uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
4.6 kB URL uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (3171)
Hash 5138924c3f92e092d9de602b6d3b9627
af829979bf250349194a35808d775db9ef9f1a8d
0c473b124878ee031238e1f83761b8981e5d29c830b2edb55b890fcb202bb7d1
GET /rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Tue, 05 Dec 2023 16:10:43 GMT
CF-Cache-Status: BYPASS
Set-Cookie: lang=english; domain=.uppit.com; path=/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ORUDJN9Dyq3UpdP99BMXljUCFWJfUITfi7Ad5tUH%2BcoRSusheiUdfxdGUlNcWCD3FN7X4%2FMatX59pl%2FK1ErwaRCmWjk%2Bsh4igGjBO1uf%2FsEUGhw0nPXn2FnPKag%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315ccefee9f56cb-OSL
Content-Encoding: gzip
uppit.com/custom/vendor/bootstrap/css/bootstrap.min.css
21 kB URL uppit.com/custom/vendor/bootstrap/css/bootstrap.min.css
IP
File type ASCII text, with very long lines (65324)
Hash 04aca1f4cd3ec3c05a75a879f3be75a3
675fcf28f9fbf37139d3b2c0b676f96f601a4203
7928b5ab63c6e89ee0ee26f5ef201a58c72baf91abb688580a1aa26eb57b3c11
GET /custom/vendor/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:43 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5b971c41-22688"
Last-Modified: Tue, 11 Sep 2018 01:37:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zeBl4zs5Tsl%2Fem8BuPGer1KsIOgWSsu9%2BaDVo7Ok%2FqRcwYFgQkJzJzPP4XSKYeyY8JGpSCcaoX4N8AFm7Aj0vIkkM%2B05aBT70P1cMFBpwUUFwFJYJY3K22SmPo8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315ccf60a1356cb-OSL
Content-Encoding: gzip
uppit.com/custom/vendor/bootstrap/js/bootstrap.bundle.min.js
21 kB URL uppit.com/custom/vendor/bootstrap/js/bootstrap.bundle.min.js
IP
File type ASCII text, with very long lines (65297)
Hash ef58fee438cd2da2c3b33ff6f1cfeebf
41a4836fc0253324e7e583905f47ba7194bac91d
13f578716138aaf01e3b930e863b46b6a0f33e77513b52c193c949fcf47b080e
GET /custom/vendor/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5b971c41-11536"
Last-Modified: Tue, 11 Sep 2018 01:37:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2770
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FipvpUSuQ8SU1x51JA0wDnP7b8m66ALHIHei%2Fk0kAOSvUWX45UXSC1AT7TwiTFcz5KEvnzaguIbR7jMnhr19n76HU8brfjnFdPBgLltpkRhPlVNkU43DNixBEt0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd02b97b56cb-OSL
Content-Encoding: gzip
uppit.com/xupload.js
3.6 kB IP
Hash 6ed41f872b0cef992fa29521430be821
6fd3172de233957e7e0cccb01d4b9de16afdffa7
9fb832977ae637a06dd46369d6a750b95a948842df5bd316b32e5dc3a9cd07ca
GET /xupload.js HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"50a1c017-29be"
Last-Modified: Tue, 13 Nov 2012 03:35:51 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 4992
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rikpcGD%2F22sQmkW0aRA8ShwuMds3zvtq5V2AvuOKtjE77NXwNGNo4Fow4TOTSjCH46ApiMyTUHFajiZMd6M0ZPMYYYS71eEov17c52WvKWsl7vpO2kdf8dR4gTA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd02b94f7129-OSL
Content-Encoding: gzip
uppit.com/custom/css/freelancer.css
1.8 kB URL uppit.com/custom/css/freelancer.css
IP
File type assembler source, ASCII text
Hash 28ac9eb8fb94da159b09ad8fe4cc40a3
0e7bb97bb7bab0011537b32bcfa42624297995d9
9ec73875e0e1e48d10982f7439fc6e2853ad0ad02f6714b73c4b0cc9ad3d7176
GET /custom/css/freelancer.css HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"653b3f63-1d96"
Last-Modified: Fri, 27 Oct 2023 04:41:07 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2770
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ssDptU4BU6RkbV2mlsc4IEcupuLhooA7oTvJJmg3gG6VR702oD3%2B3hLwBdZ5yxL9XbJM%2Fkv7SIMuE9wo3MoO77Y5sHQ9nRL%2B6fEFWTeQJ91bIGuMjH3G7OQv%2BVw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd02bb9d56aa-OSL
Content-Encoding: gzip
uppit.com/custom/css/formChanges.css
355 B URL uppit.com/custom/css/formChanges.css
IP
Hash 7a1b38ff442e9910bc4311b1eafd9145
f695bcde7c3ee35a65d010ebb6167fa9e12a2109
7f38c2dd8d01f4715790d04762b70786b61782c1d69cb95086c4b1e2f82d4528
GET /custom/css/formChanges.css HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5bc59fa9-57e"
Last-Modified: Tue, 16 Oct 2018 08:22:01 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 169
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HNCIs766Gsktnz2oQuRpH1%2BmkSuB0asJu6iXxOoxBomVEA9%2FhGsdWOCTEdN0nsgB3y1yItnnYeEjhUCYsjAU3oaSG0gggxu0YbAgMhyrax3wkB4OSpZyJVN%2BWO8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd02bacf5693-OSL
Content-Encoding: gzip
uppit.com/custom/css/main.css
3.8 kB URL uppit.com/custom/css/main.css
IP
File type assembler source, ASCII text
Hash 752e6028944257d21abb6563f296d287
e54ba579df39599578f59b1b629f4e856d5f494f
baf189c21ff8d34533bea87aa1103f1fa84459d56dc852f8189d2b061495655e
GET /custom/css/main.css HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"6337db9d-32a4"
Last-Modified: Sat, 01 Oct 2022 06:18:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 370
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=69JlhBRuHQ8TcHmyQjj%2BfvhBY1YIK0Sr08WHfhERBBC%2Fui0OjnZ3%2F26VLK4F%2F%2FdNi5v2QzmhhoHip6bnfJqPEvSOCxbwTve88WRpTW3qpCpuf4sPuMamxoTKYJk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd02bdacb505-OSL
Content-Encoding: gzip
uppit.com/custom/vendor/jquery-easing/jquery.easing.min.js
827 B URL uppit.com/custom/vendor/jquery-easing/jquery.easing.min.js
IP
File type ASCII text, with very long lines (2532), with no line terminators
Hash e2d41e5c8fed838d9014fea53d45ce75
bde98133f735398b27339c423a817e755329f7d1
1f7723b6b9bfced0deba108df48e3287888dd986f1ff2d5133bacc9807ac0349
GET /custom/vendor/jquery-easing/jquery.easing.min.js HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5b971c41-9e4"
Last-Modified: Tue, 11 Sep 2018 01:37:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2770
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QxgZDIhK4RkvXd8ZaoAmrW3YgoFWT7SaEt%2BT3JMN9VyYYrKP%2Fin9gQJ%2BFQk1IcCvwegXULu66RP%2Bvx7SYIJ%2FmivW2Sjx9oapaE8UtlYxh9eHvTDmZggOyxRXgjU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd02d9c756cb-OSL
Content-Encoding: gzip
uppit.com/custom/vendor/magnific-popup/jquery.magnific-popup.min.js
7.4 kB URL uppit.com/custom/vendor/magnific-popup/jquery.magnific-popup.min.js
IP
File type ASCII text, with very long lines (20087)
Hash ba6cf724c8bb1cf5b084e79ff230626e
f455c5f153f872e52265f87a644ff89fe14a6fb6
3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4
GET /custom/vendor/magnific-popup/jquery.magnific-popup.min.js HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5b971c41-4ef8"
Last-Modified: Tue, 11 Sep 2018 01:37:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2308
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GGP1liWbCkoAwKolGs9jWqVT7E%2BWRB3WCVKaLKuglNXHxvI3c5%2FvusBdwt8ckGm2AVAoIzYgv0Gpihsa5oDbF5eUbBEoBMyCY9H%2B5L0dFTwaGbcDNjMAjkflEsY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd02d9757129-OSL
Content-Encoding: gzip
uppit.com/custom/vendor/jquery/jquery.min.js
30 kB URL uppit.com/custom/vendor/jquery/jquery.min.js
IP
File type ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /custom/vendor/jquery/jquery.min.js HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5b971c41-1538f"
Last-Modified: Tue, 11 Sep 2018 01:37:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2770
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4abQKQr%2FuWYGU3ToXqFb6l7bNmgJA%2BwHz94JQhKoslJZp4lOBIxttl7AFt0%2Bu81PjdIgyccxFArKc9utLcAiG4bRSBPl9bBdvpl4iazLTRkWshyFmX6ENPPo050%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd02be1056cc-OSL
Content-Encoding: gzip
uppit.com/custom/vendor/magnific-popup/magnific-popup.css
1.8 kB URL uppit.com/custom/vendor/magnific-popup/magnific-popup.css
IP
Hash 30b593b71d7672658f89bfea0ab360c9
d6963db6faa9294387bb3175813a61bc3f859437
45d1f5f6cf913746c45dd697b1a8f3b719c02d8b3f678dc7fc2766d54e1aaf6e
GET /custom/vendor/magnific-popup/magnific-popup.css HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5b971c41-1b27"
Last-Modified: Tue, 11 Sep 2018 01:37:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 4930
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gRJ0G5F1LLw7VXguLX%2FCbD1iVidXVafPCqrk7aE84JXaoKP6HrBUuvZGNaVWbZ6OUpdLoPF%2FMuIq5gZXNwizaZHUQJn4meRGgjklRyd%2Bvq%2B%2FZ8F9Le1LqT3d%2Bjw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd02edd7b505-OSL
Content-Encoding: gzip
uppit.com/custom/vendor/fontawesome-free/css/all.min.css
10 kB URL uppit.com/custom/vendor/fontawesome-free/css/all.min.css
IP
File type ASCII text, with very long lines (48464)
Hash 10519cfd3206802f58315b877a9beab5
03232d7095b4a14b88810a0ffe76ae50726c23c6
604dcf1f11698655f75046bb92f98aaa9477e1c16b01c5fc415e78794393ffb9
GET /custom/vendor/fontawesome-free/css/all.min.css HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5b971c41-be09"
Last-Modified: Tue, 11 Sep 2018 01:37:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 4992
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=taTw%2BdyUNhb4zKC4HHvcY7TaJ6RI81%2F9mhNTG25tCS5kliLhapSCKgSimQaMN77IPUiJcB%2BRWDIUVYELEVNUgR%2BQ37hNMRSZFgXtjDgm%2BW9MFLiQhD8SQSTywJI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd02db295693-OSL
Content-Encoding: gzip
code.jquery.com/jquery-3.6.0.min.js
31 kB URL code.jquery.com/jquery-3.6.0.min.js
IP
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 06 Dec 2023 16:10:45 GMT
age: 1276429
x-served-by: cache-lga21931-LGA, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 14605
x-timer: S1701879046.608949,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
uppit.com/custom/js/freelancer.min.js
783 B URL uppit.com/custom/js/freelancer.min.js
IP
File type ASCII text, with very long lines (1377)
Hash 58754e432413fcb3e1130aaa2311e73c
0239566bbe04103519f84269636534188997ca2f
b148258646866b8dde9caa29a911e2ff61759c84d1ef6cc9247cb4b15b9db7a2
GET /custom/js/freelancer.min.js HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5b971c41-65d"
Last-Modified: Tue, 11 Sep 2018 01:37:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aO5XPTo%2Fsh%2BkrBveOMcagS8l4hF%2Bk6nHmaSXNxCKrAX2WyyaMBcJSCdkiBEQhRzjNG%2FlrWkJ6zXlzUaNJYhiKKi0DAeQ%2FYneT3ugdVLvz%2BHzBxH987Om%2FQ4c5xM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd02dbe756aa-OSL
Content-Encoding: gzip
uppit.com/cf-fonts/s/montserrat/5.0.13/latin/700/normal.woff2
13 kB URL uppit.com/cf-fonts/s/montserrat/5.0.13/latin/700/normal.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12848, version 1.0\012- data
Hash f0b3206d02a2f684530117ce1d7e8ce0
f3708b707b65e241b0f1c819d5f7bf7da8412653
f31b80562610135edd91a86ec7f243c5eeaec2ec08337e6a20c2d135d8e217da
GET /cf-fonts/s/montserrat/5.0.13/latin/700/normal.woff2 HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Length: 12848
Connection: keep-alive
CF-Cache-Status: HIT
Cache-Control: public, max-age=31536000, immutable
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BSo%2FnhLE4%2BajA6TG7bTYRK5BEz0Tt1CemgF3WZLIfR%2B2zAv9GbkMeQkNp%2F6kHATQuCgBX65LUosb2Txi16ChR2VxhNyKw7r3R3ZUCHusPMWzWt2R511a%2Bp3pOwA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd04d92756cc-OSL
uppit.com/cf-fonts/s/montserrat/5.0.13/latin/400/normal.woff2
13 kB URL uppit.com/cf-fonts/s/montserrat/5.0.13/latin/400/normal.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /cf-fonts/s/montserrat/5.0.13/latin/400/normal.woff2 HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/rppz0qcq0klf/ClickTeam.Install.Creator.Pro.v2.0.0.32-DOA.zip
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:45 GMT
Content-Length: 12708
Connection: keep-alive
CF-Cache-Status: HIT
Cache-Control: public, max-age=31536000, immutable
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cqo4bNMbmtTZ%2BvNM%2B%2FsEQIaSPWLH6%2BUEMtq72Rbb01sWUxX90aLMZ8zVn2BGjcmRi5OOV45OMYDNBv%2FGmizoLK9Z7qf7O1jvAcnKYplQJn%2FVS0rJDm7MGbLE60g%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd04eeb95693-OSL
uppit.ml/random.js
41 B IP
Hash 2789e60c0a8aa552033ab9d6a8afedcc
b2d308ea1f39f1e9c43d25e952044bd8646cdf61
30c526758928760a727e346a678eea914387ef4da446b5175e7a58d82e025e5d
GET /random.js HTTP/1.1
Host: uppit.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 41
date: Wed, 06 Dec 2023 16:10:45 GMT
X-Firefox-Spdy: h2
uppit.com/custom/vendor/fontawesome-free/webfonts/fa-solid-900.woff
87 kB URL uppit.com/custom/vendor/fontawesome-free/webfonts/fa-solid-900.woff
IP
File type Web Open Font Format, TrueType, length 86876, version 1.0\012- data
Hash 815694de1120d6c1e9d1f0895ee81056
6d320e1a3820a7998051c4feec4dad22760e485e
a188f8b84731c59143770ef391c9ad0fa2534d316862d5cb384623285c95c2e0
GET /custom/vendor/fontawesome-free/webfonts/fa-solid-900.woff HTTP/1.1
Host: uppit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/custom/vendor/fontawesome-free/css/all.min.css
Cookie: lang=english
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:46 GMT
Content-Type: application/octet-stream
Content-Length: 86876
Connection: keep-alive
Etag: "5b971c41-1535c"
Last-Modified: Tue, 11 Sep 2018 01:37:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1556
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GjIeIAAMpBhsoZW9SbtNmGBQg0bxUDrjhWUP5dT6LUqFm%2FeHqILDeopUVozPGL6NoLIN3SdNE6vsE1U8Fkn7n18ITjiNNHt2YVqDhnxF0JF24Y9pZ4gXwVCl0XU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd0659335693-OSL
d13k7prax1yi04.cloudfront.net/arrive.min.js
11 kB URL d13k7prax1yi04.cloudfront.net/arrive.min.js
IP
File type HTML document, ASCII text, with very long lines (1568)
Hash 03e6214b41c20723305d594d961fc5d1
8e00d805503231f5cdbb3d7c942b3dd583d28194
7b9eed5a2d56941d7ae6d9cae9dc39c835cbedd531d15c5d45ef3aa297a0ec2a
GET /arrive.min.js HTTP/1.1
Host: d13k7prax1yi04.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://uppit.com
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 10946
expires: Wed, 13 Dec 2023 14:41:26 GMT
access-control-allow-origin: *
link: <https://nzrzgorm.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
content-encoding: br
date: Wed, 06 Dec 2023 14:41:26 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8S0oi8zM4tWcmpJ3jrqcXMKgc8S7RnO-Q8xKzD2UI3HCPQ11Ggs0fg==
age: 5360
X-Firefox-Spdy: h2
c.adsco.re/
31 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (881)
Hash 41b38d766e8df9f16d99ee5656550613
4b040e742fafccbf1f9afa059258568e320fd9d8
65802711d89571b28699f3399d58f642a270d1e2bc5e155a8a0c73c94c66ec3a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:46 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=2678400
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Permissions-Policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
Link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
Expires: Sat, 06 Jan 2024 16:10:46 GMT
ETag: W/"QbONdm6N+fFtme5WVlUGEw=="
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 520124
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd0b1a8556bb-OSL
alt-svc: h2=":443"; ma=60
6.adsco.re/
0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://uppit.com
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:46 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://uppit.com
Cache-Control: private, max-age=10
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Max-Age: 2592000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd0b593d0b02-OSL
alt-svc: h2=":443"; ma=60
4.adsco.re/
62 B IP
File type ASCII text, with no line terminators
Hash 5b41cb22f84f645a103acc7bfbf084ff
bac3967b26d5ec4a0d09a580714e8219796816bd
709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://uppit.com
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:46 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: http://uppit.com
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
ybdtgoxpkaah.l4.adsco.re/
0 B URL ybdtgoxpkaah.l4.adsco.re/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: ybdtgoxpkaah.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://uppit.com
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 06 Dec 2023 16:10:47 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
c.adsco.re/
31 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (881)
Hash 41b38d766e8df9f16d99ee5656550613
4b040e742fafccbf1f9afa059258568e320fd9d8
65802711d89571b28699f3399d58f642a270d1e2bc5e155a8a0c73c94c66ec3a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://c.adsco.re/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:47 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=2678400
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Permissions-Policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
Link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
Expires: Sat, 06 Jan 2024 16:10:47 GMT
ETag: W/"QbONdm6N+fFtme5WVlUGEw=="
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 520125
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd0d0d6356bb-OSL
alt-svc: h2=":443"; ma=60
6.adsco.re/
0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: http://c.adsco.re/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:47 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=10
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Max-Age: 2592000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8315cd0d4d231c02-OSL
alt-svc: h2=":443"; ma=60
4.adsco.re/
62 B IP
File type ASCII text, with no line terminators
Hash 5b41cb22f84f645a103acc7bfbf084ff
bac3967b26d5ec4a0d09a580714e8219796816bd
709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: http://c.adsco.re/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
ybdtgoxpkaah.n4.adsco.re/
0 B URL ybdtgoxpkaah.n4.adsco.re/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: ybdtgoxpkaah.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://uppit.com
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 06 Dec 2023 16:10:47 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
ww82.uppit.ml/
1.1 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (350)
Hash ba0957bea553fd4eea6ea9d01129583a
510e6f8078757240bb59709867855e4b2ca8b449
2752171cf66c5f79749ae105f3bc7777894d75cb55830f496185b2352f83e259
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.ml domain
GET / HTTP/1.1
Host: ww82.uppit.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://uppit.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 06 Dec 2023 16:10:47 GMT
content-type: text/html; charset=utf-8
content-length: 1053
x-request-id: ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d
cache-control: no-store, max-age=0
accept-ch: sec-ch-prefers-color-scheme
critical-ch: sec-ch-prefers-color-scheme
vary: sec-ch-prefers-color-scheme
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_fMbIJmBZtllQ3T9AcdFSLObJcTniHl+JgVORZzbGXah4fT7JOCi8wzubuLnFemACD4B5z+8xFzHccoOBmUOkaA==
set-cookie: parking_session=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d; expires=Wed, 06 Dec 2023 16:25:47 GMT; path=/
ww82.uppit.ml/bbdkSAbEi.js
32 kB URL ww82.uppit.ml/bbdkSAbEi.js
IP
File type Unicode text, UTF-8 text, with very long lines (32051)
Hash 136bc91b923c115f678c13f3740bf8fa
d8044de6e6a8b05f087f9fb73545d5b2e9666d61
46e2c2af87720b7ae5a86434547bd9bef9ff21fab2956b64bc48f17dc73c63a7
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.ml domain
GET /bbdkSAbEi.js HTTP/1.1
Host: ww82.uppit.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww82.uppit.ml/
Cookie: parking_session=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 06 Dec 2023 16:10:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 32054
x-request-id: 2fc93aaa-908f-4f7a-841f-b55af711e88a
set-cookie: parking_session=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d; expires=Wed, 06 Dec 2023 16:25:47 GMT
ybdtgoxpkaah.s4.adsco.re/
0 B URL ybdtgoxpkaah.s4.adsco.re/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: ybdtgoxpkaah.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://uppit.com
DNT: 1
Connection: keep-alive
Referer: http://uppit.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 06 Dec 2023 16:10:48 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
ww82.uppit.ml/_fd
457 B IP
File type ASCII text, with very long lines (597), with no line terminators
Hash 4b9d1b0a5835039625de6ed78be43d6e
3b279beb2b8ebe96edcef2e1f1e2316cd6349252
8e215ce20c584d2976ad038140874856b49439956f71801cc50fff0dea083161
NIDS Severity Alert suricata medium ET INFO HTTP POST Request to Suspicious *.ml Domain
suricata medium ET INFO HTTP Request to a *.ml domain
POST /_fd HTTP/1.1
Host: ww82.uppit.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww82.uppit.ml/
Content-Type: application/json
Origin: http://ww82.uppit.ml
DNT: 1
Connection: keep-alive
Cookie: parking_session=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/1.1 200 OK
server: openresty
date: Wed, 06 Dec 2023 16:10:47 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
content-length: 457
x-version: 2.110.4
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: parking_session=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d; expires=Wed, 06 Dec 2023 16:25:48 GMT; Max-Age=900; path=/; httponly
ww82.uppit.ml/_zc
177 B IP
File type ASCII text, with no line terminators
Hash 549dacc889dc4ac9ef232196ef3f69ff
e6d23d9ae02ca3e3715c06bb41f6e5f575546191
57e62db3ff79cb0e9ae28ebad586655c8bf211e314298cb33c709651431ac466
POST /_zc HTTP/1.1
Host: ww82.uppit.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww82.uppit.ml/
Content-Type: application/json
Content-Length: 1737
Origin: http://ww82.uppit.ml
DNT: 1
Connection: keep-alive
Cookie: parking_session=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: openresty
date: Wed, 06 Dec 2023 16:10:48 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
content-length: 177
x-version: 2.110.4
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: parking_session=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d; expires=Wed, 06 Dec 2023 16:25:48 GMT; Max-Age=900; path=/; httponly
iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
200 OK 41 kB URL User Request GET HTTP/1.1 iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
FingerprintE7:A3:1D:DF:10:F8:8F:A1:2C:FE:29:76:AF:6F:E3:05:C6:49:B4:07
ValiditySun, 19 Nov 2023 09:23:50 GMT - Sat, 17 Feb 2024 09:23:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10728), with CRLF, LF line terminators
Hash 4efc21f79a25b4e21c9b8209803e0496
0a8f86505a6c40e8fa730c1d23c0933aa263e06a
809e7b0154eefb050608d8f4876e7e0765ead009fc5967e4a0553f25479d38ed
GET /?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ww82.uppit.ml/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:49 GMT
Server: Apache
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_foQUJ51DkzKnOiYLB9/a9i0DpAxhwyHrCt7kVfu1IvsjLHnN2P95pW5oIuee4I9XfvDGmDr5/Ok4Fi9QujMA0g==
Keep-Alive: timeout=5, max=101
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
iyfbodn.com/px.js?ch=1
200 OK 346 B IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
FingerprintE7:A3:1D:DF:10:F8:8F:A1:2C:FE:29:76:AF:6F:E3:05:C6:49:B4:07
ValiditySun, 19 Nov 2023 09:23:50 GMT - Sat, 17 Feb 2024 09:23:49 GMT
File type ASCII text, with very long lines (346), with no line terminators
Hash f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
GET /px.js?ch=1 HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=126
Connection: Keep-Alive
Content-Type: application/javascript
a.delivery.consentmanager.net/delivery/cmp.php?&cdid=21fdca2281833&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&&l=en&o=1701879056223
200 OK 660 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/cmp.php?&cdid=21fdca2281833&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&&l=en&o=1701879056223
IP
ASN #61157 PlusServer GmbH
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint44:49:A8:C0:AF:F7:D9:6E:D0:B5:35:77:3B:05:89:CC:80:9A:8D:50
ValidityWed, 15 Nov 2023 00:31:04 GMT - Tue, 13 Feb 2024 00:31:03 GMT
File type ASCII text, with very long lines (385), with CRLF line terminators
Hash 1f151e9315609898c55b778a95905881
f02c582de99164c745d36da87275b81ba47d4f44
e180cb21169fc78e13d5960dee87eb919bcd60f26c63d38aa7e8dfa7103e6274
GET /delivery/cmp.php?&cdid=21fdca2281833&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&&l=en&o=1701879056223 HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Wed, 06 Dec 2023 16:10:50 GMT
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
iyfbodn.com/px.js?ch=2
200 OK 346 B IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
FingerprintE7:A3:1D:DF:10:F8:8F:A1:2C:FE:29:76:AF:6F:E3:05:C6:49:B4:07
ValiditySun, 19 Nov 2023 09:23:50 GMT - Sat, 17 Feb 2024 09:23:49 GMT
File type ASCII text, with very long lines (346), with no line terminators
Hash f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
GET /px.js?ch=2 HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=123
Connection: Keep-Alive
Content-Type: application/javascript
a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=68884&o=1701879050&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en
200 OK 674 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=68884&o=1701879050&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en
IP
ASN #61157 PlusServer GmbH
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint44:49:A8:C0:AF:F7:D9:6E:D0:B5:35:77:3B:05:89:CC:80:9A:8D:50
ValidityWed, 15 Nov 2023 00:31:04 GMT - Tue, 13 Feb 2024 00:31:03 GMT
File type ASCII text, with very long lines (385), with CRLF line terminators
Hash 73c498e4b50e02bea3ee70a2d968257b
7d4a330c7b30781b5d050d37ac11b5c9ecbe1669
3f0ba5fe3f3095139645363bac1552d280688e6cd03fccf4d5050ee6d9713372
GET /delivery/cmp.php?__cmpcc=1&id=68884&o=1701879050&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Wed, 06 Dec 2023 16:10:50 GMT
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=68884&o=1701879050&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en
200 OK 14 kB URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=68884&o=1701879050&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en
IP
ASN #61157 PlusServer GmbH
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint44:49:A8:C0:AF:F7:D9:6E:D0:B5:35:77:3B:05:89:CC:80:9A:8D:50
ValidityWed, 15 Nov 2023 00:31:04 GMT - Tue, 13 Feb 2024 00:31:03 GMT
File type ASCII text, with very long lines (45545), with CRLF, LF line terminators
Hash 0f5e47b962dc9fdbfdc369ec218fa03b
0a176ac94953fe50c71c84d4e70a794e8d2023a8
3d3cac6f80623cb3b62b255db9b929a9db18f15fd8486f2c0ae725e4a4bce487
GET /delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=68884&o=1701879050&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Wed, 06 Dec 2023 16:10:50 GMT
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
iyfbodn.com/__media__/js/min.js?v2.3
200 OK 8.4 kB URL GET HTTP/1.1 iyfbodn.com/__media__/js/min.js?v2.3
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
FingerprintE7:A3:1D:DF:10:F8:8F:A1:2C:FE:29:76:AF:6F:E3:05:C6:49:B4:07
ValiditySun, 19 Nov 2023 09:23:50 GMT - Sat, 17 Feb 2024 09:23:49 GMT
File type ASCII text, with very long lines (8349), with CRLF line terminators
Hash c16c3a4c0fad29106f34d00e89f6886e
6e11811ab8a98bb295b0916cdee68b302c33403d
097786d677a859b7bc87e285377b083b76d66a2fc2832a16bcd50b0e99df77ff
GET /__media__/js/min.js?v2.3 HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Server: Apache
Last-Modified: Thu, 16 Feb 2023 21:03:44 GMT
ETag: "20f3-5f4d78839b244"
Accept-Ranges: bytes
Content-Length: 8435
Keep-Alive: timeout=5, max=122
Connection: Keep-Alive
Content-Type: application/javascript
cdn.consentmanager.net/delivery/customdata/bV8xLndfNjg4ODQucl9HRFBSLmxfZW4uZF8yNjQxNS54XzI4LnYucC50XzI2NDE1Lnh0XzI4.js
200 OK 20 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/customdata/bV8xLndfNjg4ODQucl9HRFBSLmxfZW4uZF8yNjQxNS54XzI4LnYucC50XzI2NDE1Lnh0XzI4.js
IP
ASN #60068 Datacamp Limited
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
Fingerprint40:27:9C:9D:30:35:40:79:7E:8D:6A:C2:06:C0:6F:B7:C6:8E:6A:2F
ValidityMon, 13 Nov 2023 17:00:32 GMT - Sun, 11 Feb 2024 17:00:31 GMT
File type gzip compressed data, from Unix\012- data
Hash f00ff58d8de12f4f8040244b222a4472
595ee8ea44bf036b5cf44ba31fe3c0d343bc4aab
9a592dbb39f265bcdbda06fe2ae126c415eba56a5a66930c6be28bb758928c64
GET /delivery/customdata/bV8xLndfNjg4ODQucl9HRFBSLmxfZW4uZF8yNjQxNS54XzI4LnYucC50XzI2NDE1Lnh0XzI4.js HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 16:10:50 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
x-xss-protection: 0
expires: Wed, 06 Dec 2023 16:24:18 GMT
cache-control: public, max-age=1800
edge-control: public, max-age=1800
last-modified: Wed, 06 Dec 2023 15:54:18 GMT
x-77-nzt: EwwBuUwJDQH3uwMAAAwBuUwKCQH3IwAAAAwB1GY4AQH3AQAAAA
x-77-nzt-ray: c0a4cc28d7f6eaaf0a9d706537250017
x-accel-expires: @1701879859
x-accel-date: 1701878095
x-77-cache: HIT
x-77-age: 991
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 35, 955
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
a.delivery.consentmanager.net/delivery/info/?id=68884&did=1&cfdid=19890&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&o=1701879056636&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28&
200 OK 43 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/info/?id=68884&did=1&cfdid=19890&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&o=1701879056636&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28&
IP
ASN #61157 PlusServer GmbH
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint44:49:A8:C0:AF:F7:D9:6E:D0:B5:35:77:3B:05:89:CC:80:9A:8D:50
ValidityWed, 15 Nov 2023 00:31:04 GMT - Tue, 13 Feb 2024 00:31:03 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6f81c41597d3f5a336f458822cc0c32a
8cd77a54b38f1fb376b45af2eaab8f5982523b8d
5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
GET /delivery/info/?id=68884&did=1&cfdid=19890&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&o=1701879056636&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28& HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Wed, 06 Dec 2023 16:10:50 GMT
Content-Length: 43
Content-Type: image/gif
iyfbodn.com/__media__/pics/29590/bg1.png
200 OK 18 kB URL GET HTTP/1.1 iyfbodn.com/__media__/pics/29590/bg1.png
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
FingerprintE7:A3:1D:DF:10:F8:8F:A1:2C:FE:29:76:AF:6F:E3:05:C6:49:B4:07
ValiditySun, 19 Nov 2023 09:23:50 GMT - Sat, 17 Feb 2024 09:23:49 GMT
File type PNG image data, 1730 x 988, 4-bit colormap, non-interlaced\012- data
Hash 825ccd29ac102fcadaf92b2343d5917b
24472e766cfac5b82a73b219796556a0a3702bd6
0878fb2875c0ad852de8fb3e8f443afdf3064890f1443b3feccc274382f913cd
GET /__media__/pics/29590/bg1.png HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP2XT8AP2XT8AAfN0BENAdEgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP2ZiKmAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Server: Apache
Last-Modified: Fri, 25 Nov 2022 12:16:35 GMT
ETag: "4642-5ee4a7e31c9c9"
Accept-Ranges: bytes
Content-Length: 17986
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
cdn.consentmanager.net/delivery/flags-square/en.svg
200 OK 2.9 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/flags-square/en.svg
IP
ASN #60068 Datacamp Limited
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
Fingerprint40:27:9C:9D:30:35:40:79:7E:8D:6A:C2:06:C0:6F:B7:C6:8E:6A:2F
ValidityMon, 13 Nov 2023 17:00:32 GMT - Sun, 11 Feb 2024 17:00:31 GMT
File type gzip compressed data, from Unix\012- data
Hash f2365c90b9cf9f2472160529d345f1c7
350d12809b8a80418623277d596be668622e1179
9879d3960013a034f4f2929dd708fe0efd61789e93bd47f3b334dcafb7c943ba
GET /delivery/flags-square/en.svg HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 16:10:50 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 15 Jul 2022 22:28:50 GMT
etag: W/"7b29-5e3df8ad54c80"
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 20:14:21 GMT
x-77-nzt: EwwBuUwJDQH36ZMBAAwBuUwKCQH3CQEAAAwB1GY4nAHX+70IAA
x-77-nzt-ray: c0a4cc28d7f6eaaf0a9d706586aed91e
x-accel-expires: @1732738461
x-accel-date: 1701775649
x-77-cache: HIT
x-77-age: 676589
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 265, 103401
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
iyfbodn.com/sk-logabpstatus.php?a=QUhoZWZVd2UvTWczencvQW1oVWxweTFpNjRmUVV3UmVqbzdncGgyVzZjY3ptRHJ1MkdWRUtIaGQ3bFJ6QmZkTGpoQ2MvM0FHTEpHUUFNZXplV2RtMzdBL00wWXlPTnpnazlGSkUrMCtDNEw1TVp0aWR3MTk0dGIrMkRISUp0aHM=&b=true
200 OK 0 B URL GET HTTP/1.1 iyfbodn.com/sk-logabpstatus.php?a=QUhoZWZVd2UvTWczencvQW1oVWxweTFpNjRmUVV3UmVqbzdncGgyVzZjY3ptRHJ1MkdWRUtIaGQ3bFJ6QmZkTGpoQ2MvM0FHTEpHUUFNZXplV2RtMzdBL00wWXlPTnpnazlGSkUrMCtDNEw1TVp0aWR3MTk0dGIrMkRISUp0aHM=&b=true
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
FingerprintE7:A3:1D:DF:10:F8:8F:A1:2C:FE:29:76:AF:6F:E3:05:C6:49:B4:07
ValiditySun, 19 Nov 2023 09:23:50 GMT - Sat, 17 Feb 2024 09:23:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sk-logabpstatus.php?a=QUhoZWZVd2UvTWczencvQW1oVWxweTFpNjRmUVV3UmVqbzdncGgyVzZjY3ptRHJ1MkdWRUtIaGQ3bFJ6QmZkTGpoQ2MvM0FHTEpHUUFNZXplV2RtMzdBL00wWXlPTnpnazlGSkUrMCtDNEw1TVp0aWR3MTk0dGIrMkRISUp0aHM=&b=true HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP2XT8AP2XT8AAfN0BENAdEgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP2ZiKmAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Server: Apache
Content-Length: 0
Keep-Alive: timeout=5, max=112
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
iyfbodn.com/__media__/fonts/montserrat-bold/montserrat-bold.woff
200 OK 17 kB URL GET HTTP/1.1 iyfbodn.com/__media__/fonts/montserrat-bold/montserrat-bold.woff
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
FingerprintE7:A3:1D:DF:10:F8:8F:A1:2C:FE:29:76:AF:6F:E3:05:C6:49:B4:07
ValiditySun, 19 Nov 2023 09:23:50 GMT - Sat, 17 Feb 2024 09:23:49 GMT
File type Web Open Font Format, TrueType, length 17312, version 2.1\012- data
Hash bebe201d813feaad85a3e66607d0da3a
28b049502afa8e9db5340c1a92400591b39870e8
58bb75322beb862803b0d156e1a1d01fb1e7fde82ee93c929b08bf5aea9fc55b
GET /__media__/fonts/montserrat-bold/montserrat-bold.woff HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP2XT8AP2XT8AAfN0BENAdEgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP2ZiKmAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
ETag: "43a0-5b952a63ce953"
Accept-Ranges: bytes
Content-Length: 17312
Keep-Alive: timeout=5, max=123
Connection: Keep-Alive
Content-Type: font/woff
cdn.consentmanager.net/delivery/whitelabel/cmplogo.svg
200 OK 19 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/whitelabel/cmplogo.svg
IP
ASN #60068 Datacamp Limited
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
Fingerprint40:27:9C:9D:30:35:40:79:7E:8D:6A:C2:06:C0:6F:B7:C6:8E:6A:2F
ValidityMon, 13 Nov 2023 17:00:32 GMT - Sun, 11 Feb 2024 17:00:31 GMT
File type gzip compressed data, from Unix\012- data
Hash 2df3acdcda6df067782ac81ea9a0750f
975ca42524adb0b16f1978000ae92da9b76e8a42
d86d42ec25a906a70bbd1728977fe9ab21235340c705fd1e537ce9ea3de5782f
GET /delivery/whitelabel/cmplogo.svg HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iyfbodn.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 16:10:50 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Wed, 03 May 2023 16:01:17 GMT
etag: W/"104c-5facc2a822d40"
cache-control: max-age=31536000
expires: Wed, 04 Dec 2024 11:22:52 GMT
edge-control: max-age=2592000
x-77-nzt: EwwBuUwJDQH38pQBAAwBuUwKAQH3BwAAAAwB1GY4CQH3BQAAAA
x-77-nzt-ray: c0a4cc28d7f6eaaf0a9d70659e90e51e
x-accel-expires: @1733311372
x-accel-date: 1701775384
x-77-cache: HIT
x-77-age: 103678
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 7, 103666
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
iyfbodn.com/favicon.ico
404 Not Found 10 B IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
FingerprintE7:A3:1D:DF:10:F8:8F:A1:2C:FE:29:76:AF:6F:E3:05:C6:49:B4:07
ValiditySun, 19 Nov 2023 09:23:50 GMT - Sat, 17 Feb 2024 09:23:49 GMT
File type ASCII text, with no line terminators
Hash 6608dd3e21ca3beabd4bdfa625a0b221
e926d0f8694a4bc4013308afaca7af51e4c9fd9f
c75eb01138771bfb2a5517aeae882356733782767c4560cc9601c34d2591ca75
GET /favicon.ico HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP2XT8AP2XT8AAfN0BENAdEgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP2ZiKmAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 06 Dec 2023 16:10:50 GMT
Server: Apache
Content-Length: 10
Keep-Alive: timeout=5, max=122
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
cdn.consentmanager.net/delivery/recall/logos/68884
301 Moved Permanently 4.2 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/recall/logos/68884
IP
ASN #60068 Datacamp Limited
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
Fingerprint40:27:9C:9D:30:35:40:79:7E:8D:6A:C2:06:C0:6F:B7:C6:8E:6A:2F
ValidityMon, 13 Nov 2023 17:00:32 GMT - Sun, 11 Feb 2024 17:00:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /delivery/recall/logos/68884 HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 06 Dec 2023 16:10:50 GMT
content-type: text/javascript; charset=utf-8
expires: Thu, 07 Dec 2023 11:23:02 GMT
cache-control: public, max-age=86400
location: /delivery/whitelabel/cmplogo.svg
edge-control: public, max-age=86400, max-age=2592000
x-77-nzt: EwwBuUwJDQH3ZUMAAAwBuUwKAQH3DwAAAAwB1GY4CQGTgVEBAA
x-77-nzt-ray: c0a4cc28d7f6eaaf0a9d70651fb6861a
x-accel-expires: @1701948182
x-accel-date: 1701861797
x-77-cache: HIT
x-77-age: 103669
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 15, 17253
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
iyfbodn.com/__media__/fonts/montserrat-regular/montserrat-regular.woff
200 OK 17 kB URL GET HTTP/1.1 iyfbodn.com/__media__/fonts/montserrat-regular/montserrat-regular.woff
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
FingerprintE7:A3:1D:DF:10:F8:8F:A1:2C:FE:29:76:AF:6F:E3:05:C6:49:B4:07
ValiditySun, 19 Nov 2023 09:23:50 GMT - Sat, 17 Feb 2024 09:23:49 GMT
File type Web Open Font Format, TrueType, length 17264, version 2.1\012- data
Hash a43b107861b42ce1335e41e43d4e4d00
99bdb1cec4a68ebe29249c46fefefb6880d009e5
a6542dc92d71eb412bac89d8fb06c70f15be74a64b1b4ef1633288b78f4f2ff2
GET /__media__/fonts/montserrat-regular/montserrat-regular.woff HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP2XT8AP2XT8AAfN0BENAdEgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP2ZiKmAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
ETag: "4370-5b952a63d1833"
Accept-Ranges: bytes
Content-Length: 17264
Keep-Alive: timeout=5, max=127
Connection: Keep-Alive
Content-Type: font/woff
iyfbodn.com/__media__/pics/28905/arrrow.png
200 OK 283 B URL GET HTTP/1.1 iyfbodn.com/__media__/pics/28905/arrrow.png
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
FingerprintE7:A3:1D:DF:10:F8:8F:A1:2C:FE:29:76:AF:6F:E3:05:C6:49:B4:07
ValiditySun, 19 Nov 2023 09:23:50 GMT - Sat, 17 Feb 2024 09:23:49 GMT
File type PNG image data, 17 x 27, 8-bit colormap, non-interlaced\012- data
Hash 80d42c82a6c37da90210fd60a2f36128
554ba7c84d2a27ecf3b1f29d03e62101936b54d8
a1626e2d9160a0890a0a8d6e3af9e7095d68a24f9fb5ac8a166000c9a2581e10
GET /__media__/pics/28905/arrrow.png HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP2XT8AP2XT8AAfN0BENAdEgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP2ZiKmAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Server: Apache
Last-Modified: Tue, 04 Jan 2022 14:44:27 GMT
ETag: "11b-5d4c2ac970ed9"
Accept-Ranges: bytes
Content-Length: 283
Keep-Alive: timeout=5, max=104
Connection: Keep-Alive
Content-Type: image/png
cdn.consentmanager.net/delivery/js/cmp_en.min.js
200 OK 412 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/js/cmp_en.min.js
IP
ASN #60068 Datacamp Limited
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
Fingerprint40:27:9C:9D:30:35:40:79:7E:8D:6A:C2:06:C0:6F:B7:C6:8E:6A:2F
ValidityMon, 13 Nov 2023 17:00:32 GMT - Sun, 11 Feb 2024 17:00:31 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 412 kB (411777 bytes)
Hash b9a81bbfbbb4197d38f2f16ae064a08d
d48d763123bbb363cfc19d9bf42eab3617d2b9bb
8027b6d347e0587883bab68c741624daa78f46e836dae671d1b354efb1fb50bb
GET /delivery/js/cmp_en.min.js HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 16:10:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 05 Dec 2023 11:08:58 GMT
etag: W/"64881-60bc142d34680"
cache-control: max-age=86400
expires: Wed, 06 Dec 2023 11:11:42 GMT
edge-control: max-age=86400
x-77-nzt: EwwBuUwJDQH3ckMAAAwBuUwKAQH3CAAAAAwB1GY4mQH3owIAAA
x-77-nzt-ray: c0a4cc28d7f6eaaf0a9d7065a0c79c08
x-accel-expires: @1701948184
x-accel-date: 1701861784
x-77-cache: HIT
x-77-age: 17949
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 8, 17266
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
a.delivery.consentmanager.net/delivery/info/?id=68884&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&o=1701879056638&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28&
200 OK 43 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/info/?id=68884&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&o=1701879056638&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28&
IP
ASN #61157 PlusServer GmbH
Requested by https://iyfbodn.com/?dn=uppit.ml&pid=9POT3387I&pbsubid=ccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint44:49:A8:C0:AF:F7:D9:6E:D0:B5:35:77:3B:05:89:CC:80:9A:8D:50
ValidityWed, 15 Nov 2023 00:31:04 GMT - Tue, 13 Feb 2024 00:31:03 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6f81c41597d3f5a336f458822cc0c32a
8cd77a54b38f1fb376b45af2eaab8f5982523b8d
5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
GET /delivery/info/?id=68884&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Duppit.ml%26pid%3D9POT3387I%26pbsubid%3Dccd5bb08-7cdc-4d5f-86c3-f7c7ab10ed9d%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Duppit.ml%2526skipskenzo%253Dtrue&o=1701879056638&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28& HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 16:10:50 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Wed, 06 Dec 2023 16:10:50 GMT
Content-Length: 43
Content-Type: image/gif
188.114.96.1
104.17.167.186
46.8.8.100
162.252.214.5
87.230.98.74
185.200.118.51
185.200.116.51
208.91.196.46
185.76.9.15