Report - media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG

Report Overview

Visitedpublic

2025-04-30 22:09:03

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
youradexchange.com	273384	2012-11-09	2013-02-04	2025-04-30	7.1 kB	13 kB	172.67.177.214
uwnytpkxxpueh.club	unknown	2025-04-24	2025-04-30	2025-04-30	439 B	82 kB	172.67.153.94
pubtrky.com	unknown	2023-11-21	2023-11-21	2025-04-27	493 B	771 B	172.67.188.110
auto-deploy.pages.dev	unknown	2020-09-02	2023-07-05	2025-04-30	4.1 kB	212 kB	188.114.96.1
acceptable.a-ads.com	109567	2012-07-07	2017-07-05	2025-04-27	1.1 kB	42 kB	148.251.194.214
media.simosnap.com	unknown	2003-01-14	2022-06-14	2025-04-30	3.5 kB	496 kB	104.21.11.154
use.fontawesome.com	942	2012-10-18	2017-01-30	2025-04-30	1.9 kB	122 kB	172.67.142.245
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-04-30	2.2 kB	197 kB	142.250.74.35
code.jquery.com	634	2005-12-10	2012-05-21	2025-04-30	1.3 kB	855 kB	151.101.2.137
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-04-30	479 B	11 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-04-30 22:08:33	low	Client IP	188.114.96.1	ET INFO Observed Cloudflare Page Developer Domain (pages .dev in TLS SNI)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-30	medium	uwnytpkxxpueh.club	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	uwnytpkxxpueh.club/script/ut.js?cb=1746050913044	ScriptElement	81 kB	2025-04-30	2025-06-17
URL uwnytpkxxpueh.club/script/ut.js?cb=1746050913044 IP / ASN 172.67.153.94 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-30 Last Seen 2025-06-17 Times Seen 104 Size 81 kB (81040 bytes) MD5 eaa11c5f044a59ec54c82e06a8beba81 SHA1 afb33a13f1b0b1163ae1d5f98703c9eacd35bee3 SHA256 b05b9df2027483a401c352424c15d0adff42dbe771c52b71333e5b4e68f1260c Format Code Loading...

	auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/template.js?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=[ADD_FORMAT_STRING]&offer=[ADD_OFFER_STRING]	ScriptElement	6.5 kB	2024-08-16	2025-05-26
URL auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/template.js?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=[ADD_FORMAT_STRING]&offer=[ADD_OFFER_STRING] IP / ASN 188.114.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2024-08-16 Last Seen 2025-05-26 Times Seen 25 Size 6.5 kB (6548 bytes) MD5 185ee985dc9959167fe15a99378cc48b SHA1 fce07415892b597fc146a957d00299f45e6eb2c5 SHA256 c3b360216f9d4979030db72ee7771f98f1dd68291749f485255263650058e69a Format Code Loading...

	auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D	ScriptElement	1.2 kB	2025-04-27	2025-06-06
URL auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D IP / ASN 188.114.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-04-27 Last Seen 2025-06-06 Times Seen 40 Size 1.2 kB (1204 bytes) MD5 11a4f7fea656c397c29ec4b2c644fdd5 SHA1 72fb9f635dc3bbeecb109b9bfa75c9c91f094351 SHA256 6f44f431658b4630b607a9370f197900140cdfdf51ac2704030fddf89e6495aa Format Code Loading...

	use.fontawesome.com/7c0de6a917.js	ScriptElement	9.5 kB	2023-03-29	2025-08-01
URL use.fontawesome.com/7c0de6a917.js IP / ASN 172.67.142.245 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-29 Last Seen 2025-08-01 Times Seen 25 Size 9.5 kB (9496 bytes) MD5 69521d75877a394617c3f0baeac751c0 SHA1 42118f768af1e08e88899fe1e7b02b4970829750 SHA256 594f94a7116dd22fecae9266c80e4c1d7abdb0561918bf9fe7c02333acae8084 Format Code Loading...

	media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg	ScriptElement	48 B	2025-03-21	2025-08-01
URL media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg IP / ASN 104.21.11.154 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-03-21 Last Seen 2025-08-01 Times Seen 19 Size 48 B (48 bytes) MD5 e086e988f3c3094117abf22e3cd86f85 SHA1 7793075d82a0aa17c00edaab7ca152200ac1da51 SHA256 e303f97c03b46e101bdbabd8e904ba6961f69ac3fe9e65eec924c96e699a6c13 Format Code Loading...

	media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg	ScriptElement	122 B	2025-03-21	2025-08-01
URL media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg IP / ASN 104.21.11.154 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-03-21 Last Seen 2025-08-01 Times Seen 19 Size 122 B (122 bytes) MD5 fff9c55f958a781fdd1662f57827949b SHA1 6f78ad17217d216a1756b52115167c76cd5f2a5a SHA256 ef1d19b2bb17cc4cdc93f593b64fc09192bddcf608cd6b7598bfd02950b55f9c Format Code Loading...

	code.jquery.com/ui/1.13.0/jquery-ui.js	ScriptElement	529 kB	2023-03-07	2025-08-01
URL code.jquery.com/ui/1.13.0/jquery-ui.js IP / ASN 151.101.2.137 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-01 Times Seen 135 Size 529 kB (528735 bytes) MD5 06c8b12668dc0e45a4c412b774c84b5f SHA1 6199cf491a0252fc4dee6f933641aa2d7abbc9ae SHA256 c47e2af0dd29133ad931a46677b81055c4d98857a2f877d14c13c9d4e1970b49 Format Code Loading...

	code.jquery.com/jquery-3.6.0.js	ScriptElement	289 kB	2023-03-07	2025-08-04
URL code.jquery.com/jquery-3.6.0.js IP / ASN 151.101.2.137 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-04 Times Seen 4045 Size 289 kB (288580 bytes) MD5 2849239b95f5a9a2aea3f6ed9420bb88 SHA1 af32f706407ab08f800c5e697cce92466e735847 SHA256 1fe2bb5390a75e5d61e72c107cab528fc3c29a837d69aab7d200e1dbb5dcd239 Format Code Loading...

	media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg	ScriptElement	122 B	2025-03-21	2025-08-01
URL media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg IP / ASN 104.21.11.154 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-03-21 Last Seen 2025-08-01 Times Seen 19 Size 122 B (122 bytes) MD5 9459fd0337f5da616110349f302e0e82 SHA1 503b023280802f3fe0410aa3b2793236831ca690 SHA256 18feb2972f8474cad1ed446be6f221cfb91283c99afaa4581528aaeaba79fc88 Format Code Loading...

	media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg	ScriptElement	106 B	2025-03-21	2025-08-01
URL media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg IP / ASN 104.21.11.154 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-03-21 Last Seen 2025-08-01 Times Seen 19 Size 106 B (106 bytes) MD5 42b8572d8b84776f9af49dd487bfeecd SHA1 d8be69e1246e7ed2374aec7542f5cf648bd445f4 SHA256 b09157ef6949ba2a6f2cbc6fcfb097cbda9d3bcc87d10d9bcd7b3f5d56d53a76 Format Code Loading...

	media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg	ScriptElement	1.0 kB	2025-04-30	2025-04-30
URL media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg IP / ASN 104.21.11.154 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-04-30 Last Seen 2025-04-30 Times Seen 1 Size 1.0 kB (1033 bytes) MD5 b5d07408a76b1cea9d1dde052d887d16 SHA1 3a33f7db620f3fed8c82a66e2e23366259b66152 SHA256 ef5e7e276e002dd97c7edbba1680241b16e688fb0bb40dec3b462edc801942d1 Format Code Loading...

	media.simosnap.com/js/aclib.js	ScriptElement	182 kB	2025-04-30	2025-04-30
URL media.simosnap.com/js/aclib.js IP / ASN 104.21.11.154 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-30 Last Seen 2025-04-30 Times Seen 3 Size 182 kB (181885 bytes) MD5 011b87aa8d5a7baf42144cb19d9b8a35 SHA1 dae9097ce43c601a99cc411f5e2fa5bfcbc198f1 SHA256 e16744461b84dee5b54b232e10ff5d0f3c8638b46005995a58cd372720bfdf13 Format Code Loading...

HTTP Transactions (36)

URL IP Response Size

GET youradexchange.com/script/i.php?t=1&c=23833512&stamat=m%257C%252C%252CQjajdjLmoGU3BE-GH0dEdHP3xP.5da%252CEyDnmQw2G1UCQQVQgqBfp31MboJAKawLL-MIy-KPYcXFnA0LzOredHdcO0Cym8SfJ4wSsRHM0rjErfCaNT0C05kq0FjO98bnXM_gp1L_43cT2P080MfWCvxGGQaONT12ahaBCgUYOAfBr3ZOLglZL9gjkrKeViFSDfnXYCLBLsTRIbxi2xOLezlNR0ImRqPqVTs-qjEbhRlxQe1515GuuvZlHcQ0-W5UjW5A6_vgs73CcMBSEu1C1ToPbOnTcj-iSXeec_wT9bPC5FaO1YzAYP-DotZRDwWGOhHf3QCA3i7ad2vHKdN2-a1H2zBvTbxfJ8I0zUEJoMyJpaAjUUKlW5mv-LiizVNommb5-Xd0TOxd9ilEnmqqEiP_Pdl6vDl9exkGZckvUqcGG9hKr8GpZ5w8KZ_AEEMIehmI-dmwzSsC86rqqKkwVGHCtTFh-3YH61URiCjBfXM8uyRlRAEDvEEG7-hTdGHYuj5xlc-7BlEJ9N0VaRMwmqX1EVflefbKeAWbopiTf_4op2iOSC_I2lTrrISc-OkobMRud76PjKA3eXrtVSu5HX4tUqCQU60UTJl2kh7K3azfqhW5x8EgCPFjP2afhTSQkK651iZUnBnKt2VXV7vMwWaTeiLW9DkSVwWev46FnxRT4dKJoSTU9kXrnoIkjX6WMrTSe_DytaA%252C&utsid=3d6e39d637b3f848afc80d61968a8d74&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref=

172.67.177.214

204 No Content

0 B

URL GET HTTPS

youradexchange.com/script/i.php?t=1&c=23833512&stamat=m%257C%252C%252CQjajdjLmoGU3BE-GH0dEdHP3xP.5da%252CEyDnmQw2G1UCQQVQgqBfp31MboJAKawLL-MIy-KPYcXFnA0LzOredHdcO0Cym8SfJ4wSsRHM0rjErfCaNT0C05kq0FjO98bnXM_gp1L_43cT2P080MfWCvxGGQaONT12ahaBCgUYOAfBr3ZOLglZL9gjkrKeViFSDfnXYCLBLsTRIbxi2xOLezlNR0ImRqPqVTs-qjEbhRlxQe1515GuuvZlHcQ0-W5UjW5A6_vgs73CcMBSEu1C1ToPbOnTcj-iSXeec_wT9bPC5FaO1YzAYP-DotZRDwWGOhHf3QCA3i7ad2vHKdN2-a1H2zBvTbxfJ8I0zUEJoMyJpaAjUUKlW5mv-LiizVNommb5-Xd0TOxd9ilEnmqqEiP_Pdl6vDl9exkGZckvUqcGG9hKr8GpZ5w8KZ_AEEMIehmI-dmwzSsC86rqqKkwVGHCtTFh-3YH61URiCjBfXM8uyRlRAEDvEEG7-hTdGHYuj5xlc-7BlEJ9N0VaRMwmqX1EVflefbKeAWbopiTf_4op2iOSC_I2lTrrISc-OkobMRud76PjKA3eXrtVSu5HX4tUqCQU60UTJl2kh7K3azfqhW5x8EgCPFjP2afhTSQkK651iZUnBnKt2VXV7vMwWaTeiLW9DkSVwWev46FnxRT4dKJoSTU9kXrnoIkjX6WMrTSe_DytaA%252C&utsid=3d6e39d637b3f848afc80d61968a8d74&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref=

IP / ASN

172.67.177.214

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-05

Times Seen5676451

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectyouradexchange.com

Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E

ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

HTTP Headers

GET /script/i.php?t=1&c=23833512&stamat=m%257C%252C%252CQjajdjLmoGU3BE-GH0dEdHP3xP.5da%252CEyDnmQw2G1UCQQVQgqBfp31MboJAKawLL-MIy-KPYcXFnA0LzOredHdcO0Cym8SfJ4wSsRHM0rjErfCaNT0C05kq0FjO98bnXM_gp1L_43cT2P080MfWCvxGGQaONT12ahaBCgUYOAfBr3ZOLglZL9gjkrKeViFSDfnXYCLBLsTRIbxi2xOLezlNR0ImRqPqVTs-qjEbhRlxQe1515GuuvZlHcQ0-W5UjW5A6_vgs73CcMBSEu1C1ToPbOnTcj-iSXeec_wT9bPC5FaO1YzAYP-DotZRDwWGOhHf3QCA3i7ad2vHKdN2-a1H2zBvTbxfJ8I0zUEJoMyJpaAjUUKlW5mv-LiizVNommb5-Xd0TOxd9ilEnmqqEiP_Pdl6vDl9exkGZckvUqcGG9hKr8GpZ5w8KZ_AEEMIehmI-dmwzSsC86rqqKkwVGHCtTFh-3YH61URiCjBfXM8uyRlRAEDvEEG7-hTdGHYuj5xlc-7BlEJ9N0VaRMwmqX1EVflefbKeAWbopiTf_4op2iOSC_I2lTrrISc-OkobMRud76PjKA3eXrtVSu5HX4tUqCQU60UTJl2kh7K3azfqhW5x8EgCPFjP2afhTSQkK651iZUnBnKt2VXV7vMwWaTeiLW9DkSVwWev46FnxRT4dKJoSTU9kXrnoIkjX6WMrTSe_DytaA%252C&utsid=3d6e39d637b3f848afc80d61968a8d74&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref= HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://media.simosnap.com/
Origin: https://media.simosnap.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 30 Apr 2025 22:08:33 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KB6cTEnAvkZDDCgBS74DOZx03s8TRh0mLK2v0jYM8mkH0iJ7YBRNzOE7tw%2BW%2FMkAOV1TqcI%2F%2F5iPgEGFSgJmfZgQABPEEorCaTWvNWbbgkL9OnKOi%2FYmi%2BVt5lyA0yQaEvvkQyY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bc09d860b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=4808&min_rtt=387&rtt_var=8607&sent=27&recv=25&lost=0&retrans=0&sent_bytes=11654&recv_bytes=4704&delivery_rate=10361359&cwnd=254&unsent_bytes=0&cid=e2f7ff6889301863&ts=625&x=0"
X-Firefox-Spdy: h2

GET auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/index.html?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D

188.114.96.1

308 Permanent Redirect

2.2 kB

URL GET HTTPS

auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/index.html?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeHTML document, ASCII text

First Seen2024-08-29

Last Seen2025-05-26

Times Seen15

Size2.2 kB (2163 bytes)

MD5b53f7863fb8c15b7553b3a9d025ffc64

SHA1334487876a9c0209a232542ad5ee635f21325c15

SHA2565296b060a370cebb63ef0903e595fec8124b55ec9a32ab1e398c6fa25c529f9d

Certificate Info

IssuerGoogle Trust Services

Subjectauto-deploy.pages.dev

FingerprintB6:70:20:01:ED:7F:9D:3B:F8:B9:B7:9C:39:B6:37:C6:F5:C9:4C:B0

ValidityThu, 24 Apr 2025 01:32:13 GMT - Wed, 23 Jul 2025 02:30:33 GMT

HTTP Headers

GET /IPP/Artjom/GAME/ENG/428/index.html?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D HTTP/1.1
Host: auto-deploy.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 308 Permanent Redirect
date: Wed, 30 Apr 2025 22:08:33 GMT
content-length: 0
location: /IPP/Artjom/GAME/ENG/428/?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WCR0eAuBxevKSU5LMHsEs6IjYq7Uy%2FYsdJNsZFNFTyepKD4fHpIcTFxX48uwCPSzmwSdzgkFOpD6iW4izP2nRBYO56%2B5pSydlvvi%2BnLytAga72M95sgkr9d5%2FX4DB4LpJJjg%2BgV2BHE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 938a5bc26f28b505-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5800&min_rtt=3948&rtt_var=2803&sent=12&recv=7&lost=0&retrans=0&sent_bytes=4094&recv_bytes=1635&delivery_rate=150433&cwnd=12000&unsent_bytes=0&cid=88d5b7c2a5ae2aa5&ts=122&x=1", cfExtPri, cfHdrFlush;dur=0

GET auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/src/style.css

188.114.96.1

200 OK

681 B

URL GET HTTPS

auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/src/style.css

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D

Resource Info

File typeASCII text, with CRLF line terminators

First Seen2024-06-28

Last Seen2025-06-06

Times Seen67

Size681 B (681 bytes)

MD54b3679508ec5704df03efe959d914a44

SHA13a658353793ee3bc59dc4e04b097e0b2bef6f7d4

SHA256ed0393986b89dc3d274c6617581495f1f5c96f50d6f610ca25fb72e87e286fa9

Certificate Info

IssuerGoogle Trust Services

Subjectauto-deploy.pages.dev

FingerprintB6:70:20:01:ED:7F:9D:3B:F8:B9:B7:9C:39:B6:37:C6:F5:C9:4C:B0

ValidityThu, 24 Apr 2025 01:32:13 GMT - Wed, 23 Jul 2025 02:30:33 GMT

HTTP Headers

GET /IPP/Artjom/GAME/ENG/428/src/style.css HTTP/1.1
Host: auto-deploy.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f6f4fbd00f108f98961c850177170c75"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QutOG1pUOL2fUC%2BPFHJY2PmrtWCXx%2Bga%2Bm25ytMq04VU400AfxLw3cIXxs4K%2BX6u6elb6P6LJavbeofHC6zE%2BFOEAUfGjOt2sgCmPD3jY%2BJ5CrNsrPU0ULPSJpBG5ijmmiA8jUUvYi4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 938a5bc3a8ebb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4276&min_rtt=1518&rtt_var=2397&sent=186&recv=14&lost=0&retrans=0&sent_bytes=207129&recv_bytes=3291&delivery_rate=32048&cwnd=96000&unsent_bytes=0&cid=88d5b7c2a5ae2aa5&ts=319&x=1", cfExtPri, cfHdrFlush;dur=0

GET acceptable.a-ads.com/2284824

148.251.194.214

200 OK

21 kB

URL GET HTTPS

acceptable.a-ads.com/2284824

IP / ASN

148.251.194.214

#24940 Hetzner Online GmbH

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeHTML document, ASCII text, with very long lines (1982)

First Seen2025-04-30

Last Seen2025-04-30

Times Seen2

Size21 kB (20660 bytes)

MD5c74c0042cfbaf1e52f9c9aa9e9fec6ff

SHA1bc0b864391ae3b31fc7bdf489b013cadd3bccc2b

SHA2561d96d8ac521e86288288a792050cd5b9f4e89529abcd8a60afb135ae9d4b2fb7

Certificate Info

IssuerSectigo Limited

Subject*.a-ads.com

Fingerprint29:38:CF:C5:B7:11:ED:58:BF:D9:11:7B:D8:5E:88:8A:48:33:9A:23

ValiditySun, 05 Jan 2025 00:00:00 GMT - Tue, 09 Dec 2025 23:59:59 GMT

HTTP Headers

GET /2284824 HTTP/1.1
Host: acceptable.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://media.simosnap.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2

GET youradexchange.com/script/i.php?t=1&c=23946420&stamat=m%257C%252C%252CQjLWo3fntGU3BJ-GH0dEdHP3xP.3af%252Cq53auM1ueEziRsd81qCY9jJN-Yij6mUB9A2J3o0LLtg18Sd8-M0cqbJ2kvSv64fZhEZvg08h5aXss0uvt_aJjG1ga-OzNZZoSA9Chb2Byxk4DVsuHx-5TB-QcNWn_dQf7g01oiHKaQTPj-FNj7yWRiR3W0giApDI18XCRnSN2CI89kbGT3a4Ka_5BNiXyL_3NZ2bqAUKRMVHTUE7jHgXSgA6UGcx4GXR08yibL1uXaU10FavJUVp2OogGS8Nd6i1dw1nCVNz1Hs52pTfa8FY9RohNp8tWKGx1x69Vq414XPDTzq1e094eJ30GhrUdaEV1oXqz9FT6N_oMqxL4ErXcBnYf0M4Cma9l8vMW1djJJ-uHhbN3_AgLx2vJ_T8crqmqQE9IDtx7x8UmVWZ0Iu1XMRBRzTk_pkOb07atzRs3K3g-8LCiz5IOUfPlgcdmitUkWoVK4L1IxFudOLt8MKE3GxKADAV4ZNyG7tJb9bVprniq9GsUN6SmmUd_Wse9ckwkDQqDCq9DTXatwvL7XPRngD2RLM0DaX4ol2R6rZco5MLsDmVTbezq4Q3ouwaxJcxrNkjdAil5V0g50LKqHGjdSji85HkwywJwwHjOumD9Tp2UpRpHeSsI0IQAMAeU3TiWqlokJA2OCmzvxFbzMXG8A%252C%252C

172.67.177.214

204 No Content

0 B

URL GET HTTPS

youradexchange.com/script/i.php?t=1&c=23946420&stamat=m%257C%252C%252CQjLWo3fntGU3BJ-GH0dEdHP3xP.3af%252Cq53auM1ueEziRsd81qCY9jJN-Yij6mUB9A2J3o0LLtg18Sd8-M0cqbJ2kvSv64fZhEZvg08h5aXss0uvt_aJjG1ga-OzNZZoSA9Chb2Byxk4DVsuHx-5TB-QcNWn_dQf7g01oiHKaQTPj-FNj7yWRiR3W0giApDI18XCRnSN2CI89kbGT3a4Ka_5BNiXyL_3NZ2bqAUKRMVHTUE7jHgXSgA6UGcx4GXR08yibL1uXaU10FavJUVp2OogGS8Nd6i1dw1nCVNz1Hs52pTfa8FY9RohNp8tWKGx1x69Vq414XPDTzq1e094eJ30GhrUdaEV1oXqz9FT6N_oMqxL4ErXcBnYf0M4Cma9l8vMW1djJJ-uHhbN3_AgLx2vJ_T8crqmqQE9IDtx7x8UmVWZ0Iu1XMRBRzTk_pkOb07atzRs3K3g-8LCiz5IOUfPlgcdmitUkWoVK4L1IxFudOLt8MKE3GxKADAV4ZNyG7tJb9bVprniq9GsUN6SmmUd_Wse9ckwkDQqDCq9DTXatwvL7XPRngD2RLM0DaX4ol2R6rZco5MLsDmVTbezq4Q3ouwaxJcxrNkjdAil5V0g50LKqHGjdSji85HkwywJwwHjOumD9Tp2UpRpHeSsI0IQAMAeU3TiWqlokJA2OCmzvxFbzMXG8A%252C%252C

IP / ASN

172.67.177.214

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-05

Times Seen5676451

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectyouradexchange.com

Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E

ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

HTTP Headers

GET /script/i.php?t=1&c=23946420&stamat=m%257C%252C%252CQjLWo3fntGU3BJ-GH0dEdHP3xP.3af%252Cq53auM1ueEziRsd81qCY9jJN-Yij6mUB9A2J3o0LLtg18Sd8-M0cqbJ2kvSv64fZhEZvg08h5aXss0uvt_aJjG1ga-OzNZZoSA9Chb2Byxk4DVsuHx-5TB-QcNWn_dQf7g01oiHKaQTPj-FNj7yWRiR3W0giApDI18XCRnSN2CI89kbGT3a4Ka_5BNiXyL_3NZ2bqAUKRMVHTUE7jHgXSgA6UGcx4GXR08yibL1uXaU10FavJUVp2OogGS8Nd6i1dw1nCVNz1Hs52pTfa8FY9RohNp8tWKGx1x69Vq414XPDTzq1e094eJ30GhrUdaEV1oXqz9FT6N_oMqxL4ErXcBnYf0M4Cma9l8vMW1djJJ-uHhbN3_AgLx2vJ_T8crqmqQE9IDtx7x8UmVWZ0Iu1XMRBRzTk_pkOb07atzRs3K3g-8LCiz5IOUfPlgcdmitUkWoVK4L1IxFudOLt8MKE3GxKADAV4ZNyG7tJb9bVprniq9GsUN6SmmUd_Wse9ckwkDQqDCq9DTXatwvL7XPRngD2RLM0DaX4ol2R6rZco5MLsDmVTbezq4Q3ouwaxJcxrNkjdAil5V0g50LKqHGjdSji85HkwywJwwHjOumD9Tp2UpRpHeSsI0IQAMAeU3TiWqlokJA2OCmzvxFbzMXG8A%252C%252C HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 30 Apr 2025 22:08:33 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ltfu%2BeRfgSx%2BdnTBQ0OuPOcFL1qL0q3f61Pmh6y94ZpAaVupt4yCCp%2FDUzoJp%2BMzHmH6kRugCfJEGFnleANDTIZRbStravU43XbyUMFrE1iJIhngtgP8EOOxQj7NjDAQ7zuA5XI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bc09d810b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5429&min_rtt=387&rtt_var=9822&sent=26&recv=24&lost=0&retrans=0&sent_bytes=11228&recv_bytes=4704&delivery_rate=10361359&cwnd=254&unsent_bytes=0&cid=e2f7ff6889301863&ts=610&x=0"
X-Firefox-Spdy: h2

GET media.simosnap.com/css/feedback.css

104.21.11.154

200 OK

14 kB

URL GET HTTPS

media.simosnap.com/css/feedback.css

IP / ASN

104.21.11.154

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeASCII text

First Seen2023-09-10

Last Seen2025-08-01

Times Seen24

Size14 kB (14339 bytes)

MD52da77c3e0469517c4b61543b32e72b93

SHA1e571904ce65875134c45a2ecf7432f6f8db2ecff

SHA256d854ecae2043203bb6d99b1cece3b106ef8667c1399a9b2fd1efbd99ab7d5c0a

Certificate Info

IssuerGoogle Trust Services

Subjectsimosnap.com

FingerprintAE:7D:B9:85:05:6B:97:0A:93:A5:B4:72:3F:1D:87:37:B1:BE:DA:EA

ValiditySat, 12 Apr 2025 15:27:18 GMT - Fri, 11 Jul 2025 16:26:01 GMT

HTTP Headers

GET /css/feedback.css HTTP/1.1
Host: media.simosnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 22:08:32 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ON6BSSysk6ye9IqDxao4IJs%2FMGnYD7KnnHSDnDZzUXowmLxICM7atOHzoq4avu3%2B0jnvDIzepyJ6HDUw08dVae6AExNKrOZVzVulXoTdhMfIYPH6TyGzqcJfgGVveyNbepuMXMc%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 30 Apr 2024 08:15:53 GMT
vary: Accept-Encoding
etag: W/"6630a8b9-3803"
content-encoding: gzip
cf-cache-status: DYNAMIC
cf-ray: 938a5bbb3d100b3d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3322&min_rtt=762&rtt_var=2624&sent=62&recv=73&lost=0&retrans=0&sent_bytes=17957&recv_bytes=5704&delivery_rate=9481&cwnd=24000&unsent_bytes=0&cid=0c212faf8b78fdf5&ts=462&x=16"

GET use.fontawesome.com/7c0de6a917.js

172.67.142.245

200 OK

9.5 kB

URL GET HTTPS

use.fontawesome.com/7c0de6a917.js

IP / ASN

172.67.142.245

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (9239)

First Seen2023-03-29

Last Seen2025-08-01

Times Seen25

Size9.5 kB (9496 bytes)

MD569521d75877a394617c3f0baeac751c0

SHA142118f768af1e08e88899fe1e7b02b4970829750

SHA256594f94a7116dd22fecae9266c80e4c1d7abdb0561918bf9fe7c02333acae8084

Certificate Info

IssuerGoogle Trust Services

Subjectuse.fontawesome.com

Fingerprint35:EC:02:D7:73:13:A8:D4:94:28:42:85:E4:B3:7F:06:4F:C4:1B:CE

ValidityThu, 06 Mar 2025 00:21:22 GMT - Wed, 04 Jun 2025 01:21:21 GMT

HTTP Headers

GET /7c0de6a917.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 22:08:32 GMT
content-type: text/javascript
etag: W/"69521d75877a394617c3f0baeac751c0"
last-modified: Fri, 22 Sep 2023 00:56:56 GMT
vary: Accept-Encoding
age: 49
cache-control: max-age=1800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tngV55ZNjKyNOn6tkKqvR6scGx5KO9FuG0nnDzUsHb7nSC7wzvb4xI1%2FoJMxfbgf0GEYdQNGwqr7r7MoNtvPF6mUrUL%2FVBvJ8%2Bf2Ajq7UeLGQWQD2hCxhQfVunYjOlQ0tJjobMbU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bbb697d56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=567&min_rtt=460&rtt_var=243&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3274&recv_bytes=1203&delivery_rate=7006451&cwnd=248&unsent_bytes=0&cid=6ed981e7afd17939&ts=57&x=0"
X-Firefox-Spdy: h2

GET media.simosnap.com/thumb/adult-content.jpeg

104.21.11.154

200 OK

11 kB

URL GET HTTPS

media.simosnap.com/thumb/adult-content.jpeg

IP / ASN

104.21.11.154

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 238x250, components 3

First Seen2023-09-10

Last Seen2025-08-01

Times Seen25

Size11 kB (11272 bytes)

MD5f6054da23cd571c61b851df7753a6f4a

SHA1a2ec15163ca5712e9c09125a54743faebdb57130

SHA2568b090b6e63021c05f533f87b601ebfdb97129174a72d11499171505575034b62

Certificate Info

IssuerGoogle Trust Services

Subjectsimosnap.com

FingerprintAE:7D:B9:85:05:6B:97:0A:93:A5:B4:72:3F:1D:87:37:B1:BE:DA:EA

ValiditySat, 12 Apr 2025 15:27:18 GMT - Fri, 11 Jul 2025 16:26:01 GMT

HTTP Headers

GET /thumb/adult-content.jpeg HTTP/1.1
Host: media.simosnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 22:08:32 GMT
content-type: image/jpeg
content-length: 11272
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=twXXOiUwJv0UkGhREl%2BTMiEGJdSn%2FuwRMnkPEbnDKsEpM7%2BxTwTH8zu7CHhMUpXQTffbtO%2FpHFNvZW2bdf2qzcflm9EF3eRGwo8mD2VHGPtIyFU0Zyz1xEoNth%2F3DFXYyhsK2RA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 30 Apr 2024 08:58:21 GMT
etag: "6630b2ad-2c08"
accept-ranges: bytes
cf-cache-status: DYNAMIC
cf-ray: 938a5bbb4d130b3d-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3887&min_rtt=762&rtt_var=2877&sent=51&recv=71&lost=0&retrans=0&sent_bytes=5757&recv_bytes=5617&delivery_rate=2135&cwnd=12000&unsent_bytes=0&cid=0c212faf8b78fdf5&ts=422&x=16"

GET use.fontawesome.com/releases/v4.7.0/fonts/fontawesome-webfont.woff2

172.67.142.245

200 OK

77 kB

URL GET HTTPS

use.fontawesome.com/releases/v4.7.0/fonts/fontawesome-webfont.woff2

IP / ASN

172.67.142.245

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459

First Seen2023-04-05

Last Seen2025-08-05

Times Seen166956

Size77 kB (77160 bytes)

MD5af7ae505a9eed503f8b8e6982036873e

SHA1d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c

SHA2562adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Certificate Info

IssuerGoogle Trust Services

Subjectuse.fontawesome.com

Fingerprint35:EC:02:D7:73:13:A8:D4:94:28:42:85:E4:B3:7F:06:4F:C4:1B:CE

ValidityThu, 06 Mar 2025 00:21:22 GMT - Wed, 04 Jun 2025 01:21:21 GMT

HTTP Headers

GET /releases/v4.7.0/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://media.simosnap.com
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: application/font-woff2
content-length: 77160
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Fri, 22 Sep 2023 01:44:05 GMT
vary: Origin, Accept-Encoding
age: 49
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0IE%2BqtlxGhfVfLwDoeOXbc6XKSmkHyNrswZEnc3et3sJcptIAhTBAD4asl7OeTpm0jXbZQK7dJ8LRtYjwk6Q%2B%2BQABqW%2BH1IF7BRY%2BUJjzcLbIO9Itl8ezyaxEDBEQiBnODHeFoS2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bbeae2d56be-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=3710&min_rtt=460&rtt_var=5265&sent=19&recv=18&lost=0&retrans=0&sent_bytes=15866&recv_bytes=1657&delivery_rate=7267252&cwnd=250&unsent_bytes=0&cid=6ed981e7afd17939&ts=556&x=0"
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2

142.250.74.35

200 OK

48 kB

URL GET HTTPS

fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://acceptable.a-ads.com/2284824

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 48496, version 1.0

First Seen2025-01-06

Last Seen2025-07-11

Times Seen6063

Size48 kB (48496 bytes)

MD58b7943a41013101d892c4684617ed41d

SHA11853b95f5ae2cc51c89edf6f2c44a676efe31f3b

SHA2569d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1

ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

HTTP Headers

GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acceptable.a-ads.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 10:09:02 GMT
expires: Fri, 24 Apr 2026 10:09:02 GMT
cache-control: public, max-age=31536000
age: 561571
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET media.simosnap.com/js/aclib.js

104.21.11.154

200 OK

182 kB

URL GET HTTPS

media.simosnap.com/js/aclib.js

IP / ASN

104.21.11.154

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (46404), with NEL line terminators

First Seen2025-04-30

Last Seen2025-04-30

Times Seen3

Size182 kB (181885 bytes)

MD5011b87aa8d5a7baf42144cb19d9b8a35

SHA1dae9097ce43c601a99cc411f5e2fa5bfcbc198f1

SHA256e16744461b84dee5b54b232e10ff5d0f3c8638b46005995a58cd372720bfdf13

Certificate Info

IssuerGoogle Trust Services

Subjectsimosnap.com

FingerprintAE:7D:B9:85:05:6B:97:0A:93:A5:B4:72:3F:1D:87:37:B1:BE:DA:EA

ValiditySat, 12 Apr 2025 15:27:18 GMT - Fri, 11 Jul 2025 16:26:01 GMT

HTTP Headers

GET /js/aclib.js HTTP/1.1
Host: media.simosnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 22:08:32 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KK3yOplT7fGz4dWBWUoFXVGQQPIetXeQjOO1rs8vgtzoo4XsRSS6c%2F4t%2FCkiZWd9e5XrVMrEt0vrNf2aJ%2FxgC4xUlQxVQzBn%2FSgHerkz%2FIuOv8%2BOadTSm7raNtoO0A33vfGzzo0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 30 Apr 2025 22:00:01 GMT
vary: Accept-Encoding
etag: W/"68129d61-2c67d"
content-encoding: gzip
cf-cache-status: DYNAMIC
cf-ray: 938a5bbb4d140b3d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3322&min_rtt=762&rtt_var=2624&sent=82&recv=73&lost=0&retrans=0&sent_bytes=39767&recv_bytes=5704&delivery_rate=9481&cwnd=24000&unsent_bytes=0&cid=0c212faf8b78fdf5&ts=464&x=16"

GET use.fontawesome.com/7c0de6a917.css

172.67.142.245

200 OK

1.0 kB

URL GET HTTPS

use.fontawesome.com/7c0de6a917.css

IP / ASN

172.67.142.245

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeASCII text

First Seen2025-04-30

Last Seen2025-08-01

Times Seen15

Size1.0 kB (1033 bytes)

MD59362790a576b7c7a3efb54f822ecf1fb

SHA14409d61182c78de051eb48293a7cc25654724008

SHA2566667508c62854f4f26a38a7373a05d0afab3d8184ae92b04a48271d0e4345d39

Certificate Info

IssuerGoogle Trust Services

Subjectuse.fontawesome.com

Fingerprint35:EC:02:D7:73:13:A8:D4:94:28:42:85:E4:B3:7F:06:4F:C4:1B:CE

ValidityThu, 06 Mar 2025 00:21:22 GMT - Wed, 04 Jun 2025 01:21:21 GMT

HTTP Headers

GET /7c0de6a917.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 22:08:32 GMT
content-type: text/css
etag: W/"9362790a576b7c7a3efb54f822ecf1fb"
last-modified: Fri, 22 Sep 2023 00:56:57 GMT
vary: Accept-Encoding
age: 49
cache-control: max-age=1800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hrTSxFIwPR%2F46tGkNkKx9W7rvtOyxDoMiV9cYaT1%2FR5%2FNd8%2BVYdlc98e2Nysh7eJAqa7XIbi1KuYjoq5qhmT8NUPxDF1dISPWJk83tGWtFfhsqftFpQdKECAjgSLhvUR3LhvLjh6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bbd3c2956be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=4845&min_rtt=460&rtt_var=8272&sent=11&recv=13&lost=0&retrans=0&sent_bytes=7554&recv_bytes=1302&delivery_rate=7006451&cwnd=250&unsent_bytes=0&cid=6ed981e7afd17939&ts=332&x=0"
X-Firefox-Spdy: h2

GET acceptable.a-ads.com/2284824

148.251.194.214

200 OK

21 kB

URL GET HTTPS

acceptable.a-ads.com/2284824

IP / ASN

148.251.194.214

#24940 Hetzner Online GmbH

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeHTML document, ASCII text, with very long lines (1982)

First Seen2025-04-30

Last Seen2025-04-30

Times Seen2

Size21 kB (20660 bytes)

MD5c74c0042cfbaf1e52f9c9aa9e9fec6ff

SHA1bc0b864391ae3b31fc7bdf489b013cadd3bccc2b

SHA2561d96d8ac521e86288288a792050cd5b9f4e89529abcd8a60afb135ae9d4b2fb7

Certificate Info

IssuerSectigo Limited

Subject*.a-ads.com

Fingerprint29:38:CF:C5:B7:11:ED:58:BF:D9:11:7B:D8:5E:88:8A:48:33:9A:23

ValiditySun, 05 Jan 2025 00:00:00 GMT - Tue, 09 Dec 2025 23:59:59 GMT

HTTP Headers

GET /2284824 HTTP/1.1
Host: acceptable.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://media.simosnap.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2

GET youradexchange.com/script/banner.php?r=8172046&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref=&cbdescription=E%27%20stato%20inviato%20un%20file%20di%20tipo%20Immagine%2FFoto&cbkeywords=&cbtitle=&srs=3d6e39d637b3f848afc80d61968a8d74&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&atv=60.0

172.67.177.214

200 OK

1.9 kB

URL GET HTTPS

youradexchange.com/script/banner.php?r=8172046&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref=&cbdescription=E%27%20stato%20inviato%20un%20file%20di%20tipo%20Immagine%2FFoto&cbkeywords=&cbtitle=&srs=3d6e39d637b3f848afc80d61968a8d74&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&atv=60.0

IP / ASN

172.67.177.214

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJSON text data

First Seen2025-04-30

Last Seen2025-04-30

Times Seen1

Size1.9 kB (1865 bytes)

MD54600dd7ed9dc58e90ae96733ca64d7dc

SHA1b01446bd8896b0dc5e08b4ab6957095fa019875e

SHA2567904eae547a02edadf7f3633473245b68c4e454a8f527e27779813bddcfff814

Certificate Info

IssuerGoogle Trust Services

Subjectyouradexchange.com

Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E

ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

HTTP Headers

GET /script/banner.php?r=8172046&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref=&cbdescription=E%27%20stato%20inviato%20un%20file%20di%20tipo%20Immagine%2FFoto&cbkeywords=&cbtitle=&srs=3d6e39d637b3f848afc80d61968a8d74&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&atv=60.0 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://media.simosnap.com/
Origin: https://media.simosnap.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vL2hdEDkdLcQaLT%2F9Ons6byv9moU3XvPH1KmCcP9paLhK6gVgZP1knWKsNYJ8%2BlTbsFY3rNTFt8ZmERN2afJQdb18Y7ul%2Bx0sHtYHVRWcrbMtlvDgDEXz0YOW5pNa2MyJmxCGCI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bbe19f90b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=579&min_rtt=387&rtt_var=245&sent=9&recv=14&lost=0&retrans=0&sent_bytes=3291&recv_bytes=2546&delivery_rate=5991724&cwnd=254&unsent_bytes=0&cid=e2f7ff6889301863&ts=231&x=0"
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2

142.250.74.35

200 OK

48 kB

URL GET HTTPS

fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://acceptable.a-ads.com/2284824

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 48496, version 1.0

First Seen2025-01-06

Last Seen2025-07-11

Times Seen6063

Size48 kB (48496 bytes)

MD58b7943a41013101d892c4684617ed41d

SHA11853b95f5ae2cc51c89edf6f2c44a676efe31f3b

SHA2569d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1

ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

HTTP Headers

GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acceptable.a-ads.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 10:09:02 GMT
expires: Fri, 24 Apr 2026 10:09:02 GMT
cache-control: public, max-age=31536000
age: 561571
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/src/Banners_U-s_DE_Google_1200628_WG_SPb_WoWs-ezgif.com-resize%20(1).jpg

188.114.96.1

200 OK

65 kB

URL GET HTTPS

auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/src/Banners_U-s_DE_Google_1200628_WG_SPb_WoWs-ezgif.com-resize%20(1).jpg

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Resource Info

File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "JPG edited with https://ezgif.com/resize", baseline, precision 8, 300x157, components 3

First Seen2024-08-16

Last Seen2025-05-26

Times Seen25

Size65 kB (64583 bytes)

MD555bb249cb935ab01d0bba0fe3d9da0a6

SHA1140439976db172e93122ad1bd6ef564d51d0e2d4

SHA256d8afa95d695ca29e8c3f6accb00bc9e020082502a631bf7908b5cf9a00777d24

Certificate Info

IssuerGoogle Trust Services

Subjectauto-deploy.pages.dev

FingerprintB6:70:20:01:ED:7F:9D:3B:F8:B9:B7:9C:39:B6:37:C6:F5:C9:4C:B0

ValidityThu, 24 Apr 2025 01:32:13 GMT - Wed, 23 Jul 2025 02:30:33 GMT

HTTP Headers

GET /IPP/Artjom/GAME/ENG/428/src/Banners_U-s_DE_Google_1200628_WG_SPb_WoWs-ezgif.com-resize%20(1).jpg HTTP/1.1
Host: auto-deploy.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: image/jpeg
content-length: 64583
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "20acdfcd1d01a4ae70c6ff4d774985b5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qeYhUs0TyMmP0vgDQYlw7eMuuWm5AdDpnWBdNuAGo%2BtJmjGPLOp69EZUArYwqYXta6C9PAZ6CaPONBssidvheL1kC4xFqqpCrwq4BFZWvhICxCOB4QQvMBEkhkOxo5jIn0Sr%2BQmbt%2BM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 938a5bc3a8f2b505-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4276&min_rtt=1518&rtt_var=2397&sent=130&recv=14&lost=0&retrans=0&sent_bytes=140240&recv_bytes=3291&delivery_rate=32048&cwnd=96000&unsent_bytes=0&cid=88d5b7c2a5ae2aa5&ts=315&x=1", cfExtPri, cfHdrFlush;dur=0

GET code.jquery.com/jquery-3.6.0.js

151.101.2.137

200 OK

289 kB

URL GET HTTPS

code.jquery.com/jquery-3.6.0.js

IP / ASN

151.101.2.137

#54113 FASTLY

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJavaScript source, ASCII text

First Seen2023-03-07

Last Seen2025-08-04

Times Seen4045

Size289 kB (288580 bytes)

MD52849239b95f5a9a2aea3f6ed9420bb88

SHA1af32f706407ab08f800c5e697cce92466e735847

SHA2561fe2bb5390a75e5d61e72c107cab528fc3c29a837d69aab7d200e1dbb5dcd239

Certificate Info

IssuerSectigo Limited

Subject*.jquery.com

FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5

ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

HTTP Headers

GET /jquery-3.6.0.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-46744"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 30 Apr 2025 22:08:32 GMT
age: 746280
x-served-by: cache-lga21935-LGA, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 55, 1711
x-timer: S1746050913.612415,VS0,VE0
vary: Accept-Encoding
content-length: 84714
X-Firefox-Spdy: h2

GET youradexchange.com/script/suurl5.php?r=7034174&cbur=0.34146752016442117&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref=&cbdescription=E%27%20stato%20inviato%20un%20file%20di%20tipo%20Immagine%2FFoto&cbkeywords=&cbcdn=uwnytpkxxpueh.club&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1746050912887&srs=3d6e39d637b3f848afc80d61968a8d74&atv=60.0&abtg=1&adbv=3-cdn-js

172.67.177.214

200 OK

1.2 kB

URL GET HTTPS

youradexchange.com/script/suurl5.php?r=7034174&cbur=0.34146752016442117&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref=&cbdescription=E%27%20stato%20inviato%20un%20file%20di%20tipo%20Immagine%2FFoto&cbkeywords=&cbcdn=uwnytpkxxpueh.club&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1746050912887&srs=3d6e39d637b3f848afc80d61968a8d74&atv=60.0&abtg=1&adbv=3-cdn-js

IP / ASN

172.67.177.214

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJSON text data

First Seen2025-04-30

Last Seen2025-04-30

Times Seen1

Size1.2 kB (1188 bytes)

MD56c6d51afe8a534b919e34aa68e917be0

SHA18456be1f42b1cd2d93f95852fc7476927048a5d8

SHA25694d49f8015d8bc7c284961ee7cbe7e4ca5b340a8bb2bf25cbe7ba2b7b6324b83

Certificate Info

IssuerGoogle Trust Services

Subjectyouradexchange.com

Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E

ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

HTTP Headers

GET /script/suurl5.php?r=7034174&cbur=0.34146752016442117&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref=&cbdescription=E%27%20stato%20inviato%20un%20file%20di%20tipo%20Immagine%2FFoto&cbkeywords=&cbcdn=uwnytpkxxpueh.club&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1746050912887&srs=3d6e39d637b3f848afc80d61968a8d74&atv=60.0&abtg=1&adbv=3-cdn-js HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://media.simosnap.com/
Origin: https://media.simosnap.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ovaBT%2Ftce4nd3k9N2Nqjyi8K8RDx5QTfdvdnNkAhuqg22r8EJc67oEWqS2i8Il81Ahhoi6Y%2F3hohcqtWvMlXNhIbVxbZFKHyTRU42aRnrMqouHwiKejLegbgSDsnvpDCpM6Hobs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bbe19f50b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=576&min_rtt=387&rtt_var=189&sent=13&recv=15&lost=0&retrans=0&sent_bytes=5451&recv_bytes=2546&delivery_rate=10361359&cwnd=254&unsent_bytes=0&cid=e2f7ff6889301863&ts=232&x=0"
X-Firefox-Spdy: h2

GET use.fontawesome.com/releases/v4.7.0/css/font-awesome-css.min.css

172.67.142.245

200 OK

30 kB

URL GET HTTPS

use.fontawesome.com/releases/v4.7.0/css/font-awesome-css.min.css

IP / ASN

172.67.142.245

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeASCII text, with very long lines (30343)

First Seen2023-04-05

Last Seen2025-08-04

Times Seen4483

Size30 kB (30344 bytes)

MD536082410df2ef7f83932219089dc1443

SHA17961402d7d01e19387fe609a38454b0bc8c6cca4

SHA2565b9573e1023da775390e9284ec0eb1c606df9b468a28980055b4a6aa804f4350

Certificate Info

IssuerGoogle Trust Services

Subjectuse.fontawesome.com

Fingerprint35:EC:02:D7:73:13:A8:D4:94:28:42:85:E4:B3:7F:06:4F:C4:1B:CE

ValidityThu, 06 Mar 2025 00:21:22 GMT - Wed, 04 Jun 2025 01:21:21 GMT

HTTP Headers

GET /releases/v4.7.0/css/font-awesome-css.min.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/7c0de6a917.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 22:08:32 GMT
content-type: text/css
cache-control: max-age=31556926
etag: W/"36082410df2ef7f83932219089dc1443"
last-modified: Fri, 22 Sep 2023 01:44:05 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1282545
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pnjoKlHNM0wtSHp1Ak3aRBmjWQJG5g4LnL5FTQETm0brX45LCgd%2BLNR5X8ICJFdcvChsR3F%2BHbk2Y0umWM2q8dzvhQ0WwctqwR07nt9pJdOFEFTgCsAML%2BZHwIsSgp6ez0ZZ8sgF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bbe1d5956be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=4545&min_rtt=460&rtt_var=6804&sent=13&recv=15&lost=0&retrans=0&sent_bytes=8463&recv_bytes=1440&delivery_rate=7006451&cwnd=250&unsent_bytes=0&cid=6ed981e7afd17939&ts=467&x=0"
X-Firefox-Spdy: h2

GET uwnytpkxxpueh.club/script/ut.js?cb=1746050913044

172.67.153.94

200 OK

81 kB

URL GET HTTPS

uwnytpkxxpueh.club/script/ut.js?cb=1746050913044

IP / ASN

172.67.153.94

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65493), with no line terminators

First Seen2025-04-30

Last Seen2025-06-17

Times Seen104

Size81 kB (81040 bytes)

MD5eaa11c5f044a59ec54c82e06a8beba81

SHA1afb33a13f1b0b1163ae1d5f98703c9eacd35bee3

SHA256b05b9df2027483a401c352424c15d0adff42dbe771c52b71333e5b4e68f1260c

Certificate Info

IssuerGoogle Trust Services

Subjectuwnytpkxxpueh.club

FingerprintF5:5D:9A:78:AF:88:EA:0B:ED:23:E9:95:42:C1:9A:E9:C4:68:BE:72

ValidityThu, 24 Apr 2025 22:48:50 GMT - Wed, 23 Jul 2025 23:46:30 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /script/ut.js?cb=1746050913044 HTTP/1.1
Host: uwnytpkxxpueh.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: text/javascript
x-guploader-uploadid: AAO2VwrtKbcu2ZAbexYQOEAo-RL3uXkdhkK4CiXtAI9RrAuoFsO4XGBRbKcDRXO7O63rVNQ
x-goog-generation: 1746014128527462
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 81040
x-goog-hash: crc32c=I1uWZQ==, md5=6qEcXwRKWexUyC4GqL66gQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Wed, 30 Apr 2025 21:57:46 GMT
cache-control: public, max-age=14400
last-modified: Wed, 30 Apr 2025 11:55:28 GMT
etag: W/"eaa11c5f044a59ec54c82e06a8beba81"
age: 1482
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ciNXcaGrx%2F6w9ycyfVUNniWqJlL2kqd1NHiQt1lDJBDvx9OR8dCc17L9Umb6bgmC25uBMCweANsk25uaZJCyl65XMfqnyKApeusnSMSYvVbmOmXs8fHe9kPkPiLnv4Rh5HqFvSA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 938a5bbedc5956c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=608&min_rtt=450&rtt_var=275&sent=6&recv=10&lost=0&retrans=0&sent_bytes=3292&recv_bytes=1215&delivery_rate=5045296&cwnd=253&unsent_bytes=0&cid=9e78468417b3cb68&ts=38&x=0"
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2

142.250.74.35

200 OK

48 kB

URL GET HTTPS

fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://acceptable.a-ads.com/2284824

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 48496, version 1.0

First Seen2025-01-06

Last Seen2025-07-11

Times Seen6063

Size48 kB (48496 bytes)

MD58b7943a41013101d892c4684617ed41d

SHA11853b95f5ae2cc51c89edf6f2c44a676efe31f3b

SHA2569d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1

ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

HTTP Headers

GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acceptable.a-ads.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 10:09:02 GMT
expires: Fri, 24 Apr 2026 10:09:02 GMT
cache-control: public, max-age=31536000
age: 561571
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST pubtrky.com/ut/hb.php?cb=0.6497285896657655&v=1

172.67.188.110

204 No Content

0 B

URL POST HTTPS

pubtrky.com/ut/hb.php?cb=0.6497285896657655&v=1

IP / ASN

172.67.188.110

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-05

Times Seen5676451

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectpubtrky.com

FingerprintE5:4C:CF:74:BF:B8:D7:8B:39:F8:13:97:6C:AE:46:2B:E5:A8:E7:0B

ValidityFri, 07 Mar 2025 10:09:06 GMT - Thu, 05 Jun 2025 11:07:39 GMT

HTTP Headers

POST /ut/hb.php?cb=0.6497285896657655&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 953
Origin: https://media.simosnap.com
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Wed, 30 Apr 2025 22:08:33 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dE9Zha%2BXfCfpYuXgn6NILm3cEP6maeR%2FgJC3fN2GeijjSwvHsQpfdwsceKyj5qJvMsUZltiitHlRURtoZRIbnq6FxintWlqFIm9NLlbZx8bTcPgacgM412nWsY8cpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bc1386f0b49-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=495&min_rtt=422&rtt_var=145&sent=8&recv=12&lost=0&retrans=0&sent_bytes=3201&recv_bytes=2098&delivery_rate=7898181&cwnd=254&unsent_bytes=0&cid=26c613e076b4ba7a&ts=252&x=0"
X-Firefox-Spdy: h2

GET fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap

142.250.74.10

200 OK

10 kB

URL GET HTTPS

fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap

IP / ASN

142.250.74.10

#15169 GOOGLE

Requested byhttps://acceptable.a-ads.com/2284824

Resource Info

File typeASCII text

First Seen2025-01-27

Last Seen2025-05-29

Times Seen714

Size10 kB (10108 bytes)

MD5ac9cc59aa5362fbdf77e40cde49f0d56

SHA1be28a1f46f6e8f49bf0fdb0902fda03d15c0a97e

SHA2566077f728b7de97728b0ee9201adb3b4c798af167869fef07caaa2b01c397d4c6

Certificate Info

IssuerGoogle Trust Services

Subjectupload.video.google.com

Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00

ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

HTTP Headers

GET /css2?family=Inter:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://acceptable.a-ads.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Apr 2025 22:08:33 GMT
date: Wed, 30 Apr 2025 22:08:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/src/WOS%20LOGO-Photoroom%20(1).png

188.114.96.1

200 OK

130 kB

URL GET HTTPS

auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/src/WOS%20LOGO-Photoroom%20(1).png

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typePNG image data, 866 x 650, 8-bit/color RGBA, non-interlaced

First Seen2024-07-18

Last Seen2025-06-06

Times Seen72

Size130 kB (129588 bytes)

MD56c4d116868472c0ea4afc6f024e2b0a6

SHA197a8b38e5c699ba0ce241ae3f17299ae17d690e3

SHA25604b5f7a886645e31a10bd0b95997d6d47a5db7fc77aa431e274d29749c5a2b78

Certificate Info

IssuerGoogle Trust Services

Subjectauto-deploy.pages.dev

FingerprintB6:70:20:01:ED:7F:9D:3B:F8:B9:B7:9C:39:B6:37:C6:F5:C9:4C:B0

ValidityThu, 24 Apr 2025 01:32:13 GMT - Wed, 23 Jul 2025 02:30:33 GMT

HTTP Headers

GET /IPP/Artjom/GAME/ENG/428/src/WOS%20LOGO-Photoroom%20(1).png HTTP/1.1
Host: auto-deploy.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: image/png
content-length: 129588
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "03d5ec8fb753206dadd3bed7a8b4ef36"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k7l2ICdgDpVuBcOyXGbJ4zQs8SPw9LenVyLxXXN%2BCWYf%2BK6Dgfq1wcbzGQmd8XC1f3TjqNnPohnmgX2hFFE1wH1OC3MF2IiPtTxt%2FMYXvCyLxpHD7OQFy6LCL7lfq1OvYCULcEc4TZE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 938a5bc27f3fb505-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5800&min_rtt=3948&rtt_var=2803&sent=13&recv=7&lost=0&retrans=0&sent_bytes=4965&recv_bytes=1635&delivery_rate=150433&cwnd=12000&unsent_bytes=0&cid=88d5b7c2a5ae2aa5&ts=127&x=1", cfExtPri, cfHdrFlush;dur=0

GET auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D

188.114.96.1

200 OK

2.2 kB

URL GET HTTPS

auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeHTML document, ASCII text

First Seen2024-08-29

Last Seen2025-05-26

Times Seen15

Size2.2 kB (2163 bytes)

MD5b53f7863fb8c15b7553b3a9d025ffc64

SHA1334487876a9c0209a232542ad5ee635f21325c15

SHA2565296b060a370cebb63ef0903e595fec8124b55ec9a32ab1e398c6fa25c529f9d

Certificate Info

IssuerGoogle Trust Services

Subjectauto-deploy.pages.dev

FingerprintB6:70:20:01:ED:7F:9D:3B:F8:B9:B7:9C:39:B6:37:C6:F5:C9:4C:B0

ValidityThu, 24 Apr 2025 01:32:13 GMT - Wed, 23 Jul 2025 02:30:33 GMT

HTTP Headers

GET /IPP/Artjom/GAME/ENG/428/?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=%5BADD_FORMAT_STRING%5D&offer=%5BADD_OFFER_STRING%5D HTTP/1.1
Host: auto-deploy.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://media.simosnap.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xKuThImRxM9YbANaj4Vj6DJ%2BLrW2cm9VDFTJgdZXW48dp0F1BvVK9vzbmOO99B6rppweFTWH4wE9tnH7q7imwcWliBUFfaonHYgoSYVTdGlpPkRSoYEycCTqJ9WqDpQ%2FWRVztHoPnCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 938a5bc2cfb2b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4667&min_rtt=1518&rtt_var=2153&sent=127&recv=12&lost=0&retrans=0&sent_bytes=138557&recv_bytes=2302&delivery_rate=6372715&cwnd=96000&unsent_bytes=0&cid=88d5b7c2a5ae2aa5&ts=201&x=1", cfExtPri, cfHdrFlush;dur=0

GET youradexchange.com/script/push.php?r=7412670&ipp=1&mads=2&position=top&abtg=1&adbv=3-cdn-js&srs=3d6e39d637b3f848afc80d61968a8d74&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&atv=60.0&cbref=

172.67.177.214

200 OK

2.0 kB

URL GET HTTPS

youradexchange.com/script/push.php?r=7412670&ipp=1&mads=2&position=top&abtg=1&adbv=3-cdn-js&srs=3d6e39d637b3f848afc80d61968a8d74&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&atv=60.0&cbref=

IP / ASN

172.67.177.214

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJSON text data

First Seen2025-04-30

Last Seen2025-04-30

Times Seen1

Size2.0 kB (1987 bytes)

MD5e9bee590c9105b0cc92fe7c0ae46793f

SHA1af96c17e276c0238402ce071fe028a549404a16b

SHA2561e86bd78659239097d385788245af19157fc33b679c1e2a3d6388b8436d43e6f

Certificate Info

IssuerGoogle Trust Services

Subjectyouradexchange.com

Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E

ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

HTTP Headers

GET /script/push.php?r=7412670&ipp=1&mads=2&position=top&abtg=1&adbv=3-cdn-js&srs=3d6e39d637b3f848afc80d61968a8d74&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&atv=60.0&cbref= HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://media.simosnap.com/
Origin: https://media.simosnap.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xhyyRG7w%2B7xeKj2TsCAelgW2Rmtc7xpqcrevxK%2FyjyzjkEMAUUKSM122aMDuzMSTM9TqE5r5x3OOQOsMkYvZK1acNy0sBWzu1Sda8ZRkOJec00%2FZvbL85qLJuCjk8JoI6OuTJes%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bbe4a3e0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=630&min_rtt=387&rtt_var=203&sent=20&recv=18&lost=0&retrans=0&sent_bytes=8775&recv_bytes=2546&delivery_rate=10361359&cwnd=254&unsent_bytes=0&cid=e2f7ff6889301863&ts=265&x=0"
X-Firefox-Spdy: h2

GET auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/template.js?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=[ADD_FORMAT_STRING]&offer=[ADD_OFFER_STRING]

188.114.96.1

200 OK

6.5 kB

URL GET HTTPS

auto-deploy.pages.dev/IPP/Artjom/GAME/ENG/428/template.js?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=[ADD_FORMAT_STRING]&offer=[ADD_OFFER_STRING]

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJavaScript source, Unicode text, UTF-8 text

First Seen2024-08-16

Last Seen2025-05-26

Times Seen25

Size6.5 kB (6548 bytes)

MD5185ee985dc9959167fe15a99378cc48b

SHA1fce07415892b597fc146a957d00299f45e6eb2c5

SHA256c3b360216f9d4979030db72ee7771f98f1dd68291749f485255263650058e69a

Certificate Info

IssuerGoogle Trust Services

Subjectauto-deploy.pages.dev

FingerprintB6:70:20:01:ED:7F:9D:3B:F8:B9:B7:9C:39:B6:37:C6:F5:C9:4C:B0

ValidityThu, 24 Apr 2025 01:32:13 GMT - Wed, 23 Jul 2025 02:30:33 GMT

HTTP Headers

GET /IPP/Artjom/GAME/ENG/428/template.js?cid=174605091317120TNOTV415326358024Vc253f&network=adcash&utm_source=7412670-3775522587-3930541253&camp=401936220&creative=23833512&format=[ADD_FORMAT_STRING]&offer=[ADD_OFFER_STRING] HTTP/1.1
Host: auto-deploy.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"c4ec9f04d74989c4278e0424765f5ce2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ylXEXuuxtX3IT4maAwP87qX9hkMEZWElP1yke6OynwFT%2FyL8RKK6k50gOrCSCKB%2FD8O4BLUa08tK2snrKaVRtVweYlNsuEQV8efRENZ0aQ2IIML5ZsQZmbqnFAuhAfdx7IXxq9TIWh4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 938a5bc14ab75691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=561&min_rtt=441&rtt_var=200&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3225&recv_bytes=1232&delivery_rate=5016166&cwnd=254&unsent_bytes=0&cid=2bfff3bb063d18e8&ts=106&x=0"
X-Firefox-Spdy: h2

GET media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

104.21.11.154

200 OK

9.9 kB

URL User Request GET HTTPS

media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

IP / ASN

104.21.11.154

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeHTML document, Unicode text, UTF-8 text, with very long lines (330)

First Seen2025-04-30

Last Seen2025-04-30

Times Seen1

Size9.9 kB (9910 bytes)

MD5cb2cf163e91e39793ec0c8f5153e6861

SHA1185f8d19a2429326201b8d0b535548f96f8ff501

SHA256cc958839ad180a727c04f1f55a55371e06aefe644b8fae627c2b90e9fdc5caa8

Certificate Info

IssuerGoogle Trust Services

Subjectsimosnap.com

FingerprintAE:7D:B9:85:05:6B:97:0A:93:A5:B4:72:3F:1D:87:37:B1:BE:DA:EA

ValiditySat, 12 Apr 2025 15:27:18 GMT - Fri, 11 Jul 2025 16:26:01 GMT

HTTP Headers

GET /files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg HTTP/1.1
Host: media.simosnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 22:08:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qOjO5fBGMJJO4aN6VVnmrkYTc9AKfHQVr%2BvXmoER1mruFF9ADvLcbZtZUzwakMLPNOKekgIqY3nCtHnJyFDvPZuBaDMunT3yiQ8Q3SLYR3B9%2FRH3iLn3vD4wt6XxG1gE%2Bgh9sRk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5baace645688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1147&min_rtt=540&rtt_var=858&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3200&recv_bytes=1165&delivery_rate=2036568&cwnd=254&unsent_bytes=0&cid=62e6f97b414b7b47&ts=2387&x=0"
X-Firefox-Spdy: h2

GET media.simosnap.com/css/bootstrap.css

104.21.11.154

200 OK

118 kB

URL GET HTTPS

media.simosnap.com/css/bootstrap.css

IP / ASN

104.21.11.154

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeASCII text

First Seen2023-04-11

Last Seen2025-08-01

Times Seen26

Size118 kB (118128 bytes)

MD50b51323e0d48a2af917ec3d237f539a3

SHA1fc1828575a0f52dbcaf9852e517137102518d95d

SHA256f11e015f8f05a2c3027128f99a02a6b1fe38dad2c6da1166d25d29f1ab0041fc

Certificate Info

IssuerGoogle Trust Services

Subjectsimosnap.com

FingerprintAE:7D:B9:85:05:6B:97:0A:93:A5:B4:72:3F:1D:87:37:B1:BE:DA:EA

ValiditySat, 12 Apr 2025 15:27:18 GMT - Fri, 11 Jul 2025 16:26:01 GMT

HTTP Headers

GET /css/bootstrap.css HTTP/1.1
Host: media.simosnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 22:08:32 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rp0t3PsxsM7KOM0BVj6OtyEZnGkjuqnDQZQ57Xsmrhz%2BKSPjfMGaOjXs2Zc48J8PEv71DvLseKaqKpV0HMjM%2FspTozNhUedmsnaEedrfQxoUh8gyGQSZhtgclCThWUuW62ZpaFs%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 30 Apr 2024 08:15:53 GMT
vary: Accept-Encoding
etag: W/"6630a8b9-1cd70"
content-encoding: gzip
cf-cache-status: DYNAMIC
cf-ray: 938a5bbb3d110b3d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3322&min_rtt=762&rtt_var=2624&sent=62&recv=73&lost=0&retrans=0&sent_bytes=17957&recv_bytes=5704&delivery_rate=9481&cwnd=24000&unsent_bytes=0&cid=0c212faf8b78fdf5&ts=462&x=16"

GET code.jquery.com/ui/1.13.0/themes/base/jquery-ui.css

151.101.2.137

200 OK

36 kB

URL GET HTTPS

code.jquery.com/ui/1.13.0/themes/base/jquery-ui.css

IP / ASN

151.101.2.137

#54113 FASTLY

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeASCII text, with very long lines (2363)

First Seen2023-04-10

Last Seen2025-08-01

Times Seen102

Size36 kB (36099 bytes)

MD5d75a511ea041fd1131f698faa4657eae

SHA1b485731f51ae38fc81f03c49aca2ecce113544f3

SHA256cf4969231d261265db7398778a594d65c72c1d4cd7f98d1301b98f1557382fcd

Certificate Info

IssuerSectigo Limited

Subject*.jquery.com

FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5

ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

HTTP Headers

GET /ui/1.13.0/themes/base/jquery-ui.css HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-8d03"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 30 Apr 2025 22:08:32 GMT
age: 2982812
x-served-by: cache-lga21982-LGA, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 59, 400
x-timer: S1746050913.585372,VS0,VE0
vary: Accept-Encoding
content-length: 8355
X-Firefox-Spdy: h2

GET code.jquery.com/ui/1.13.0/jquery-ui.js

151.101.2.137

200 OK

529 kB

URL GET HTTPS

code.jquery.com/ui/1.13.0/jquery-ui.js

IP / ASN

151.101.2.137

#54113 FASTLY

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJavaScript source, ASCII text, with very long lines (1004)

First Seen2023-03-07

Last Seen2025-08-01

Times Seen135

Size529 kB (528735 bytes)

MD506c8b12668dc0e45a4c412b774c84b5f

SHA16199cf491a0252fc4dee6f933641aa2d7abbc9ae

SHA256c47e2af0dd29133ad931a46677b81055c4d98857a2f877d14c13c9d4e1970b49

Certificate Info

IssuerSectigo Limited

Subject*.jquery.com

FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5

ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

HTTP Headers

GET /ui/1.13.0/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-8115f"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 30 Apr 2025 22:08:32 GMT
age: 1351249
x-served-by: cache-lga21969-LGA, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 31, 662
x-timer: S1746050913.580593,VS0,VE0
vary: Accept-Encoding
content-length: 126134
X-Firefox-Spdy: h2

GET media.simosnap.com/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

104.21.11.154

200 OK

152 kB

URL GET HTTPS

media.simosnap.com/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

IP / ASN

104.21.11.154

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 750x1334, components 3

First Seen2025-04-30

Last Seen2025-04-30

Times Seen1

Size152 kB (151882 bytes)

MD5ba0389eb2ab654d7003740701053c538

SHA1d84eaba6ff18bed3a2b969cabfad92bb06f0ad3f

SHA256a922c2bebe8bd2a484298ac5efd1179e17b2c476dc77044d0101291b4e5dff1d

Certificate Info

IssuerGoogle Trust Services

Subjectsimosnap.com

FingerprintAE:7D:B9:85:05:6B:97:0A:93:A5:B4:72:3F:1D:87:37:B1:BE:DA:EA

ValiditySat, 12 Apr 2025 15:27:18 GMT - Fri, 11 Jul 2025 16:26:01 GMT

HTTP Headers

GET /898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg HTTP/1.1
Host: media.simosnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 22:08:32 GMT
content-type: image/jpeg
content-length: 151882
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TaLefi%2BViP5KllVek%2BETVIctiqrjtLcTJcCRrfvcsnkUya94EiRH%2FMBlVO6ghAJG%2BICkNS7hsbYPZfbh9Lu34SwEcfopt8JgXaVvWNjtzqTLpWCvP0Wue%2Fs%2FZWaiUDE7YPVT5XY%3D"}],"group":"cf-nel","max_age":604800}
accept-ranges: bytes
content-disposition: inline;filename="IMG_5887.jpeg"
tus-resumable: 1.0.0
vary: Origin
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
cf-ray: 938a5bbb4d150b3d-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2543&min_rtt=762&rtt_var=1831&sent=128&recv=77&lost=0&retrans=0&sent_bytes=92592&recv_bytes=5883&delivery_rate=10848716&cwnd=45600&unsent_bytes=0&cid=0c212faf8b78fdf5&ts=552&x=16"

GET youradexchange.com/script/banner.php?r=7037458&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref=&cbdescription=E%27%20stato%20inviato%20un%20file%20di%20tipo%20Immagine%2FFoto&cbkeywords=&cbtitle=&srs=3d6e39d637b3f848afc80d61968a8d74&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&atv=60.0

172.67.177.214

200 OK

1.9 kB

URL GET HTTPS

youradexchange.com/script/banner.php?r=7037458&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref=&cbdescription=E%27%20stato%20inviato%20un%20file%20di%20tipo%20Immagine%2FFoto&cbkeywords=&cbtitle=&srs=3d6e39d637b3f848afc80d61968a8d74&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&atv=60.0

IP / ASN

172.67.177.214

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeJSON text data

First Seen2025-04-30

Last Seen2025-04-30

Times Seen1

Size1.9 kB (1865 bytes)

MD5a12d4cd41655cd3e7687444a2e4d7c4a

SHA1d78e14cf0764ee76627e7f27d4e2c6984fd9a9f7

SHA2567a03eb6fe345f0f18c4f30368634898358186d8711c308483d593969fa250ffa

Certificate Info

IssuerGoogle Trust Services

Subjectyouradexchange.com

Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E

ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

HTTP Headers

GET /script/banner.php?r=7037458&cbpage=https%3A%2F%2Fmedia.simosnap.com%2Ffiles%2F898296133a0f3ac12380d3e9e49517bf%2FIMG_5887.jpeg&cbref=&cbdescription=E%27%20stato%20inviato%20un%20file%20di%20tipo%20Immagine%2FFoto&cbkeywords=&cbtitle=&srs=3d6e39d637b3f848afc80d61968a8d74&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&atv=60.0 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://media.simosnap.com/
Origin: https://media.simosnap.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ISgP1sAhcJVV2jdLSag3yM5zb0M3gE0qIUCvBJqtQ98B%2FKulOBsoli0XeX2%2Fs4pQsbGI0o9bmuQ6PgwWIpO1E0ErUgLbk71b2lhSePtaaGhgBYc5tahjx39RIgDTf4So0H0%2Bec4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bbe3a1e0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=635&min_rtt=387&rtt_var=258&sent=16&recv=16&lost=0&retrans=0&sent_bytes=6884&recv_bytes=2546&delivery_rate=10361359&cwnd=254&unsent_bytes=0&cid=e2f7ff6889301863&ts=250&x=0"
X-Firefox-Spdy: h2

GET youradexchange.com/script/i.php?t=1&c=23833502&stamat=m%257C%252C%252CQ3fr9id_oGU3BJ-GH0dEdHP3xP.f05%252C-kseRzmhQ7ATCAu04fhKPYMh9cRjq37ubXXE-voQvep5mIofDJBzXkR0Zp-VG4x62gwQPLOvQHoqp44uoV0Cur0Z6DAl1WPAAC3tK02UJOlgtzj1_xOktgb7k-Bu4RpNE2v1Qoqh2FPsy0Ng5ags0oqC0TEMgJM7ZcWZaHxvIh6Rj6kT7mm6GyhiQaFLOAfrjig_3rcDjMWOWSsXf3mJ0A921TUAjt34h4jh3dCussPiX5ydEMI20enoHDGqsVxNyqZmE_pbuYW7Otx2YalGxsCuM4DRxVXSEYln7cCB-1uCr4ClZG6xMTCZ_LS9rzXP-w1T6XqeJ6XQByhklpd-aI76MsKdAehU6mdNbg7bEA83WFjnUBWIrr8V9e_M7dOL3RRw1yfgrW4K4UBoBC-rsF6w4PoeHGGDQLzkKf2VxRY2pFiz_4cjSBHDQeO9xUdCv-jGakSENZtgo4U3jVFhgjAtEnjPKCPsVi7qX77mEeADTXRcGkGWKTxDwwmoKT_Rht1hLt4wGYrZpp4lf2q3HTQ3jE-F1siHtOU0lR7ep19CzbrWwjiRTBNGUEnvX2iOjgFPY90ZLOB0ATVEB0LCgWnpJROrlL_ZIqgblbpw1Jw8uVZmKYHJf70q_AjKt5_W6244JqCY2cs8xz9FPJeMAw%252C%252C

172.67.177.214

204 No Content

0 B

URL GET HTTPS

youradexchange.com/script/i.php?t=1&c=23833502&stamat=m%257C%252C%252CQ3fr9id_oGU3BJ-GH0dEdHP3xP.f05%252C-kseRzmhQ7ATCAu04fhKPYMh9cRjq37ubXXE-voQvep5mIofDJBzXkR0Zp-VG4x62gwQPLOvQHoqp44uoV0Cur0Z6DAl1WPAAC3tK02UJOlgtzj1_xOktgb7k-Bu4RpNE2v1Qoqh2FPsy0Ng5ags0oqC0TEMgJM7ZcWZaHxvIh6Rj6kT7mm6GyhiQaFLOAfrjig_3rcDjMWOWSsXf3mJ0A921TUAjt34h4jh3dCussPiX5ydEMI20enoHDGqsVxNyqZmE_pbuYW7Otx2YalGxsCuM4DRxVXSEYln7cCB-1uCr4ClZG6xMTCZ_LS9rzXP-w1T6XqeJ6XQByhklpd-aI76MsKdAehU6mdNbg7bEA83WFjnUBWIrr8V9e_M7dOL3RRw1yfgrW4K4UBoBC-rsF6w4PoeHGGDQLzkKf2VxRY2pFiz_4cjSBHDQeO9xUdCv-jGakSENZtgo4U3jVFhgjAtEnjPKCPsVi7qX77mEeADTXRcGkGWKTxDwwmoKT_Rht1hLt4wGYrZpp4lf2q3HTQ3jE-F1siHtOU0lR7ep19CzbrWwjiRTBNGUEnvX2iOjgFPY90ZLOB0ATVEB0LCgWnpJROrlL_ZIqgblbpw1Jw8uVZmKYHJf70q_AjKt5_W6244JqCY2cs8xz9FPJeMAw%252C%252C

IP / ASN

172.67.177.214

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-05

Times Seen5676451

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectyouradexchange.com

Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E

ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

HTTP Headers

GET /script/i.php?t=1&c=23833502&stamat=m%257C%252C%252CQ3fr9id_oGU3BJ-GH0dEdHP3xP.f05%252C-kseRzmhQ7ATCAu04fhKPYMh9cRjq37ubXXE-voQvep5mIofDJBzXkR0Zp-VG4x62gwQPLOvQHoqp44uoV0Cur0Z6DAl1WPAAC3tK02UJOlgtzj1_xOktgb7k-Bu4RpNE2v1Qoqh2FPsy0Ng5ags0oqC0TEMgJM7ZcWZaHxvIh6Rj6kT7mm6GyhiQaFLOAfrjig_3rcDjMWOWSsXf3mJ0A921TUAjt34h4jh3dCussPiX5ydEMI20enoHDGqsVxNyqZmE_pbuYW7Otx2YalGxsCuM4DRxVXSEYln7cCB-1uCr4ClZG6xMTCZ_LS9rzXP-w1T6XqeJ6XQByhklpd-aI76MsKdAehU6mdNbg7bEA83WFjnUBWIrr8V9e_M7dOL3RRw1yfgrW4K4UBoBC-rsF6w4PoeHGGDQLzkKf2VxRY2pFiz_4cjSBHDQeO9xUdCv-jGakSENZtgo4U3jVFhgjAtEnjPKCPsVi7qX77mEeADTXRcGkGWKTxDwwmoKT_Rht1hLt4wGYrZpp4lf2q3HTQ3jE-F1siHtOU0lR7ep19CzbrWwjiRTBNGUEnvX2iOjgFPY90ZLOB0ATVEB0LCgWnpJROrlL_ZIqgblbpw1Jw8uVZmKYHJf70q_AjKt5_W6244JqCY2cs8xz9FPJeMAw%252C%252C HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 30 Apr 2025 22:08:33 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WuhgR5BjF0OGFmVXsf3aRXgeFZO6HUYOouSxZpTnDHdN%2BaaTzs5E%2BCmwI56mp%2FVT%2FguwyOTpXAzZc7ytu6kCtyah2IYOkHKLsAROM9t6NRuN%2BrVcO2BEF%2F9jW0m06nva5nhzp5o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 938a5bc09d7f0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6142&min_rtt=387&rtt_var=11194&sent=25&recv=23&lost=0&retrans=0&sent_bytes=10799&recv_bytes=4704&delivery_rate=10361359&cwnd=254&unsent_bytes=0&cid=e2f7ff6889301863&ts=607&x=0"
X-Firefox-Spdy: h2

GET media.simosnap.com/thumb/favicon.ico

104.21.11.154

200 OK

2.5 kB

URL GET HTTPS

media.simosnap.com/thumb/favicon.ico

IP / ASN

104.21.11.154

#13335 CLOUDFLARENET

Requested byhttps://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg

Resource Info

File typeMS Windows icon resource - 1 icon, 24x24, 32 bits/pixel

First Seen2023-09-10

Last Seen2025-08-01

Times Seen25

Size2.5 kB (2462 bytes)

MD5992b6e133b157b2bece2b5fb17c4f34a

SHA1e29e8e697415c77790c691497a74edf025ddc625

SHA25693bb127b950ff7b7017f98341c361e5473b482948e1b618515261ea20f68823d

Certificate Info

IssuerGoogle Trust Services

Subjectsimosnap.com

FingerprintAE:7D:B9:85:05:6B:97:0A:93:A5:B4:72:3F:1D:87:37:B1:BE:DA:EA

ValiditySat, 12 Apr 2025 15:27:18 GMT - Fri, 11 Jul 2025 16:26:01 GMT

HTTP Headers

GET /thumb/favicon.ico HTTP/1.1
Host: media.simosnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.simosnap.com/files/898296133a0f3ac12380d3e9e49517bf/IMG_5887.jpeg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 22:08:33 GMT
content-type: image/x-icon
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B8Z%2F1xtu6K8o1BGgk63BtG%2Fgvbxabfcfxjs5qoFxvLOAZJ9M%2FVMtNzwXVcSKiA4pev4O4paijRE%2F1JIQK9OONkzvWDrC02AtYgdqg3p718xVGrq9g%2FopUfNl5UyEotiZifZoaHk%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 30 Apr 2024 08:58:21 GMT
etag: W/"6630b2ad-99e"
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 938a5bc23dfd0b3d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3341&min_rtt=762&rtt_var=1938&sent=261&recv=82&lost=0&retrans=0&sent_bytes=248944&recv_bytes=6391&delivery_rate=4734939&cwnd=91200&unsent_bytes=0&cid=0c212faf8b78fdf5&ts=1416&x=16"

GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2

142.250.74.35

200 OK

48 kB

URL GET HTTPS

fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://acceptable.a-ads.com/2284824

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 48496, version 1.0

First Seen2025-01-06

Last Seen2025-07-11

Times Seen6063

Size48 kB (48496 bytes)

MD58b7943a41013101d892c4684617ed41d

SHA11853b95f5ae2cc51c89edf6f2c44a676efe31f3b

SHA2569d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1

ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

HTTP Headers

GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acceptable.a-ads.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 10:09:02 GMT
expires: Fri, 24 Apr 2026 10:09:02 GMT
cache-control: public, max-age=31536000
age: 561571
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2