| click.imageperfect.in/lp/lp.php?urlid=2bccd82ee1&adst=257230&nsrc=2767&pixel=$PIXEL&siteid=$AFF | 162.243.32.94 | 200 OK | 636 B |
URL User Request GET HTTP/1.1click.imageperfect.in/lp/lp.php?urlid=2bccd82ee1&adst=257230&nsrc=2767&pixel=$PIXEL&siteid=$AFF IP162.243.32.94:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerSectigo Limited Subject*.imageperfect.in Fingerprint28:5B:A9:59:67:EF:9B:8A:6E:15:B3:7D:33:FF:89:3A:69:1E:88:9E ValidityWed, 05 Jul 2023 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash9d5f583839a81c8cbc2f6838469c0ac0 3dc1527ed0fadadf4e7cc91521551b96dd3634dd 62ebc092efb3d2832654c5000936f46adda31971482dea913f7ce3a3112c9276
GET /lp/lp.php?urlid=2bccd82ee1&adst=257230&nsrc=2767&pixel=$PIXEL&siteid=$AFF HTTP/1.1
Host: click.imageperfect.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: text/html;charset=UTF-8
Content-Length: 636
Date: Thu, 25 Apr 2024 17:38:53 GMT
|
|
| dgpcl.hotrk0.com/offer?offer_id=1534&aff_id=1022&aff_sub=0526290325723025723025230827671e69c92e0aad&aff_pub=jin3i | 3.164.230.47 | 302 Found | 0 B |
URL User Request GET HTTP/2dgpcl.hotrk0.com/offer?offer_id=1534&aff_id=1022&aff_sub=0526290325723025723025230827671e69c92e0aad&aff_pub=jin3i IP3.164.230.47:443
CertificateIssuerAmazon Subjecthotrk0.com Fingerprint4A:AA:30:FE:50:99:C0:74:7D:7C:58:AA:8F:AF:3A:F0:06:13:39:6B ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 14 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /offer?offer_id=1534&aff_id=1022&aff_sub=0526290325723025723025230827671e69c92e0aad&aff_pub=jin3i HTTP/1.1
Host: dgpcl.hotrk0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://click.imageperfect.in/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
location: https://go.doblevialatam.com/1659656678?aff_token=aazz100362cdv30003d599104251738404e8f556fc94551ea99c6e4
date: Thu, 25 Apr 2024 17:38:54 GMT
x-application-context: core-application:prod:8089
set-cookie: JSESSIONID=ADB44A18E759330AD88276DE70150E06; Path=/; HttpOnly
x-cache: Miss from cloudfront
via: 1.1 5d83ff4fc3f1b992abe457ff43255c0a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P1
x-amz-cf-id: ionqfn72B_hlFJfRGz_M02BxXc4MiWUHYttrb_OWv95AO4wTKwO5IQ==
X-Firefox-Spdy: h2
|
|
| go.doblevialatam.com/1659656678?aff_token=aazz100362cdv30003d599104251738404e8f556fc94551ea99c6e4 | 162.242.198.222 | 307 Temporary Redirect | 4.7 kB |
URL User Request GET HTTP/2go.doblevialatam.com/1659656678?aff_token=aazz100362cdv30003d599104251738404e8f556fc94551ea99c6e4 IP162.242.198.222:443
CertificateIssuerSectigo Limited Subjecttrack.clickeoads.com FingerprintC2:0E:43:9D:B6:BC:F9:4F:03:42:D5:AB:6D:4B:44:E7:DE:AB:D9:0E ValidityTue, 15 Aug 2023 00:00:00 GMT - Sat, 14 Sep 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text Hash90d692e45ecb3e2ff889d9420a39a45d c43cd38470da4d84b39baf901dc4ca0a14d1ca5c ca0f337c4e065a610b5598fb8fa41ca20d568c3d7f8a39f30a13df4d4ee2b55a
GET /1659656678?aff_token=aazz100362cdv30003d599104251738404e8f556fc94551ea99c6e4 HTTP/1.1
Host: go.doblevialatam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://click.imageperfect.in/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
server: nginx/1.16.1
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
date: Thu, 25 Apr 2024 17:38:54 GMT
location: https://track.clickeoads.com/311211829?sub1=6783710cf13d79d227836ed7&sub2=0410-9aa587fe93
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
set-cookie: PHPSESSID=emua5m26479u938na736qcof98; path=/
x-powered-by: PHP/7.3.27
X-Firefox-Spdy: h2
|
|
| wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 | 52.67.216.153 | 200 OK | 1.8 kB |
URL User Request GET HTTP/1.1wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 IP52.67.216.153:80
File typeJavaScript source, Unicode text, UTF-8 text Hash90d692e45ecb3e2ff889d9420a39a45d c43cd38470da4d84b39baf901dc4ca0a14d1ca5c ca0f337c4e065a610b5598fb8fa41ca20d568c3d7f8a39f30a13df4d4ee2b55a
GET /?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 HTTP/1.1
Host: wap.playtown.com.py
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: https://click.imageperfect.in/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=mfv0nnepsrvsflb0bff35r32c1
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 17:38:56 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1762
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js | 142.250.74.74 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP142.250.74.74:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32077) Hash4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:54:39 GMT
expires: Fri, 18 Apr 2025 17:54:39 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 603858
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-107477021-3 | 142.250.74.72 | 200 OK | 73 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-107477021-3 IP142.250.74.72:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash6bf39d390d74a8a46d1864eb97eadad9 204e40260a2aee9d9fb290bff8e76ee96817de1f 6862d491fe2c3c2fde87468132c6068dbf991566a3dd1ec6f9cc825f6c798bc9
GET /gtag/js?id=UA-107477021-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 17:38:57 GMT
expires: Thu, 25 Apr 2024 17:38:57 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 16:24:08 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73191
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-YKRQQDN8D7&l=dataLayer&cx=c | 142.250.74.72 | 200 OK | 91 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-YKRQQDN8D7&l=dataLayer&cx=c IP142.250.74.72:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hash25251565b06bb38ceabb0cf42d2803cf a5edbc2794e51eb9e51cf2145bb6e1c95934ff18 e8deccecdb85c428afc6e92bbc197d82ce93ca70b58d805d075ffa4db1c298be
GET /gtag/js?id=G-YKRQQDN8D7&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 17:38:57 GMT
expires: Thu, 25 Apr 2024 17:38:57 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91110
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| s3-sa-east-1.amazonaws.com/ptown-wap-latam/js/funciones_varias.js | 16.12.0.72 | 200 OK | 1.6 kB |
URL GET HTTP/1.1s3-sa-east-1.amazonaws.com/ptown-wap-latam/js/funciones_varias.js IP16.12.0.72:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerAmazon Subject*.s3-sa-east-1.amazonaws.com FingerprintA4:96:28:BF:99:1D:CD:5C:DA:DB:06:60:06:B7:EE:EA:FD:25:51:1B ValidityFri, 12 Apr 2024 00:00:00 GMT - Sun, 30 Mar 2025 23:59:59 GMT
Hash703306fcda722fb64db2a9f038591ef5 b4735c6cc2238a17cdbb3426b930bf0feb38c5bd 3f287bc49466b42c8b414b40ab36dd1e2807c349a1e88bc2ed528a0dc46fa4d2
GET /ptown-wap-latam/js/funciones_varias.js HTTP/1.1
Host: s3-sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: zObj27s8B/cja2nwqHoD5hm6fSZIzfcO87wEMDIbELE2uG/fXTMMUJg+Ey2AkW0ANm7VRhascUg=
x-amz-request-id: V3VXQC9DBK4T8BNZ
Date: Thu, 25 Apr 2024 17:38:59 GMT
Last-Modified: Wed, 28 Oct 2020 19:59:51 GMT
ETag: "703306fcda722fb64db2a9f038591ef5"
x-amz-version-id: tXbDdiqkjta1VRx_wDvvw_SFyyPfmjsZ
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 1574
|
|
| ptown-wap-ar.s3-sa-east-1.amazonaws.com/css/masjuntos/lovetester/custom.css | 16.12.2.54 | 200 OK | 73 kB |
URL GET HTTP/1.1ptown-wap-ar.s3-sa-east-1.amazonaws.com/css/masjuntos/lovetester/custom.css IP16.12.2.54:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerAmazon Subject*.s3-sa-east-1.amazonaws.com FingerprintA4:96:28:BF:99:1D:CD:5C:DA:DB:06:60:06:B7:EE:EA:FD:25:51:1B ValidityFri, 12 Apr 2024 00:00:00 GMT - Sun, 30 Mar 2025 23:59:59 GMT
File typeASCII text, with very long lines (65324) Hashe56a9147f4d6414a3b478dfcd21caa2a 47bdd197e49508eb6c2c982e6802790635d68c7b bfaad6c5a051e0680a92aabbb89f07d4b99844c87bfcb7ca54e2105006e08712
GET /css/masjuntos/lovetester/custom.css HTTP/1.1
Host: ptown-wap-ar.s3-sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: v+IiNKYwSHBzTxCtun0VwBxFtQJ5zuWDCJo3X4HH0TTybMWcugnu7JiHJuEc8HULgpKkE3SN9ts=
x-amz-request-id: 8D547AY5EVH26DSM
Date: Thu, 25 Apr 2024 17:38:58 GMT
Last-Modified: Mon, 07 Sep 2020 19:53:13 GMT
ETag: "e56a9147f4d6414a3b478dfcd21caa2a"
x-amz-version-id: 1dSzJbLd.K2PVNY9tCvmb6D_qRPPoy_o
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 72934
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-YKRQQDN8D7&_ng=1>m=45je44o0v9134475350za200&_p=1714066737178&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1222199343.1714066738&ul=en-us&sr=1280x1024&lps=1&pscdl=noapi&_eu=AAAI&_s=1&sid=1714066737&sct=1&seg=0&dl=http%3A%2F%2Fwap.playtown.com.py%2F%3Fid%3D3284%26tid%3D5472d35a66e0bb51b52cc750%26pubid%3D0006-593efd729f%26gclid%3D0&dr=https%3A%2F%2Fclick.imageperfect.in%2F&dt=M%C3%A1s%20Juntos&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=3998 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-YKRQQDN8D7&_ng=1>m=45je44o0v9134475350za200&_p=1714066737178&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1222199343.1714066738&ul=en-us&sr=1280x1024&lps=1&pscdl=noapi&_eu=AAAI&_s=1&sid=1714066737&sct=1&seg=0&dl=http%3A%2F%2Fwap.playtown.com.py%2F%3Fid%3D3284%26tid%3D5472d35a66e0bb51b52cc750%26pubid%3D0006-593efd729f%26gclid%3D0&dr=https%3A%2F%2Fclick.imageperfect.in%2F&dt=M%C3%A1s%20Juntos&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=3998 IP216.239.34.36:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-YKRQQDN8D7&_ng=1>m=45je44o0v9134475350za200&_p=1714066737178&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1222199343.1714066738&ul=en-us&sr=1280x1024&lps=1&pscdl=noapi&_eu=AAAI&_s=1&sid=1714066737&sct=1&seg=0&dl=http%3A%2F%2Fwap.playtown.com.py%2F%3Fid%3D3284%26tid%3D5472d35a66e0bb51b52cc750%26pubid%3D0006-593efd729f%26gclid%3D0&dr=https%3A%2F%2Fclick.imageperfect.in%2F&dt=M%C3%A1s%20Juntos&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=3998 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://wap.playtown.com.py
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://wap.playtown.com.py
date: Thu, 25 Apr 2024 17:38:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/yellowtail/v22/OZpGg_pnoDtINPfRIlLohlvHwQ.woff2 | 142.250.74.131 | 200 OK | 18 kB |
URL GET HTTP/2fonts.gstatic.com/s/yellowtail/v22/OZpGg_pnoDtINPfRIlLohlvHwQ.woff2 IP142.250.74.131:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18308, version 1.0 Hash5394bcfe7a186be1c99dc8688e5a9c6d 9f39f63af40a24e01442e32857704f64ba3be606 78f5413a0d04f3331122d49f10507a6c290afe4d441fc49a968c7779331aedb4
GET /s/yellowtail/v22/OZpGg_pnoDtINPfRIlLohlvHwQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://wap.playtown.com.py
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 04:08:16 GMT
expires: Wed, 23 Apr 2025 04:08:16 GMT
cache-control: public, max-age=31536000
age: 221442
last-modified: Thu, 24 Aug 2023 21:12:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ptown-wap-ar.s3-sa-east-1.amazonaws.com/img/masjuntos/lovetester/pensado.png | 16.12.2.54 | 200 OK | 5.5 kB |
URL GET HTTP/1.1ptown-wap-ar.s3-sa-east-1.amazonaws.com/img/masjuntos/lovetester/pensado.png IP16.12.2.54:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerAmazon Subject*.s3-sa-east-1.amazonaws.com FingerprintA4:96:28:BF:99:1D:CD:5C:DA:DB:06:60:06:B7:EE:EA:FD:25:51:1B ValidityFri, 12 Apr 2024 00:00:00 GMT - Sun, 30 Mar 2025 23:59:59 GMT
File typePNG image data, 287 x 180, 8-bit colormap, non-interlaced Hash2d9cc1d7599f798c9e3beeee18a93ce8 5050c96f786d6ee64794c9d733a4889a9b86430c 9342315a2dc48253d2e9ca92e0d194b9a49970cb92e7b4c3d17966ac5205ea28
GET /img/masjuntos/lovetester/pensado.png HTTP/1.1
Host: ptown-wap-ar.s3-sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: Fv++P62kKrpbF2tgpCI4WyJU8ipL7dBhB44XZgN2zXEO23CrxpSllUKd7b3LTwkf82z+nUyjqU4=
x-amz-request-id: V3VXSSNMSF0N0TXR
Date: Thu, 25 Apr 2024 17:38:59 GMT
Last-Modified: Mon, 07 Sep 2020 19:38:30 GMT
ETag: "2d9cc1d7599f798c9e3beeee18a93ce8"
x-amz-version-id: Plwaqoa460mDoORRVdihUHzbwHxASALp
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5523
|
|
| ptown-wap-ar.s3.sa-east-1.amazonaws.com/img/masjuntos/mj_logoblanco.png | 3.5.232.137 | 200 OK | 9.4 kB |
URL GET HTTP/1.1ptown-wap-ar.s3.sa-east-1.amazonaws.com/img/masjuntos/mj_logoblanco.png IP3.5.232.137:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerAmazon Subject*.s3-sa-east-1.amazonaws.com FingerprintA4:96:28:BF:99:1D:CD:5C:DA:DB:06:60:06:B7:EE:EA:FD:25:51:1B ValidityFri, 12 Apr 2024 00:00:00 GMT - Sun, 30 Mar 2025 23:59:59 GMT
File typePNG image data, 313 x 199, 8-bit/color RGBA, non-interlaced Hash4a8eaf1a5541b9262b3d3ff99ad1decb 8d42c935353d5026ba99b9c741d46910bd7a2e18 3962f2801e33a3dadc7f6dc288ee31b9dbf2cb5ef70542824a225d980c521ebd
GET /img/masjuntos/mj_logoblanco.png HTTP/1.1
Host: ptown-wap-ar.s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: tkdPl9Aje09TBd3esg2RQBae6PeQWXo3GROKrC0OoRQjI1b0r1z3N/KGof3GidNJaOKzpiRt8ZAj+UhBXPI6xA==
x-amz-request-id: V3VGQQTK3AZAH5CM
Date: Thu, 25 Apr 2024 17:38:59 GMT
Last-Modified: Mon, 04 Jul 2022 17:52:21 GMT
ETag: "4a8eaf1a5541b9262b3d3ff99ad1decb"
x-amz-version-id: Y6c8bT2JbOcFuwQBsVmwc1MEI81HzUfk
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 9442
|
|
| ptown-wap-ar.s3-sa-east-1.amazonaws.com/img/masjuntos/lovetester/img01.png | 16.12.2.54 | 200 OK | 16 kB |
URL GET HTTP/1.1ptown-wap-ar.s3-sa-east-1.amazonaws.com/img/masjuntos/lovetester/img01.png IP16.12.2.54:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerAmazon Subject*.s3-sa-east-1.amazonaws.com FingerprintA4:96:28:BF:99:1D:CD:5C:DA:DB:06:60:06:B7:EE:EA:FD:25:51:1B ValidityFri, 12 Apr 2024 00:00:00 GMT - Sun, 30 Mar 2025 23:59:59 GMT
File typePNG image data, 480 x 300, 8-bit colormap, non-interlaced Hash881cef7a675d569981b5bf214c85f07c 8149bccb4dd7315ef27e5efd55754c2ec842d741 62e3bda15e75ccad72427dd3a27fd87b115a64c8c894409f3fb67a1ac05a3fe7
GET /img/masjuntos/lovetester/img01.png HTTP/1.1
Host: ptown-wap-ar.s3-sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: u0Ak46G531Pfu9WqysKHbrbfdsagNfNaaXUXchhmaU5ZVeq5vUn+8ARMJgvSf1VwAJWnCFXAqKU=
x-amz-request-id: V3VKE4M0T7NH3JQM
Date: Thu, 25 Apr 2024 17:38:59 GMT
Last-Modified: Mon, 07 Sep 2020 19:38:30 GMT
ETag: "881cef7a675d569981b5bf214c85f07c"
x-amz-version-id: uWlo18wb0KI43pfSxNY9DeaVaYxvT9ND
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 15646
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&_ng=1&tid=G-YKRQQDN8D7&cid=1222199343.1714066738>m=45je44o0v9134475350za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=636525207 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&_ng=1&tid=G-YKRQQDN8D7&cid=1222199343.1714066738>m=45je44o0v9134475350za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=636525207 IP142.250.74.163:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&_ng=1&tid=G-YKRQQDN8D7&cid=1222199343.1714066738>m=45je44o0v9134475350za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=636525207 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 25 Apr 2024 17:38:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| wap.playtown.com.py/favicon.ico | 52.67.216.153 | 404 Not Found | 281 B |
URL GET HTTP/1.1wap.playtown.com.py/favicon.ico IP52.67.216.153:80
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0
File typeHTML document, ASCII text Hash500ce73b6cbfe8edc21dae13769a6ae2 e2f361fd5da2b40e2ca2d3a8c9a82376601a6afb c03774c2828a8c7ab466bc543be7ef72d275f777c41824be7f20681d5bac713f
GET /favicon.ico HTTP/1.1
Host: wap.playtown.com.py
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0
Cookie: PHPSESSID=mfv0nnepsrvsflb0bff35r32c1; _ga_YKRQQDN8D7=GS1.1.1714066737.1.0.1714066737.60.0.0; _ga=GA1.1.1222199343.1714066738
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 25 Apr 2024 17:38:58 GMT
Server: Apache/2.4.18 (Ubuntu)
Content-Length: 281
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| ptown-wap-ar.s3-sa-east-1.amazonaws.com/img/masjuntos/lovetester/img02.png | 16.12.2.54 | 200 OK | 12 kB |
URL GET HTTP/1.1ptown-wap-ar.s3-sa-east-1.amazonaws.com/img/masjuntos/lovetester/img02.png IP16.12.2.54:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerAmazon Subject*.s3-sa-east-1.amazonaws.com FingerprintA4:96:28:BF:99:1D:CD:5C:DA:DB:06:60:06:B7:EE:EA:FD:25:51:1B ValidityFri, 12 Apr 2024 00:00:00 GMT - Sun, 30 Mar 2025 23:59:59 GMT
File typePNG image data, 480 x 300, 8-bit colormap, non-interlaced Hashec1711766165c07ebee6a03d7e3bda9b 6b6f3f25b8efa40ce1236cc71f1613680fbb3244 a9ce0876b16cf1911f01be930c03545bf282ad72a39dd476535f336dccb2104c
GET /img/masjuntos/lovetester/img02.png HTTP/1.1
Host: ptown-wap-ar.s3-sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: KTSoYnDn2Q8ICAMuKQpM84ca3zUifi1BoRluJAc41yKDKKa2nBd0Q4k2IaxE8qK8GB2G/N7ZIQc=
x-amz-request-id: KXWHQ8T5EEE704AC
Date: Thu, 25 Apr 2024 17:39:01 GMT
Last-Modified: Mon, 07 Sep 2020 19:38:30 GMT
ETag: "ec1711766165c07ebee6a03d7e3bda9b"
x-amz-version-id: SQwicKEkkRItIxlGQMOlQJ1MuAYltZwN
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 12396
|
|
| ptown-wap-ar.s3-sa-east-1.amazonaws.com/img/masjuntos/lovetester/img03.png | 16.12.2.54 | 200 OK | 14 kB |
URL GET HTTP/1.1ptown-wap-ar.s3-sa-east-1.amazonaws.com/img/masjuntos/lovetester/img03.png IP16.12.2.54:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerAmazon Subject*.s3-sa-east-1.amazonaws.com FingerprintA4:96:28:BF:99:1D:CD:5C:DA:DB:06:60:06:B7:EE:EA:FD:25:51:1B ValidityFri, 12 Apr 2024 00:00:00 GMT - Sun, 30 Mar 2025 23:59:59 GMT
File typePNG image data, 480 x 300, 8-bit colormap, non-interlaced Hash1668f878a109342962acbcaf320dd8c8 8444eeaa901f242d051274f542d2492d5b7523ec 5cd9b0f591bd1d183e6230bc45d76b4dd4350e49042b7ae4290c8bac6ad82605
GET /img/masjuntos/lovetester/img03.png HTTP/1.1
Host: ptown-wap-ar.s3-sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: ANbN2QFOYvg0k3MHzDz38OfN/x4BT93J68Il3FJTxjl0qP/mL7jkLeT3GynHakHUacv9ham+MQ4=
x-amz-request-id: 2AC2TRZJQ4NFGF90
Date: Thu, 25 Apr 2024 17:39:04 GMT
Last-Modified: Mon, 07 Sep 2020 19:38:30 GMT
ETag: "1668f878a109342962acbcaf320dd8c8"
x-amz-version-id: XFrG7hZ0tqCmLvVkPb5uBbEhNE1_nU74
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 14248
|
|
| click.imageperfect.in/favicon.ico | 162.243.32.94 | 200 OK | 8.2 kB |
URL GET HTTP/1.1click.imageperfect.in/favicon.ico IP162.243.32.94:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://click.imageperfect.in/lp/lp.php?urlid=2bccd82ee1&adst=257230&nsrc=2767&pixel=$PIXEL&siteid=$AFF CertificateIssuerSectigo Limited Subject*.imageperfect.in Fingerprint28:5B:A9:59:67:EF:9B:8A:6E:15:B3:7D:33:FF:89:3A:69:1E:88:9E ValidityWed, 05 Jul 2023 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeMS Windows icon resource - 9 icons, 16x16, 16 colors, 16x16 Hashb04b33f2a7c84ebebed5ee0e4b04f85d 247006220b7d183b1a72e5e5ac4958847b3285c2 8e144dbbaf78fe50d8aca6ed8fe209674e2bd33eb74daea45e185e7be2f8cef3
GET /favicon.ico HTTP/1.1
Host: click.imageperfect.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://click.imageperfect.in/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
ETag: W/"21630-1465016890000"
Last-Modified: Sat, 04 Jun 2016 05:08:10 GMT
Content-Type: image/x-icon
Content-Length: 21630
Date: Thu, 25 Apr 2024 17:38:53 GMT
|
|
| fonts.googleapis.com/css2?family=Yellowtail&display=swap | 142.250.74.106 | 200 OK | 422 B |
URL GET HTTP/2fonts.googleapis.com/css2?family=Yellowtail&display=swap IP142.250.74.106:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (431), with no line terminators Hash6758f60c9586add4a15e44a2ef8d7879 34e49409b44f891fedec652e108ddeecbdad0586 421deb66a1646850cdbc13dff1e4a79fbfc2e2e56f520797d64cfc22ce468beb
GET /css2?family=Yellowtail&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://wap.playtown.com.py/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 17:38:57 GMT
date: Thu, 25 Apr 2024 17:38:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f | 52.67.216.153 | 302 Found | 4.7 kB |
URL User Request GET HTTP/1.1wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f IP52.67.216.153:443
CertificateIssuerLet's Encrypt Subjectwap.playtown.com.py Fingerprint5A:1A:83:72:12:2E:56:AB:56:31:ED:50:7D:04:45:9F:7E:96:CC:9A ValidityFri, 02 Feb 2024 18:16:25 GMT - Thu, 02 May 2024 18:16:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f HTTP/1.1
Host: wap.playtown.com.py
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://click.imageperfect.in/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 25 Apr 2024 17:38:56 GMT
Server: Apache/2.4.18 (Ubuntu)
Set-Cookie: PHPSESSID=mfv0nnepsrvsflb0bff35r32c1; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: http://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0
Content-Length: 4663
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8
|
|
| fonts.googleapis.com/css?family=Rubik:300,400,500,700 | 142.250.74.106 | 200 OK | 9.4 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Rubik:300,400,500,700 IP142.250.74.106:443
Requested byhttp://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f&gclid=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (9636), with no line terminators Hash1550e9934ae538ab3fc803a753824478 412dc5882d91a1e2add602112e0c2e281098c160 fc0aa6c6ba464f8b1a18f6bfba070d7e881c9d5c10813abecd9548e227b86056
GET /css?family=Rubik:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptown-wap-ar.s3-sa-east-1.amazonaws.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 17:38:58 GMT
date: Thu, 25 Apr 2024 17:38:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| track.clickeoads.com/311211829?sub1=6783710cf13d79d227836ed7&sub2=0410-9aa587fe93 | 162.209.115.23 | 307 Temporary Redirect | 4.7 kB |
URL User Request GET HTTP/2track.clickeoads.com/311211829?sub1=6783710cf13d79d227836ed7&sub2=0410-9aa587fe93 IP162.209.115.23:443
CertificateIssuerSectigo Limited Subjecttrack.clickeoads.com FingerprintC2:0E:43:9D:B6:BC:F9:4F:03:42:D5:AB:6D:4B:44:E7:DE:AB:D9:0E ValidityTue, 15 Aug 2023 00:00:00 GMT - Sat, 14 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /311211829?sub1=6783710cf13d79d227836ed7&sub2=0410-9aa587fe93 HTTP/1.1
Host: track.clickeoads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://click.imageperfect.in/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
server: nginx/1.20.1
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
date: Thu, 25 Apr 2024 17:38:55 GMT
location: http://wap.playtown.com.py/?id=3284&tid=5472d35a66e0bb51b52cc750&pubid=0006-593efd729f
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
set-cookie: PHPSESSID=ts3fo9elvf0b2feqe63ovk6qoh; path=/
x-powered-by: PHP/7.3.33
X-Firefox-Spdy: h2
|
|