materialdesignicons-webfont.woff2?v=5.3.45 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/zshorte_theme/css/materialdesignicons.min.css
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: font/woff2
Content-Length: 290164
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:18 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Vary: User-Agent, Accept-Encoding
X-Served-By: m.imagenesderopaparaperros.com
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 14
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GANVyMPcrHSmz%2BL%2BP1FvO7AxbhuwC0b5W%2F3QGbk9yHkMxVm2EVwHCQYbw1eZ1tHfUqV4pyeRAMzNWCdQ24ob%2B6pTl7YyKcTo%2BS6tgUZOBWvjw1pDdTh90KBMVOZYdkG79MHV4QWyrEy%2BM7degH7hGUI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721e98b1b505-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3cc1866fc9c3235fc00e984bd2d7a1f2
309c47bdee0a04d1234b1b130793cc492797c335
26597f97dfd979d5bf0f32bbf732448bb25d13f2ed3c0857de783439f1976574
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5108
Cache-Control: max-age=145958
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639ef2f4-117"
Expires: Tue, 20 Dec 2022 12:26:16 GMT
Last-Modified: Sun, 18 Dec 2022 11:01:08 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5ec70919372ab27cd51c8af3e004482d
d426a1d3a0c3703b3f8af7315af4427e4f5fa9e4
576448ef5d41871b94cf6d97aa385d1c7fd28dd9bdb70f23aacdf1b2b5a6add5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "576448EF5D41871B94CF6D97AA385D1C7FD28DD9BDB70F23AACDF1B2B5A6ADD5"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15033
Expires: Mon, 19 Dec 2022 00:04:11 GMT
Date: Sun, 18 Dec 2022 19:53:38 GMT
Connection: keep-alive
boot.pbstck.com/v1/tag/4154d2d4-b8d3-4ebd-87e3-10ab310b914d
104.22.0.93200 OK 1.1 kB URL HTTP/2 boot.pbstck.com/v1/tag/4154d2d4-b8d3-4ebd-87e3-10ab310b914d
IP 104.22.0.93:0
File type ASCII text, with very long lines (630)
Hash 1472adf45c569f604ddbc11bfc496d13
1bf809f50bfb0b9ba40a2346c454e6df92cea7d8
6de60f5c001c0865f3570de5af0b3be338f4dc589e04e91612af02c5574c2ea0
GET /v1/tag/4154d2d4-b8d3-4ebd-87e3-10ab310b914d HTTP/1.1
Host: boot.pbstck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: private,max-age=120
timing-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77ba721e8da9b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 40588a98e7b9045ed0f89cef0ae81bc9
047c03794a9de378f66b81ce84edfaab928d28aa
574d5ada571abb63674ee166c8e0ddce49a734a227841b1377f196900de04fdc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4004
Cache-Control: max-age=106707
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639e5df1-138"
Expires: Tue, 20 Dec 2022 01:32:05 GMT
Last-Modified: Sun, 18 Dec 2022 00:25:21 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 312
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.tmyzer.com/c/?s=52788&f=6&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=52788&f=6&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=52788&f=6&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:E234_36264064:01BB_639F6FC2_B04005F:18F7C
X-IPLB-Instance: 38438
quantcast.mgr.consensu.org/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
143.204.55.88200 OK 37 kB URL HTTP/2 quantcast.mgr.consensu.org/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
IP 143.204.55.88:0
File type ASCII text, with very long lines (1834)
Hash 98ea4054ff93d552ca6b3c958323d3d4
149ab7e186e35a3b558cdf832c61493452f00b7a
7647b9534f477bdb479a681e034b0d3156a80b7d270474ef90b4e44553041a61
GET /choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js HTTP/1.1
Host: quantcast.mgr.consensu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:53:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
date: Sun, 18 Dec 2022 19:53:34 GMT
cache-control: max-age=3600
etag: W/"c53bd785b1ee57b613221019d7d72626"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OWVompbIhpVfRxfbRnfQnjkox_hUwxbqc5b5RVabgwXbA7iFEWClJg==
age: 9
X-Firefox-Spdy: h2
www.cdn4ads.com/w2ui.min.css
185.76.9.21200 OK 0 B URL HTTP/2 www.cdn4ads.com/w2ui.min.css
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /w2ui.min.css HTTP/1.1
Host: www.cdn4ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: text/html; charset=UTF-8
content-length: 0
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
x-accel-expires: @1672087600
server: CDN77-Turbo
x-77-nzt: AblMCRQ/lLX/kjkFAA
x-77-nzt-ray: af585630001aa48dc26f9f634843a61d
x-cache: HIT
x-age: 342418
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/modern_theme/js/front.js?ver=6.4.0
104.21.94.136200 OK 1.5 kB URL HTTP/2 m.imagenesderopaparaperros.com/modern_theme/js/front.js?ver=6.4.0
IP 104.21.94.136:0
Hash cb464b7313888e1827a781250728173a
0249c998e55ee8d6f1ffb4fed446dd0d59192e64
91eec2384a23ad5057b484a5f9c3f691a0b8e846fb99ef2c3845ac83d67ee112
GET /modern_theme/js/front.js?ver=6.4.0 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Sat, 20 Jun 2020 00:08:01 GMT
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 07:03:58 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-served-by: m.imagenesderopaparaperros.com
cf-cache-status: HIT
age: 1428580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ubkt1mk9u83OLu6QNLer0Ie2SsXIGWj69g%2Bh52TwJgxf%2BslFfZ5RtKh5Q2nypAIEzwrnMHLs5yE9ue7Fp969Ai0C80IqPbhlrx38uIDoRwtdb4IPtNH0RmlPJdrOd9rnrY1kb8rThEFBUOSkAfL4%2FLA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77ba721ccb2ab518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tag.leadplace.fr/libJsLP.js
145.239.192.166200 OK 5.5 kB URL HTTP/1.1 tag.leadplace.fr/libJsLP.js
IP 145.239.192.166:0
Hash a0c24f993bc0901cfe62d1e801cb2b45
7eb2bdce06161ae486bc8e7ecd0b5c9c4f7b2984
80fccb00db57a177d26368cda09f8a540cf1aa641b8b6837047e86d3bd8d6333
GET /libJsLP.js HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: application/javascript
Content-Length: 5547
Last-Modified: Mon, 18 Oct 2021 12:21:41 GMT
ETag: "616d66d5-15ab"
Accept-Ranges: bytes
X-IPLB-Request-ID: 5B5A2A9A:EA88_91EFC0A6:01BB_639F6FC2_45B9F40C:6041
X-IPLB-Instance: 30196
twinstanglebroken.com/pixel/purst?dl=0&th=0&sc=0&rs=1160&rd=1160&fd=516&bv=22.10.v.9&tmpl=70
192.243.61.225200 OK 0 B URL HTTP/1.1 twinstanglebroken.com/pixel/purst?dl=0&th=0&sc=0&rs=1160&rd=1160&fd=516&bv=22.10.v.9&tmpl=70
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1160&rd=1160&fd=516&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: twinstanglebroken.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
unicons.iconscout.com/release/v2.1.9/script/monochrome/bundle.js
104.18.29.243200 OK 31 kB URL HTTP/2 unicons.iconscout.com/release/v2.1.9/script/monochrome/bundle.js
IP 104.18.29.243:0
File type ASCII text, with very long lines (9104)
Hash 5c94fe26eb3ba91e9d03ef9114a77878
a50b8096077a7d3697c3278b356468f2bd301ba7
4dcfad06960b47ba6f5c58066b4576adbc4b59b43cd8d9935093f48c973b6663
GET /release/v2.1.9/script/monochrome/bundle.js HTTP/1.1
Host: unicons.iconscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:37 GMT
content-type: application/javascript
x-amz-id-2: GvCKrN3nQW/FEY2jWfHeYZvKkWCt3JBdCuMVwvzgDsMJlQPRsp7xleY2w8Me+pQdtPQBGP2L4Og=
x-amz-request-id: J4Q012JMVSHPPMBE
last-modified: Fri, 22 May 2020 12:00:38 GMT
etag: W/"be52f9b7d5de40f1e7cf1faab2f6d95d"
cf-cache-status: HIT
age: 717707
expires: Mon, 18 Dec 2023 19:53:37 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 77ba721b7ab51c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 335822a64b16e34e0f2dc3ea93e80ab7
7442405bb8c86b633da9c95e352a36b43b0a3afa
ec07432b7dc2622ea70c001daa707530138d201cf8471c174832839e93c57fdc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 16 Dec 2022 12:11:58 GMT
Expires: Fri, 23 Dec 2022 12:11:57 GMT
Etag: "7442405bb8c86b633da9c95e352a36b43b0a3afa"
Cache-Control: max-age=403698,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ba721f9c940b55-OSL
c.tmyzer.com/c/?s=52788&f=2&fi=99
54.38.64.100200 OK 31 kB URL HTTP/1.1 c.tmyzer.com/c/?s=52788&f=2&fi=99
IP 54.38.64.100:0
Hash 1c05e941f2b036f979d733979cca4c03
ad47c7457a804857a8f9ab2dd88aff300c92a256
d7df62b5fde12fd3d945c139a132d9799ae1657fdaec5c04dcf517440fe2a4bd
GET /c/?s=52788&f=2&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:721B_36264064:01BB_639F6FC2_B05DFC1:1465C
X-IPLB-Instance: 20687
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash b22f42410ca03f237bde0ba56969e388
1bcdbe680567dfa438eadadb7cba567bb95d4268
2f61059a50e8bd97568204a704a85a82358ad50b68545a8b891f2297cf20d662
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Dec 2022 19:33:35 GMT
Expires: Mon, 19 Dec 2022 19:33:35 GMT
ETag: "1bcdbe680567dfa438eadadb7cba567bb95d4268"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e22c487307aca2e6e3d5ecfc7daae99a
3fb9ea3a5166ba4dfd6e5d05139936a96bc33c2d
66fc32efbb2c29a16706b6ea40145509974f7b9dbfafc72e104232a4c4d52d69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.43.158.219101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.158.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KtBVdIf5XGJVi2VXX8wUdg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4AnyHVaMgAl9su8EPlkPKWVpPvc=
c.tmyzer.com/c/?s=52788&f=19&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=52788&f=19&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=52788&f=19&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:FC13_36264064:01BB_639F6FC2_B03BF40:1A836
X-IPLB-Instance: 38437
cdn.ftd.agency/libs/e.js
37.48.117.210200 OK 1.7 kB IP 37.48.117.210:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash 02f679c9e331e69ac43f87af96915b9d
e589290852a088c34cbf7bb3104faa833244e1d4
7ea9bdfdd368aa5835ba2930414dc029b4d2ffbd46c362e33d2efaffbb8fad32
GET /libs/e.js HTTP/1.1
Host: cdn.ftd.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 13 Sep 2022 09:47:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"632051a8-aec"
Expires: Mon, 19 Dec 2022 19:53:38 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip
ads.themoneytizer.com/s/gen.js?type=19
185.76.9.17200 OK 2.4 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=19
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (2659)
Hash befbfe8e008d3a1fc9b0a2991443888c
725357c328900ef423354fb678553a0dc29d22db
58fdbded093edae1662ccf0163a2a1e807029bcbc62a820d67795d0ef4253f67
GET /s/gen.js?type=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1671771800
server: CDN77-Turbo
x-77-nzt: AblMCQ0YefX/qnMDAA
x-77-nzt-ray: c0a4cc28aa31f672c26f9f63a209aa03
x-cache: HIT
x-age: 226218
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/vendor/clipboard.min.js?ver=6.4.0
104.21.94.136200 OK 5.4 kB URL HTTP/2 m.imagenesderopaparaperros.com/vendor/clipboard.min.js?ver=6.4.0
IP 104.21.94.136:0
File type Unicode text, UTF-8 text, with very long lines (10645)
Hash 85264a90b41a054402d210701f2358f9
1746c3a39cb7101879fd90c1faff27076e1aed35
1229b089afd81f1a76da409b906dda13c2c300f24db261532746c4371e70302e
GET /vendor/clipboard.min.js?ver=6.4.0 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Sat, 20 Jun 2020 00:07:33 GMT
cache-control: max-age=2592000
expires: Fri, 23 Dec 2022 11:03:24 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2191814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m9HIriXYXamVr7IUsyavsJL3bbsBNqkNagdmhMPIS3hxZLTGmeoM2wlSHJT%2BHIGHR%2B8WIiE1ANdkJ6Eb6MuOL3JqoYPOphYjufAV6%2F3qxZAD8bkM%2Ba6M645PdaokWpTnQ5iWu2XUZ4WmPUdqjuxWPdc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77ba721ccb22b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash ba07ca01954fbcfa04e49ce6520e80cb
c8c508e7cc20e0ec033d487e14e1618defcb88cf
f421e47834c212fdd65f1badb0c735cffc4266365c4a271416b8625cd6527718
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=153761
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639f1615-1d7"
Expires: Tue, 20 Dec 2022 14:36:19 GMT
Last-Modified: Sun, 18 Dec 2022 13:31:01 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pbrM3ZJlkoe71cyxDi2Pljwn9GQNZKY7NUeGuG9zsEI5eTFo5F4xrw==
Age: 3918
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash ba07ca01954fbcfa04e49ce6520e80cb
c8c508e7cc20e0ec033d487e14e1618defcb88cf
f421e47834c212fdd65f1badb0c735cffc4266365c4a271416b8625cd6527718
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154008
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639f1615-1d7"
Expires: Tue, 20 Dec 2022 14:40:26 GMT
Last-Modified: Sun, 18 Dec 2022 13:31:01 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KtHD6P5S7R2tzVQq_b7is5rDAos9RF8KWNMnfO6un_4tkE4DDBRspQ==
Age: 4165
simplewebanalysis.com/stats
3.71.139.39200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.71.139.39:0
File type ASCII text, with no line terminators
Hash 507009c6bef1ad2cbb08540a6fd5f36c
23385e35768181d62dad79d1bc88a64a0111f1bd
ede172175146f5feb40c21e7fc9518fa76ba737d64866818ad0c4e9e23f7a275
Analyzer Verdict Alert fortinet Malware
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-allow-credentials: true
set-cookie: uid_id2=57fa6796-7192-48f6-9c12-921c57bca0fc:1:1; expires=Wed, 15 Dec 2032 19:53:38 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
3.71.139.39200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.71.139.39:0
File type ASCII text, with no line terminators
Hash b55019f0f381c0f8120cc1cbffb9526b
ba100a2c0f387162d4fc3ef9ab7687a398775762
c5905d29c47c60e459b3ee8e901981d4bf5db148e5714f19a138858dde70a47b
Analyzer Verdict Alert fortinet Malware
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-allow-credentials: true
set-cookie: uid_id2=64ea68dc-36e0-4368-9757-f34079e747df:1:1; expires=Wed, 15 Dec 2032 19:53:38 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito:300,400,600,700&display=swap
142.250.74.74200 OK 4.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Nunito:300,400,600,700&display=swap
IP 142.250.74.74:0
Hash d6d1ecb02f7064aa9a93b273f36be13d
f6d75f69348418152a5f7e0784be736faa335a47
faae2bbf0bd762438591c47b8a6315893c0530148ac3a16c845a239aee1d681d
GET /css?family=Nunito:300,400,600,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Dec 2022 19:53:38 GMT
date: Sun, 18 Dec 2022 19:53:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ced.sascdn.com/tag/1097/smart.js
23.36.77.48200 OK 33 kB URL HTTP/1.1 ced.sascdn.com/tag/1097/smart.js
IP 23.36.77.48:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4686ea4ceef48bf4d7b06bf70fe2a6ef
6a1348d13eca8b7882c4679c53019a51f48a94fd
685fc19fe5c57ebff672b1a9c03ea8b85f78d37558cc6743a39baa034f852d0d
GET /tag/1097/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32836
Cache-Control: public, max-age=7200
Expires: Sun, 18 Dec 2022 21:53:38 GMT
Date: Sun, 18 Dec 2022 19:53:38 GMT
Connection: keep-alive
ads.themoneytizer.com/moneybid7_28/build/dist/prebid.js
185.76.9.17200 OK 26 kB URL HTTP/2 ads.themoneytizer.com/moneybid7_28/build/dist/prebid.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
Hash 8703fc9eead243fe2f47380e962d7fa2
3d9f707259112fa9ccdd1e676f00eadcff71906c
b47b4ca26c57e3dceebd7abd067df9622599bed6bfb11b480f92d09a945cd213
GET /moneybid7_28/build/dist/prebid.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
last-modified: Thu, 08 Dec 2022 19:26:45 GMT
expires: Sat, 17 Dec 2022 05:03:15 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1671426198
server: CDN77-Turbo
x-77-nzt: AblMCQ3yrnv/rNAAAA
x-77-nzt-ray: c0a4cc28aa31f672c26f9f639ca0770e
x-cache: HIT
x-age: 53420
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
d3g5ovfngjw9bw.cloudfront.net/leaflet.toolbar.js
143.204.42.44200 OK 9.7 kB URL HTTP/2 d3g5ovfngjw9bw.cloudfront.net/leaflet.toolbar.js
IP 143.204.42.44:0
File type HTML document, ASCII text, with very long lines (1568), with CRLF line terminators
Hash 93b5f13322d803d75e58cd7721761b8a
e23cc49ab632469cd61771c8ec5ae2b0cefd2d50
6305abe5a19fd031d7b8c1b417de9bf5f3b4f03f3db3801687f13bc1696bdc4b
Analyzer Verdict Alert fortinet Malware
GET /leaflet.toolbar.js HTTP/1.1
Host: d3g5ovfngjw9bw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 9695
expires: Thu, 22 Dec 2022 09:48:49 GMT
access-control-allow-origin: *
link: <https://cdn4ads.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
content-encoding: gzip
date: Thu, 15 Dec 2022 09:48:49 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lg4mo96St1Red-PoeOi92le5X7iXrrX0ZMa_RZd59eikiEZtX6azUg==
age: 295489
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 411f472da1940d6166d745725d2afbd1
b3f050cd8935bc0acf9f8385fda9cc30f3947edb
79ef3031b88b81c5bce22adcd953edb20889a7dfba6db41ff936320550ba028c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 8b7b7077155f27d3646c396e59093a8f
659ae9a121ed3c7b9609628af313c92649062310
3f2107d8494ee13361f0bdb0e3e33c3e12da1a4e58ffff6acbb3ac446aba76ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5041
Cache-Control: max-age=100509
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639e41ae-2d7"
Expires: Mon, 19 Dec 2022 23:48:47 GMT
Last-Modified: Sat, 17 Dec 2022 22:24:46 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e3b13d6f509880ac491f951c68743ea1
82b3f4ff5a56d54a79cfebe2d96e9037bbfec87b
170e4c3c6963db458df1d13b46c34caa15e4e366e7770a234021189829cfb9fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5263
Cache-Control: max-age=171654
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Etag: "639f56b9-1d7"
Expires: Tue, 20 Dec 2022 19:34:32 GMT
Last-Modified: Sun, 18 Dec 2022 18:06:49 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
142.250.74.35200 OK 583 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
IP 142.250.74.35:0
File type ASCII text, with very long lines (921), with no line terminators
Hash d04cc7abf4ab1b4423a341bc45a9b724
25ed36ad23e8155314a88c49482f6d514ab87895
d87a39f80944e880f9654f236aec3fe6dbcd2e0edd31761c94f23b5fb7baa2af
GET /recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 18 Dec 2022 19:53:38 GMT
date: Sun, 18 Dec 2022 19:53:38 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d696b08d3b9a3a372fed237dbaae597c
39936ccc3fbc998a34a7bb00d6aa2d55554aed89
97cccb55feb1282255b72ae493479a800778be7f61591914fb7e9e3af3f12143
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 258
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Last-Modified: Sun, 18 Dec 2022 19:49:20 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cc78a9f54cfa6fa46efd132eecdcbd14
57893a24c77baf1eabe42465d6750e04786cc41d
727ba281aaf1bac266135f617ff72354840a054683aac983886be0ec2e8e66ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5804
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Last-Modified: Sun, 18 Dec 2022 18:16:54 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
z.cdn.ftd.agency/load?z=1339915142&div=3g2hiw4jvia&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=1787&hc=16&n=1671393218623&url=m.imagenesderopaparaperros.com%2FPkm1ZSV&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=301567957
37.48.117.210204 No Content 0 B URL HTTP/1.1 z.cdn.ftd.agency/load?z=1339915142&div=3g2hiw4jvia&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=1787&hc=16&n=1671393218623&url=m.imagenesderopaparaperros.com%2FPkm1ZSV&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=301567957
IP 37.48.117.210:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /load?z=1339915142&div=3g2hiw4jvia&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=1787&hc=16&n=1671393218623&url=m.imagenesderopaparaperros.com%2FPkm1ZSV&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=301567957 HTTP/1.1
Host: z.cdn.ftd.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Sun, 18 Dec 2022 19:53:38 GMT
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Expires: -1
P3P: policyref="/p3p.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Set-Cookie: AU=66910b6b60a9cf5e; Expires=Sun, 17 Dec 2034 22:00:40 GMT; Path=/; HttpOnly; Domain=.cdn.ftd.agency; SameSite=None; Secure
z.cdn.ftd.agency/load?z=1339915142&div=ehd4ndct3ww&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=1787&hc=16&n=1671393218623&url=m.imagenesderopaparaperros.com%2FPkm1ZSV&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=301567957
37.48.117.210204 No Content 0 B URL HTTP/1.1 z.cdn.ftd.agency/load?z=1339915142&div=ehd4ndct3ww&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=1787&hc=16&n=1671393218623&url=m.imagenesderopaparaperros.com%2FPkm1ZSV&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=301567957
IP 37.48.117.210:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /load?z=1339915142&div=ehd4ndct3ww&cw=1268&ch=939&sr=1280x1024&df=1&bh=1&tl=1787&hc=16&n=1671393218623&url=m.imagenesderopaparaperros.com%2FPkm1ZSV&vc=0&ti=zShorte.net%20%7C%20zShorte.net&zyx=301567957 HTTP/1.1
Host: z.cdn.ftd.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Sun, 18 Dec 2022 19:53:38 GMT
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Expires: -1
P3P: policyref="/p3p.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Set-Cookie: AU=66910b6b60a9cf5e; Expires=Sun, 17 Dec 2034 22:00:40 GMT; Path=/; HttpOnly; Domain=.cdn.ftd.agency; SameSite=None; Secure
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9a9ec7b3c087ab0fabb9244384b08009
4e5b9ec91000b811a7985077648ab573dd363be2
f56a8c3395f5b1bedcd1c1b49052a656a9972e73f2ad5cf30aaadf050611dac3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ups.analytics.yahoo.com/ups/58610/occ
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58610/occ
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58610/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 19:53:38 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58610/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBMJvn2MCEGmr786MeEGE9ZAYkJ_maqIFEgEBAQHBoGOpYwAAAAAA_eMAAA&S=AQAAAlP1Cn9HaBM3dCi4ttH3hHg; Expires=Tue, 19 Dec 2023 01:53:38 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
banquetunarmedgrater.com/advertisers.js
173.233.137.60200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 18 Dec 2022 19:53:38 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e40ae5b7c3c7e4b5896e57caad93a623
Strict-Transport-Security: max-age=0; includeSubdomains
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 9.3 kB URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
Hash 577b374d87cd5a3b12f8e28e4f5d4e3f
37c823eb5c9e0660de76615203154bf11006dc2d
e5ccc34a7b8af1ce267be7a6a28a2056bef5ab1c85757397221d8d24cc09abf0
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 1799464
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 732ec2ee6d662c418a9c0a2724502954
825c06eb0ad29f2897c96c30e6e868a7c015d8c2
5d1816cd2e6b97f47356731ba481b0e2a7f64b01b4c722600d3e798df9544093
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D1816CD2E6B97F47356731BA481B0E2A7F64B01B4C722600D3E798DF9544093"
Last-Modified: Sat, 17 Dec 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3805
Expires: Sun, 18 Dec 2022 20:57:04 GMT
Date: Sun, 18 Dec 2022 19:53:39 GMT
Connection: keep-alive
x.bidswitch.net/sync?ssp=vidoomy&user_id=968211950.11503581393266088.8453581
18.197.255.208302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?ssp=vidoomy&user_id=968211950.11503581393266088.8453581
IP 18.197.255.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=vidoomy&user_id=968211950.11503581393266088.8453581 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 18 Dec 2022 19:53:39 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=968211950.11503581393266088.8453581
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=0e03bb0b-d2d7-4076-b459-bae6bd08b0a6; path=/; expires=Mon, 18-Dec-2023 19:53:39 GMT; domain=.bidswitch.net; samesite=none; secure
c=1671393219; path=/; expires=Mon, 18-Dec-2023 19:53:39 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1671393219; path=/; expires=Mon, 18-Dec-2023 19:53:39 GMT; domain=.bidswitch.net; samesite=none; secure
c=1671393219; path=/; expires=Mon, 18-Dec-2023 19:53:39 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4c27bb2ba2acc2b177746256595cd57c
ac37bba5f33eab2a3942b50472c852ad71c72e70
48dde36af83ae95b771ae8bba9655cc75a25d4a88a75291fedfbb796435ea853
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 18 Dec 2022 12:04:31 GMT
Expires: Sun, 25 Dec 2022 12:04:30 GMT
Etag: "ac37bba5f33eab2a3942b50472c852ad71c72e70"
Cache-Control: max-age=576050,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ba7223294b0b55-OSL
c.adsco.re/
104.17.166.186200 OK 30 kB IP 104.17.166.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Hash 815ef37110ac6b63648f05ba53184bee
bebecd11757b35c25edcbb317a4c54c5c8d23697
36bf07548480e148703dd77a427ddd38209b3a2c5f805ca04e563d5d3bef1a1f
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=2678400
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Permissions-Policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
Link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
Expires: Wed, 18 Jan 2023 19:53:39 GMT
ETag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 1216717
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ba722479861c16-OSL
alt-svc: h2=":443"; ma=60
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:39 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: private, max-age=10
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Max-Age: 2592000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ba72248e2a0b45-OSL
alt-svc: h2=":443"; ma=60
c.adsco.re/
104.17.166.186200 OK 27 kB IP 104.17.166.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Hash cb5c226b05ba40aaf69a34646cf92a4f
d025ac2ae36b45a2674c96ba3dbad2e1ac0ecbeb
ea5d923899224c7e2d991d8c7e2ef63b7424d0976a882ff8d5bdb3b1f46ef0f1
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:39 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Wed, 18 Jan 2023 19:53:39 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 1216733
vary: Accept-Encoding
server: cloudflare
cf-ray: 77ba72237b44b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Moz: prefetch
Connection: keep-alive
Referer: http://c.adsco.re/
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:39 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=10
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Max-Age: 2592000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ba7225ce2db511-OSL
alt-svc: h2=":443"; ma=60
sponsorlustrestories.com/sbar.json?key=cf621eb24aa5b4a128894819698170b8
192.243.61.227200 OK 5.0 kB URL HTTP/1.1 sponsorlustrestories.com/sbar.json?key=cf621eb24aa5b4a128894819698170b8
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (7148), with no line terminators
Hash 657cd55dc9d8e76231bb4e74c832f189
b886891ef312fdcc701ebd8f2c31b227d30fc9af
7ca87518e1baad3d98f06d1b9723b2dbb53c1a038ae14084e5ad1d919020868f
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=cf621eb24aa5b4a128894819698170b8 HTTP/1.1
Host: sponsorlustrestories.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 18 Dec 2022 19:53:39 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15289012; expires=Mon, 19 Dec 2022 19:53:39 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 19 Dec 2022 19:53:39 GMT; secure; SameSite=None
uncs=1; expires=Mon, 19 Dec 2022 19:53:39 GMT; secure; SameSite=None
pdhtkv29=true; expires=Mon, 19 Dec 2022 19:53:39 GMT; secure; SameSite=None
uncs29=1; expires=Mon, 19 Dec 2022 19:53:39 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a0171c14ba472aa2d727c2e26ee4beba
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 61fc7ad472ed49bc4dab4d394c2c06e7
0a3b361728116987c86f1dce37bd07e250ada4b5
d94a5bb42a8dee5b85c516fe635932e62efb2582df3df3d095843e919b113380
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D94A5BB42A8DEE5B85C516FE635932E62EFB2582DF3DF3D095843E919B113380"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5835
Expires: Sun, 18 Dec 2022 21:30:54 GMT
Date: Sun, 18 Dec 2022 19:53:39 GMT
Connection: keep-alive
sponsorlustrestories.com/ren.gif?sid=H4sIAAAAAAAC%2F6xSX2gcVRe%2F06%2Fl%2B%2BB76kf5QEEYulC06GZm%2FyS7qSVNmzSuTZOYRAq%2BlDtz72xu98694713djYrSLAifVylD9oHMzmbNFZL%2F4A%2B%2BFCQXV8kIHQVZEEDPgqCRaH4VGQ3keqD4IMHZs7v8LuX8%2Fvdc97aiHeRAzHuL5yXTcY5HilmHfvpC0wQmWh7btl2naxzwr7AxGjhhN0Y%2FFR93HWKWecZe4b6NTmSc1zHcR3XPssUDWRjZMgCi26W3WzZyRZyWbdYgIb6c61jCzS2gNR30f%2BAkd6hlS%2FuAvM7IMI7U1TXjIyenQ5jjo1UUCfbL4uakImA8DEMlAWB2N4%2FDVL3EHr3AEixve8AZH1z4AA81kPWNy54YntfJnj1rT2lHgcqwCP%2FhaTeAco7wHAHfHkZGLmPAHwCc%2FMgwutzUiV4dY%2FFA7aHDj78BVjSQwe%2FOwIivHWas4a9JHlsmBQaGkEKrNEBVu1AFHfBNC1gSRd88wYw8iUaeTgLItyc11wCI%2BnQPWMdYEEHOG0B1hbEg49ZEAcWxJEFIenbuFgOHGcs8IJ8vlTwfT%2Bf9%2F1iaZQUSb5QChyI%2FYG8FpioBT5vga%2FWIFJrUGMtUPFnoFdS0MQCbXrIemkN6iSFhCJINIIEI0gYgsQgSOrpFuE6p9PrhOvYc%2Fdzbj%2Fn07Y01Q28JU2VCrQR7aLDw3f54cWPoUb7th%2BM5lzq5QoYF70CdnOlUrlQcsuj5ZI75ngl0CwFpg8MrTYHQ%2Fr%2FzxCxHkI%2FrYGHu6B5F3x2FHD8FOCkPZZzAK%2B0CyUHmuJmk%2BsVqQzNCmqAyBQicwjMqrXBd9ETQx25Hx8B9XdO%2Fbt37%2FnRw0XwVQqRSuES%2BxxBlV9pL8oEbS7KRKO785FhIWviweyWDDYUfXiOriZSkcqUbt2Y9AfEAN5cptrMYkGYqGr00WlGCFVnpfIpulfRF6i3EOuV07EScTS7cOZsJYwU1ZpJ0QHM7jdeAZ%2F10H8%2BIcOtfPLUVWCqCyruT60YE42PjPic%2BbVs5PNaVuCQ7tUTmmJzMj9adnK5Y5gw8jtmJ%2FVz0eLxS6XJV2X1ogNhvDPx6XuDuAZMdsCP3vwgk6mcmZ%2FLZPqLf9HCrMShJzDjf7fNMRZWzUnmS3Ejk1muLM9OZzL9kQfrV7eWGdEerSoqNDW2YdyLybjtOo5jz82fswOpbEKr9oP1a2u3M5mp6aUzi5WF5cpQ3tGl2qogQ767ZQfdLbtOeU2G2nhSxPrB%2Bjt3bmcys5OLM9MXK%2BcnZwZNX%2FinLIGOdtB%2BgJYIFH9ce5EFSZy2Vc7bmXj%2Fde9bcXwNOOuh8Ue%2FAqc7E183v5%2B5deQ1wF4Kmv7h4mO8oa9AVVmAzWUQYQp1lUKdp4B5C3T8r7aJ1M7EV%2FlhgMettseVtelxxd%2Fe22TN%2BjYtBk5AnRz1grIXjGGHlINC2cNll455ReyC0T1%2FXXZ%2FAwAA%2F%2F8BAAD%2F%2F%2FAlzs%2FcBQAA
192.243.61.227200 OK 7 B URL HTTP/1.1 sponsorlustrestories.com/ren.gif?sid=H4sIAAAAAAAC%2F6xSX2gcVRe%2F06%2Fl%2B%2BB76kf5QEEYulC06GZm%2FyS7qSVNmzSuTZOYRAq%2BlDtz72xu98694713djYrSLAifVylD9oHMzmbNFZL%2F4A%2B%2BFCQXV8kIHQVZEEDPgqCRaH4VGQ3keqD4IMHZs7v8LuX8%2Fvdc97aiHeRAzHuL5yXTcY5HilmHfvpC0wQmWh7btl2naxzwr7AxGjhhN0Y%2FFR93HWKWecZe4b6NTmSc1zHcR3XPssUDWRjZMgCi26W3WzZyRZyWbdYgIb6c61jCzS2gNR30f%2BAkd6hlS%2FuAvM7IMI7U1TXjIyenQ5jjo1UUCfbL4uakImA8DEMlAWB2N4%2FDVL3EHr3AEixve8AZH1z4AA81kPWNy54YntfJnj1rT2lHgcqwCP%2FhaTeAco7wHAHfHkZGLmPAHwCc%2FMgwutzUiV4dY%2FFA7aHDj78BVjSQwe%2FOwIivHWas4a9JHlsmBQaGkEKrNEBVu1AFHfBNC1gSRd88wYw8iUaeTgLItyc11wCI%2BnQPWMdYEEHOG0B1hbEg49ZEAcWxJEFIenbuFgOHGcs8IJ8vlTwfT%2Bf9%2F1iaZQUSb5QChyI%2FYG8FpioBT5vga%2FWIFJrUGMtUPFnoFdS0MQCbXrIemkN6iSFhCJINIIEI0gYgsQgSOrpFuE6p9PrhOvYc%2Fdzbj%2Fn07Y01Q28JU2VCrQR7aLDw3f54cWPoUb7th%2BM5lzq5QoYF70CdnOlUrlQcsuj5ZI75ngl0CwFpg8MrTYHQ%2Fr%2FzxCxHkI%2FrYGHu6B5F3x2FHD8FOCkPZZzAK%2B0CyUHmuJmk%2BsVqQzNCmqAyBQicwjMqrXBd9ETQx25Hx8B9XdO%2Fbt37%2FnRw0XwVQqRSuES%2BxxBlV9pL8oEbS7KRKO785FhIWviweyWDDYUfXiOriZSkcqUbt2Y9AfEAN5cptrMYkGYqGr00WlGCFVnpfIpulfRF6i3EOuV07EScTS7cOZsJYwU1ZpJ0QHM7jdeAZ%2F10H8%2BIcOtfPLUVWCqCyruT60YE42PjPic%2BbVs5PNaVuCQ7tUTmmJzMj9adnK5Y5gw8jtmJ%2FVz0eLxS6XJV2X1ogNhvDPx6XuDuAZMdsCP3vwgk6mcmZ%2FLZPqLf9HCrMShJzDjf7fNMRZWzUnmS3Ejk1muLM9OZzL9kQfrV7eWGdEerSoqNDW2YdyLybjtOo5jz82fswOpbEKr9oP1a2u3M5mp6aUzi5WF5cpQ3tGl2qogQ767ZQfdLbtOeU2G2nhSxPrB%2Bjt3bmcys5OLM9MXK%2BcnZwZNX%2FinLIGOdtB%2BgJYIFH9ce5EFSZy2Vc7bmXj%2Fde9bcXwNOOuh8Ue%2FAqc7E183v5%2B5deQ1wF4Kmv7h4mO8oa9AVVmAzWUQYQp1lUKdp4B5C3T8r7aJ1M7EV%2FlhgMettseVtelxxd%2Fe22TN%2BjYtBk5AnRz1grIXjGGHlINC2cNll455ReyC0T1%2FXXZ%2FAwAA%2F%2F8BAAD%2F%2F%2FAlzs%2FcBQAA
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F6xSX2gcVRe%2F06%2Fl%2B%2BB76kf5QEEYulC06GZm%2FyS7qSVNmzSuTZOYRAq%2BlDtz72xu98694713djYrSLAifVylD9oHMzmbNFZL%2F4A%2B%2BFCQXV8kIHQVZEEDPgqCRaH4VGQ3keqD4IMHZs7v8LuX8%2Fvdc97aiHeRAzHuL5yXTcY5HilmHfvpC0wQmWh7btl2naxzwr7AxGjhhN0Y%2FFR93HWKWecZe4b6NTmSc1zHcR3XPssUDWRjZMgCi26W3WzZyRZyWbdYgIb6c61jCzS2gNR30f%2BAkd6hlS%2FuAvM7IMI7U1TXjIyenQ5jjo1UUCfbL4uakImA8DEMlAWB2N4%2FDVL3EHr3AEixve8AZH1z4AA81kPWNy54YntfJnj1rT2lHgcqwCP%2FhaTeAco7wHAHfHkZGLmPAHwCc%2FMgwutzUiV4dY%2FFA7aHDj78BVjSQwe%2FOwIivHWas4a9JHlsmBQaGkEKrNEBVu1AFHfBNC1gSRd88wYw8iUaeTgLItyc11wCI%2BnQPWMdYEEHOG0B1hbEg49ZEAcWxJEFIenbuFgOHGcs8IJ8vlTwfT%2Bf9%2F1iaZQUSb5QChyI%2FYG8FpioBT5vga%2FWIFJrUGMtUPFnoFdS0MQCbXrIemkN6iSFhCJINIIEI0gYgsQgSOrpFuE6p9PrhOvYc%2Fdzbj%2Fn07Y01Q28JU2VCrQR7aLDw3f54cWPoUb7th%2BM5lzq5QoYF70CdnOlUrlQcsuj5ZI75ngl0CwFpg8MrTYHQ%2Fr%2FzxCxHkI%2FrYGHu6B5F3x2FHD8FOCkPZZzAK%2B0CyUHmuJmk%2BsVqQzNCmqAyBQicwjMqrXBd9ETQx25Hx8B9XdO%2Fbt37%2FnRw0XwVQqRSuES%2BxxBlV9pL8oEbS7KRKO785FhIWviweyWDDYUfXiOriZSkcqUbt2Y9AfEAN5cptrMYkGYqGr00WlGCFVnpfIpulfRF6i3EOuV07EScTS7cOZsJYwU1ZpJ0QHM7jdeAZ%2F10H8%2BIcOtfPLUVWCqCyruT60YE42PjPic%2BbVs5PNaVuCQ7tUTmmJzMj9adnK5Y5gw8jtmJ%2FVz0eLxS6XJV2X1ogNhvDPx6XuDuAZMdsCP3vwgk6mcmZ%2FLZPqLf9HCrMShJzDjf7fNMRZWzUnmS3Ejk1muLM9OZzL9kQfrV7eWGdEerSoqNDW2YdyLybjtOo5jz82fswOpbEKr9oP1a2u3M5mp6aUzi5WF5cpQ3tGl2qogQ767ZQfdLbtOeU2G2nhSxPrB%2Bjt3bmcys5OLM9MXK%2BcnZwZNX%2FinLIGOdtB%2BgJYIFH9ce5EFSZy2Vc7bmXj%2Fde9bcXwNOOuh8Ue%2FAqc7E183v5%2B5deQ1wF4Kmv7h4mO8oa9AVVmAzWUQYQp1lUKdp4B5C3T8r7aJ1M7EV%2FlhgMettseVtelxxd%2Fe22TN%2BjYtBk5AnRz1grIXjGGHlINC2cNll455ReyC0T1%2FXXZ%2FAwAA%2F%2F8BAAD%2F%2F%2FAlzs%2FcBQAA HTTP/1.1
Host: sponsorlustrestories.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Cookie: u_pl=15289012; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 18 Dec 2022 19:53:39 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5242832c6c3ccd329519b151551b8e8d
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10207
Expires: Sun, 18 Dec 2022 22:43:46 GMT
Date: Sun, 18 Dec 2022 19:53:39 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10207
Expires: Sun, 18 Dec 2022 22:43:46 GMT
Date: Sun, 18 Dec 2022 19:53:39 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10207
Expires: Sun, 18 Dec 2022 22:43:46 GMT
Date: Sun, 18 Dec 2022 19:53:39 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10207
Expires: Sun, 18 Dec 2022 22:43:46 GMT
Date: Sun, 18 Dec 2022 19:53:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10206
Expires: Sun, 18 Dec 2022 22:43:45 GMT
Date: Sun, 18 Dec 2022 19:53:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed374d0c34e8b2e15f08a6479a4f45e7
5db9e59699048998f0685e940640eae19ef11c8e
9933854830be796a87cfe44b6b8336294e2d3dbbe3205f267720aca6968c3a21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12125
x-amzn-requestid: e44faa15-1dfd-4bc0-bdfb-307c3de2755d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2QPFZAIAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3734-33d636210a1e24742ee71187;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:40:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DmeWRYIlUMCR8Nds0-n0a9ju0ySR7ZuTAS82Lu8sZxPXQpBJkqzvww==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:52:21 GMT
age: 79278
etag: "5db9e59699048998f0685e940640eae19ef11c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfd0e913579b4ff2f511223d70cb01fb
497e0ffef816e100e6ddc221ec17d5f389c1142a
bee68ae1a938a5111a32dab4ec4f6964994e6c39143eac9ab94d6c5e29999372
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3087af97-3f2d-4848-b297-eba8d84f10c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10YHv8oAMF2sg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-7527022d4bd9c15518fe75cc;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KyEMrUTeuVTPJ3EIkrH1DLYqa4bHK7fe6dApTAFP4XY0G4airnflGA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:06 GMT
age: 80193
etag: "497e0ffef816e100e6ddc221ec17d5f389c1142a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a0c4858-28d1-47b1-bfba-b4500f28eeae.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a0c4858-28d1-47b1-bfba-b4500f28eeae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fdbd1e175352e7ec7dc2a25f04a5a9d
954bdd8d6b2f3d0ec086631ecf1bbd76c6507fe2
bdba0c3d4509764e87db688c1b8086c309f4a2cbe95d1f2130ce01d184f2fa17
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a0c4858-28d1-47b1-bfba-b4500f28eeae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9741
x-amzn-requestid: 5d9871d6-1512-4ffa-8b85-3c4c7595b723
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dEj3XGsxoAMFxIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639819c8-7a65df352cc4e71e5aa518f8;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 06:20:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _2xwG3Jz7sG9b8-JqXhu2knuIO_AyHIjOQ2luKB9Tk9NZnFNv8b8iQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:42:37 GMT
age: 79862
etag: "954bdd8d6b2f3d0ec086631ecf1bbd76c6507fe2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12c4c2232b6d09e9085f0214b3260c1e
a24f8e949a2f2a973fe2dd5af994cd970d37f13a
000475ed7d0aab9a7dab3e25f0a29f82552739fea99f98cbf5131282d0db7d63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10670
x-amzn-requestid: d72e1904-caf4-4c72-a811-d1bde023f4b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT11JGCsIAMFRDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3687-7789040d71253d00378f9162;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8qqSQbj22k16ApKTT8y5BQItInb8EjZuACdWcsW_FnMysvnDADbLxQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:11 GMT
age: 80188
etag: "a24f8e949a2f2a973fe2dd5af994cd970d37f13a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ada04738696f861648635c9ba98841e4
ce644cd4349d88aa7c24b2503b0b18b444061639
e5cee777efbf1d8a0f95f6cce71199e5f016a91f90cf0afe38bc86654b9d730d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8696
x-amzn-requestid: c897aeed-a082-46a1-965f-39e8c763cb05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10ZH3jIAMF0gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-548ac80840737a20743980f5;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mh8c1Kzg1BLFGUDidUjQRpBZkvFjIvi8ubu1VVHCcZSbc50XfV2Wwg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 17:10:53 GMT
age: 9766
etag: "ce644cd4349d88aa7c24b2503b0b18b444061639"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
9zwejq0sxu0b.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 9zwejq0sxu0b.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 9zwejq0sxu0b.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:39 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6b04bcc-ed1e-40f8-81f9-587f3470d5fe.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6b04bcc-ed1e-40f8-81f9-587f3470d5fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 578392bee48563d778885698790a124b
597892da925c3a363878e81ff02032a316303512
d30fe2470e1f63c5249fd42d7cd804bbf326cf9a703c61e31b5322ebdb26fca6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6b04bcc-ed1e-40f8-81f9-587f3470d5fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9925
x-amzn-requestid: 15eb2112-b947-458a-8544-51bac721773d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2k9HNjIAMFTTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e37b9-7c5b94866d266af252f133b3;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:42:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vffD2KxBpOeR3uM-GHLzYmIlBCBR4K6R1ScupFeM7PQEsZSqHi_eZQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:54:10 GMT
age: 79169
etag: "597892da925c3a363878e81ff02032a316303512"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
104.22.24.87308 Permanent Redirect 104 B URL HTTP/1.1 spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.24.87:0
File type HTML document, ASCII text
Hash f6374de2b16ca49a4b7f2c19227141a2
9a63b26916d675ec764c2d6fdf991052c3fdcd4f
f5042dc89e970724b5778beea2fa613e4ca930c45dfa1dfb510bbba968c2cdbe
GET /?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 308 Permanent Redirect
Date: Sun, 18 Dec 2022 19:53:39 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Location: https://spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
Vary: Origin
Via: 1.1 google
CF-Cache-Status: DYNAMIC
Server-Timing: cf-q-config;dur=5.0000016926788e-06
Server: cloudflare
CF-RAY: 77ba72216b571c02-OSL
adsco.re/p
162.252.214.5200 OK 170 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash 02da9145eec0ae5dda6ca79ac712484d
4b3387b4e21fdf778f6f26908929a8e2a7344984
5fea8cdff6cad3a428f4d5a2cb2cd0ef52641c133fab3e184e97f34250d9c654
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 1996
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0c61a9397a6dacb86a871e21c5681ef2
8c87de2b592d25245ae51239acf64073c1dccdad
021b67e280d13e14ada7447cf4411e69929faaa0bc107669f1998a2703d69948
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "021B67E280D13E14ADA7447CF4411E69929FAAA0BC107669F1998A2703D69948"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2868
Expires: Sun, 18 Dec 2022 20:41:27 GMT
Date: Sun, 18 Dec 2022 19:53:39 GMT
Connection: keep-alive
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.33301 Moved Permanently 167 B URL HTTP/1.1 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.33:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sun, 18 Dec 2022 19:53:39 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
X-Cache: Redirect from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0swQCAtnYFKMzDtZRxeqH3P6h-GWHPENNB3lQWQiseXD-zr88zlbKA==
cdn.barscreative1.com/sb/interstitial/rtb/default/3/index.html
45.133.44.4200 OK 165 kB URL HTTP/2 cdn.barscreative1.com/sb/interstitial/rtb/default/3/index.html
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text, with very long lines (658)
Size 165 kB (165195 bytes)
Hash 960377c207ef7141131395b363e83ca7
24032979b77615e090388a57d76b2c0f42f5dfb2
0d8cefb3e41e59cb30837cecc8d6658f66347afbdb1a9748de7287c09b52dd58
Analyzer Verdict Alert fortinet Phishing
GET /sb/interstitial/rtb/default/3/index.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:39 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Sat, 07 May 2022 03:21:27 GMT
etag: W/"6275e5b7-525"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sun, 18 Dec 2022 20:53:39 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=968211950.11503581393266088.8453581
18.197.255.208200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=968211950.11503581393266088.8453581
IP 18.197.255.208:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?ssp=vidoomy&user_id=968211950.11503581393266088.8453581 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://m.imagenesderopaparaperros.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:39 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58610/occ?verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58610/occ?verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58610/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://m.imagenesderopaparaperros.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 19:53:39 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBMNvn2MCEBjiJNvu_fTxKnwtfNKqgmkFEgEBAQHBoGOpYwAAAAAA_eMAAA&S=AQAAAgiTKX2jTmcVt55zITNL0co; Expires=Tue, 19 Dec 2023 01:53:39 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
at.teads.tv/fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=23&gdpr_reason=230&gdpr_consent=&ccpa_consent=1---&shared_ids=&sv=8480ba3&
184.24.45.54200 OK 0 B URL HTTP/1.1 at.teads.tv/fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=23&gdpr_reason=230&gdpr_consent=&ccpa_consent=1---&shared_ids=&sv=8480ba3&
IP 184.24.45.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=23&gdpr_reason=230&gdpr_consent=&ccpa_consent=1---&shared_ids=&sv=8480ba3& HTTP/1.1
Host: at.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Expires: Sun, 18 Dec 2022 19:53:40 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:40 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f653713a68d68cbc3fd3f92cb225fff8
0f79195907469b1615818dc345d4b17689de62b5
f89dee8914042022351c99fe107219d5d222c7b2b03baf5aef602b848bc5b4d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F89DEE8914042022351C99FE107219D5D222C7B2B03BAF5AEF602B848BC5B4D5"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3633
Expires: Sun, 18 Dec 2022 20:54:13 GMT
Date: Sun, 18 Dec 2022 19:53:40 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.74200 OK 660 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.74:0
Hash 55130bf120bd75a4bba7d678be617cdf
77b172c0cc1d15e60ab95edccf3ac1e640d16812
262b9e8c2eeba18bdc3dd53ac7bbacdbbec713a9443ff5dc34e359de56ea040d
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 18 Dec 2022 19:53:40 GMT
Date: Sun, 18 Dec 2022 19:53:40 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3cda1c47db8264b40ac43789cee638d5
dabca282194f6cae510ac7b44060318e67dd4881
ce538ec7d0940cb1a1cc2c5b51d8c3e854ede6ce270dddab44f45a12359cdbc3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CE538EC7D0940CB1A1CC2C5B51D8C3E854EDE6CE270DDDAB44F45A12359CDBC3"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8906
Expires: Sun, 18 Dec 2022 22:22:06 GMT
Date: Sun, 18 Dec 2022 19:53:40 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3cda1c47db8264b40ac43789cee638d5
dabca282194f6cae510ac7b44060318e67dd4881
ce538ec7d0940cb1a1cc2c5b51d8c3e854ede6ce270dddab44f45a12359cdbc3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CE538EC7D0940CB1A1CC2C5B51D8C3E854EDE6CE270DDDAB44F45A12359CDBC3"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8906
Expires: Sun, 18 Dec 2022 22:22:06 GMT
Date: Sun, 18 Dec 2022 19:53:40 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3cda1c47db8264b40ac43789cee638d5
dabca282194f6cae510ac7b44060318e67dd4881
ce538ec7d0940cb1a1cc2c5b51d8c3e854ede6ce270dddab44f45a12359cdbc3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CE538EC7D0940CB1A1CC2C5B51D8C3E854EDE6CE270DDDAB44F45A12359CDBC3"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8906
Expires: Sun, 18 Dec 2022 22:22:06 GMT
Date: Sun, 18 Dec 2022 19:53:40 GMT
Connection: keep-alive
cdn4ads.com/A.asp?_=BAYAY59vwwFjn2_DgAGBAsAAIHkYB2EA4ovBytIMHSw16v3PiobZW5tvC63BzzyZ64-zwQBGMEQCIB-2zJIMhx-UYCiEJ_VYq28pNcRfWihKGSilGA8PCKvGAiAlR99mXS2aFMUuZkdQkwqHIowB9a8nBUPHZGtQeHxMbQ&v=4&YtWBfHcw=4293767&minBid=&zTDSxYRg=0,0&fnowZANY=&nROCpkwL=&s=1280,1024,1,1280,1024,0
216.59.63.128200 OK 44 B URL HTTP/1.1 cdn4ads.com/A.asp?_=BAYAY59vwwFjn2_DgAGBAsAAIHkYB2EA4ovBytIMHSw16v3PiobZW5tvC63BzzyZ64-zwQBGMEQCIB-2zJIMhx-UYCiEJ_VYq28pNcRfWihKGSilGA8PCKvGAiAlR99mXS2aFMUuZkdQkwqHIowB9a8nBUPHZGtQeHxMbQ&v=4&YtWBfHcw=4293767&minBid=&zTDSxYRg=0,0&fnowZANY=&nROCpkwL=&s=1280,1024,1,1280,1024,0
IP 216.59.63.128:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /A.asp?_=BAYAY59vwwFjn2_DgAGBAsAAIHkYB2EA4ovBytIMHSw16v3PiobZW5tvC63BzzyZ64-zwQBGMEQCIB-2zJIMhx-UYCiEJ_VYq28pNcRfWihKGSilGA8PCKvGAiAlR99mXS2aFMUuZkdQkwqHIowB9a8nBUPHZGtQeHxMbQ&v=4&YtWBfHcw=4293767&minBid=&zTDSxYRg=0,0&fnowZANY=&nROCpkwL=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: cdn4ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Sun, 18 Dec 2022 19:53:40 GMT
cdn.creative-bars1.com/sb/interstitial/rtb/default/3/img/close.png
172.64.108.13200 OK 49 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/rtb/default/3/img/close.png
IP 172.64.108.13:0
File type PNG image data, 2063 x 2063, 8-bit/color RGBA, non-interlaced\012- data
Hash c468e1d251e84cbbd9fd43f1bf756866
29512569a2da569797a545eb36c6176d6285a8da
b0da14eff7c6fe39d973148b55c51ee6ce3948e76e488c401eb6dca5dfbd1cd8
GET /sb/interstitial/rtb/default/3/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:40 GMT
content-type: image/png
content-length: 48623
last-modified: Wed, 23 Jun 2021 13:33:23 GMT
etag: "60d33823-bdef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1174196
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YynNjHcx%2FVRZRG3aQjA9ouDgBPnYV7bLCqDo6xbaKr9Vg72vw4e%2FMFXMbh3JVJW8VFsReQMb8Z7SocVfT55xkzT4zAVqxxIS7pOvoY7n4yJh9hmOOgZNKesGpQ2comn2adQRnYVutBUW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77ba722a9c0723ad-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ad.lkqd.net/vpaid/formats.js
151.139.128.10200 OK 36 kB URL HTTP/2 ad.lkqd.net/vpaid/formats.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b3736cf69ac3288810f4c8bb85ce569c
70984d14343ea485a8232927d58db0671eb1778f
1d2893bf6270530e1df90bc8279d8319cd721ba8dc4ba94970b1a0adf03bac98
GET /vpaid/formats.js HTTP/1.1
Host: ad.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:40 GMT
content-encoding: gzip
content-length: 35765
content-type: application/javascript
last-modified: Fri, 11 Dec 2020 00:09:23 GMT
accept-ranges: bytes
etag: "286704660baa2c113268f28385080796"
cache-control: public, max-age=1209600
x-sp-metadata: HS256.CNT7/ZwGEocBCiRjNjk1MTU2MS05MmIxLTQ5NmEtYmQ4Yi05ZDYzYjczMjUwNTcQkKbXzNb5+wIaBgjE3/2cBiIMOTEuOTAuNDIuMTU0KPSOAjADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GiwIARIkOGJjMzVmOTMtYzVlZS00NDMyLTg4MjgtODU0OWI0OWJlMzJkGLWXAiIYCAISFGNkczIyOS5zazEuaHdjZG4ubmV0.Aii3m0Nd26rurVWZpkJUcpudHGwT0OY6e+abcLAQCj0=
x-hw: 1671393220.cds248.sk1.hn,1671393220.cds229.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3cda1c47db8264b40ac43789cee638d5
dabca282194f6cae510ac7b44060318e67dd4881
ce538ec7d0940cb1a1cc2c5b51d8c3e854ede6ce270dddab44f45a12359cdbc3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CE538EC7D0940CB1A1CC2C5B51D8C3E854EDE6CE270DDDAB44F45A12359CDBC3"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8906
Expires: Sun, 18 Dec 2022 22:22:06 GMT
Date: Sun, 18 Dec 2022 19:53:40 GMT
Connection: keep-alive
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.33200 OK 636 B URL HTTP/2 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.33:0
File type ASCII text, with very long lines (510)
Hash afa4dfcec8eb638a16d0aec750d2e31c
b2959098eded64cfea759feb2c2d1121bd57ecdf
fd507453e31d2c2b9640d98dcbc33449cc4526a4fa1c193c53414efbec8ab3da
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://m.imagenesderopaparaperros.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 18 Dec 2022 19:43:59 GMT
last-modified: Thu, 13 Oct 2022 22:35:53 GMT
etag: W/"1f431dc94c1f033d6666f0fe637e2d7b"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: USZm_KrLOIzAFK6NpzgQXQ9VVsZAWU8J_yWZbXwN_yfqn1B-Hi6uHg==
age: 582
X-Firefox-Spdy: h2
ad.lkqd.net/cookie-sync/usync.html
151.139.128.10200 OK 1.9 kB URL HTTP/2 ad.lkqd.net/cookie-sync/usync.html
IP 151.139.128.10:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4478)
Hash 41b852ed55af42897839dd36a74c8836
ab34ebee16e719e22645fb8560fd66adf90f9dff
eb7f7a625357319b2e1a3f3099e9630dada48ec5c079e5d698699ebe15c8002f
GET /cookie-sync/usync.html HTTP/1.1
Host: ad.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:40 GMT
content-encoding: gzip
content-length: 1882
content-type: text/html
last-modified: Fri, 18 Feb 2022 17:38:44 GMT
accept-ranges: bytes
etag: "952dcfd8e3703b5a7e78418d51009535"
cache-control: public, max-age=1209600
x-sp-metadata: HS256.CNT7/ZwGEocBCiQxOTI5YWQxNS02ZDBkLTQwNTctOTY2My01YmMxMjFiNDIyOWYQkKbXzNb5+wIaBgjE3/2cBiIMOTEuOTAuNDIuMTU0KPSOAjADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GisIARIkM2ViMGQ5NGQtMGUzNy00NTliLTk3ZjQtNWQ5NTM2NDE1YzBlGNoOIhgIAhIUY2RzMDAzLnNrMS5od2Nkbi5uZXQ=.rguZAhfjxOo7bwXmuL+9/IdDshRO+XZxbLGlWBq6wV8=
x-hw: 1671393220.cds248.sk1.hn,1671393220.cds003.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
ad.lkqd.net/cookie-sync/usync.html
151.139.128.10200 OK 1.9 kB URL HTTP/2 ad.lkqd.net/cookie-sync/usync.html
IP 151.139.128.10:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4478)
Hash 41b852ed55af42897839dd36a74c8836
ab34ebee16e719e22645fb8560fd66adf90f9dff
eb7f7a625357319b2e1a3f3099e9630dada48ec5c079e5d698699ebe15c8002f
GET /cookie-sync/usync.html HTTP/1.1
Host: ad.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:40 GMT
content-encoding: gzip
content-length: 1882
content-type: text/html
last-modified: Fri, 18 Feb 2022 17:38:44 GMT
accept-ranges: bytes
etag: "952dcfd8e3703b5a7e78418d51009535"
cache-control: public, max-age=1209600
x-sp-metadata: HS256.CNT7/ZwGEocBCiQ0YzBkMzU2OC01Y2QwLTQxOTItYTA4MS0yM2MzOGZkZjhmNDAQkKbXzNb5+wIaBgjE3/2cBiIMOTEuOTAuNDIuMTU0KPSOAjADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GisIARIkYTg5YWI3MDQtOGVjNy00YzQwLWFlOTAtMGQ1ZjZkNjA0OTEyGNoOIhgIAhIUY2RzMDAzLnNrMS5od2Nkbi5uZXQ=.2kFBx99j9YS4/QasufjJqPWVD67yIFUw+et7bzHfMlM=
x-hw: 1671393220.cds248.sk1.hn,1671393220.cds003.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
9zwejq0sxu0b.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 9zwejq0sxu0b.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 9zwejq0sxu0b.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:40 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
ads.stickyadstv.com/auto-user-sync
95.101.10.58200 OK 43 B URL HTTP/1.1 ads.stickyadstv.com/auto-user-sync
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /auto-user-sync HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393220585066-595
Expires: Sun, 18 Dec 2022 19:53:40 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:40 GMT
Content-Length: 43
Connection: keep-alive
Set-Cookie: UID=8b629039ddafd026a958fc6dfc8ac975; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:40 GMT; Path=/
v.lkqd.net/ad?pid=430&sid=1135195&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=23234843&m=
69.20.43.192200 OK 150 B URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135195&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=23234843&m=
IP 69.20.43.192:0
File type ASCII text, with no line terminators
Hash f2200dfc5e8b75dea19cc2ff13526ce8
5235427034ffed5be887acecc26f62210be11554
e459e49bb953fa15bac6d8bcf457713e3f78a5154c0e1f213be85e378af41b38
GET /ad?pid=430&sid=1135195&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=23234843&m= HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:40 GMT
Content-Type: application/xml; charset=UTF-8
Content-Length: 150
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bce7ad3306f99babb733fa5c11575bb1
3e948cd6f3f3e948948b8be10ad9a900671ee12b
91980c3c773f70e07cba5ade57ce70aaa978a5d1eb1921e5be150f40f354ed6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2008
Cache-Control: max-age=128820
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:40 GMT
Etag: "639ebc20-1d7"
Expires: Tue, 20 Dec 2022 07:40:40 GMT
Last-Modified: Sun, 18 Dec 2022 07:07:12 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=1260733&m=
69.20.43.192200 OK 1.4 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=1260733&m=
IP 69.20.43.192:0
File type ASCII text, with very long lines (1829), with no line terminators
Hash 35570319f92dec496107e55a533a5923
f9a0fc938adc3feaedac49b5b2649feba12424fd
4bc27697321aadd16f23d77f7937d6e0a79145ad437d19dd51302732f354ed79
GET /ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=1260733&m= HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:40 GMT
Content-Type: application/xml; charset=UTF-8
Content-Length: 1368
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
ad.turn.com/r/cs?pid=65
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=65 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=3008100794706317026; Domain=.turn.com; Expires=Fri, 16-Jun-2023 19:53:40 GMT; Path=/; Secure; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=94&partnerUserId=3008100794706317026
content-length: 0
date: Sun, 18 Dec 2022 19:53:40 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f47f5a3b2c2c60219cc56d37b8a0e324
d4fbcecbf7f8636b158f189a833bb9f71fec70ba
ae8c47219ffa27ea633e4462d3162fcc41c62a910f32bbe2f58528c068a0ffde
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AE8C47219FFA27EA633E4462D3162FCC41C62A910F32BBE2F58528C068A0FFDE"
Last-Modified: Sun, 18 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8545
Expires: Sun, 18 Dec 2022 22:16:05 GMT
Date: Sun, 18 Dec 2022 19:53:40 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fc2a13e14c1e8d57d485bb1ea60d1752
81aab4804e2e79bcc1c8f93acb7d0b95132427df
07d8ff8e5a6f8d68e8d0e418136de2a8aa6ed81b5b3d2964e1d01c69ee34b8dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "07D8FF8E5A6F8D68E8D0E418136DE2A8AA6ED81B5B3D2964E1D01C69EE34B8DC"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18315
Expires: Mon, 19 Dec 2022 00:58:55 GMT
Date: Sun, 18 Dec 2022 19:53:40 GMT
Connection: keep-alive
audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22m.imagenesderopaparaperros.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1671393220565%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-aw762bunx6outlbh4fwj%22%7D
3.67.158.22200 OK 2 B URL HTTP/2 audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22m.imagenesderopaparaperros.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1671393220565%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-aw762bunx6outlbh4fwj%22%7D
IP 3.67.158.22:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22m.imagenesderopaparaperros.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1671393220565%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-aw762bunx6outlbh4fwj%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:40 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash be2253930446677faf839738ba94f7ab
d44a0447bf2ea58771da83d01cec6a80136767c8
6f768ec9b2901aa3e47f5ca4d261b2d207e032f47b06c3b7fbf04113757cb31e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6103
Cache-Control: max-age=98360
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:40 GMT
Etag: "639e3525-1d7"
Expires: Mon, 19 Dec 2022 23:13:00 GMT
Last-Modified: Sat, 17 Dec 2022 21:31:17 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 2c08782f237d854f497f4923e2a7634a
fda57361565917a068bec9097de451b47288259b
522e81c7af5bf345b595940c91732cc7a6090a6d810b59c736d60ebcf23ec738
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=90990
Date: Sun, 18 Dec 2022 19:53:40 GMT
Etag: "639e25ae-1d7"
Expires: Mon, 19 Dec 2022 21:10:10 GMT
Last-Modified: Sat, 17 Dec 2022 20:25:18 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pVcHFEeyX01N1OcFKWzpKduh9DU52Ta-YrbQnefhm9atDcO2hi7BwA==
Age: 2692
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash be2253930446677faf839738ba94f7ab
d44a0447bf2ea58771da83d01cec6a80136767c8
6f768ec9b2901aa3e47f5ca4d261b2d207e032f47b06c3b7fbf04113757cb31e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6103
Cache-Control: max-age=98360
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:40 GMT
Etag: "639e3525-1d7"
Expires: Mon, 19 Dec 2022 23:13:00 GMT
Last-Modified: Sat, 17 Dec 2022 21:31:17 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=6b7e1db6-f9d2-45fd-a610-00c3f5eff56f; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Sat, 18-Mar-2023 19:53:40 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=6b7e1db6-f9d2-45fd-a610-00c3f5eff56f
content-length: 0
date: Sun, 18 Dec 2022 19:53:40 GMT
server: _
X-Firefox-Spdy: h2
adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
54.78.38.213200 OK 20 B URL HTTP/1.1 adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
IP 54.78.38.213:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7 HTTP/1.1
Host: adtrack.adleadevent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Sun, 18 Dec 2022 19:53:40 GMT
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Last-Modified: Sun, 18 Dec 2022 19:53:40 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 3678c5342a3531674497fcd352df920f
09b27f9ff55b24fcfeec5b40eda7f7241bed4744
ab7010b756af09494729823f35fdcc785a969ef991fa7a98b4b35db4bb11cb31
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=116889
Date: Sun, 18 Dec 2022 19:53:40 GMT
Etag: "639e9335-1d7"
Expires: Tue, 20 Dec 2022 04:21:49 GMT
Last-Modified: Sun, 18 Dec 2022 04:12:37 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rAdJ_vrmdE5fc3x71-s15mdrEQuAM_SrtQfUFwN2oR8iVxNMClyMAw==
Age: 552
us.doctorpost.net/metrics/save.img?event=impressions&bid-id=v2-1671393219272-7-8077-1178228-0295aa5e-5344-30aa-8d60-38d317d523cd&img=https%3A%2F%2Ftrack.trackingtraffo.com%2Fpush%2Fic%3Fauth%3Dpz6u78%26c%3DEsYab6Eb95RqRSODVVZ2i4TG9tcCcdk9SY-fYkmqMMiokRVk8UqWuKwaoJxIDiM7aUMyxn3xTisYksQHZ7arhl3QzkieWNe-htvI8fwzwLKh-1EmKoAbkCWy6XjrsdtbUTVjnw9IbsJzo08lGBa-E1bcBVOV2CSUuJi5OkKwu2AwvbiC4dLc4NRl7DuCLO2b5dEmGZ1RywRtzZO43vLvt0XP9RvMIWI2tJhFczULAb9aFshAXGA73bJRrVpqMJM3BcM8fOYGV_KYmr6bo3vAG5LSrYKvNSdqRe2zAhZ980UrQxhXUvPQDudtHuAJgwN8USxsoGXO5m74q3nvaW_Z13Rnk5K80fwHjpyOCgsjoJh2zG0rx5YtC2OoPYmATQvu-JjDXhjpS2YT0uLuc_wI3OJeQDhdZ7rhL6wdLDh1Vgwe679y6xb6Sg_gNNttC2tl3ks1ZbjDra67s5Goe7xyhYXRPPTRTR0iVaRjjq8ZULyWXvWMjzBQdOKA7N0HRIWfkBk9XVJn2AajyiPt9ghivvhPjyFw0oDDrdiGjbmVEUQtikU1w23-UJI5UvH2IDjvOUq2bBXrymssz6-NfNsnZS4gnZh3sid-5xxE2YWg_5e6l-NA
38.100.129.11302 Found 0 B URL HTTP/2 us.doctorpost.net/metrics/save.img?event=impressions&bid-id=v2-1671393219272-7-8077-1178228-0295aa5e-5344-30aa-8d60-38d317d523cd&img=https%3A%2F%2Ftrack.trackingtraffo.com%2Fpush%2Fic%3Fauth%3Dpz6u78%26c%3DEsYab6Eb95RqRSODVVZ2i4TG9tcCcdk9SY-fYkmqMMiokRVk8UqWuKwaoJxIDiM7aUMyxn3xTisYksQHZ7arhl3QzkieWNe-htvI8fwzwLKh-1EmKoAbkCWy6XjrsdtbUTVjnw9IbsJzo08lGBa-E1bcBVOV2CSUuJi5OkKwu2AwvbiC4dLc4NRl7DuCLO2b5dEmGZ1RywRtzZO43vLvt0XP9RvMIWI2tJhFczULAb9aFshAXGA73bJRrVpqMJM3BcM8fOYGV_KYmr6bo3vAG5LSrYKvNSdqRe2zAhZ980UrQxhXUvPQDudtHuAJgwN8USxsoGXO5m74q3nvaW_Z13Rnk5K80fwHjpyOCgsjoJh2zG0rx5YtC2OoPYmATQvu-JjDXhjpS2YT0uLuc_wI3OJeQDhdZ7rhL6wdLDh1Vgwe679y6xb6Sg_gNNttC2tl3ks1ZbjDra67s5Goe7xyhYXRPPTRTR0iVaRjjq8ZULyWXvWMjzBQdOKA7N0HRIWfkBk9XVJn2AajyiPt9ghivvhPjyFw0oDDrdiGjbmVEUQtikU1w23-UJI5UvH2IDjvOUq2bBXrymssz6-NfNsnZS4gnZh3sid-5xxE2YWg_5e6l-NA
IP 38.100.129.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /metrics/save.img?event=impressions&bid-id=v2-1671393219272-7-8077-1178228-0295aa5e-5344-30aa-8d60-38d317d523cd&img=https%3A%2F%2Ftrack.trackingtraffo.com%2Fpush%2Fic%3Fauth%3Dpz6u78%26c%3DEsYab6Eb95RqRSODVVZ2i4TG9tcCcdk9SY-fYkmqMMiokRVk8UqWuKwaoJxIDiM7aUMyxn3xTisYksQHZ7arhl3QzkieWNe-htvI8fwzwLKh-1EmKoAbkCWy6XjrsdtbUTVjnw9IbsJzo08lGBa-E1bcBVOV2CSUuJi5OkKwu2AwvbiC4dLc4NRl7DuCLO2b5dEmGZ1RywRtzZO43vLvt0XP9RvMIWI2tJhFczULAb9aFshAXGA73bJRrVpqMJM3BcM8fOYGV_KYmr6bo3vAG5LSrYKvNSdqRe2zAhZ980UrQxhXUvPQDudtHuAJgwN8USxsoGXO5m74q3nvaW_Z13Rnk5K80fwHjpyOCgsjoJh2zG0rx5YtC2OoPYmATQvu-JjDXhjpS2YT0uLuc_wI3OJeQDhdZ7rhL6wdLDh1Vgwe679y6xb6Sg_gNNttC2tl3ks1ZbjDra67s5Goe7xyhYXRPPTRTR0iVaRjjq8ZULyWXvWMjzBQdOKA7N0HRIWfkBk9XVJn2AajyiPt9ghivvhPjyFw0oDDrdiGjbmVEUQtikU1w23-UJI5UvH2IDjvOUq2bBXrymssz6-NfNsnZS4gnZh3sid-5xxE2YWg_5e6l-NA HTTP/1.1
Host: us.doctorpost.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty/1.15.8.3
date: Sun, 18 Dec 2022 19:53:40 GMT
content-length: 0
location: https://track.trackingtraffo.com/push/ic?auth=pz6u78&c=EsYab6Eb95RqRSODVVZ2i4TG9tcCcdk9SY-fYkmqMMiokRVk8UqWuKwaoJxIDiM7aUMyxn3xTisYksQHZ7arhl3QzkieWNe-htvI8fwzwLKh-1EmKoAbkCWy6XjrsdtbUTVjnw9IbsJzo08lGBa-E1bcBVOV2CSUuJi5OkKwu2AwvbiC4dLc4NRl7DuCLO2b5dEmGZ1RywRtzZO43vLvt0XP9RvMIWI2tJhFczULAb9aFshAXGA73bJRrVpqMJM3BcM8fOYGV_KYmr6bo3vAG5LSrYKvNSdqRe2zAhZ980UrQxhXUvPQDudtHuAJgwN8USxsoGXO5m74q3nvaW_Z13Rnk5K80fwHjpyOCgsjoJh2zG0rx5YtC2OoPYmATQvu-JjDXhjpS2YT0uLuc_wI3OJeQDhdZ7rhL6wdLDh1Vgwe679y6xb6Sg_gNNttC2tl3ks1ZbjDra67s5Goe7xyhYXRPPTRTR0iVaRjjq8ZULyWXvWMjzBQdOKA7N0HRIWfkBk9XVJn2AajyiPt9ghivvhPjyFw0oDDrdiGjbmVEUQtikU1w23-UJI5UvH2IDjvOUq2bBXrymssz6-NfNsnZS4gnZh3sid-5xxE2YWg_5e6l-NA
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 4f6c75739c72031d16d4979811c5d266
f808ce18180b2eb83b9c239525c9ad19bad93d16
50b2d66347fa01a6665bc7a1a30218b4940f8f08d7ea6d04316a7dedc16ba1b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5720
Cache-Control: max-age=165983
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:40 GMT
Etag: "639f3ecb-13a"
Expires: Tue, 20 Dec 2022 18:00:03 GMT
Last-Modified: Sun, 18 Dec 2022 16:24:43 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 314
ad.lkqd.net/vpaid/vpaid.js?fusion=1.0
151.139.128.10200 OK 62 kB URL HTTP/2 ad.lkqd.net/vpaid/vpaid.js?fusion=1.0
IP 151.139.128.10:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2a0adab82b941577dbd1041f8448fd08
bf2cf01d95e02fb5ec9075835cbee4e3e35a0246
757ad1d5b7a305d8eaa810c6585b5b7431b212af4ff8fdef9fbd40a8254666a6
GET /vpaid/vpaid.js?fusion=1.0 HTTP/1.1
Host: ad.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:40 GMT
content-encoding: gzip
content-length: 62021
content-type: application/javascript
last-modified: Thu, 13 Oct 2022 21:01:07 GMT
accept-ranges: bytes
etag: "88ca76abee51b1544e17b021f04aaaed"
cache-control: public, max-age=1209600
x-sp-metadata: HS256.CNT7/ZwGEocBCiRjOTU5ZmIwMy0xOWI0LTQwNzQtODVlMy1kNDE5YTY5NWJhZmMQkKbXzNb5+wIaBgjE3/2cBiIMOTEuOTAuNDIuMTU0KPSOAjADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GiwIARIkZmFjYTgzMzEtNmM1OC00OTEwLWE1OTItNmMwY2NkZTk1OGU2GMXkAyIYCAISFGNkczI1NC5zazEuaHdjZG4ubmV0.GI9ZL/aU/XXfTEB17Vp8A6jTY7wj+00Rzn1MrzDtDAM=
x-hw: 1671393220.cds248.sk1.hn,1671393220.cds254.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:40 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:40 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=94&partnerUserId=3008100794706317026
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=3008100794706317026
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=3008100794706317026 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:40 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2ui-es.js
143.204.55.88200 OK 62 kB URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2ui-es.js
IP 143.204.55.88:0
Hash d71ff2d18dfeddcf5534f756d675e169
7efc460feb46ae359188ac739fcf54d358059802
a3f97845c385d9a9fc5f5db465cd53acdc3901e4692f367531694a3a557dd46e
GET /tcfv2/42/cmp2ui-es.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 604800
last-modified: Tue, 05 Jul 2022 18:40:32 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Sat, 17 Dec 2022 02:43:40 GMT
cache-control: max-age=172800
etag: W/"61891c12c976950785806a7f08986298"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LGgAdFj9iePz9Hyq8geH9ynp8HKn9XaIUm9jbw_OVS0KLQoNzHz4zw==
age: 148204
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=54&partnerUserId=6b7e1db6-f9d2-45fd-a610-00c3f5eff56f
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=6b7e1db6-f9d2-45fd-a610-00c3f5eff56f
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=6b7e1db6-f9d2-45fd-a610-00c3f5eff56f HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=161
54.85.128.169302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 54.85.128.169:0
File type HTML document, ASCII text
Hash b9ba044d99b1276e891da62764638965
2200d85ca98e3d404abc895e26ceb1065e34f39e
6e1d1a3ec9e1a77c9fe7cd7d318007ecc314e45d0ae1933e378416c8eee7cc72
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Sun, 18 Dec 2022 19:53:41 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=VUnRAwxyTBxzgxrp3U1hAFtaKpo
Set-Cookie: sa-user-id=s%3A0-5549d103-0c72-4c1c-7383-1ae9dd4d6100.forGV1qfV%2BjQYYRlG2cU77ncfcSbHfCqi6WM1XOsl8g; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AVUnRAwxyTBxzgxrp3U1hAFtaKpo.Rmw3IAWGZteu1MaUk0Zupnpyr55MYBA8NRqTlJf8txc; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
cs.lkqd.net/cs?partnerId=93&partnerUserId=VUnRAwxyTBxzgxrp3U1hAFtaKpo
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=93&partnerUserId=VUnRAwxyTBxzgxrp3U1hAFtaKpo
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=93&partnerUserId=VUnRAwxyTBxzgxrp3U1hAFtaKpo HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 300
cache-control: max-age=300
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 300
cache-control: max-age=300
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=64ea68dc-36e0-4368-9757-f34079e747df&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=cf621eb24aa5b4a128894819698170b8&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
192.243.59.20200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=64ea68dc-36e0-4368-9757-f34079e747df&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=cf621eb24aa5b4a128894819698170b8&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=64ea68dc-36e0-4368-9757-f34079e747df&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=cf621eb24aa5b4a128894819698170b8&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e7b44ba882cc9c40121870c074c80c3a
Strict-Transport-Security: max-age=0; includeSubdomains
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Cookie: viewer_token=6b7e1db6-f9d2-45fd-a610-00c3f5eff56f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=a001900f-4a8c-48a9-84fe-6e2db8d3791d; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Sat, 18-Mar-2023 19:53:41 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=a001900f-4a8c-48a9-84fe-6e2db8d3791d
content-length: 0
date: Sun, 18 Dec 2022 19:53:41 GMT
server: _
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=64ea68dc-36e0-4368-9757-f34079e747df&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=2a6dfa22c42f41c1c5d4b95b66a5509c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
192.243.59.20200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=64ea68dc-36e0-4368-9757-f34079e747df&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=2a6dfa22c42f41c1c5d4b95b66a5509c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=64ea68dc-36e0-4368-9757-f34079e747df&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=2a6dfa22c42f41c1c5d4b95b66a5509c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2ebc420e44128137983861313e680ab7
Strict-Transport-Security: max-age=0; includeSubdomains
ad.turn.com/r/cs?pid=65
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=65 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=9132151863000059618; Domain=.turn.com; Expires=Fri, 16-Jun-2023 19:53:41 GMT; Path=/; Secure; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=94&partnerUserId=9132151863000059618
content-length: 0
date: Sun, 18 Dec 2022 19:53:41 GMT
X-Firefox-Spdy: h2
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:41 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 800
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=1260733&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 0 B URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=1260733&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=1260733&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Max-Age: 300
Cache-Control: max-age=300
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Expose-Headers: Content-Type, Content-Disposition
Access-Control-Allow-Credentials: true
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=54&partnerUserId=a001900f-4a8c-48a9-84fe-6e2db8d3791d
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=a001900f-4a8c-48a9-84fe-6e2db8d3791d
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=a001900f-4a8c-48a9-84fe-6e2db8d3791d HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=94&partnerUserId=9132151863000059618
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=9132151863000059618
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=9132151863000059618 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 300
cache-control: max-age=300
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 707a75781f08409b53c43a85fe9245cb
fa131c04ec9a044ac06a8c75c8a2f2d992fe9da1
65a210bed290505cfe123e0a2210696a4662d382248ac39f254fb57e489870ed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 18:28:16 GMT
Expires: Sat, 24 Dec 2022 18:28:15 GMT
Etag: "fa131c04ec9a044ac06a8c75c8a2f2d992fe9da1"
Cache-Control: max-age=512673,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ba723198a10b55-OSL
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=1260733&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 3.9 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=1260733&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
File type JSON data\012- , ASCII text, with very long lines (52205), with no line terminators
Hash 480fe6ca35d05a0a06561eaec0d1d58a
bb3728343122dd1d9a735bfb248d11b502a06aec
fcea137e20b1de8a906e7d16b537b98c4499798e983d9720f7fa5ad0374025a7
POST /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=1260733&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 38
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Type: application/json
Content-Length: 3934
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 764
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6330321576886441022117196666%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 831 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6330321576886441022117196666%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (411)
Hash 73bcfc6856d1fc1b8043bc88cc4521ec
f357e29dff029edd894ed7d21c7bb2fa7cc0126c
726d7f678769aa22fe73df94ee19a785ed3abc594f987e047596ae9dfda43253
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6330321576886441022117196666%2C%2C&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393221625009-539
Expires: Sun, 18 Dec 2022 19:53:41 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Length: 831
Connection: keep-alive
Set-Cookie: UID=f96c9bedacb9a67c833defc65bae72e0; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:41 GMT; Path=/
ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C2618758436330321576886441022,,&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 815 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C2618758436330321576886441022,,&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (395)
Hash 541c2f9c3349200be2702b98fb3fe721
e2ee7a2d9e4d3831a51f79d55b53368c9d11a10f
922637d70317d65d8dec287ac07004e03ac9686eb2282f57b16a9873b1a46067
GET /vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C2618758436330321576886441022,,&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393221572084-518
Expires: Sun, 18 Dec 2022 19:53:41 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Length: 815
Connection: keep-alive
Set-Cookie: UID=780ee30d125ad35d59641e4fc87bd8; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:41 GMT; Path=/
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C63303215768864410221997517604%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 832 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C63303215768864410221997517604%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (412)
Hash f91c767cb2e0182738f0f1f25fc8eb6b
ea4a6d66887a06eef4085e820bedb756b9127c57
eb8aa424fa54df3ebded594d3a25da1aa0790786b683cf8ea8b7e7ccf9f4dd67
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C63303215768864410221997517604%2C%2C&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393221648009-536
Expires: Sun, 18 Dec 2022 19:53:41 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Length: 832
Connection: keep-alive
Set-Cookie: UID=73e0e595eaadf44e7d8adf83317bb; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:41 GMT; Path=/
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6330321576886441022495760562%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 831 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6330321576886441022495760562%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (411)
Hash ae2dc4f34b3e21d298311826fef419e3
91fa21128ac58959062b4ebe58a13ae344f389ad
d5848cedc6f9af4d4932a53e492287cbe9a4b8002fa4ee31b5f8bd63ac12c37f
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6330321576886441022495760562%2C%2C&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393221605068-588
Expires: Sun, 18 Dec 2022 19:53:41 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Length: 831
Connection: keep-alive
Set-Cookie: UID=ebf158cbcefc5747ea033ce4fb5d6e8; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:41 GMT; Path=/
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0e23bf67d72f6794f4f6375ee314673c
1ab18fef29ef6c708841da97727994509605a390
cb9fa4aaebec5e86d3ba4ce9fe1aec6d1dbe6172ca61b323a5320de94c3809ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5894
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:41 GMT
Last-Modified: Sun, 18 Dec 2022 18:15:27 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
track.trackingtraffo.com/push/ic?auth=pz6u78&c=EsYab6Eb95RqRSODVVZ2i4TG9tcCcdk9SY-fYkmqMMiokRVk8UqWuKwaoJxIDiM7aUMyxn3xTisYksQHZ7arhl3QzkieWNe-htvI8fwzwLKh-1EmKoAbkCWy6XjrsdtbUTVjnw9IbsJzo08lGBa-E1bcBVOV2CSUuJi5OkKwu2AwvbiC4dLc4NRl7DuCLO2b5dEmGZ1RywRtzZO43vLvt0XP9RvMIWI2tJhFczULAb9aFshAXGA73bJRrVpqMJM3BcM8fOYGV_KYmr6bo3vAG5LSrYKvNSdqRe2zAhZ980UrQxhXUvPQDudtHuAJgwN8USxsoGXO5m74q3nvaW_Z13Rnk5K80fwHjpyOCgsjoJh2zG0rx5YtC2OoPYmATQvu-JjDXhjpS2YT0uLuc_wI3OJeQDhdZ7rhL6wdLDh1Vgwe679y6xb6Sg_gNNttC2tl3ks1ZbjDra67s5Goe7xyhYXRPPTRTR0iVaRjjq8ZULyWXvWMjzBQdOKA7N0HRIWfkBk9XVJn2AajyiPt9ghivvhPjyFw0oDDrdiGjbmVEUQtikU1w23-UJI5UvH2IDjvOUq2bBXrymssz6-NfNsnZS4gnZh3sid-5xxE2YWg_5e6l-NA
88.214.206.175302 Found 0 B URL HTTP/1.1 track.trackingtraffo.com/push/ic?auth=pz6u78&c=EsYab6Eb95RqRSODVVZ2i4TG9tcCcdk9SY-fYkmqMMiokRVk8UqWuKwaoJxIDiM7aUMyxn3xTisYksQHZ7arhl3QzkieWNe-htvI8fwzwLKh-1EmKoAbkCWy6XjrsdtbUTVjnw9IbsJzo08lGBa-E1bcBVOV2CSUuJi5OkKwu2AwvbiC4dLc4NRl7DuCLO2b5dEmGZ1RywRtzZO43vLvt0XP9RvMIWI2tJhFczULAb9aFshAXGA73bJRrVpqMJM3BcM8fOYGV_KYmr6bo3vAG5LSrYKvNSdqRe2zAhZ980UrQxhXUvPQDudtHuAJgwN8USxsoGXO5m74q3nvaW_Z13Rnk5K80fwHjpyOCgsjoJh2zG0rx5YtC2OoPYmATQvu-JjDXhjpS2YT0uLuc_wI3OJeQDhdZ7rhL6wdLDh1Vgwe679y6xb6Sg_gNNttC2tl3ks1ZbjDra67s5Goe7xyhYXRPPTRTR0iVaRjjq8ZULyWXvWMjzBQdOKA7N0HRIWfkBk9XVJn2AajyiPt9ghivvhPjyFw0oDDrdiGjbmVEUQtikU1w23-UJI5UvH2IDjvOUq2bBXrymssz6-NfNsnZS4gnZh3sid-5xxE2YWg_5e6l-NA
IP 88.214.206.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /push/ic?auth=pz6u78&c=EsYab6Eb95RqRSODVVZ2i4TG9tcCcdk9SY-fYkmqMMiokRVk8UqWuKwaoJxIDiM7aUMyxn3xTisYksQHZ7arhl3QzkieWNe-htvI8fwzwLKh-1EmKoAbkCWy6XjrsdtbUTVjnw9IbsJzo08lGBa-E1bcBVOV2CSUuJi5OkKwu2AwvbiC4dLc4NRl7DuCLO2b5dEmGZ1RywRtzZO43vLvt0XP9RvMIWI2tJhFczULAb9aFshAXGA73bJRrVpqMJM3BcM8fOYGV_KYmr6bo3vAG5LSrYKvNSdqRe2zAhZ980UrQxhXUvPQDudtHuAJgwN8USxsoGXO5m74q3nvaW_Z13Rnk5K80fwHjpyOCgsjoJh2zG0rx5YtC2OoPYmATQvu-JjDXhjpS2YT0uLuc_wI3OJeQDhdZ7rhL6wdLDh1Vgwe679y6xb6Sg_gNNttC2tl3ks1ZbjDra67s5Goe7xyhYXRPPTRTR0iVaRjjq8ZULyWXvWMjzBQdOKA7N0HRIWfkBk9XVJn2AajyiPt9ghivvhPjyFw0oDDrdiGjbmVEUQtikU1w23-UJI5UvH2IDjvOUq2bBXrymssz6-NfNsnZS4gnZh3sid-5xxE2YWg_5e6l-NA HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1659514995116-National Casino black.png
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4051b32129a06746c7b78279bdc3fa2c
6e9e7e3083f515d9a9e4c8cc6d372545a4f92799
82a48bf6a143abd6e6ca817d41e6aa3d67aa343ffc7c063ebd756248176b9a73
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4116
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:41 GMT
Last-Modified: Sun, 18 Dec 2022 18:45:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
vidoomy-d.openx.net/v/1.0/av?auid=540805079&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&cb=363030267&vwd=400&vht=225&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6330321576886441022911496972,,
35.244.159.8200 OK 56 B URL HTTP/2 vidoomy-d.openx.net/v/1.0/av?auid=540805079&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&cb=363030267&vwd=400&vht=225&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6330321576886441022911496972,,
IP 35.244.159.8:0
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 3255279395a3f83bf1b4d0b6735c292c
d14e724f7d28b39fd8662934069dd67169375521
49834b2ede460a27789ce383dcb82d66f10b5f056e950663a9c363e6fee30b52
GET /v/1.0/av?auid=540805079&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&cb=363030267&vwd=400&vht=225&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6330321576886441022911496972,, HTTP/1.1
Host: vidoomy-d.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: text/xml
content-length: 56
content-encoding: gzip
cache-control: private, max-age=0, no-cache
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sponsorlustrestories.com/impr.gif?sid=H4sIAAAAAAAC%2F6ySX2hcRRvG5%2FRr%2BT74rvpRPlAQDl0oWnRzztndZDe1pGmTxrVpEpNIwZsyZ2Z2M905M8eZOXuSCBKsSC%2Bj9EJ7YU7eJI3V0j%2BgF14UZNcbCQhdBVnQgJeCYFEoXhXZTaR6IXjhC%2BfM8%2FKcM%2Fyemfet9WQXeZDg7sx5tcyFwAOlvOc%2BfYFLqlLjTs27vpf3TrgXuBwsnnAXey%2FdHPa9Ut57xp1gpKEGAs%2F3PN%2Fz3bNcs5paHOi7wOObFT9f8fLFIO%2BXirCo%2F9ybxAGDHaDNXfQ%2F4LRzaOGLu8BJC2R0Z4yZhlXxs%2BNRIrBVGpp0%2B2XZkCqVED2WNe1ATW7vfw3KdBB69wAoub2fAFRzs5cAQt5Bzjc%2BhHJ7HxPC5tYeaSiASQjpfyFttoCJFnDcAqIuA6f3EQChMDUNMro%2BpXSKl%2FZc3HM76ODDX4CnHXTwuyMgo1unBV9055RILFfSwGItA77YAl5vQZy0wS47wNM2EPsGcPolGng4CTLanDZCAadZPz3nLeC1Fgi2Ctg4kPQe7kBScyCJHYho18WlSs3zhmphrVAoFwkhhQIhpfIgLdFCsVzzICE9vFWw8SoQsQpEr0CsV6DBV0Enn4FZyMBQB4ztIOelFWjSDFKGIDUIUowg5QhSiyBtZltUmMBk16kwSejvr8H%2BWsg2lK2v4y1l60yi9XgXHe6fyw8vfgwN1nVJbTDwWRgUMS6FRewH5XKlWPYrg5WyP%2BSFZTA8A24O9KMu9y7p%2Fz9DzDsI%2FbQCIW6DEW0g%2FCjg5CnA6cZQ4AFe2CiWPViWN5eFWVDasrxkFqjKILaHwC4562IXPdHnCH58BIzsnPp3597zg4dLQHQGsc7gEv8cQV1c2ZhVKdqcValBd6djyyO%2BjHt3N2exZejDc2wpVZpWx8zqjVHSM3ry5jwzdhJLymXdoI9Oc0qZPqs0Yehe1Vxg4UxiFk4nWibx5MyZs9Uo1swYrmQLML%2B%2F%2BAoQ3kH%2F%2BYT2p%2FLJU1eB6zbopDu2YG08PDBABCeNfExEIy9xxPb6EcOwPVkYrHhBcAxTTn%2FX%2FKR5Lp49fqk8%2BqqqX%2FQgSnZGPn2vV9eAqxaQ%2BM3budzY%2BNyZ2erMfHV6KpfrHp1rLEnqUlZ321turb3lNploqMjYUMnEPFh7587tXG5ydHZi%2FGL1%2FOjEeC7XfeEv6OxCEoUSc%2FF3CT%2FI5apn%2Bhiz%2F9SWx3hUtyc5UfJGLjdfnZ%2FsAQ88WLu6Nc%2BpCVldM2mYdS0XYUKHXd%2FzPHdq%2BpxbU7p%2FCg%2FWrq2AiXfQfoFRCLR43IexA2mSbegg3Bl5%2F%2FXwW3l8BQTvoOFHv4JgOyNfL38%2FcevIa4DDDAz7w4%2BP9bq5AnXtALaXQUYZNHUGTZEBFqtgkn9t2FjvjHxV6BeEwtkIhXY2Q6HF23uTbHjXLflFVg7LQ4TSkBHqDwWFcsHzAkqLQxXmV8CaDllT7d8AAAD%2F%2FwEAAP%2F%2Fokt8h9wFAAA%3D
192.243.61.227200 OK 7 B URL HTTP/1.1 sponsorlustrestories.com/impr.gif?sid=H4sIAAAAAAAC%2F6ySX2hcRRvG5%2FRr%2BT74rvpRPlAQDl0oWnRzztndZDe1pGmTxrVpEpNIwZsyZ2Z2M905M8eZOXuSCBKsSC%2Bj9EJ7YU7eJI3V0j%2BgF14UZNcbCQhdBVnQgJeCYFEoXhXZTaR6IXjhC%2BfM8%2FKcM%2Fyemfet9WQXeZDg7sx5tcyFwAOlvOc%2BfYFLqlLjTs27vpf3TrgXuBwsnnAXey%2FdHPa9Ut57xp1gpKEGAs%2F3PN%2Fz3bNcs5paHOi7wOObFT9f8fLFIO%2BXirCo%2F9ybxAGDHaDNXfQ%2F4LRzaOGLu8BJC2R0Z4yZhlXxs%2BNRIrBVGpp0%2B2XZkCqVED2WNe1ATW7vfw3KdBB69wAoub2fAFRzs5cAQt5Bzjc%2BhHJ7HxPC5tYeaSiASQjpfyFttoCJFnDcAqIuA6f3EQChMDUNMro%2BpXSKl%2FZc3HM76ODDX4CnHXTwuyMgo1unBV9055RILFfSwGItA77YAl5vQZy0wS47wNM2EPsGcPolGng4CTLanDZCAadZPz3nLeC1Fgi2Ctg4kPQe7kBScyCJHYho18WlSs3zhmphrVAoFwkhhQIhpfIgLdFCsVzzICE9vFWw8SoQsQpEr0CsV6DBV0Enn4FZyMBQB4ztIOelFWjSDFKGIDUIUowg5QhSiyBtZltUmMBk16kwSejvr8H%2BWsg2lK2v4y1l60yi9XgXHe6fyw8vfgwN1nVJbTDwWRgUMS6FRewH5XKlWPYrg5WyP%2BSFZTA8A24O9KMu9y7p%2Fz9DzDsI%2FbQCIW6DEW0g%2FCjg5CnA6cZQ4AFe2CiWPViWN5eFWVDasrxkFqjKILaHwC4562IXPdHnCH58BIzsnPp3597zg4dLQHQGsc7gEv8cQV1c2ZhVKdqcValBd6djyyO%2BjHt3N2exZejDc2wpVZpWx8zqjVHSM3ry5jwzdhJLymXdoI9Oc0qZPqs0Yehe1Vxg4UxiFk4nWibx5MyZs9Uo1swYrmQLML%2B%2F%2BAoQ3kH%2F%2BYT2p%2FLJU1eB6zbopDu2YG08PDBABCeNfExEIy9xxPb6EcOwPVkYrHhBcAxTTn%2FX%2FKR5Lp49fqk8%2BqqqX%2FQgSnZGPn2vV9eAqxaQ%2BM3budzY%2BNyZ2erMfHV6KpfrHp1rLEnqUlZ321turb3lNploqMjYUMnEPFh7587tXG5ydHZi%2FGL1%2FOjEeC7XfeEv6OxCEoUSc%2FF3CT%2FI5apn%2Bhiz%2F9SWx3hUtyc5UfJGLjdfnZ%2FsAQ88WLu6Nc%2BpCVldM2mYdS0XYUKHXd%2FzPHdq%2BpxbU7p%2FCg%2FWrq2AiXfQfoFRCLR43IexA2mSbegg3Bl5%2F%2FXwW3l8BQTvoOFHv4JgOyNfL38%2FcevIa4DDDAz7w4%2BP9bq5AnXtALaXQUYZNHUGTZEBFqtgkn9t2FjvjHxV6BeEwtkIhXY2Q6HF23uTbHjXLflFVg7LQ4TSkBHqDwWFcsHzAkqLQxXmV8CaDllT7d8AAAD%2F%2FwEAAP%2F%2Fokt8h9wFAAA%3D
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F6ySX2hcRRvG5%2FRr%2BT74rvpRPlAQDl0oWnRzztndZDe1pGmTxrVpEpNIwZsyZ2Z2M905M8eZOXuSCBKsSC%2Bj9EJ7YU7eJI3V0j%2BgF14UZNcbCQhdBVnQgJeCYFEoXhXZTaR6IXjhC%2BfM8%2FKcM%2Fyemfet9WQXeZDg7sx5tcyFwAOlvOc%2BfYFLqlLjTs27vpf3TrgXuBwsnnAXey%2FdHPa9Ut57xp1gpKEGAs%2F3PN%2Fz3bNcs5paHOi7wOObFT9f8fLFIO%2BXirCo%2F9ybxAGDHaDNXfQ%2F4LRzaOGLu8BJC2R0Z4yZhlXxs%2BNRIrBVGpp0%2B2XZkCqVED2WNe1ATW7vfw3KdBB69wAoub2fAFRzs5cAQt5Bzjc%2BhHJ7HxPC5tYeaSiASQjpfyFttoCJFnDcAqIuA6f3EQChMDUNMro%2BpXSKl%2FZc3HM76ODDX4CnHXTwuyMgo1unBV9055RILFfSwGItA77YAl5vQZy0wS47wNM2EPsGcPolGng4CTLanDZCAadZPz3nLeC1Fgi2Ctg4kPQe7kBScyCJHYho18WlSs3zhmphrVAoFwkhhQIhpfIgLdFCsVzzICE9vFWw8SoQsQpEr0CsV6DBV0Enn4FZyMBQB4ztIOelFWjSDFKGIDUIUowg5QhSiyBtZltUmMBk16kwSejvr8H%2BWsg2lK2v4y1l60yi9XgXHe6fyw8vfgwN1nVJbTDwWRgUMS6FRewH5XKlWPYrg5WyP%2BSFZTA8A24O9KMu9y7p%2Fz9DzDsI%2FbQCIW6DEW0g%2FCjg5CnA6cZQ4AFe2CiWPViWN5eFWVDasrxkFqjKILaHwC4562IXPdHnCH58BIzsnPp3597zg4dLQHQGsc7gEv8cQV1c2ZhVKdqcValBd6djyyO%2BjHt3N2exZejDc2wpVZpWx8zqjVHSM3ry5jwzdhJLymXdoI9Oc0qZPqs0Yehe1Vxg4UxiFk4nWibx5MyZs9Uo1swYrmQLML%2B%2F%2BAoQ3kH%2F%2BYT2p%2FLJU1eB6zbopDu2YG08PDBABCeNfExEIy9xxPb6EcOwPVkYrHhBcAxTTn%2FX%2FKR5Lp49fqk8%2BqqqX%2FQgSnZGPn2vV9eAqxaQ%2BM3budzY%2BNyZ2erMfHV6KpfrHp1rLEnqUlZ321turb3lNploqMjYUMnEPFh7587tXG5ydHZi%2FGL1%2FOjEeC7XfeEv6OxCEoUSc%2FF3CT%2FI5apn%2Bhiz%2F9SWx3hUtyc5UfJGLjdfnZ%2FsAQ88WLu6Nc%2BpCVldM2mYdS0XYUKHXd%2FzPHdq%2BpxbU7p%2FCg%2FWrq2AiXfQfoFRCLR43IexA2mSbegg3Bl5%2F%2FXwW3l8BQTvoOFHv4JgOyNfL38%2FcevIa4DDDAz7w4%2BP9bq5AnXtALaXQUYZNHUGTZEBFqtgkn9t2FjvjHxV6BeEwtkIhXY2Q6HF23uTbHjXLflFVg7LQ4TSkBHqDwWFcsHzAkqLQxXmV8CaDllT7d8AAAD%2F%2FwEAAP%2F%2Fokt8h9wFAAA%3D HTTP/1.1
Host: sponsorlustrestories.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Cookie: u_pl=15289012; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 457d423ff2c6d7b6407485f14ebeaaba
Strict-Transport-Security: max-age=0; includeSubdomains
a.vidoomy.com/api/rtbserver/rtb?id=1445691215&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
3.122.174.0204 No Content 0 B URL HTTP/2 a.vidoomy.com/api/rtbserver/rtb?id=1445691215&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
IP 3.122.174.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/rtb?id=1445691215&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot= HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 19:53:41 GMT
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-expose-headers: X-VD-C
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,PATCH,OPTIONS
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4051b32129a06746c7b78279bdc3fa2c
6e9e7e3083f515d9a9e4c8cc6d372545a4f92799
82a48bf6a143abd6e6ca817d41e6aa3d67aa343ffc7c063ebd756248176b9a73
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3215
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 19:53:41 GMT
Last-Modified: Sun, 18 Dec 2022 19:00:06 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1659514995116-National%20Casino%20black.png
142.132.194.196200 OK 4.5 kB URL HTTP/1.1 ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1659514995116-National%20Casino%20black.png
IP 142.132.194.196:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 58be17b22d6e1178a54c92cf862c817e
b821bc2f016751647df49e49863077e927a70322
9cc4f3f40313b08baf54c956685ac7a21ac8a3573908b9763865c6f613ce1b5f
GET /creatives/k1qy286gxmd5g3dpr397nw5v/1659514995116-National%20Casino%20black.png HTTP/1.1
Host: ads.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Type: image/png
Content-Length: 4456
Last-Modified: Wed, 03 Aug 2022 08:23:15 GMT
Connection: keep-alive
ETag: "62ea3073-1168"
Accept-Ranges: bytes
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 9194
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
sponsorlustrestories.com/pixel/sbs?c=1
192.243.61.227200 OK 0 B URL HTTP/1.1 sponsorlustrestories.com/pixel/sbs?c=1
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: sponsorlustrestories.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Cookie: u_pl=15289012; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 18 Dec 2022 19:53:41 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1511
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m=
69.20.43.192200 OK 1.4 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m=
IP 69.20.43.192:0
File type ASCII text, with very long lines (1825), with no line terminators
Hash 1fbabc3d9ab207c479b92a53876f1cb7
3d8e9060f77c200d14bfb140fa31d08a1faa0360
4b774433250e0de42048eb5aec66f6950fecd4bc77bcbf0d7a9ec38d489e015a
GET /ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m= HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:42 GMT
Content-Type: application/xml; charset=UTF-8
Content-Length: 1365
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 0 B URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:42 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Max-Age: 300
Cache-Control: max-age=300
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Expose-Headers: Content-Type, Content-Disposition
Access-Control-Allow-Credentials: true
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Cookie: viewer_token=a001900f-4a8c-48a9-84fe-6e2db8d3791d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=87fee807-e0c8-4cec-84de-6d4926a28281; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Sat, 18-Mar-2023 19:53:42 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=87fee807-e0c8-4cec-84de-6d4926a28281
content-length: 0
date: Sun, 18 Dec 2022 19:53:42 GMT
server: _
X-Firefox-Spdy: h2
ad.turn.com/r/cs?pid=65
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=65 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=3439880110445580002; Domain=.turn.com; Expires=Fri, 16-Jun-2023 19:53:42 GMT; Path=/; Secure; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=94&partnerUserId=3439880110445580002
content-length: 0
date: Sun, 18 Dec 2022 19:53:42 GMT
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 4.2 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
File type JSON data\012- , ASCII text, with very long lines (52815), with no line terminators
Hash 5183bae0534017cf868327ab7da9a2d6
e275788a2c498f82d2c87a660c6779296451621f
f91cbf2492d7d5d06aae647b8746aea0bba1b7d71a58bb1bdbe6041be67b20f2
POST /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 38
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:42 GMT
Content-Type: application/json
Content-Length: 4180
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
cs.lkqd.net/cs?partnerId=54&partnerUserId=87fee807-e0c8-4cec-84de-6d4926a28281
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=87fee807-e0c8-4cec-84de-6d4926a28281
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=87fee807-e0c8-4cec-84de-6d4926a28281 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:42 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:42 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:42 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=161
54.85.128.169302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 54.85.128.169:0
File type HTML document, ASCII text
Hash 4f2596c1ffdd1b95475389bcbe0b663e
31fbbb3e5b14a210bd39efab425d3ef0bee846bf
5f8f119d957058ed0b5ddbc466249ed463e6f659e39a56e20079c9bf4525709b
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Sun, 18 Dec 2022 19:53:42 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=GlAZFMDxQoxIg6xyvtKwH1taKpo
Set-Cookie: sa-user-id=s%3A0-1a501914-c0f1-428c-4883-ac72bed2b01f.A7OKrfAw2Etbpc5dpP5zjqJ6wFd7m8lvbORHr%2FwwKoY; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AGlAZFMDxQoxIg6xyvtKwH1taKpo.K8%2BlM25P77NtPtaEOh%2BJuzaiJfgRdhxU6T5IOCOuMWc; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 764
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:42 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=94&partnerUserId=3439880110445580002
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=3439880110445580002
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=3439880110445580002 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:42 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
a.vidoomy.com/api/rtbserver/rtb?id=1171878502&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
3.122.174.0204 No Content 0 B URL HTTP/2 a.vidoomy.com/api/rtbserver/rtb?id=1171878502&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
IP 3.122.174.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/rtb?id=1171878502&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot= HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 19:53:42 GMT
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-expose-headers: X-VD-C
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,PATCH,OPTIONS
X-Firefox-Spdy: h2
ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C12972593717487925608515509097,,&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 816 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C12972593717487925608515509097,,&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (396)
Hash bc10645e94414f2eefdb0babc31a9538
3eebac2327d9afb3ffcf0956882c366607312d4a
e98896cd1e6089b64516d8175594bf945e960cf86ee0c499db090f00e40b4878
GET /vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C12972593717487925608515509097,,&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393222821030-503
Expires: Sun, 18 Dec 2022 19:53:42 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:42 GMT
Content-Length: 816
Connection: keep-alive
Set-Cookie: UID=572291289db6e0885cb3cf47d951c45; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:42 GMT; Path=/
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C748792560851550909739350621%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 830 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C748792560851550909739350621%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (410)
Hash 5cfd9dd608f2227bd612c1fd6a583eb9
5959d9c13ea94179d25a8aa22cf987dee2fba4fd
431c12bb2981c09c887810346fa1bd641606669662725cb4a891d46101702cbb
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C748792560851550909739350621%2C%2C&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393222777099-520
Expires: Sun, 18 Dec 2022 19:53:42 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:42 GMT
Content-Length: 830
Connection: keep-alive
Set-Cookie: UID=d347b918c29202bd2abfcf2e4dd22d1; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:42 GMT; Path=/
cdn.creative-bars1.com/sb/interstitial/rtb/default/3/js/jquery-3.2.1.min.js
172.64.108.13200 OK 38 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/rtb/default/3/js/jquery-3.2.1.min.js
IP 172.64.108.13:0
File type ASCII text, with very long lines (745)
Hash 2eedad8506d2d965979c80970ee1d732
16a9254df9566b52b4ee2051f11363b0118b94e1
34e5238bd5f8fc28fa351259f1587669132a5c31a141acff856bab79ceee7fa7
GET /sb/interstitial/rtb/default/3/js/jquery-3.2.1.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:40 GMT
content-type: application/javascript
last-modified: Wed, 23 Jun 2021 13:33:25 GMT
etag: W/"60d33825-1fa27"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ayRSWAYN82EOxSQfYjvUFjmejXtia3D0tclTCU2cax1Tu2PmVlXMsg0ebvPdKmSvpwKFhaPbX8kfUu899XPkOQnCEuP8OdDVCgWl0EuWquwVasUyMwqjSszI6JI1uV%2B1ENFP9%2BeFvGR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77ba722a8949770e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C74879256085155090972083312553%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 832 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C74879256085155090972083312553%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (412)
Hash 84cdbca27a67713b3b6f8257db05c753
ac31ae94d79428b0efa06e1676c947c851c5d9bc
57903dd28e615f1d24f0938844849e9a9dfd414dad910456272ccdb39a87a56a
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C74879256085155090972083312553%2C%2C&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393222600069-594
Expires: Sun, 18 Dec 2022 19:53:42 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:42 GMT
Content-Length: 832
Connection: keep-alive
Set-Cookie: UID=37db7e61d71fd1eb17e4ab7087c49bcc; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:42 GMT; Path=/
cs.lkqd.net/cs?partnerId=93&partnerUserId=GlAZFMDxQoxIg6xyvtKwH1taKpo
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=93&partnerUserId=GlAZFMDxQoxIg6xyvtKwH1taKpo
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=93&partnerUserId=GlAZFMDxQoxIg6xyvtKwH1taKpo HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:42 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 9190
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:42 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2
37.157.6.247200 OK 74 B URL HTTP/2 adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2
IP 37.157.6.247:0
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash cfd02b7cdd037c108c2865b3d236f8f4
c163be76e303f43da1706a7f7184b611e3aa28f0
d99c7ef5910cc186314a625e78ca4423ebdd9cfdc2b4622c52b7f0cae7c73170
GET /adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2 HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:42 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
ad.turn.com/r/cs?pid=65
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=65 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=2718178270159458018; Domain=.turn.com; Expires=Fri, 16-Jun-2023 19:53:43 GMT; Path=/; Secure; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=94&partnerUserId=2718178270159458018
content-length: 0
date: Sun, 18 Dec 2022 19:53:43 GMT
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 3.9 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
File type JSON data\012- , ASCII text, with very long lines (52205), with no line terminators
Hash a16766e0d26f114cad70b01283d8a765
0e544f260b1b249167ffe9815015563b6af35e5b
99ecec1e1d50749e3e7fb5fd0eabef657c32a516c0d221959ff742e533123100
POST /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42966150&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 38
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:43 GMT
Content-Type: application/json
Content-Length: 3935
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C74879256085155090971611581610%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 832 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C74879256085155090971611581610%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (412)
Hash 3509b21d991fc8195e817156abc9c4b0
ef4e387d1da456699fed410e141a5fa7c4bd4166
33a491aeaaa57470146117d217e5968c6330c6e2576f7a406f8d0c2c36845bc5
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C74879256085155090971611581610%2C%2C&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393223381040-582
Expires: Sun, 18 Dec 2022 19:53:43 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:43 GMT
Content-Length: 832
Connection: keep-alive
Set-Cookie: UID=eaeb7d29b2c5920f9a14bc3bf969; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:43 GMT; Path=/
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C7487925608515509097524383175%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 831 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C7487925608515509097524383175%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (411)
Hash 0a7034d99af319b11fd961826da03b96
3c4127cee72f830672534911980a9f5ceb99ef9c
fd13f07154743fa453985b2513d42c6499fdec88eb2914f59de2c82d0f647e71
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C7487925608515509097524383175%2C%2C&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393223406016-545
Expires: Sun, 18 Dec 2022 19:53:43 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:43 GMT
Content-Length: 831
Connection: keep-alive
Set-Cookie: UID=dc787ee1da947f228af36cd7da4a4b1d; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:43 GMT; Path=/
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C74879256085155090971051279641%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 832 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C74879256085155090971051279641%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (412)
Hash 9d538b7bf2bf7c13bab3d7916152671d
2b3b678cc166e6fd0854be3140c2ec29932ddb2e
f0a48befe8f8219104bf3c1dc50e347488401a7b29b23431649e2d81dca2b486
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C74879256085155090971051279641%2C%2C&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393223409009-576
Expires: Sun, 18 Dec 2022 19:53:43 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:43 GMT
Content-Length: 832
Connection: keep-alive
Set-Cookie: UID=5a4137b71661f7bf35954d68fbcd112; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:43 GMT; Path=/
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C9270203327487925608515509097,,&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 815 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C9270203327487925608515509097,,&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (395)
Hash 0cc5f61ead3926270c718d7163767b2e
9e8cc587d90b88e567a9e59e1b3da668d1cc4428
19d023591c2a93e6076e2efa8e17a6ebccd34cfb575879bd5398788755a84297
GET /vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C9270203327487925608515509097,,&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393223395042-583
Expires: Sun, 18 Dec 2022 19:53:43 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:43 GMT
Content-Length: 815
Connection: keep-alive
Set-Cookie: UID=dad7aed48eb8653272e651a775dfd83; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:43 GMT; Path=/
sync.srv.stackadapt.com/sync?nid=161
54.85.128.169302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 54.85.128.169:0
File type HTML document, ASCII text
Hash d67b767ac6d59b51951a99a5c3f74970
36ed642e91f75ad34e1b5844a44133168c012907
87bbb132737d723cd7fc170de92292704cf9ab9eb60bde601ee190fca5e99b41
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Sun, 18 Dec 2022 19:53:43 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=gF4-mCCFShZo43Z6jGC8BltaKpo
Set-Cookie: sa-user-id=s%3A0-805e3e98-2085-4a16-68e3-767a8c60bc06.qRN2Zk7LoUmebMamPNkW4wZxioA10Kt46YNtbkQrkdU; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AgF4-mCCFShZo43Z6jGC8BltaKpo.QlGOKXHwUIIEMsHQdY0P1rSdMJAN4FWJm74tfsZFKn8; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
a.vidoomy.com/api/rtbserver/rtb?id=1919114242&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
3.122.174.0204 No Content 0 B URL HTTP/2 a.vidoomy.com/api/rtbserver/rtb?id=1919114242&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
IP 3.122.174.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/rtb?id=1919114242&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot= HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 19:53:43 GMT
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-expose-headers: X-VD-C
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,PATCH,OPTIONS
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=94&partnerUserId=2718178270159458018
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=2718178270159458018
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=2718178270159458018 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 300
cache-control: max-age=300
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
X-Firefox-Spdy: h2
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Cookie: viewer_token=87fee807-e0c8-4cec-84de-6d4926a28281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=cb9c09a6-06a0-40f2-b6a9-e409e971fb34; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Sat, 18-Mar-2023 19:53:43 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=cb9c09a6-06a0-40f2-b6a9-e409e971fb34
content-length: 0
date: Sun, 18 Dec 2022 19:53:43 GMT
server: _
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 300
cache-control: max-age=300
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 300
cache-control: max-age=300
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=93&partnerUserId=gF4-mCCFShZo43Z6jGC8BltaKpo
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=93&partnerUserId=gF4-mCCFShZo43Z6jGC8BltaKpo
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=93&partnerUserId=gF4-mCCFShZo43Z6jGC8BltaKpo HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 764
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=54&partnerUserId=cb9c09a6-06a0-40f2-b6a9-e409e971fb34
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=cb9c09a6-06a0-40f2-b6a9-e409e971fb34
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=cb9c09a6-06a0-40f2-b6a9-e409e971fb34 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1507
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 9183
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=70284752&m=
69.20.43.192200 OK 1.4 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=70284752&m=
IP 69.20.43.192:0
File type ASCII text, with very long lines (1829), with no line terminators
Hash 78010b5c2b3636dabd1126c43125b1e7
67e56c23da9c24c54148a322fbcfdd67d32bc095
820e6bb574dad9a354a694edfb163964ac0bde8ebf83b8ac330603fcf6083de3
GET /ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=70284752&m= HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:44 GMT
Content-Type: application/xml; charset=UTF-8
Content-Length: 1366
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Cookie: viewer_token=cb9c09a6-06a0-40f2-b6a9-e409e971fb34
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=a9fc9268-d45a-48df-92e9-3a5a04458275; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Sat, 18-Mar-2023 19:53:44 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=a9fc9268-d45a-48df-92e9-3a5a04458275
content-length: 0
date: Sun, 18 Dec 2022 19:53:44 GMT
server: _
X-Firefox-Spdy: h2
adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2
37.157.6.247200 OK 74 B URL HTTP/2 adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2
IP 37.157.6.247:0
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash cfd02b7cdd037c108c2865b3d236f8f4
c163be76e303f43da1706a7f7184b611e3aa28f0
d99c7ef5910cc186314a625e78ca4423ebdd9cfdc2b4622c52b7f0cae7c73170
GET /adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2 HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:43 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:44 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:44 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=161
54.85.128.169302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 54.85.128.169:0
File type HTML document, ASCII text
Hash 25792943eaa1fe849df6d753db796c72
c523bf41f3a54fd8abcc0d2568208960ed92facd
051cbf032f816b78dfa6543a97146c70b81ebedcbeae9d0c0b721ef69ca79f28
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Sun, 18 Dec 2022 19:53:44 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=b4s6kVEwRaJPiJA_9HUNJVtaKpo
Set-Cookie: sa-user-id=s%3A0-6f8b3a91-5130-45a2-4f88-903ff4750d25.OY%2BnrOqP4xJySYZDlUlEcx7%2Fxxpw5UBRO%2BqRX1JTmWQ; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3Ab4s6kVEwRaJPiJA_9HUNJVtaKpo.N%2BnW95ijI41wTV7HGQIWfeIjuKTMLOmGIfokdiOQarg; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
cs.lkqd.net/cs?partnerId=54&partnerUserId=a9fc9268-d45a-48df-92e9-3a5a04458275
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=a9fc9268-d45a-48df-92e9-3a5a04458275
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=a9fc9268-d45a-48df-92e9-3a5a04458275 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:44 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=94&partnerUserId=2731689069041569506
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=2731689069041569506
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=2731689069041569506 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:44 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=70284752&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 0 B URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=70284752&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=70284752&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:44 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Max-Age: 300
Cache-Control: max-age=300
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Expose-Headers: Content-Type, Content-Disposition
Access-Control-Allow-Credentials: true
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 763
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:44 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=93&partnerUserId=b4s6kVEwRaJPiJA_9HUNJVtaKpo
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=93&partnerUserId=b4s6kVEwRaJPiJA_9HUNJVtaKpo
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=93&partnerUserId=b4s6kVEwRaJPiJA_9HUNJVtaKpo HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:44 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=70284752&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 4.1 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=70284752&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
File type JSON data\012- , ASCII text, with very long lines (58960), with no line terminators
Hash 3fd277ff304f83ed68d9e62a595975d3
68c1c9e4d70c5df3dfd09802dcd523b5347b4185
a93f7c8b71beeaf8ad04f7cf2d9e317a43bb2d99028ba4fba0404d681719ccb3
POST /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=70284752&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 38
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:44 GMT
Content-Type: application/json
Content-Length: 4118
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
a.vidoomy.com/api/rtbserver/rtb?id=275210356&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
3.122.174.0204 No Content 0 B URL HTTP/2 a.vidoomy.com/api/rtbserver/rtb?id=275210356&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot=
IP 3.122.174.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/rtb?id=275210356&w=400&h=225&skip=1&req_type=1&ip=&ua=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&l=EN&dt=2&c=NO&pid=&sid=&sname=&d=imagenesderopaparaperros.com&sp=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&coppa=&gdpr=1&gdprcs=&vpaid=1&idlot= HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 18 Dec 2022 19:53:44 GMT
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-expose-headers: X-VD-C
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,PATCH,OPTIONS
X-Firefox-Spdy: h2
ads.stickyadstv.com/vast/vpaid-adapter/7585793?_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C89869975298271305571582459875,,&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 832 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C89869975298271305571582459875,,&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (412)
Hash a2b5f5a2154a1b12aa254afcddd4cc1e
3814917b0caf612d4dc630c2ed7ced8956c0b2e6
9ab6386d9e0247101a22bba129aea7dd1311c660bbf08ac8dc9b5e037977ccc9
GET /vast/vpaid-adapter/7585793?_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C89869975298271305571582459875,,&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393224647085-589
Expires: Sun, 18 Dec 2022 19:53:44 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:44 GMT
Content-Length: 832
Connection: keep-alive
Set-Cookie: UID=3ca1ca3b4556b6348f1e4c958d8ac62; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:44 GMT; Path=/
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C8986997529827130557935763806%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 831 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C8986997529827130557935763806%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (411)
Hash 4f446e027533341110b792b1409b5630
c973377fce9182b269ae8750cbd43f44cd5cde84
6b3691246cf269a644544f2f805a2c1db2b42ad4631bb40dd52e86d792f77743
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C8986997529827130557935763806%2C%2C&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393224706008-534
Expires: Sun, 18 Dec 2022 19:53:44 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:44 GMT
Content-Length: 831
Connection: keep-alive
Set-Cookie: UID=fd53bb65205b6207b2332412a6753d5; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:44 GMT; Path=/
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C8986997529827130557226588732%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 831 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C8986997529827130557226588732%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (411)
Hash 90591f2c279a93af874b9a7474c5da20
ff87b3c1dc8f0b83297546a3937736be20c6bc3d
ae8dce7fa3157fdfff2ecb4aeace0ab11777b36e88f8e26140cf141b08c5054b
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C8986997529827130557226588732%2C%2C&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393224717001-571
Expires: Sun, 18 Dec 2022 19:53:44 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:44 GMT
Content-Length: 831
Connection: keep-alive
Set-Cookie: UID=e54de9bcc9d479528bff72874c3de1; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:44 GMT; Path=/
ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6389468668986997529827130557,,&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 815 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6389468668986997529827130557,,&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (395)
Hash 80186505ae737a863e690edf2b7a2f14
fbe8787d756a4a2fdcb09a882255b1b0417f5ffb
0509cbb9fdd37b66c3f5200ff94dfa823317ce41bc18c050d57276dd83eda412
GET /vast/vpaid-adapter/7585793?schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C6389468668986997529827130557,,&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393224698021-602
Expires: Sun, 18 Dec 2022 19:53:44 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:44 GMT
Content-Length: 815
Connection: keep-alive
Set-Cookie: UID=e54de9bcc9d479528bff72874c3de1; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:44 GMT; Path=/
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C8986997529827130557711405759%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
95.101.10.58200 OK 831 B URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C8986997529827130557711405759%2C%2C&_fw_gdpr=1&_fw_gdpr_consent=
IP 95.101.10.58:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (411)
Hash 4f7ee694de9bdd4c23fd6954902b8c6d
dd3198a1dd86918706c3f128727f9ef795313f64
c1f707791ab1446ba492579bf6177b9823175d47e5cb1b2f6482abc20f9c9fc6
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_us_privacy=&schain=1.0%2C1%21vidoomy.com%2C59795%2C1%2C8986997529827130557711405759%2C%2C&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1671393224683059-604
Expires: Sun, 18 Dec 2022 19:53:44 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 18 Dec 2022 19:53:44 GMT
Content-Length: 831
Connection: keep-alive
Set-Cookie: UID=84f3947be04f3851eb187172487297e0; Domain=ads.stickyadstv.com; Expires=Tue, 17-Jan-2023 19:53:44 GMT; Path=/
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 10856
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:44 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1508
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:44 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42266371&m=
69.20.43.192200 OK 1.4 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42266371&m=
IP 69.20.43.192:0
File type ASCII text, with very long lines (1825), with no line terminators
Hash 0d381b5c35b81845ccc657dccbb550a5
2c3bb889b77da851096c3d5f90bb1141dbe55139
d4a0afbf93a99b1350e87eeedb3bf106e38e01933e84795fdc975b41eb8e25b2
GET /ad?pid=430&sid=1135194&formats=true&output=vastvpaid&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42266371&m= HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:45 GMT
Content-Type: application/xml; charset=UTF-8
Content-Length: 1369
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42266371&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 0 B URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42266371&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42266371&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:45 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Access-Control-Max-Age: 300
Cache-Control: max-age=300
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Expose-Headers: Content-Type, Content-Disposition
Access-Control-Allow-Credentials: true
ad.turn.com/r/cs?pid=65
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=65 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=8986908575994105570; Domain=.turn.com; Expires=Fri, 16-Jun-2023 19:53:45 GMT; Path=/; Secure; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=94&partnerUserId=8986908575994105570
content-length: 0
date: Sun, 18 Dec 2022 19:53:45 GMT
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=103&redirect=https%3A%2F%2Fevent.clientgear.com%2Fcookie%2Flkqd%3Fpartner%3Dlkqd%26cookieid%3D%24%24rawlkqduserid%24%24&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:45 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=102&redirect=https%3A%2F%2Fcs.krushmedia.com%2Fcd607442bfdf172cfcec45014a5f4ece.gif%3Fpuid%3D%24%24rawlkqduserid%24%24%26redir%3Dhttps%253A%252F%252Fcs.lkqd.net%252Fcs%253FpartnerId%253D102%2526partnerUserId%253D%255BUID%255D&r=if HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:45 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.srv.stackadapt.com/sync?nid=161
54.85.128.169302 Found 104 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=161
IP 54.85.128.169:0
File type HTML document, ASCII text
Hash 0468a1b55456a77e8b22fa872d181795
356e661da15dbc865070fdc72ac20814e0ea4209
a68ecb9c196ab0b7bc4d37df076a2ba748692740e91568e29e393f4f118b1e5d
GET /sync?nid=161 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Sun, 18 Dec 2022 19:53:45 GMT
Location: https://cs.lkqd.net/cs?partnerId=93&partnerUserId=lnWdyQGfR01mWIYoFH-F7ltaKpo
Set-Cookie: sa-user-id=s%3A0-96759dc9-019f-474d-6658-8628147f85ee.GvrYTbhcPsSAuurIWEOVVQ6fyVfswo%2F1x4LZoYgIEM4; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AlnWdyQGfR01mWIYoFH-F7ltaKpo.zomp%2FqZdtPiyldiwDTjXM%2FqzWhdJach9QfJ4qzuH%2BzM; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 104
Connection: keep-alive
cs.lkqd.net/cs?partnerId=94&partnerUserId=8986908575994105570
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=94&partnerUserId=8986908575994105570
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=94&partnerUserId=8986908575994105570 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:45 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
t.lkqd.net/t
146.20.128.193200 OK 0 B IP 146.20.128.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /t HTTP/1.1
Host: t.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 764
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:45 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
access-control-allow-origin: http://m.imagenesderopaparaperros.com
cache-control: max-age=0, no-cache, no-store
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=93&partnerUserId=lnWdyQGfR01mWIYoFH-F7ltaKpo
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=93&partnerUserId=lnWdyQGfR01mWIYoFH-F7ltaKpo
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=93&partnerUserId=lnWdyQGfR01mWIYoFH-F7ltaKpo HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:45 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Fcs.lkqd.net%2Fcs%3FpartnerId%3D54%26partnerUserId%3D%7Bdevice_id%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.lkqd.net/
Cookie: viewer_token=a9fc9268-d45a-48df-92e9-3a5a04458275
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=5d7acf58-c08f-4472-8ff5-e9a9cf386858; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Sat, 18-Mar-2023 19:53:45 GMT; SameSite=None
location: https://cs.lkqd.net/cs?partnerId=54&partnerUserId=5d7acf58-c08f-4472-8ff5-e9a9cf386858
content-length: 0
date: Sun, 18 Dec 2022 19:53:45 GMT
server: _
X-Firefox-Spdy: h2
cs.lkqd.net/cs?partnerId=54&partnerUserId=5d7acf58-c08f-4472-8ff5-e9a9cf386858
146.20.132.194200 OK 43 B URL HTTP/2 cs.lkqd.net/cs?partnerId=54&partnerUserId=5d7acf58-c08f-4472-8ff5-e9a9cf386858
IP 146.20.132.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cs?partnerId=54&partnerUserId=5d7acf58-c08f-4472-8ff5-e9a9cf386858 HTTP/1.1
Host: cs.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ad.lkqd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:45 GMT
content-type: image/gif
content-length: 43
access-control-max-age: 0
cache-control: max-age=0
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
access-control-expose-headers: Content-Type, Content-Disposition
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42266371&m=&rtv=1&thost=m.imagenesderopaparaperros.com
69.20.43.192200 OK 3.9 kB URL HTTP/1.1 v.lkqd.net/ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42266371&m=&rtv=1&thost=m.imagenesderopaparaperros.com
IP 69.20.43.192:0
File type JSON data\012- , ASCII text, with very long lines (52204), with no line terminators
Hash 1de72ecdeff8dfdde183331f9cc604d5
a77e57d06ac14d08dca8790a80113c5533cb9dc6
3faa111b33f24f8488860c07520302d14d0022dd4648b0d8a84218e15f0aefde
POST /ad?pid=430&sid=1135194&formats=true&output=json2&support=html5&execution=outstream&placement=slider&playinit=auto&volume=0&width=400&height=225&gdpr=1&gdprcs=&pageurl=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&dnt=0&c1=&c2=&c3=1.0%2C1!vidoomy.com%2C59795%2C1%2C&c4=true&rnd=42266371&m=&rtv=1&thost=m.imagenesderopaparaperros.com HTTP/1.1
Host: v.lkqd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 38
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Dec 2022 19:53:45 GMT
Content-Type: application/json
Content-Length: 3936
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: http://m.imagenesderopaparaperros.com
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Credentials: true
wt.rqtrk.eu/6f4bcf39-b286-4d76-b513-ffb5541d5167-trk.js
141.95.97.230200 OK 0 B URL HTTP/2 wt.rqtrk.eu/6f4bcf39-b286-4d76-b513-ffb5541d5167-trk.js
IP 141.95.97.230:0
GET /6f4bcf39-b286-4d76-b513-ffb5541d5167-trk.js HTTP/1.1
Host: wt.rqtrk.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding,Accept-Encoding
last-modified: Tue, 13 Dec 2022 14:20:55 GMT
etag: W/"82fef41533854eb9348a85e5baf8c3af"
x-cache: Hit from cloudfront
via: 1.1 e5b747ffd1713cb17ddd7d55234a3300.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA2-C2
x-amz-cf-id: 3dnN7vD7QJcvfqzSI4sv3ndmM-9qdjvTKL2RpJRqyQ0zxkaFzzlKKQ==
age: 84983
expires: Mon, 19 Dec 2022 19:53:38 GMT
cache-control: max-age=86400,public
content-encoding: gzip
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
104.22.24.87200 OK 0 B URL HTTP/2 spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.24.87:0
GET /?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: http://m.imagenesderopaparaperros.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:39 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: http://m.imagenesderopaparaperros.com
set-cookie: zc=e8ba43de-f28d-4c53-789c-a7f79bbbe70a; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
zsc=x%09%00%FD%86%D1j%D2%8E%19%CD%5E%90v%0E%9D%B5%8Ar%A9ay%3E%AE%CEq%11%2C%F8-0nV%94%B6%88%09%95v%E1s%D5%06%26%F0%26%B0%3Dz%8C+%88%97%8Biy%1B%8B%E4%A8%AA%96%B4%3E%D8%EC%E4%2F%B3%3BK%F5%06T%CD%B2%F3%16%E8%18gg%EA; Path=/; Domain=.zeotap.com; Max-Age=86400; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77ba72280a26b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
143.204.55.88200 OK 0 B URL HTTP/2 cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
IP 143.204.55.88:0
GET /GVL-v2/vendor-list-trimmed-v1.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Sun, 18 Dec 2022 03:00:38 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Sun, 18 Dec 2022 03:00:33 GMT
etag: W/"e7d8b0f974119caf720679ec234db47d"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 957QukFlLkyP92pxH7SbE5LCojbwNM-Fbb-RxZKJeKRpnKhj8taYCg==
age: 60783
X-Firefox-Spdy: h2
unicons.iconscout.com/release/v2.1.7/css/unicons.css
104.18.29.243200 OK 0 B URL HTTP/2 unicons.iconscout.com/release/v2.1.7/css/unicons.css
IP 104.18.29.243:0
GET /release/v2.1.7/css/unicons.css HTTP/1.1
Host: unicons.iconscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:37 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=63509
etag: W/"aaeb6aed7a9c71959a3b51e937c363f0"
last-modified: Tue, 28 Apr 2020 10:01:21 GMT
x-amz-id-2: qSduub1s3mFmCfde2XDgqPc08zdrY5EGOqvrCKN/6T4V9eqzeXI3mUndTj3zhrgkkk8TiMbEISM=
x-amz-request-id: V3PY903MVV55FPTX
cf-cache-status: HIT
age: 1831185
expires: Mon, 18 Dec 2023 19:53:37 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 77ba721b8ab81c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=19
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=19
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=52788&formatId=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1671786569
server: CDN77-Turbo
x-77-nzt: AblMCQ0c8STv+TkDAA
x-77-nzt-ray: c0a4cc28aa31f672c26f9f63959fb203
x-cache: HIT
x-age: 211449
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/lib_fs_close.js
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/lib_fs_close.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /lib_fs_close.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
last-modified: Tue, 14 Jun 2022 12:21:22 GMT
expires: Sat, 17 Dec 2022 05:03:14 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1671426196
server: CDN77-Turbo
x-77-nzt: AblMCQ3vN0n/rtAAAA
x-77-nzt-ray: c0a4cc28aa31f672c26f9f63f2f7fa0f
x-cache: HIT
x-age: 53422
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://m.imagenesderopaparaperros.com/
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:40 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: http://m.imagenesderopaparaperros.com
server-processing-duration-in-ticks: 1085688
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/zshorte_theme/js/aos.js
104.21.94.136200 OK 0 B URL HTTP/1.1 m.imagenesderopaparaperros.com/zshorte_theme/js/aos.js
IP 104.21.94.136:0
GET /zshorte_theme/js/aos.js HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/Pkm1ZSV
Cookie: lang=en_US; AppSession=98b1538a8812dd1be049bcb78ccb939d; csrfToken=0da546376d907cec420c5168cb2d84c0210e8b46d276bd0a44f5487b5401312a9be35536719fc63f287df2cd21cb2b13b6265fe55f3efc1a728832c2aa9490b2
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 19:53:37 GMT
Content-Type: application/javascript
Content-Length: 4296
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 20 Jun 2020 00:08:40 GMT
Cache-Control: max-age=2592000
Expires: Wed, 04 Jan 2023 23:37:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 1109781
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fGGYdO7LhyHAfGrkma%2FIrQfwn0Twsa285IiVu4IOJCT%2BEBguEj7beHJngNQBYACDO%2FgTGX2%2FlNCpHvARLOrzKL1gIPRltD8R0bh17L3eI9qLUm4%2FWMwG5qxGtRLpSSELhKxjXvTW%2F9ECoGbfeiWoce4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77ba721a9d451c0e-OSL
alt-svc: h2=":443"; ma=60
m.imagenesderopaparaperros.com/vendor/bootstrap/js/bootstrap.min.js?ver=6.4.0
104.21.94.136200 OK 0 B URL HTTP/2 m.imagenesderopaparaperros.com/vendor/bootstrap/js/bootstrap.min.js?ver=6.4.0
IP 104.21.94.136:0
GET /vendor/bootstrap/js/bootstrap.min.js?ver=6.4.0 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Sat, 20 Jun 2020 00:09:27 GMT
cache-control: max-age=2592000
expires: Wed, 04 Jan 2023 23:37:17 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1109781
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rmlmoE0mRzo74AWW0Chc7eVIjRWJmLLveQbbZZstkKIOmHfvLONLuXpL7dj00j%2FCe5pUbC0uZkywTqRusKCSQALF5WIHXfkqWHu4iu%2B4Dv7umYdDhZIzvQGM6r6CjPZ0VW3WRlk6dhHvJGZj3Y8H1D0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77ba721cdb32b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=2
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=2
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1671771798
server: CDN77-Turbo
x-77-nzt: AblMCQ08Q0L/rHMDAA
x-77-nzt-ray: c0a4cc28aa31f672c26f9f6380b1ad04
x-cache: HIT
x-age: 226220
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2
37.157.6.247200 OK 0 B URL HTTP/2 adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2
IP 37.157.6.247:0
GET /adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2 HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:44 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
143.204.55.88200 OK 0 B URL HTTP/2 cmp.quantcast.com/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
IP 143.204.55.88:0
GET /choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:53:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
date: Sun, 18 Dec 2022 19:53:34 GMT
cache-control: max-age=3600
etag: W/"c53bd785b1ee57b613221019d7d72626"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xAqLrBCSjL50fQOegbFURbFe-ADN7DzeapUeGaG6prKzbHGUIyupFQ==
age: 9
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
216.58.207.234200 OK 0 B URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
IP 216.58.207.234:0
GET /ajax/libs/jquery/3.0.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30186
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 13 Dec 2022 13:57:35 GMT
Expires: Wed, 13 Dec 2023 13:57:35 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 453364
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
cdn.pbstck.com/index-monitoring-301583c.js
104.22.1.93200 OK 0 B URL HTTP/2 cdn.pbstck.com/index-monitoring-301583c.js
IP 104.22.1.93:0
GET /index-monitoring-301583c.js HTTP/1.1
Host: cdn.pbstck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdvYVBvMpVGfsg88L9sNFw8EgHxZi3J4vqfLFHdIEB4OOsD6kIov7B3L53IT7UeG7BUoz0vntyXA8Q6mv0Kj6Qkaqg
x-goog-generation: 1670862125732888
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 50705
x-goog-hash: crc32c=K58Y6w==, md5=J5Ko9RAqKOo1ZwtMEdZrfQ==
x-goog-storage-class: STANDARD
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sun, 25 Dec 2022 19:01:36 GMT
cache-control: public, max-age=604800, immutable
last-modified: Mon, 12 Dec 2022 16:22:05 GMT
etag: W/"2792a8f5102a28ea35670b4c11d66b7d"
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 77ba721fdba2b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
zshorte.net/js/app.js?ver=6.4.0
172.67.138.73200 OK 0 B URL HTTP/2 zshorte.net/js/app.js?ver=6.4.0
IP 172.67.138.73:0
GET /js/app.js?ver=6.4.0 HTTP/1.1
Host: zshorte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
cache-control: max-age=2592000
cf-bgj: minify
cf-polished: origSize=30407
expires: Thu, 22 Dec 2022 22:54:39 GMT
last-modified: Sat, 20 Jun 2020 00:07:31 GMT
vary: Accept-Encoding,User-Agent
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 2235539
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SZk5%2BS26kGArW4OMEndqbaP6KYxjtq%2FRVAVqazut5N4lk4yRPDZBzS5qzPX%2BRlJpPAkV7SpeThdoYIqBupOxycvB24UzY3t8P2HH8kXpFjWFAaPKfn%2BY0IMR5qJFFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77ba721ccfd6b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=1
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=1
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1671771798
server: CDN77-Turbo
x-77-nzt: AblMCQ2Ghiz/rHMDAA
x-77-nzt-ray: c0a4cc28aa31f672c26f9f63983fa103
x-cache: HIT
x-age: 226220
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=2
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=2
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=52788&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1671786569
server: CDN77-Turbo
x-77-nzt: AblMCQ3mO17v+TkDAA
x-77-nzt-ray: c0a4cc28aa31f672c26f9f6316dfb304
x-cache: HIT
x-age: 211449
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneybile.js
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneybile.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /moneybile.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 17:07:19 GMT
expires: Sat, 17 Dec 2022 05:03:13 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1671426195
server: CDN77-Turbo
x-77-nzt: AblMCQ3Lm7v/r9AAAA
x-77-nzt-ray: c0a4cc28aa31f672c26f9f631ac0200c
x-cache: HIT
x-age: 53423
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
test.cmp.quantcast.com/GVL-v2/cmp-list.json
108.157.214.55200 OK 0 B URL HTTP/2 test.cmp.quantcast.com/GVL-v2/cmp-list.json
IP 108.157.214.55:0
GET /GVL-v2/cmp-list.json HTTP/1.1
Host: test.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 86400
cache-control: max-age=172800
date: Sun, 18 Dec 2022 03:00:36 GMT
last-modified: Thu, 15 Dec 2022 19:53:40 GMT
etag: W/"1fcb7b340973662b8c72821035297be8"
x-amz-server-side-encryption: AES256
x-amz-version-id: 1z0UoXMJ9xzbs2qI0bEVqRIwlX6l1fM5
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4838101f07e2dfcd1db4abc88031f082.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: uLfZGZMPdp4dq2M8KZZaY-OZJbxeC-fIZ9Jyl0pvLiuzLhsrTyLVkQ==
age: 60785
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/rtb/default/3/js/script.js
172.64.108.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/rtb/default/3/js/script.js
IP 172.64.108.13:0
GET /sb/interstitial/rtb/default/3/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: application/javascript
last-modified: Wed, 23 Jun 2021 13:33:24 GMT
etag: W/"60d33824-2ed"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7aPnPO0xd2Vvi7Ls90yUSfdFRL%2F22vHJtv0yGjS59xwiUeEOf2YmvkhJbUIacPUoMFg2AWOBrgFEsesasYhOWN2zMycyW%2FkI5NpUM58ZuKwS4I4OxGg1GO1HeGoqwNz5Jbvj67IVIWBM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77ba722edff3770e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=6
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=52788&formatId=6
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=52788&formatId=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1671786569
server: CDN77-Turbo
x-77-nzt: AblMCQ2VePjv+TkDAA
x-77-nzt-ray: c0a4cc28aa31f672c26f9f631aa93505
x-cache: HIT
x-age: 211449
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2
37.157.6.247200 OK 0 B URL HTTP/2 adx.adform.net/adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2
IP 37.157.6.247:0
GET /adx/?mid=970530&url=http%3A%2F%2Fm.imagenesderopaparaperros.com%2FPkm1ZSV&t=2 HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 19:53:41 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: http://m.imagenesderopaparaperros.com
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
143.204.55.88200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
IP 143.204.55.88:0
GET /tcfv2/42/cmp2.js?referer=www.themoneytizer.com HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Tue, 05 Jul 2022 18:40:23 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
cache-control: max-age=172800
date: Sun, 18 Dec 2022 04:40:54 GMT
etag: W/"9494b70738cd74c9137e65c29c0b1f3e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Pc38e7Lcy0eHhdiOK6j2loDmqNGcrSRR-p_eQ3ns4hoasoCoaUBERg==
age: 54765
X-Firefox-Spdy: h2
m.imagenesderopaparaperros.com/vendor/owl/owl.carousel.min.js?ver=6.4.0
104.21.94.136200 OK 0 B URL HTTP/2 m.imagenesderopaparaperros.com/vendor/owl/owl.carousel.min.js?ver=6.4.0
IP 104.21.94.136:0
GET /vendor/owl/owl.carousel.min.js?ver=6.4.0 HTTP/1.1
Host: m.imagenesderopaparaperros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Sat, 20 Jun 2020 00:08:03 GMT
cache-control: max-age=2592000
expires: Fri, 23 Dec 2022 11:03:24 GMT
vary: Accept-Encoding,User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2191814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=66DGak5ws0q48J3dhtSwY1a71yYJ9S2Yss%2Fbzo8Iv%2BfOGuntWaBMSLZKo9DPbkLqVOL%2BWrZr1%2Bqssj8qtyxjIXBsRlBLrpE5oNewqcvBxIwgcp1P9EASZec%2FXTKrqWA7%2FNbvXCUVfLdcWOMlyxuFyjQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77ba721cdb40b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.166200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.166:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "StHfV9prSwQMxjKWocWEFw=="
expires: Sun, 25 Dec 2022 19:53:38 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/rtb/default/3/css/style.css
172.64.108.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/rtb/default/3/css/style.css
IP 172.64.108.13:0
GET /sb/interstitial/rtb/default/3/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:40 GMT
content-type: text/css
last-modified: Wed, 23 Jun 2021 13:33:21 GMT
etag: W/"60d33821-14da"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=24UgTWDyk2TYqsxOI2%2FocYG7qc1yNPKtX0sxnr6tSrIKrrIfKpvi0JsRWdUEnOkeFn0IV47AwPnZWfhstmgF4klBtuqhevFjbwyM5gZz8J9CodaAssMO3M9xbutSJ3vdYvik6VcSS6pq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77ba722a793e770e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
104.22.24.87200 OK 0 B URL HTTP/2 spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.24.87:0
GET /mapper.js?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:38 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: http://m.imagenesderopaparaperros.com
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77ba721f1d1db4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/rtb/default/3/css/animate.css
172.64.108.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/rtb/default/3/css/animate.css
IP 172.64.108.13:0
GET /sb/interstitial/rtb/default/3/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 19:53:40 GMT
content-type: text/css
last-modified: Wed, 23 Jun 2021 13:33:20 GMT
etag: W/"60d33820-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8CDWLzzOyULta6YeThpehSdjFqO8vxqFO%2BxWcbJbj7bx5F9XowXXAryzVIhdnTpyyEmPQ5W3r5Ds1qArQHeyFpVkml%2FEHmdEu5Jec3S5kD9mcIISEGuC3cl8sOrAJpx9RvUU7CLDYY0H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77ba722a8945770e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/google-atp-list.json
143.204.55.88200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/google-atp-list.json
IP 143.204.55.88:0
GET /tcfv2/google-atp-list.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Sun, 18 Dec 2022 03:00:28 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Sun, 18 Dec 2022 03:00:26 GMT
etag: W/"505447daad0efff5e3d0fa9fe62f05e2"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Z0NX7v4akTnonF7fyLL0tL4QFkfdsmj14AQ6rNEgEe82aGN4IAXFsA==
age: 60793
X-Firefox-Spdy: h2
cmp.quantcast.com/GVL-v2/purposes-ES.json
143.204.55.88200 OK 0 B URL HTTP/2 cmp.quantcast.com/GVL-v2/purposes-ES.json
IP 143.204.55.88:0
GET /GVL-v2/purposes-ES.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://m.imagenesderopaparaperros.com
Connection: keep-alive
Referer: http://m.imagenesderopaparaperros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Sun, 18 Dec 2022 03:00:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Sun, 18 Dec 2022 03:00:33 GMT
etag: W/"b580ef7c60b7fa812e3687d549be13b9"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TWugBaE7ZwV7bxVjN52504KWKf4DGVwglNWItlI-uNUsZ2guWYYBHQ==
age: 60782
X-Firefox-Spdy: h2