m9w6ldeg4.xyz/cdn-cgi/challenge-platform/scripts/jsd/main.js
104.21.32.81 0 B URL m9w6ldeg4.xyz/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP 104.21.32.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: m9w6ldeg4.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 19 Apr 2024 21:21:58 GMT
content-length: 0
cache-control: max-age=300, public
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q5V1FC2ce7c9aEp10ClmZA%2BFpVWSDb1WuKZDUIG8yRhcakPHEKB5dgSCtESmKESKAA5y5dggWpA8vjrCQVoxfENzGcxoTRDvkRf7ebwAqzTJiioKMPjIAWxAmX6mxgbC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876ff284da4f5691-OSL
alt-svc: h3=":443"; ma=86400
m9w6ldeg4.xyz/cdn-cgi/challenge-platform/h/b/jsd/r/876ff2808a0856c0
104.21.32.81 0 B URL m9w6ldeg4.xyz/cdn-cgi/challenge-platform/h/b/jsd/r/876ff2808a0856c0
IP 104.21.32.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/876ff2808a0856c0 HTTP/1.1
Host: m9w6ldeg4.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12344
Origin: https://m9w6ldeg4.xyz
DNT: 1
Connection: keep-alive
Referer: https://m9w6ldeg4.xyz/?14_7=d07c48057774228d4919f364148f5e76&s=%C3%87a+ne+tient+qu&
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 21:21:58 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=dU3Eumigy66k7xYxoMwZHjgA0VA5gRfT1iTLyleR1Eo-1713561718-1.0.1.1-hGFUG8685aiTratM3dYi30NLhUXYonSvg8ZpG6CEb27F8iG0k2SKfgamJjgAmuKDiZ90mHB00ltlG2EtlgCtLw; path=/; expires=Sat, 19-Apr-25 21:21:58 GMT; domain=.m9w6ldeg4.xyz; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c2uHHYrD24tkXgI1PzBq2%2BQ1Pf0jGxNNZ1SxAvfU41cLUy0OyeSmXo6W2nvM%2Fvscjf0PDP8jyIOlbFeGrcc%2FYb98Byxk87aB8Z9onTEK3Tcq9F1PwvIcl9drfC693Ksp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876ff2859b525691-OSL
alt-svc: h3=":443"; ma=86400
www.googletagmanager.com/gtag/js?id=G-LLFSDKZXET
142.250.74.72200 OK 92 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-LLFSDKZXET
IP 142.250.74.72:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File type JavaScript source, ASCII text, with very long lines (5955)
Hash 135f0a52e7d60ecc5eb641680ec37d1d
fed4324941f2dc365090dbcd4306eb1c741bc2f8
068d88d520b0ab0a30ea5950a291485d6e63977a99c45f1772248112da1cb533
GET /gtag/js?id=G-LLFSDKZXET HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 21:22:02 GMT
expires: Fri, 19 Apr 2024 21:22:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91534
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
script.4dex.io/localstore.js
104.26.8.169200 OK 580 B URL GET HTTP/1.1 script.4dex.io/localstore.js
IP 104.26.8.169:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerCloudflare, Inc.
Subjectscript.4dex.io
FingerprintAB:9B:A2:70:ED:27:23:EF:84:14:22:FF:67:9F:5D:50:06:2D:04:28
ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 22 Oct 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1371)
Hash 00a8e13a83b2bbab51af8e55f52be363
57340eb5c07e50d96f4a04bd4c220f0f24cec649
3aec57ffa5c31e185202ddaa3b5b9d9872d4504f4546ab4eea1298baaf3c7cc7
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 21:22:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"00a8e13a83b2bbab51af8e55f52be363"
Last-Modified: Thu, 18 Apr 2024 08:50:22 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 131105
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bfa%2FlTddJd7MKsubADbTM30yroxWdOxHeEZqKsJ6CCOQFgPGhwTGZd9aMD9SQypp5EHe7FPvZsclaT%2B3CCQ90C1i2Mzw5wSVDpNwTGi%2BSqLTfakJUyq0PRzuRrTQH%2BEN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 876ff29e6ec656b9-OSL
Content-Encoding: br
cdn4.buysellads.net/pub/rentryco.js?1713561600000
152.42.150.143200 OK 199 kB URL GET HTTP/2 cdn4.buysellads.net/pub/rentryco.js?1713561600000
IP 152.42.150.143:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerLet's Encrypt
Subjectcdn4.buysellads.net
FingerprintE1:60:C2:B9:99:59:13:6E:1F:80:00:C3:35:3D:38:E1:79:A1:20:09
ValidityThu, 04 Apr 2024 14:04:09 GMT - Wed, 03 Jul 2024 14:04:08 GMT
File type JavaScript source, ASCII text, with very long lines (61281)
Size 199 kB (199183 bytes)
Hash 9a349611810cd46cf8e596366fede8e4
6c47288add3902add9ee0b0b386ca5bf2e65c168
dd064596332b4f868f856396d6047d8ac2a5dc60337897311d065b4e06645dd6
GET /pub/rentryco.js?1713561600000 HTTP/1.1
Host: cdn4.buysellads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=3600, stale-while-revalidate
content-encoding: gzip
content-type: application/javascript
etag: e9f07d467fe614551bb7e7c18de5b0e9e7c06c30
server: srv-ams3-0
vary: Accept-Encoding
date: Fri, 19 Apr 2024 21:22:02 GMT
X-Firefox-Spdy: h2
script.4dex.io/a/latest/adagio.js
104.26.8.169200 OK 22 kB URL GET HTTP/1.1 script.4dex.io/a/latest/adagio.js
IP 104.26.8.169:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerCloudflare, Inc.
Subjectscript.4dex.io
FingerprintAB:9B:A2:70:ED:27:23:EF:84:14:22:FF:67:9F:5D:50:06:2D:04:28
ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 22 Oct 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65354)
Hash 2cea63505a74309263526b320f034c82
130ca3583955d4785e871e9950c05775975d81e9
c3c9508e905060bb9518439718aef255b2e29968eb9a33422b28426d96ff5946
GET /a/latest/adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 21:22:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"2cea63505a74309263526b320f034c82"
Last-Modified: Thu, 18 Apr 2024 08:50:17 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
CF-Cache-Status: HIT
Age: 131095
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bro4LnnROvCTFOrSC1gszZx7CYkcslNcPXlsEwej3CsSqVLT9qhm7QJnKxhIlg6gY%2FP5DbkyWyyYnJHv7ZGHru5gmlOlrhenF0IX4ScLxXlxAO4WOTTbRyhUi%2Bc5ltU3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 876ff29ece4cb4ed-OSL
Content-Encoding: br
cadmus.script.ac/dahhc4ozyvjm6/script.js
104.18.23.145200 OK 3 B URL GET HTTP/2 cadmus.script.ac/dahhc4ozyvjm6/script.js
IP 104.18.23.145:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerLet's Encrypt
Subjectscript.ac
Fingerprint4D:86:BC:C1:1E:A2:FC:60:16:78:68:84:45:63:AB:01:3C:D3:C4:7F
ValidityMon, 26 Feb 2024 17:39:21 GMT - Sun, 26 May 2024 17:39:20 GMT
Hash b519d08ef66fd54910edbedba6181ec2
8d06436c33a3086259f2f1ccaf03425707eeff17
101ead936a2281d53dcc064b7e2a2ab0d53b92ef3ef7b34b668673007895c860
GET /dahhc4ozyvjm6/script.js HTTP/1.1
Host: cadmus.script.ac
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: application/javascript
content-length: 3
age: 0
cache-control: public,max-age=259200,stale-while-revalidate=86400,stale-if-error=259200
etag: W/"601055f6a0c6408859f97b5f0a84bdb88441a80e"
last-modified: Mon, 01 Jan 2018 00:00:00 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 876ff29f1c6f56bb-OSL
X-Firefox-Spdy: h2
hb.yellowblue.io/hb-multi
143.204.55.117200 OK 84 B URL POST HTTP/2 hb.yellowblue.io/hb-multi
IP 143.204.55.117:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerAmazon
Subject*.yellowblue.io
FingerprintF6:26:FE:49:4A:50:FB:11:34:86:E2:79:8F:43:68:A1:1E:B6:8D:6B
ValidityMon, 18 Mar 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hash 91bf9ea48f80468d1e44f633e7c689f6
581c3750f8c1282ebf66b6b215fabf6123ed31cd
6bead31e8668033ed13df11565afc89f19ff27ae93e13264c1342378712f4dfd
POST /hb-multi HTTP/1.1
Host: hb.yellowblue.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1366
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 84
date: Fri, 19 Apr 2024 21:22:02 GMT
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF, X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://rentry.co
x-reason: do not track ifa
x-envoy-upstream-service-time: 8
server: istio-envoy
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7OnG5eGcweDGslWWIoejD5q1P0UAfrVQsKBp94ywIjpc519o4DJp0Q==
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
51.75.86.98200 OK 41 B URL POST HTTP/2 onetag-sys.com/prebid-request
IP 51.75.86.98:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1886
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://rentry.co
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
ad-delivery.net/px.gif?ch=1&e=0.19854162822474974
172.67.69.19200 OK 43 B URL GET HTTP/2 ad-delivery.net/px.gif?ch=1&e=0.19854162822474974
IP 172.67.69.19:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectad-delivery.net
Fingerprint03:56:A5:CD:68:65:E1:00:BD:87:3E:45:0C:B1:3B:C2:2C:8C:4E:18
ValidityTue, 19 Mar 2024 04:48:01 GMT - Mon, 17 Jun 2024 04:48:00 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.19854162822474974 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPoR4JXLqkfpf-u09lS0JRH4wHiZk5pp3DpGwPYXSZHMyeJV_4xQVHswRg5LBcY1bjGFi2uKubkW3g
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 13 Apr 2024 07:11:32 GMT
cache-control: public, max-age=86400
age: 573030
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BKRHfBJHvpiYUs7SH6veX5swv6xkBVP7YTu%2BZKV2gWbb1bZjUSADw2%2FLK24UoHg2aB1Q0rvI8RMlR%2BRT31E5WB5x2f4JlVF%2BnF%2ForP7nOxfI4xkvxoX0huLLKuNY9wxXtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876ff29f8d2756a8-OSL
X-Firefox-Spdy: h2
ad-delivery.net/px.gif?ch=2
172.67.69.19200 OK 43 B URL GET HTTP/2 ad-delivery.net/px.gif?ch=2
IP 172.67.69.19:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectad-delivery.net
Fingerprint03:56:A5:CD:68:65:E1:00:BD:87:3E:45:0C:B1:3B:C2:2C:8C:4E:18
ValidityTue, 19 Mar 2024 04:48:01 GMT - Mon, 17 Jun 2024 04:48:00 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=2 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPoR4JXLqkfpf-u09lS0JRH4wHiZk5pp3DpGwPYXSZHMyeJV_4xQVHswRg5LBcY1bjGFi2uKubkW3g
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 13 Apr 2024 07:11:32 GMT
cache-control: public, max-age=86400
age: 573030
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DN4IdvNoDAUskNL0ujhtj8mZbS5VTZr1QsDW6VBWQ5MDErxKaQ%2FjOMw3BJ8sk1OpO04kJLHy4TEOL%2BNsDLAGGCmjqLUqHT%2BtTQdGodJVJSJOynuzUdQHzGd75dfiexkitA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876ff29f9d2b56a8-OSL
X-Firefox-Spdy: h2
c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban
35.241.34.106200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban
IP 35.241.34.106:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectc.4dex.io
Fingerprint4B:88:1D:92:82:C6:1F:65:AB:6C:11:5F:5E:09:AF:4B:42:06:FC:8A
ValiditySun, 25 Feb 2024 00:57:21 GMT - Sat, 25 May 2024 01:51:35 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban
35.241.34.106200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban
IP 35.241.34.106:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectc.4dex.io
Fingerprint4B:88:1D:92:82:C6:1F:65:AB:6C:11:5F:5E:09:AF:4B:42:06:FC:8A
ValiditySun, 25 Feb 2024 00:57:21 GMT - Sat, 25 May 2024 01:51:35 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.btloader.com/mw/state?bt_env=prod
130.211.23.194204 No Content 0 B URL GET HTTP/2 api.btloader.com/mw/state?bt_env=prod
IP 130.211.23.194:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint91:D7:31:40:CA:23:84:1D:EC:B3:E5:18:FA:A1:67:B2:7E:BF:4D:3F
ValidityFri, 05 Apr 2024 16:07:23 GMT - Thu, 04 Jul 2024 17:00:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mw/state?bt_env=prod HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: *
vary: Origin
date: Fri, 19 Apr 2024 21:22:02 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
185.89.211.84200 OK 19 B URL POST HTTP/2 ib.adnxs.com/ut/v3/prebid
IP 185.89.211.84:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerDigiCert Inc
Subject*.adnxs.com
Fingerprint67:2D:49:EE:1E:AF:D8:2B:B2:85:1A:C5:39:29:91:05:8E:5E:6F:AA
ValidityWed, 14 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
Hash f333cec2aef5c287691c1670f8207232
6dafbe0bf001219999903a4ed5bd23af5b81e52d
0c09c070833c786cb25be38bc30992b30bad578f817dbc9e34beacd8b8ea44c5
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1145
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.4
date: Fri, 19 Apr 2024 21:22:03 GMT
content-type: application/json; charset=utf-8
content-length: 19
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: https://rentry.co
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
an-x-request-uuid: db4c1b2b-ee45-41d1-af5e-c4abd647d96e
x-proxy-origin: 91.90.42.154; 91.90.42.154; 959.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
X-Firefox-Spdy: h2
api.btloader.com/country?o=5102648370397184
130.211.23.194200 OK 37 B URL GET HTTP/2 api.btloader.com/country?o=5102648370397184
IP 130.211.23.194:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint91:D7:31:40:CA:23:84:1D:EC:B3:E5:18:FA:A1:67:B2:7E:BF:4D:3F
ValidityFri, 05 Apr 2024 16:07:23 GMT - Thu, 04 Jul 2024 17:00:56 GMT
Hash bdfe458835550c34f45fc9fdfeebb12a
0f08aa02e7bcbf4c5e991a5defb2fdbd03a86f3d
ad26ec64cc613fbfbd47faaf39f9921c2b19769bde1d3c5c2857a671e7863cf9
GET /country?o=5102648370397184 HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: private, max-age=300, stale-while-revalidate=600, stale-if-error=600
content-type: application/json
vary: Origin
date: Fri, 19 Apr 2024 21:22:03 GMT
content-length: 37
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.btloader.com/pv?tid=6CK86mXp&w=5123465689956352&o=5102648370397184&cv=2.1.41&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2F3sq9ax85&sid=f8bsJfaMjm&pm=true&upapi=true
130.211.23.194204 No Content 0 B URL GET HTTP/2 api.btloader.com/pv?tid=6CK86mXp&w=5123465689956352&o=5102648370397184&cv=2.1.41&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2F3sq9ax85&sid=f8bsJfaMjm&pm=true&upapi=true
IP 130.211.23.194:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint91:D7:31:40:CA:23:84:1D:EC:B3:E5:18:FA:A1:67:B2:7E:BF:4D:3F
ValidityFri, 05 Apr 2024 16:07:23 GMT - Thu, 04 Jul 2024 17:00:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pv?tid=6CK86mXp&w=5123465689956352&o=5102648370397184&cv=2.1.41&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2F3sq9ax85&sid=f8bsJfaMjm&pm=true&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Fri, 19 Apr 2024 21:22:03 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
35.241.34.106200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
IP 35.241.34.106:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectc.4dex.io
Fingerprint4B:88:1D:92:82:C6:1F:65:AB:6C:11:5F:5E:09:AF:4B:42:06:FC:8A
ValiditySun, 25 Feb 2024 00:57:21 GMT - Sat, 25 May 2024 01:51:35 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0 HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 21:22:03 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
35.241.34.106200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
IP 35.241.34.106:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectc.4dex.io
Fingerprint4B:88:1D:92:82:C6:1F:65:AB:6C:11:5F:5E:09:AF:4B:42:06:FC:8A
ValiditySun, 25 Feb 2024 00:57:21 GMT - Sat, 25 May 2024 01:51:35 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=68a1f001-b40c-4f9f-a062-965694aff7f9&auct_id=fc0d0a84-f8df-459b-8be3-b1ba056ef345&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0 HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 21:22:03 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
href.li/?https://rentry.co/3sq9ax85
192.0.78.27 8.4 kB URL href.li/?https://rentry.co/3sq9ax85
IP 192.0.78.27:0
File type HTML document, ASCII text
Hash 47a853929b9910c6203fd2453806056f
f4c23322697de030dd2e8d5061772989132874af
c4f907abf3e799bf89a33b3d8edceafaa8e9823f3bce90d093b3731f842eec39
GET /?https://rentry.co/3sq9ax85 HTTP/1.1
Host: href.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m9w6ldeg4.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 21:22:01 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: br
x-ac: 3.arn _dca MISS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
rentry.co/favicon.ico
188.114.96.1200 OK 1.5 kB IP 188.114.96.1:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint84:20:CC:39:9B:56:36:76:23:C0:86:49:01:6F:14:C1:A6:B6:F1:52
ValidityWed, 21 Feb 2024 12:50:49 GMT - Tue, 21 May 2024 12:50:48 GMT
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Hash b102d58bb28a83de9b59fedcd08d17ea
8b6edee7f5d96b69c6e4f0c4e8376c640a34aa63
93eab1e1c50b4ff5b4aa5eefa6e85ce7bae235b52886914529c8b8aa4319f26c
GET /favicon.ico HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/3sq9ax85
DNT: 1
Connection: keep-alive
Cookie: _ga_LLFSDKZXET=GS1.1.1713561722.1.0.1713561722.0.0.0; _ga=GA1.1.972034882.1713561722
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: image/x-icon
last-modified: Mon, 25 Mar 2024 11:12:19 GMT
etag: W/"66015c13-3aee"
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400, vary
cf-cache-status: HIT
age: 1880
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vScmV6H%2FBFJGxTjPCJyPwv3sAkzw7JgpXPBNQiZuJAv3bPqwyjlqWW%2BJc%2FgHZ3iJtVjG9ELlewa9QdqIPTDmafXamHM1fc%2F8y%2FQefc5ck2oQfTZJSNREx40yntA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876ff29c8c4a5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
51.75.86.98204 No Content 0 B URL GET HTTP/2 onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
IP 51.75.86.98:443
Requested by https://public.servenobid.com/sync.html
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
147.75.84.158302 Found 0 B URL GET HTTP/2 prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
IP 147.75.84.158:443
Requested by https://public.servenobid.com/sync.html
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA1:19:DD:ED:07:5D:68:74:9A:FE:2B:DF:66:5F:D6:E6:F5:B4:1E:6C
ValidityWed, 06 Mar 2024 11:52:06 GMT - Tue, 04 Jun 2024 11:52:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Fri, 19 Apr 2024 21:22:06 GMT
location: https://ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
server: envoy
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
34.250.231.235200 OK 0 B URL GET HTTP/2 ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
IP 34.250.231.235:443
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=327&uid=&us_privacy=1YN-&gdpr=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 21:22:06 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D
54.205.61.221204 No Content 0 B URL GET HTTP/2 cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D
IP 54.205.61.221:443
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subject*.yellowblue.io
Fingerprint3E:2F:02:15:24:62:BE:D4:BC:D1:64:8E:24:5F:A0:20:D8:CD:E1:DA
ValidityMon, 18 Mar 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D HTTP/1.1
Host: cs-server-s2s.yellowblue.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 19 Apr 2024 21:22:06 GMT
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
ads.dxkulture.com/xuid
45.55.126.71200 OK 0 B IP 45.55.126.71:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
FingerprintAB:DB:C9:37:E1:B0:D9:3E:D1:11:FD:AF:BA:29:99:C9:C6:48:21:11
ValidityWed, 27 Mar 2024 07:55:48 GMT - Tue, 25 Jun 2024 07:55:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xuid HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 21:22:06 GMT
Content-Length: 0
Connection: close
Cache-Control: no-cache, no-store
Set-Cookie: mtuid=159f1fad-74dd-45ad-9a60-f3c29cfda296; Path=/; Domain=dxkulture.com; Expires=Wed, 16 Oct 2024 21:22:06 GMT; Secure; SameSite=None
Vary: Origin
Strict-Transport-Security: max-age=15724800; includeSubDomains
ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
44.214.38.233204 No Content 0 B URL GET HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
IP 44.214.38.233:443
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subjectssp.disqus.com
Fingerprint96:FD:73:B5:E9:EF:6E:2E:4D:32:F8:DA:60:AD:74:67:56:BA:B7:89
ValiditySat, 21 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 19 Apr 2024 21:22:06 GMT
cache-control: no-store
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
cdn.dxkulture.com/x/sync.html
172.64.145.29200 OK 8.9 kB URL GET HTTP/2 cdn.dxkulture.com/x/sync.html
IP 172.64.145.29:443
Requested by https://public.servenobid.com/sync.html
Certificate IssuerLet's Encrypt
Subjectcdn.dxkulture.com
Fingerprint08:8A:93:66:15:58:5B:EC:72:44:E6:F7:AD:5E:C0:DA:78:CE:F1:DB
ValidityThu, 28 Mar 2024 07:07:58 GMT - Wed, 26 Jun 2024 07:07:57 GMT
File type gzip compressed data, from Unix
Hash da0149dc2956a636ba56b8487fa58822
6cbf43f0f2e165ea4ef1d69e5c252c40e8752f1a
2520ded183e8e4318662327d44a394a798ad40b4b7ab335ee0f3594d8722faea
GET /x/sync.html HTTP/1.1
Host: cdn.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 21:22:06 GMT
content-type: text/html
last-modified: Wed, 10 Apr 2024 13:45:25 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx00000bb692190f893b456-0066169893-8d8bb0c3-nyc3c
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: 4cf2344c-b5f4-4372-87f8-a2f54204ed44
cache-control: max-age=3600
x-envoy-upstream-healthchecked-cluster:
cf-cache-status: HIT
age: 835
set-cookie: __cf_bm=CucwDuMRgspP5xZFSfUZaXfPs.c_8fy8wLlXRTxsZUk-1713561726-1.0.1.1-Y.4JyJ7n2foeVQD1mvVO5uOtr.7G.Gb8n2XMSZoHm.fPf62Xf75P2cwKIBilG1zkz9Hq9AamVbtsTJYNrwsfaA; path=/; expires=Fri, 19-Apr-24 21:52:06 GMT; domain=.cdn.dxkulture.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 876ff2b5d8c456c6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ads.dxkulture.com/usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID
45.55.126.71301 Moved Permanently 119 B URL GET HTTP/1.1 ads.dxkulture.com/usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID
IP 45.55.126.71:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
FingerprintAB:DB:C9:37:E1:B0:D9:3E:D1:11:FD:AF:BA:29:99:C9:C6:48:21:11
ValidityWed, 27 Mar 2024 07:55:48 GMT - Tue, 25 Jun 2024 07:55:47 GMT
File type HTML document, ASCII text
Hash 832b84259fc2b05b7891432e81be05e3
30fd23048c98c1c6ef4777ec416146400488f43b
bd0bf9a0c7f6b227526e0a677ab382c09c0bf66a177ef1a354b9e9701413a2be
GET /usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Cookie: mtuid=159f1fad-74dd-45ad-9a60-f3c29cfda296
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 19 Apr 2024 21:22:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 119
Connection: close
Location: https://ads.servenobid.com/sync?pid=369&uid=159f1fad-74dd-45ad-9a60-f3c29cfda296
Vary: Origin
Strict-Transport-Security: max-age=15724800; includeSubDomains
ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26uid%3D%24UID&partner=kulturemedia
44.214.38.233204 No Content 0 B URL GET HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26uid%3D%24UID&partner=kulturemedia
IP 44.214.38.233:443
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerAmazon
Subjectssp.disqus.com
Fingerprint96:FD:73:B5:E9:EF:6E:2E:4D:32:F8:DA:60:AD:74:67:56:BA:B7:89
ValiditySat, 21 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26uid%3D%24UID&partner=kulturemedia HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 19 Apr 2024 21:22:08 GMT
cache-control: no-store
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=369&uid=159f1fad-74dd-45ad-9a60-f3c29cfda296
34.250.231.235200 OK 0 B URL GET HTTP/2 ads.servenobid.com/sync?pid=369&uid=159f1fad-74dd-45ad-9a60-f3c29cfda296
IP 34.250.231.235:443
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=369&uid=159f1fad-74dd-45ad-9a60-f3c29cfda296 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdn.dxkulture.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 21:22:08 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_369=159f1fad-74dd-45ad-9a60-f3c29cfda296; domain=servenobid.com; SameSite=None; Expires=Fri, 26 Apr 2024 21:22:08 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.dxkulture.com/usync/lr.gif
45.55.126.71302 Found 107 B URL GET HTTP/1.1 ads.dxkulture.com/usync/lr.gif
IP 45.55.126.71:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
FingerprintAB:DB:C9:37:E1:B0:D9:3E:D1:11:FD:AF:BA:29:99:C9:C6:48:21:11
ValidityWed, 27 Mar 2024 07:55:48 GMT - Tue, 25 Jun 2024 07:55:47 GMT
File type HTML document, ASCII text
Hash a24aa93a81f00c40ab115a9be809da19
529c13518b2600fde1c90464ac94f18cc8f73731
e4a14f7a59243abc63b675193e57af594f15818849cd43c6606806bf55ff6e73
GET /usync/lr.gif HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Cookie: mtuid=159f1fad-74dd-45ad-9a60-f3c29cfda296
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Fri, 19 Apr 2024 21:22:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 107
Connection: close
Location: https://idsync.rlcdn.com/712910.gif?partner_uid=159f1fad-74dd-45ad-9a60-f3c29cfda296
Vary: Origin
Strict-Transport-Security: max-age=15724800; includeSubDomains
rentry.co/static/css/bootstrap.min.css?v=85
188.114.96.1200 OK 187 kB URL GET HTTP/3 rentry.co/static/css/bootstrap.min.css?v=85
IP 188.114.96.1:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint84:20:CC:39:9B:56:36:76:23:C0:86:49:01:6F:14:C1:A6:B6:F1:52
ValidityWed, 21 Feb 2024 12:50:49 GMT - Tue, 21 May 2024 12:50:48 GMT
File type ASCII text, with very long lines (65324)
Size 187 kB (187060 bytes)
Hash b5c6b9fce1d231e04e9d13367d000374
9134aa3c495f930904644802bc32a62bab05233b
27b86cf042b9b4e90b8618499e4ebcaefb04d56d9a2cb18bf5b6a824e594f224
GET /static/css/bootstrap.min.css?v=85 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/3sq9ax85
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: text/css
last-modified: Thu, 25 Jan 2024 10:57:01 GMT
etag: W/"65b23e7d-2dab4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 5035865
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6hZUPc4mSWfVtBEyt5u7ZUog2cyXEGI%2FdSDdoSBcYpTx63YrkbwoAODrHRSVTCTc51sUqaJrGojKEeRg4nM5wRu%2BF%2FkJaj1HwfpDqJC2ye67144IEdN2MS%2BSQq4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876ff29b1af95699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
188.114.96.1200 OK 9.8 kB URL User Request GET HTTP/2 IP 188.114.96.1:443
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint84:20:CC:39:9B:56:36:76:23:C0:86:49:01:6F:14:C1:A6:B6:F1:52
ValidityWed, 21 Feb 2024 12:50:49 GMT - Tue, 21 May 2024 12:50:48 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (9992), with no line terminators
Hash 2b8b8858a5171625156add70946d9522
3888f572176855628a4aba52fdaeee0be50c01cb
5fe1326d58b92cc5eb7e17f6849804cf4528200794ae33928bcc46f2ef41b5ad
GET /3sq9ax85 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: text/html; charset=utf-8
vary: Origin, Cookie
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: Vary
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dGYOpwWboYbYTbaLjnmzq31k%2BFITD3wdrpSZFYOKdrQIt31ciXa0uGZiVd70%2F8yCLbe2a2mFf%2F3IJdMf%2BUqgs9fURqNMEDqRVY9sPQdn%2Fz6dBrzGtWDdSfeCvL0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876ff29a4df1b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
onetag-sys.com/usync/?cb=1713561722868
51.75.86.98204 No Content 0 B URL GET HTTP/2 onetag-sys.com/usync/?cb=1713561722868
IP 51.75.86.98:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1713561722868 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
public.servenobid.com/sync.html
54.230.111.4200 OK 8.8 kB URL GET HTTP/2 public.servenobid.com/sync.html
IP 54.230.111.4:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerAmazon
Subject*.servenobid.com
Fingerprint96:33:3B:11:8E:FE:89:CB:05:31:59:EF:8B:B5:EF:32:91:13:48:BB
ValidityFri, 08 Dec 2023 00:00:00 GMT - Sun, 05 Jan 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (9050), with no line terminators
Hash d67951daa3131c75fbfad1a09ec4b178
2d2a8e0c9cf93db5cfa9078610ecb308de963fe7
0cd88a27c3ff89128c7be5bef21ba5565b81b475e9fb5e0e1edd628edc5dbf0b
GET /sync.html HTTP/1.1
Host: public.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
last-modified: Thu, 11 Apr 2024 21:40:36 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-codebuild-content-sha256: 0046597e275c679c7baf4bc17a16f7541f9f38f204ecbef154219cfbfe8dbe01
x-amz-version-id: null
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-1:559734745816:build/adserver-public-prod:69374897-8ebf-443f-b8c0-1cc68fdce58a
x-amz-meta-codebuild-content-md5: 7222d9b5c21ee453bec6e6836a76e694
server: AmazonS3
content-encoding: gzip
date: Fri, 19 Apr 2024 02:08:36 GMT
cache-control: max-age=86400
etag: W/"ff07c8e3bd68ae557c7783f563f2e16b"
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I4nKcpXlKRrYK35EppIvdWzQsXZhb2HikecCe0NZKBQoElfRh7OSlA==
age: 69211
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
mp.4dex.io/prebid
104.18.34.178200 OK 66 B IP 104.18.34.178:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint02:E1:92:C5:72:6D:E0:64:4A:46:05:69:81:98:7C:43:13:E7:15:7A
ValidityTue, 01 Aug 2023 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1807
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://rentry.co
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Calling bidders. no bid responses
x-version: 3.0.0-gcp-ams
x-warn: Process Floors. 2 inventory rules not found for mediatype: banner and adUnitCode: bsa-zone_1699624989460-1_123456, Process Floors. 3 inventory rules not found for mediatype: banner and adUnitCode: bsa-zone_1700727262982-7_123456
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 876ff29eb87bb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
rentry.co/static/js/jquery.min.js?v=21
188.114.96.1200 OK 92 kB URL GET HTTP/3 rentry.co/static/js/jquery.min.js?v=21
IP 188.114.96.1:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint84:20:CC:39:9B:56:36:76:23:C0:86:49:01:6F:14:C1:A6:B6:F1:52
ValidityWed, 21 Feb 2024 12:50:49 GMT - Tue, 21 May 2024 12:50:48 GMT
File type JavaScript source, ASCII text, with very long lines (65451)
Hash 0d9824e6289fa893434c354eadde4075
b9a1358f185c7239829712de6830333829e9bd33
4c1add9ba5d6cde3a03149a022b61163b35c4d5c738cf32470e7e7bd611e4ac6
GET /static/js/jquery.min.js?v=21 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/3sq9ax85
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: application/javascript
last-modified: Thu, 25 Jan 2024 10:57:01 GMT
etag: W/"65b23e7d-166ee"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 5035865
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6EDe9JJCB%2FTnATMIDpaw%2F8a63xBWiXUj6xkGLA%2BvLol6uoTqfFiUNAL0D0aUJ8y1VfWIj0ihrzGLnxq6RfZC%2BbZhDxzYWq%2B41e%2FS%2Fv1ZQn6i4s57nEPHwC6M%2B6I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876ff29b1afd5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ads.servenobid.com/adreq?cb=8126
34.250.231.235200 OK 92 B URL POST HTTP/2 ads.servenobid.com/adreq?cb=8126
IP 34.250.231.235:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash e9b84c03062471ff6c7b91fe7efdb2aa
d6bfce017d4efe5cb4436c8319bf997d055105bd
e2dbba9994a7fe7f56194281a5b5386552140199beea9f175546d7d796e46434
POST /adreq?cb=8126 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1036
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: application/json
access-control-allow-origin: https://rentry.co
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
rentry.co/static/js/bootstrap.min.js?v=21
188.114.96.1200 OK 58 kB URL GET HTTP/3 rentry.co/static/js/bootstrap.min.js?v=21
IP 188.114.96.1:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectrentry.co
Fingerprint84:20:CC:39:9B:56:36:76:23:C0:86:49:01:6F:14:C1:A6:B6:F1:52
ValidityWed, 21 Feb 2024 12:50:49 GMT - Tue, 21 May 2024 12:50:48 GMT
File type JavaScript source, ASCII text, with very long lines (57791)
Hash e1d98d47689e00f8ecbc5d9f61bdb42e
6778fed3cf095a318141a31f455c8f4663885bde
0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b
GET /static/js/bootstrap.min.js?v=21 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/3sq9ax85
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: application/javascript
last-modified: Thu, 25 Jan 2024 10:57:00 GMT
etag: W/"65b23e7c-e2d8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 5035865
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GufvoDyBDhKhwvdhRkfffQ9IvP1A5WFpFo6CJFEAAtPKzYrc3CXqT65tvGCx25fgXvHqPI1D%2Fy4T2fqXbcQG1mqUaTz3HRNyHCONsSZgUqSdschcMXUI7Gj%2Bcj0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876ff29b1aff5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
btloader.com/tag?o=5102648370397184&upapi=true
104.22.75.216200 OK 67 kB URL GET HTTP/2 btloader.com/tag?o=5102648370397184&upapi=true
IP 104.22.75.216:443
Requested by https://rentry.co/3sq9ax85
Certificate IssuerGoogle Trust Services LLC
Subjectbtloader.com
Fingerprint70:F7:F9:F7:42:5B:08:2E:94:58:BB:71:DF:F9:4D:8C:F5:09:57:DA
ValiditySun, 14 Apr 2024 06:05:01 GMT - Sat, 13 Jul 2024 06:05:00 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 2c90fb1dbe6cb0041538a4245218adb0
1e53c5c83bb80cb789fb710073df0b1db6cfc0a3
603995372c4227eaf4b26f09a9d081270ba1379dc13ccb85bb14db9c8c86e15e
GET /tag?o=5102648370397184&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 21:22:02 GMT
content-type: application/javascript
content-length: 21415
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
content-encoding: gzip
etag: "a26047aefdc668c8678be3c881b3442c"
last-modified: Fri, 19 Apr 2024 21:14:42 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 427
accept-ranges: bytes
server: cloudflare
cf-ray: 876ff29ebdf092cd-CPH
X-Firefox-Spdy: h2