504 B IP
ASN #20940 Akamai International B.V.
Hash f63e8d9e64abf0e5b2784ca051160e84
d15d17504ed5c584ba42145060cf745fdb41c1d0
652ee033c72bc8eadcf29c25a5387bc303bf86e6c57f262c576117f659f15eab
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "652EE033C72BC8EADCF29C25A5387BC303BF86E6C57F262C576117F659F15EAB"
Last-Modified: Fri, 05 Jul 2024 13:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7806
Expires: Sun, 07 Jul 2024 05:07:49 GMT
Date: Sun, 07 Jul 2024 02:57:43 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash e9a839fbbf2a5bc4f1a01cd5fca04d5e
ff4396bb2dcc9211b70f2e3266720172ee2ce085
3bb2a3698d452f1de2ff4f283a89fc427d9fe01c02ad968f215bee1834b1c1e3
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "3BB2A3698D452F1DE2FF4F283A89FC427D9FE01C02AD968F215BEE1834B1C1E3"
Last-Modified: Thu, 04 Jul 2024 15:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21159
Expires: Sun, 07 Jul 2024 08:50:22 GMT
Date: Sun, 07 Jul 2024 02:57:43 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 508d0867e7982df7cfa6ad58e05ce470
6f4e15b94e527d02e8dd38f8b69b493cfae84c56
376a5286b71a4a7e90b3eece9b39480f50435d5ef3c7793828481f590d04bc77
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "376A5286B71A4A7E90B3EECE9B39480F50435D5EF3C7793828481F590D04BC77"
Last-Modified: Thu, 04 Jul 2024 23:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9556
Expires: Sun, 07 Jul 2024 05:36:59 GMT
Date: Sun, 07 Jul 2024 02:57:43 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 223ffc40cc96a2aa59687065c089ccfc
6bc7fa694691bdca752335ecf0f7268bf2c908d5
1a1d7236b0738f65d98e772f67be883f477ac175767f971800a6bb3997399811
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1A1D7236B0738F65D98E772F67BE883F477AC175767F971800A6BB3997399811"
Last-Modified: Thu, 04 Jul 2024 16:18:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20222
Expires: Sun, 07 Jul 2024 08:34:46 GMT
Date: Sun, 07 Jul 2024 02:57:44 GMT
Connection: keep-alive
472 B IP
Hash 814dddd751e51bfbcc7c450744442be6
9c517faf0eeeb4d03255c92e5000773d515d6207
89ab1353b8e72751a6a56755a2aa16886bfc6db8623ab6ffe5d6afb88e28694d
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 Jul 2024 02:57:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET www.googletagmanager.com/gtag/js?id=G-LLFSDKZXET
200 OK 95 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-LLFSDKZXET
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintBA:5D:A9:7F:41:46:B0:37:01:9E:05:B0:92:BA:41:C9:31:5B:4B:4A
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT
File type JavaScript source, ASCII text, with very long lines (5945)
Hash 9010e0ed693fff831da5488979e22ca3
82a9a73afac0409e9f3dc84f282ac031b02587bb
17cdcacb9cc6937d660d549dc2622c531bf23be6f99a57329a990246f5682a3c
GET /gtag/js?id=G-LLFSDKZXET HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 07 Jul 2024 02:57:44 GMT
expires: Sun, 07 Jul 2024 02:57:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95267
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET rentry.co/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 0 B URL GET HTTP/2 rentry.co/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectrentry.co
FingerprintE7:D0:80:87:87:67:89:07:84:1C:9F:8F:A1:14:19:9A:74:71:02:85
ValidityTue, 18 Jun 2024 17:27:11 GMT - Mon, 16 Sep 2024 17:27:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sun, 07 Jul 2024 02:57:44 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/d2a97f6b6ec9/main.js?
cache-control: max-age: 300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ONBqr01ValOXvhDSBACvO1msQtGSallLNkjA%2FK0UX9dSkmrrM%2BEE1Dt8zD0eAX1i1769tQTPQb04pK08jQ0QSS81sVkL2Bsx2Vbn9w4oz0ldLULy1%2FJL6Dli%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89f4919f5d5eb51b-OSL
X-Firefox-Spdy: h2
472 B IP
Hash 814dddd751e51bfbcc7c450744442be6
9c517faf0eeeb4d03255c92e5000773d515d6207
89ab1353b8e72751a6a56755a2aa16886bfc6db8623ab6ffe5d6afb88e28694d
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 Jul 2024 02:57:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
346 B IP
ASN #20940 Akamai International B.V.
Hash a2f8db2befdfa5de44deaa44234e8535
52e78fa3a3dc91bb48c6b26ffac131c4278decee
e2828d15a44dfadd1ec728a0ceefd720e85ee3e51c039550c37168d2b3a42336
POST / HTTP/1.1
Host: e5.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "E2828D15A44DFADD1EC728A0CEEFD720E85EE3E51C039550C37168D2B3A42336"
Last-Modified: Fri, 05 Jul 2024 01:51:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9869
Expires: Sun, 07 Jul 2024 05:42:14 GMT
Date: Sun, 07 Jul 2024 02:57:45 GMT
Connection: keep-alive
POST rentry.co/cdn-cgi/challenge-platform/h/g/jsd/r/89f4919cccb1b51b
200 OK 0 B URL POST HTTP/2 rentry.co/cdn-cgi/challenge-platform/h/g/jsd/r/89f4919cccb1b51b
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectrentry.co
FingerprintE7:D0:80:87:87:67:89:07:84:1C:9F:8F:A1:14:19:9A:74:71:02:85
ValidityTue, 18 Jun 2024 17:27:11 GMT - Mon, 16 Sep 2024 17:27:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/89f4919cccb1b51b HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12129
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Referer: https://rentry.co/hasdhdbn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.rentry.co; HttpOnly; Secure; SameSite=None
cf_clearance=oH3OWN8.hrc157my9cAtXcuXfQG1KPkbqraK7y4Xb14-1720321065-1.0.1.1-GnKwAalCUY70UMklIoNijcevp2s9R7mnE5OxeiJX2XMY1aT.raV5HSUlqLu5Av8QwhXphsbiOZxTz7T02hh6lg; Path=/; Expires=Mon, 07-Jul-25 02:57:45 GMT; Domain=.rentry.co; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N%2BFACv3SlbbMnu7NsthKuJCxR%2FpRxbCIwl8ek%2BbM%2FRCk1UChODOi98eQ3lPzPqjGAgPPhma168AIvvy7r3ABPh3PDTIsPRCNS%2BTWYSH5m1Qhso22rndHp%2FbqcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89f491a0edd0b51b-OSL
X-Firefox-Spdy: h2
GET script.4dex.io/localstore.js
200 OK 580 B URL GET HTTP/1.1 script.4dex.io/localstore.js
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerCloudflare, Inc.
Subjectscript.4dex.io
FingerprintAB:9B:A2:70:ED:27:23:EF:84:14:22:FF:67:9F:5D:50:06:2D:04:28
ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 22 Oct 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1371)
Hash 00a8e13a83b2bbab51af8e55f52be363
57340eb5c07e50d96f4a04bd4c220f0f24cec649
3aec57ffa5c31e185202ddaa3b5b9d9872d4504f4546ab4eea1298baaf3c7cc7
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 02:57:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"00a8e13a83b2bbab51af8e55f52be363"
Last-Modified: Fri, 05 Jul 2024 07:56:22 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 151946
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FZqkiECB7fMDz8S3AZkI6GPn5wL0usvHHJkxj1K0bkD1s43McUcJ03g8Czbtwi2KlZ8trUGXjArCxekfU5U%2F1TCUPrgg7SsYaXdGcIl9MSNWGQEmJhh6cTQuxhIbizj0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89f491a2a88056c1-OSL
Content-Encoding: br
GET cdn4.buysellads.net/pub/rentryco.js?1720320600000
200 OK 225 kB URL GET HTTP/2 cdn4.buysellads.net/pub/rentryco.js?1720320600000
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerLet's Encrypt
Subjectcdn4.buysellads.net
Fingerprint26:DD:C1:9D:2A:25:96:4F:EA:78:E3:85:9B:61:53:9E:C9:8D:72:21
ValidityFri, 07 Jun 2024 12:40:39 GMT - Thu, 05 Sep 2024 12:40:38 GMT
File type JavaScript source, ASCII text, with very long lines (61004)
Size 225 kB (225222 bytes)
Hash 14a186ba20935984543263c412ee198d
3bd9eab594f7af2cafcb6088d900775453568bfd
2ae0e5ebcfacce4034a6e944fe5807330916001e66c071024482c0d4ccc061a1
GET /pub/rentryco.js?1720320600000 HTTP/1.1
Host: cdn4.buysellads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=3600, stale-while-revalidate
content-encoding: gzip
content-type: application/javascript
etag: 60b9a17c8cc9ed6f82eeb1b8f5f2535f395bcb8c
server: srv-ams3-0
vary: Accept-Encoding
date: Sun, 07 Jul 2024 02:57:45 GMT
X-Firefox-Spdy: h2
GET rentry.co/cdn-cgi/challenge-platform/h/g/scripts/jsd/d2a97f6b6ec9/main.js?
200 OK 26 kB URL GET HTTP/2 rentry.co/cdn-cgi/challenge-platform/h/g/scripts/jsd/d2a97f6b6ec9/main.js?
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectrentry.co
FingerprintE7:D0:80:87:87:67:89:07:84:1C:9F:8F:A1:14:19:9A:74:71:02:85
ValidityTue, 18 Jun 2024 17:27:11 GMT - Mon, 16 Sep 2024 17:27:10 GMT
File type JavaScript source, ASCII text, with very long lines (7814), with no line terminators
Hash d43b1dac6beba5ac2bdbcfde9cfd2572
5b0a0cd2028f046e438a27fd426fb43002d10b69
56dc91d52abaa2cba756dd9582c7e2b18b43cdd0f6f0bc8124b69789cd195e64
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/d2a97f6b6ec9/main.js? HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:44 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bHpZcpuV8bqgjC%2Fwc5Iz%2FneMyFkLghgSC8QxTPWH2T4w9uBEjSl2f1KrbEYoxhao4DUx4WwatLoXniST5qUbah0YaJGwYE8fIkSUXActlHPTCoC%2Ff3FG5tuSRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89f4919f9d74b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET static.vidazoo.com/basev/tcf/1.0.3/tcf.js
200 OK 5.0 kB URL GET HTTP/2 static.vidazoo.com/basev/tcf/1.0.3/tcf.js
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectvidazoo.com
Fingerprint79:FF:DE:89:10:C3:76:F2:E9:75:53:0E:D0:53:A0:40:7D:63:20:C9
ValidityMon, 01 Jul 2024 08:35:13 GMT - Sun, 29 Sep 2024 08:35:12 GMT
File type JavaScript source, ASCII text, with very long lines (15909)
Hash fae4a47e2ef8a40cf5a398527998a329
cbf85cab1c802d207cc26643b03376bd7c6de8a7
ced2b5e941867d92627d8f06c5ba98a4786f8fb5de8f4b89537112fc73bb8ed3
GET /basev/tcf/1.0.3/tcf.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: application/javascript
content-length: 5047
x-amz-id-2: 3o9yYdC1AAmDSkrCjTx0qszWgmxuDPub7IYzIhdhZHH1BG2NcMMSBDa/EQjSD/HsGJvVOHWB26Y=
x-amz-request-id: YST746YA7N6QH66Y
last-modified: Mon, 08 Jan 2024 10:40:28 GMT
etag: "c754706f000335ac7007603f04f43f2d"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 61868
expires: Mon, 08 Jul 2024 02:57:45 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 89f491a46fdf56b5-OSL
X-Firefox-Spdy: h2
GET static.vidazoo.com/basev/cmp/1.0.1/cmp.js
200 OK 1.4 kB URL GET HTTP/2 static.vidazoo.com/basev/cmp/1.0.1/cmp.js
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectvidazoo.com
Fingerprint79:FF:DE:89:10:C3:76:F2:E9:75:53:0E:D0:53:A0:40:7D:63:20:C9
ValidityMon, 01 Jul 2024 08:35:13 GMT - Sun, 29 Sep 2024 08:35:12 GMT
File type JavaScript source, ASCII text, with very long lines (3389)
Hash c775abccacfe7d85e2c32a4da8ab177c
52364c286abb247ad1954d9687c7dbd513fe10e4
2345e6cbff5c4272c633dafc3d96b17107fa2bb3643fa3efa5ce4718c52adead
GET /basev/cmp/1.0.1/cmp.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: application/javascript
content-length: 1399
x-amz-id-2: YewMMiqP7b5hjVgAG0H/mDLSFKoiiicCgrCgWuHifwgG56a3PnyWoQqzrFisNqpNieScP43wZ2c=
x-amz-request-id: 3EP9P6Q4M1919TW5
last-modified: Tue, 12 Mar 2024 16:34:24 GMT
etag: "537d031a09119574ca284f3fe36dd61b"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 61868
expires: Mon, 08 Jul 2024 02:57:45 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 89f491a46fde56b5-OSL
X-Firefox-Spdy: h2
GET script.4dex.io/a/latest/adagio.js
200 OK 22 kB URL GET HTTP/1.1 script.4dex.io/a/latest/adagio.js
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerCloudflare, Inc.
Subjectscript.4dex.io
FingerprintAB:9B:A2:70:ED:27:23:EF:84:14:22:FF:67:9F:5D:50:06:2D:04:28
ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 22 Oct 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65354)
Hash f637888c8091074a274e8a4ac43ecefa
90b634febb59d1e43be5511a607e61a6d449e252
326fc79d380a533813951051b2bb028e6b5078170b3d340e7bfc874d98f730c7
GET /a/latest/adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 02:57:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"f637888c8091074a274e8a4ac43ecefa"
Last-Modified: Fri, 05 Jul 2024 07:56:17 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
CF-Cache-Status: HIT
Age: 150703
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fCEMmMMuael2313aV7hQTQI4DZKwuszUpieFDC4mSNHKpz7tzSsT9DRzCYdqDvmTOrFX7EaGiDbp1F3HpW9XousFgdgS2b2pWm8B3m9REjnWjvQ7PLsgfS4FKnFrHYON"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89f491a4be7256af-OSL
Content-Encoding: br
POST onetag-sys.com/prebid-request
200 OK 41 B URL POST HTTP/2 onetag-sys.com/prebid-request
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1930
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://rentry.co
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
GET cadmus.script.ac/dahhc4ozyvjm6/script.js
200 OK 3 B URL GET HTTP/2 cadmus.script.ac/dahhc4ozyvjm6/script.js
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerLet's Encrypt
Subjectscript.ac
FingerprintB6:5F:77:59:C0:50:0A:F7:93:BD:18:33:E9:22:2A:1F:E5:8C:12:67
ValiditySun, 23 Jun 2024 16:14:10 GMT - Sat, 21 Sep 2024 16:14:09 GMT
Hash b519d08ef66fd54910edbedba6181ec2
8d06436c33a3086259f2f1ccaf03425707eeff17
101ead936a2281d53dcc064b7e2a2ab0d53b92ef3ef7b34b668673007895c860
GET /dahhc4ozyvjm6/script.js HTTP/1.1
Host: cadmus.script.ac
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: application/javascript
content-length: 3
age: 0
cache-control: public,max-age=259200,stale-while-revalidate=86400,stale-if-error=259200
etag: W/"601055f6a0c6408859f97b5f0a84bdb88441a80e"
last-modified: Mon, 01 Jan 2018 00:00:00 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 89f491a50fbeb4ee-OSL
X-Firefox-Spdy: h2
GET ad-delivery.net/px.gif?ch=1&e=0.25714010558834133
200 OK 43 B URL GET HTTP/2 ad-delivery.net/px.gif?ch=1&e=0.25714010558834133
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services LLC
Subjectad-delivery.net
Fingerprint03:7B:E9:04:33:1C:DF:29:E9:50:5E:D0:2F:B3:E2:A9:85:F2:3A:6A
ValidityFri, 17 May 2024 08:39:03 GMT - Thu, 15 Aug 2024 08:39:02 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.25714010558834133 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: image/gif
content-length: 43
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
x-guploader-uploadid: ABPtcPqbKSdoxbAA410mrggZiKfDXsJhP9ixcj5r_g42RwC-BpGRQV1l4taKqygKMi5bdZIZlA
expires: Thu, 13 Jun 2024 08:19:58 GMT
cache-control: public, max-age=86400
age: 2057867
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lwrzCMulYp2co6r0A0570rhulTSnwFQJM%2F9Gcms07IMP%2BZLIcENeSfQdwdsmsyYpF6Ffe55h4SpsBXdWnZMTLExM3HcnbtWtwWrH40t9QmrmvhzJVRIxZX8iLCqEAn092g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89f491a52f8556a4-OSL
X-Firefox-Spdy: h2
GET ad-delivery.net/px.gif?ch=2
200 OK 43 B URL GET HTTP/2 ad-delivery.net/px.gif?ch=2
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services LLC
Subjectad-delivery.net
Fingerprint03:7B:E9:04:33:1C:DF:29:E9:50:5E:D0:2F:B3:E2:A9:85:F2:3A:6A
ValidityFri, 17 May 2024 08:39:03 GMT - Thu, 15 Aug 2024 08:39:02 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=2 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: image/gif
content-length: 43
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
x-guploader-uploadid: ABPtcPqbKSdoxbAA410mrggZiKfDXsJhP9ixcj5r_g42RwC-BpGRQV1l4taKqygKMi5bdZIZlA
expires: Thu, 13 Jun 2024 08:19:58 GMT
cache-control: public, max-age=86400
age: 2057867
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jB8Ow5GFVuyQY%2Fz8WrRvYiVJ5esZDL3EOY%2FLOb9HJ7UxPVrzHFxgOV%2BmFcXl%2F1RAWuIW3cImgqLMVBAGXYQuIS06pRMHzqJzjIOLYFMIjpShNaM%2FeXR8Uv4p0rTPjqVvlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89f491a52f8b56a4-OSL
X-Firefox-Spdy: h2
472 B IP
Hash 8b401ec6d38ec2c92de7295f421de858
4a7a7123adebfabed8652f079a1076edb0652de5
5ac0e4bc2685907ec25cfa6c34ce734ee16be83f7941d97f2d6532488446fbdc
POST /s/wr3/-EA HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 Jul 2024 02:57:45 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
POST hb.yellowblue.io/hb-multi
200 OK 84 B URL POST HTTP/2 hb.yellowblue.io/hb-multi
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerAmazon
Subject*.yellowblue.io
FingerprintF6:26:FE:49:4A:50:FB:11:34:86:E2:79:8F:43:68:A1:1E:B6:8D:6B
ValidityMon, 18 Mar 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hash 834383d1a08cd8c6069df5361140ab71
b28bbe27304f389594abf4daf44dc9d9c6317edb
a249126042930f210ec2b78aaed87836cfd985d55cb27d59023c19ee4d213ca3
POST /hb-multi HTTP/1.1
Host: hb.yellowblue.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1416
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 84
date: Sun, 07 Jul 2024 02:57:45 GMT
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF, X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://rentry.co
x-reason: do not track ifa
x-envoy-upstream-service-time: 2
server: istio-envoy
x-cache: Miss from cloudfront
via: 1.1 95ad0c949c0fe7e97075c6690b8574aa.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL51-P1
x-amz-cf-id: klqxv7OSIp1EPcsm3m3QboIShQl_28zUIg_mj2GSwzfMfBHJSAOxmw==
X-Firefox-Spdy: h2
472 B IP
Hash 8b401ec6d38ec2c92de7295f421de858
4a7a7123adebfabed8652f079a1076edb0652de5
5ac0e4bc2685907ec25cfa6c34ce734ee16be83f7941d97f2d6532488446fbdc
POST /s/wr3/-EA HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 Jul 2024 02:57:45 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
POST mp.4dex.io/prebid
200 OK 552 B IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint9E:87:DD:BD:47:B6:39:9C:7F:64:FA:78:7E:00:E7:39:30:C9:11:46
ValidityMon, 01 Jul 2024 01:35:44 GMT - Sun, 29 Sep 2024 01:35:43 GMT
File type gzip compressed data, from Unix
Hash 571d967f3f85b13b5ad328262e902c5c
5cc90d0737893ad04b66fb4a6eadcd92bbd7b7d4
5116074f623adbf7fc3bf07d31c88ba36aa079b72d41b2bf2337d4b3ee331991
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1827
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://rentry.co
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Shapings: no adunits with size and seat and mapping
x-version: 3.0.0-gcp-ams
x-warn: Process Floors. 2 inventory rules not found for mediatype: banner and adUnitCode: bsa-zone_1699624989460-1_123456, Process Floors. 3 inventory rules not found for mediatype: banner and adUnitCode: bsa-zone_1700727262982-7_123456
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 89f491a4c97f568e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
GET c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectc.4dex.io
Fingerprint8B:06:AF:6D:A1:64:84:39:7D:A7:80:5B:9C:76:2D:00:CD:70:81:B2
ValiditySat, 22 Jun 2024 13:43:26 GMT - Fri, 20 Sep 2024 14:33:16 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectc.4dex.io
Fingerprint8B:06:AF:6D:A1:64:84:39:7D:A7:80:5B:9C:76:2D:00:CD:70:81:B2
ValiditySat, 22 Jun 2024 13:43:26 GMT - Fri, 20 Sep 2024 14:33:16 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=1&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST ads.servenobid.com/adreq?cb=7128
200 OK 612 B URL POST HTTP/2 ads.servenobid.com/adreq?cb=7128
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
Hash e6c21274c3a3f214847d36833286ff46
18e9588858002a5f6ddb3a2004de964eae786205
1e79e0a714ca68c7019601838b7336882fb0f77b7eed6ec357a91807c4e66c4f
POST /adreq?cb=7128 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 885
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: application/json
access-control-allow-origin: https://rentry.co
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
504 B IP
ASN #20940 Akamai International B.V.
Hash 861cce1bf441610f1dfbb14264d55122
1596b2c44fcdb5f7a49c73da766e4ab48b6bd064
f67d59f3fddbcaf61f9f1aa87eca02a320f59402bb412687a4db4d8aa81867d2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F67D59F3FDDBCAF61F9F1AA87ECA02A320F59402BB412687A4DB4D8AA81867D2"
Last-Modified: Fri, 05 Jul 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20574
Expires: Sun, 07 Jul 2024 08:40:40 GMT
Date: Sun, 07 Jul 2024 02:57:46 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 861cce1bf441610f1dfbb14264d55122
1596b2c44fcdb5f7a49c73da766e4ab48b6bd064
f67d59f3fddbcaf61f9f1aa87eca02a320f59402bb412687a4db4d8aa81867d2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F67D59F3FDDBCAF61F9F1AA87ECA02A320F59402BB412687A4DB4D8AA81867D2"
Last-Modified: Fri, 05 Jul 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20574
Expires: Sun, 07 Jul 2024 08:40:40 GMT
Date: Sun, 07 Jul 2024 02:57:46 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 861cce1bf441610f1dfbb14264d55122
1596b2c44fcdb5f7a49c73da766e4ab48b6bd064
f67d59f3fddbcaf61f9f1aa87eca02a320f59402bb412687a4db4d8aa81867d2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F67D59F3FDDBCAF61F9F1AA87ECA02A320F59402BB412687A4DB4D8AA81867D2"
Last-Modified: Fri, 05 Jul 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20574
Expires: Sun, 07 Jul 2024 08:40:40 GMT
Date: Sun, 07 Jul 2024 02:57:46 GMT
Connection: keep-alive
GET api.btloader.com/mw/state?bt_env=prod
204 No Content 0 B URL GET HTTP/2 api.btloader.com/mw/state?bt_env=prod
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint20:6D:74:AC:C1:C1:4A:1D:EA:AE:6D:51:9C:75:ED:A3:CE:86:87:16
ValidityTue, 04 Jun 2024 03:45:50 GMT - Mon, 02 Sep 2024 04:40:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mw/state?bt_env=prod HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: *
vary: Origin
date: Sun, 07 Jul 2024 02:57:46 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
472 B IP
Hash 8b401ec6d38ec2c92de7295f421de858
4a7a7123adebfabed8652f079a1076edb0652de5
5ac0e4bc2685907ec25cfa6c34ce734ee16be83f7941d97f2d6532488446fbdc
POST /s/wr3/-EA HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 Jul 2024 02:57:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
POST exchange.cootlogix.com/prebid/multi/65e9e879eab3382166f737dc
204 No Content 0 B URL POST HTTP/2 exchange.cootlogix.com/prebid/multi/65e9e879eab3382166f737dc
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://rentry.co/hasdhdbn
Certificate IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint42:4E:B5:0E:ED:B9:5B:73:77:57:21:E2:AA:3E:A0:B3:D5:3D:A9:D8
ValidityThu, 19 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/multi/65e9e879eab3382166f737dc HTTP/1.1
Host: exchange.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 893
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: https://rentry.co
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
set-cookie: vdz_sync=f8af68e1-0890-ed7a-7b22-b86bbc7b3f6c; Domain=.cootlogix.com; Path=/; Expires=Tue, 06 Aug 2024 02:57:46 GMT; Secure; SameSite=None
content-length: 0
date: Sun, 07 Jul 2024 02:57:46 GMT
X-Firefox-Spdy: h2
GET rentry.co/static/js/jquery.min.js?v=21
200 OK 33 kB URL GET HTTP/2 rentry.co/static/js/jquery.min.js?v=21
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectrentry.co
FingerprintE7:D0:80:87:87:67:89:07:84:1C:9F:8F:A1:14:19:9A:74:71:02:85
ValidityTue, 18 Jun 2024 17:27:11 GMT - Mon, 16 Sep 2024 17:27:10 GMT
File type JavaScript source, ASCII text, with very long lines (65451)
Hash 0d9824e6289fa893434c354eadde4075
b9a1358f185c7239829712de6830333829e9bd33
4c1add9ba5d6cde3a03149a022b61163b35c4d5c738cf32470e7e7bd611e4ac6
GET /static/js/jquery.min.js?v=21 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/hasdhdbn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 16:34:10 GMT
etag: W/"6644e402-166ee"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 2043707
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VfzDYvGd8sVgwLLqlH08qdmbKKw3MmkrHr29dNdxTqtJ22xC%2BJbj4NyEO9DwInD0AHV7dCrAqXqpZxX89Nl%2B44oxoStMH4LOYzoOe7exjdv9DCKMxDjtGrleRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89f4919e3d11b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET api.btloader.com/country?o=5102648370397184
200 OK 37 B URL GET HTTP/2 api.btloader.com/country?o=5102648370397184
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint20:6D:74:AC:C1:C1:4A:1D:EA:AE:6D:51:9C:75:ED:A3:CE:86:87:16
ValidityTue, 04 Jun 2024 03:45:50 GMT - Mon, 02 Sep 2024 04:40:04 GMT
Hash bdfe458835550c34f45fc9fdfeebb12a
0f08aa02e7bcbf4c5e991a5defb2fdbd03a86f3d
ad26ec64cc613fbfbd47faaf39f9921c2b19769bde1d3c5c2857a671e7863cf9
GET /country?o=5102648370397184 HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: private, max-age=300, stale-while-revalidate=600, stale-if-error=600
content-type: application/json
vary: Origin
date: Sun, 07 Jul 2024 02:57:46 GMT
content-length: 37
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET api.btloader.com/pv?tid=ubnw4XUto&w=5123465689956352&o=5102648370397184&cv=2.1.46-1-ge6dd43d&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2Fhasdhdbn&sid=E0YEjKP3&pm=true&upapi=true
204 No Content 0 B URL GET HTTP/2 api.btloader.com/pv?tid=ubnw4XUto&w=5123465689956352&o=5102648370397184&cv=2.1.46-1-ge6dd43d&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2Fhasdhdbn&sid=E0YEjKP3&pm=true&upapi=true
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint20:6D:74:AC:C1:C1:4A:1D:EA:AE:6D:51:9C:75:ED:A3:CE:86:87:16
ValidityTue, 04 Jun 2024 03:45:50 GMT - Mon, 02 Sep 2024 04:40:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pv?tid=ubnw4XUto&w=5123465689956352&o=5102648370397184&cv=2.1.46-1-ge6dd43d&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2Fhasdhdbn&sid=E0YEjKP3&pm=true&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Sun, 07 Jul 2024 02:57:46 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectc.4dex.io
Fingerprint8B:06:AF:6D:A1:64:84:39:7D:A7:80:5B:9C:76:2D:00:CD:70:81:B2
ValiditySat, 22 Jun 2024 13:43:26 GMT - Fri, 20 Sep 2024 14:33:16 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0 HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 07 Jul 2024 02:57:46 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C1%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C1%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectc.4dex.io
Fingerprint8B:06:AF:6D:A1:64:84:39:7D:A7:80:5B:9C:76:2D:00:CD:70:81:B2
ValiditySat, 22 Jun 2024 13:43:26 GMT - Fri, 20 Sep 2024 14:33:16 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=2&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C1%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0 HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 07 Jul 2024 02:57:46 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET c.4dex.io/pba.gif?v=3&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C1%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0&win_bdr=appnexus&win_mt=ban&win_ban_sz=728x90&win_cpm=0.014061&cur=USD&cur_rate=1&og_cpm=0.014061&og_cur=USD&og_cur_rate=1
200 OK 43 B URL GET HTTP/3 c.4dex.io/pba.gif?v=3&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C1%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0&win_bdr=appnexus&win_mt=ban&win_ban_sz=728x90&win_cpm=0.014061&cur=USD&cur_rate=1&og_cpm=0.014061&og_cur=USD&og_cur_rate=1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectc.4dex.io
Fingerprint8B:06:AF:6D:A1:64:84:39:7D:A7:80:5B:9C:76:2D:00:CD:70:81:B2
ValiditySat, 22 Jun 2024 13:43:26 GMT - Fri, 20 Sep 2024 14:33:16 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=3&pbjsv=8.41.0&org_id=1116&site=rentry-co&pv_id=fd2d5e23-25b5-49b7-a22f-20354b3d98dc&auct_id=f09e3d39-7867-41f0-b8bc-6da645c0bacc&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C1%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0&win_bdr=appnexus&win_mt=ban&win_ban_sz=728x90&win_cpm=0.014061&cur=USD&cur_rate=1&og_cpm=0.014061&og_cur=USD&og_cur_rate=1 HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Sun, 07 Jul 2024 02:57:48 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET static4.buysellads.net/pub/prebid-universal-creative.js?1.13.0
200 OK 87 kB URL GET HTTP/2 static4.buysellads.net/pub/prebid-universal-creative.js?1.13.0
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerAmazon
Subjectstatic4.buysellads.net
FingerprintA2:74:E6:5C:0A:5A:6D:C9:0F:43:C8:DE:FC:2F:A1:6F:09:7E:85:BF
ValidityThu, 12 Oct 2023 00:00:00 GMT - Sat, 09 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (26808)
Hash 41621fa00b6d5c09a7399c5b006fdf4f
d2b94668f5e1d0b30bb44bdd0671797ef6bfb459
9472022126feaab7fb7490a022c09065a35ee729f6f6ba83bb24c1f075f3947b
GET /pub/prebid-universal-creative.js?1.13.0 HTTP/1.1
Host: static4.buysellads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentry.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 03 Jul 2024 23:56:27 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 07 Jul 2024 02:51:07 GMT
cache-control: max-age=600
etag: W/"41621fa00b6d5c09a7399c5b006fdf4f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AmGMtt0sO7KyVOwvSX0h-mQkuPAcne1oTodsUbZ_S09uoMuXSN4ZnQ==
age: 419
X-Firefox-Spdy: h2
GET www.bing.com/th?id=OADD2.7765401475244_1TLWJKI3WPPJAI4PLL&pid=21.2&c=16&roil=0&roit=0.0413&roir=1&roib=0.8263&w=172&h=90&qlt=90
200 OK 6.0 kB URL GET HTTP/2 www.bing.com/th?id=OADD2.7765401475244_1TLWJKI3WPPJAI4PLL&pid=21.2&c=16&roil=0&roit=0.0413&roir=1&roib=0.8263&w=172&h=90&qlt=90
IP
ASN #20940 Akamai International B.V.
Requested by https://rentry.co/hasdhdbn
Certificate IssuerMicrosoft Corporation
Subjectr.bing.com
FingerprintFB:05:1F:68:82:20:FD:40:5D:5A:4B:E1:F8:90:1F:0C:FA:C6:EC:20
ValidityMon, 24 Jun 2024 16:16:15 GMT - Thu, 19 Jun 2025 16:16:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 172x90, components 3
Hash 7215f604d04bed127c8aaa667190338b
2f62950dc4fbff3a451057b0b8b23e8761a81980
3d573bf6f486a45f72f23929be3ea6088dc69253fe42c3141dede401f169d019
GET /th?id=OADD2.7765401475244_1TLWJKI3WPPJAI4PLL&pid=21.2&c=16&roil=0&roit=0.0413&roir=1&roib=0.8263&w=172&h=90&qlt=90 HTTP/1.1
Host: www.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentry.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5962
date: Sun, 07 Jul 2024 02:57:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.760a655f.1720321068.855e7ff
X-Firefox-Spdy: h2
GET www.bing.com/api/v1/mediation/tracking?adUnit=391466&auId=849f8603-f03b-4f8f-9de7-9f09afd7917a&bidId=15000&bidderId=4&cmExpId=LV2&oAdUnit=391466&publisherId=162645330&rId=877e2e6f-4b51-4d67-87bb-ecfdc472f37d&rlink=https%3A%2F%2Fwww.bing.com%2Faes%2Fc.gif%3FDI%3D0%26DIS%3DSB_15000-1-0%3F%26RG%3D4ed2fa18d8204b0f9a47e655256d8b0b%26SNR%3D1%26GV%3D2%26med%3D10&rtype=miFeedbackURL&tagId=31337716&trafficGroup=knaqe_3c&trafficSubGroup=zzf%3Aknaqe_3c_gvrq-pbageby&aid=2810327307166967839
303 See Other 154 B URL GET HTTP/2 www.bing.com/api/v1/mediation/tracking?adUnit=391466&auId=849f8603-f03b-4f8f-9de7-9f09afd7917a&bidId=15000&bidderId=4&cmExpId=LV2&oAdUnit=391466&publisherId=162645330&rId=877e2e6f-4b51-4d67-87bb-ecfdc472f37d&rlink=https%3A%2F%2Fwww.bing.com%2Faes%2Fc.gif%3FDI%3D0%26DIS%3DSB_15000-1-0%3F%26RG%3D4ed2fa18d8204b0f9a47e655256d8b0b%26SNR%3D1%26GV%3D2%26med%3D10&rtype=miFeedbackURL&tagId=31337716&trafficGroup=knaqe_3c&trafficSubGroup=zzf%3Aknaqe_3c_gvrq-pbageby&aid=2810327307166967839
IP
ASN #20940 Akamai International B.V.
Requested by https://rentry.co/hasdhdbn
Certificate IssuerMicrosoft Corporation
Subjectr.bing.com
FingerprintFB:05:1F:68:82:20:FD:40:5D:5A:4B:E1:F8:90:1F:0C:FA:C6:EC:20
ValidityMon, 24 Jun 2024 16:16:15 GMT - Thu, 19 Jun 2025 16:16:15 GMT
File type HTML document, ASCII text
Hash d8c485881e7825c4e9c8713e33ea33c3
9aba994dabf1af0c6269aa07942ab28cc313dbe8
29a9f81f9ac54d33b64ff81ad4e0d9f7bd81d4103f11dda0b92b7e3e693cb3b6
GET /api/v1/mediation/tracking?adUnit=391466&auId=849f8603-f03b-4f8f-9de7-9f09afd7917a&bidId=15000&bidderId=4&cmExpId=LV2&oAdUnit=391466&publisherId=162645330&rId=877e2e6f-4b51-4d67-87bb-ecfdc472f37d&rlink=https%3A%2F%2Fwww.bing.com%2Faes%2Fc.gif%3FDI%3D0%26DIS%3DSB_15000-1-0%3F%26RG%3D4ed2fa18d8204b0f9a47e655256d8b0b%26SNR%3D1%26GV%3D2%26med%3D10&rtype=miFeedbackURL&tagId=31337716&trafficGroup=knaqe_3c&trafficSubGroup=zzf%3Aknaqe_3c_gvrq-pbageby&aid=2810327307166967839 HTTP/1.1
Host: www.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentry.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 303 See Other
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 154
content-type: text/html; charset=utf-8
expires: 0
location: https://www.bing.com/aes/c.gif?DI=0&DIS=SB_15000-1-0?&RG=4ed2fa18d8204b0f9a47e655256d8b0b&SNR=1&GV=2&med=10
vary: Origin
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 14BECDFCE9464C7F96C9823B8FF08B3A Ref B: OSL30EDGE0307 Ref C: 2024-07-07T02:57:48Z
date: Sun, 07 Jul 2024 02:57:48 GMT
set-cookie: _EDGE_S=F=1&SID=19964D0C78036683326259B97954672E; path=/; httponly; domain=bing.com
_EDGE_V=1; path=/; httponly; expires=Fri, 01-Aug-2025 02:57:48 GMT; domain=bing.com
MUID=2502BAB3F48B663F1098AE06F5DC6796; samesite=none; path=/; secure; expires=Fri, 01-Aug-2025 02:57:48 GMT; domain=bing.com
MUIDB=2502BAB3F48B663F1098AE06F5DC6796; path=/; httponly; expires=Fri, 01-Aug-2025 02:57:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.760a655f.1720321068.855e804
X-Firefox-Spdy: h2
GET www.bing.com/aes/c.gif?DI=0&DIS=SB_15000-1-0?&RG=4ed2fa18d8204b0f9a47e655256d8b0b&SNR=1&GV=2&med=10
200 OK 0 B URL GET HTTP/3 www.bing.com/aes/c.gif?DI=0&DIS=SB_15000-1-0?&RG=4ed2fa18d8204b0f9a47e655256d8b0b&SNR=1&GV=2&med=10
IP
ASN #20940 Akamai International B.V.
Requested by https://rentry.co/hasdhdbn
Certificate IssuerMicrosoft Corporation
Subjectr.bing.com
FingerprintFB:05:1F:68:82:20:FD:40:5D:5A:4B:E1:F8:90:1F:0C:FA:C6:EC:20
ValidityMon, 24 Jun 2024 16:16:15 GMT - Thu, 19 Jun 2025 16:16:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aes/c.gif?DI=0&DIS=SB_15000-1-0?&RG=4ed2fa18d8204b0f9a47e655256d8b0b&SNR=1&GV=2&med=10 HTTP/1.1
Host: www.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: private,no-store
pragma: no-cache
vary: Origin
p3p: CP=BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 44428074EE24458889B5A54D46E295DC Ref B: OSL30EDGE0506 Ref C: 2024-07-07T02:57:48Z
content-length: 0
date: Sun, 07 Jul 2024 02:57:48 GMT
set-cookie: _EDGE_S=F=1&SID=0CD4618600B9661C316C7533014C67AB; path=/; httponly; domain=bing.com
_EDGE_V=1; path=/; httponly; expires=Fri, 01-Aug-2025 02:57:48 GMT; domain=bing.com
MUID=19827171BAA067690C4465C4BB55662B; samesite=none; path=/; secure; expires=Fri, 01-Aug-2025 02:57:48 GMT; domain=bing.com
MUIDB=19827171BAA067690C4465C4BB55662B; path=/; httponly; expires=Fri, 01-Aug-2025 02:57:48 GMT
quic-version: 0x00000001
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.760a655f.1720321068.855e83d
GET onetag-sys.com/usync/?cb=1720321065826
204 No Content 0 B URL GET HTTP/2 onetag-sys.com/usync/?cb=1720321065826
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1720321065826 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
GET onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
204 No Content 0 B URL GET HTTP/2 onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
GET sync.cootlogix.com/api/sync/iframe/?cid=&gdpr=0&gdpr_consent=&us_privacy=
200 OK 109 B URL GET HTTP/2 sync.cootlogix.com/api/sync/iframe/?cid=&gdpr=0&gdpr_consent=&us_privacy=
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://rentry.co/hasdhdbn
Certificate IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint42:4E:B5:0E:ED:B9:5B:73:77:57:21:E2:AA:3E:A0:B3:D5:3D:A9:D8
ValidityThu, 19 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 9b7355ecddaf0c12398a48659278a7e6
5181162df39733dda7a615293993d26df753d769
a1aa01f31d4087317f5d4e5ef4ea70a73e38124a45f1553dbe8968ea16068b84
GET /api/sync/iframe/?cid=&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: sync.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Cookie: vdz_sync=f683c4fd-95f6-8688-d163-b885c21b9a3b
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-credentials: true
p3p: CP="NOI DSP COR PSAo PSDo OUR IND UNI COM NAV ADMa"
access-control-allow-methods: GET, HEAD, OPTIONS, POST
content-type: text/html
content-length: 109
date: Sun, 07 Jul 2024 02:57:49 GMT
X-Firefox-Spdy: h2
504 B IP
ASN #20940 Akamai International B.V.
Hash a68d4010267b99279dcb6afea89304df
f3babf6d6f4a2fabf59ef37b31b1ff6b09b46dd9
4e153fceb77d97d615a4d2cd63ec98ca91d08c04fa1f8166c83acb2fe1219e49
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "4E153FCEB77D97D615A4D2CD63EC98CA91D08C04FA1F8166C83ACB2FE1219E49"
Last-Modified: Thu, 04 Jul 2024 10:55:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2367
Expires: Sun, 07 Jul 2024 03:37:17 GMT
Date: Sun, 07 Jul 2024 02:57:50 GMT
Connection: keep-alive
GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
302 Found 0 B URL GET HTTP/2 prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
Fingerprint68:43:4E:42:7A:BC:94:FF:CA:52:98:82:9C:A9:F1:B1:8D:7C:92:75
ValidityThu, 04 Jul 2024 09:55:47 GMT - Wed, 02 Oct 2024 09:55:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Sun, 07 Jul 2024 02:57:49 GMT
location: https://ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
GET ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
200 OK 0 B URL GET HTTP/2 ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=327&uid=&us_privacy=1YN-&gdpr=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:50 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
280 B URL ocsp.e2m03.amazontrust.com/
IP
Hash 86f170f5cf3911a43c3e156e79eb6318
212a5d0c3dd5edde5b78babe61c0f6af17977d4c
d882ac59b2da39fd2dc6880467cbeafbe79ea699a5d916a3ed29c46872d1e5de
POST / HTTP/1.1
Host: ocsp.e2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 07 Jul 2024 02:57:50 GMT
Last-Modified: Sun, 07 Jul 2024 02:04:43 GMT
Server: ECAcc (ska/F73A)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Aux4Vd7jXnpapC7KOXzZL1rKx7aGD0sRcUFRRCIXhwyr8RUwOuyiTQ==
Age: 3187
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash 961130817f241a496408272faeb702d4
228ed65fbc8c76b57951687a7697ce30b0b2e3be
5c23e35037d34dd5362c254125e6c6cbc62136a1a598c0bf09631da1859f52a4
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 07 Jul 2024 02:57:50 GMT
Last-Modified: Sun, 07 Jul 2024 02:05:09 GMT
Server: ECAcc (ska/F73A)
X-Cache: Miss from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Dcv7dHcbgp8fGHplkW3IN_2xpMAKYo8dL7IsvMUYpN-YvHVNfunNkA==
Age: 3162
GET cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D
204 No Content 0 B URL GET HTTP/2 cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subject*.yellowblue.io
Fingerprint3E:2F:02:15:24:62:BE:D4:BC:D1:64:8E:24:5F:A0:20:D8:CD:E1:DA
ValidityMon, 18 Mar 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D HTTP/1.1
Host: cs-server-s2s.yellowblue.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sun, 07 Jul 2024 02:57:50 GMT
x-envoy-upstream-service-time: 4
server: istio-envoy
X-Firefox-Spdy: h2
GET ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
204 No Content 0 B URL GET HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subjectssp.disqus.com
Fingerprint96:FD:73:B5:E9:EF:6E:2E:4D:32:F8:DA:60:AD:74:67:56:BA:B7:89
ValiditySat, 21 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sun, 07 Jul 2024 02:57:50 GMT
cache-control: no-store
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
GET ads.dxkulture.com/xuid
200 OK 0 B IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
Fingerprint09:B8:DB:65:34:D0:63:E4:DA:3F:04:45:00:FD:95:B3:1F:19:C7:B7
ValiditySun, 26 May 2024 06:57:27 GMT - Sat, 24 Aug 2024 06:57:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xuid HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 02:57:50 GMT
Content-Length: 0
Connection: close
Cache-Control: no-cache, no-store
Set-Cookie: mtuid=a5da2924-0540-4bce-9ca6-0cd168218139; Path=/; Domain=dxkulture.com; Expires=Fri, 03 Jan 2025 02:57:50 GMT; Secure; SameSite=None
Vary: Origin
Strict-Transport-Security: max-age=31536000; includeSubDomains
GET ads.dxkulture.com/usync/lr.gif
302 Found 107 B URL GET HTTP/1.1 ads.dxkulture.com/usync/lr.gif
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
Fingerprint09:B8:DB:65:34:D0:63:E4:DA:3F:04:45:00:FD:95:B3:1F:19:C7:B7
ValiditySun, 26 May 2024 06:57:27 GMT - Sat, 24 Aug 2024 06:57:26 GMT
File type HTML document, ASCII text
Hash 8bc8e455a2431aef3116129a14dbd1cb
bfb9aff91db711301860e1de806e44808dad22d3
74c398efae03ba4bcbb203304c8d63ebb85e69fed783dc01d8316fb1471abf22
GET /usync/lr.gif HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Cookie: mtuid=a5da2924-0540-4bce-9ca6-0cd168218139
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Sun, 07 Jul 2024 02:57:51 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 107
Connection: close
Location: https://idsync.rlcdn.com/712910.gif?partner_uid=a5da2924-0540-4bce-9ca6-0cd168218139
Vary: Origin
Strict-Transport-Security: max-age=31536000; includeSubDomains
GET ads.dxkulture.com/usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID
301 Moved Permanently 119 B URL GET HTTP/1.1 ads.dxkulture.com/usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
Fingerprint09:B8:DB:65:34:D0:63:E4:DA:3F:04:45:00:FD:95:B3:1F:19:C7:B7
ValiditySun, 26 May 2024 06:57:27 GMT - Sat, 24 Aug 2024 06:57:26 GMT
File type HTML document, ASCII text
Hash 1346aec7ac0148e23d53c4a01c1cd5eb
13b8f73d0ed530665cbe5e3b93bf515d6374ad33
dde1512be5993af5f82d0969d6efb36284ab0f7709d432395e289b3e8c50ad61
GET /usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Cookie: mtuid=a5da2924-0540-4bce-9ca6-0cd168218139
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sun, 07 Jul 2024 02:57:51 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 119
Connection: close
Location: https://ads.servenobid.com/sync?pid=369&uid=a5da2924-0540-4bce-9ca6-0cd168218139
Vary: Origin
Strict-Transport-Security: max-age=31536000; includeSubDomains
GET ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26uid%3D%24UID&partner=kulturemedia
204 No Content 0 B URL GET HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26uid%3D%24UID&partner=kulturemedia
IP
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerAmazon
Subjectssp.disqus.com
Fingerprint96:FD:73:B5:E9:EF:6E:2E:4D:32:F8:DA:60:AD:74:67:56:BA:B7:89
ValiditySat, 21 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26uid%3D%24UID&partner=kulturemedia HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sun, 07 Jul 2024 02:57:51 GMT
cache-control: no-store
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
GET ads.servenobid.com/sync?pid=369&uid=a5da2924-0540-4bce-9ca6-0cd168218139
200 OK 0 B URL GET HTTP/2 ads.servenobid.com/sync?pid=369&uid=a5da2924-0540-4bce-9ca6-0cd168218139
IP
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=369&uid=a5da2924-0540-4bce-9ca6-0cd168218139 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdn.dxkulture.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:51 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_369=a5da2924-0540-4bce-9ca6-0cd168218139; domain=servenobid.com; SameSite=None; Expires=Sun, 14 Jul 2024 02:57:51 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
GET cdn.adnxs-simple.com/v/app/245/trk.js
200 OK 121 kB URL GET HTTP/1.1 cdn.adnxs-simple.com/v/app/245/trk.js
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerDigiCert Inc
Subjectcdn.adnxs.com
FingerprintAE:17:57:57:BF:36:85:4D:80:DF:5C:2D:C2:33:D5:A8:D2:45:75:BD
ValidityThu, 24 Aug 2023 00:00:00 GMT - Sat, 24 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (38653)
Size 121 kB (121172 bytes)
Hash ab3872b3bb7f1621863ec0b21c19238a
03711e43bcda4b799e27f61e1cdbfe82dc3c777c
c6ed3c61f2cbf6b793c72e4173c8cf582a7c4ffd6ed7c989b0b92f442959552a
GET /v/app/245/trk.js HTTP/1.1
Host: cdn.adnxs-simple.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentry.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "ab3872b3bb7f1621863ec0b21c19238a:1718880551.53183"
Last-Modified: Thu, 20 Jun 2024 10:49:11 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=31536000
Expires: Mon, 07 Jul 2025 02:57:48 GMT
Date: Sun, 07 Jul 2024 02:57:48 GMT
Content-Length: 35721
Connection: keep-alive
Access-Control-Allow-Origin: *
GET rentry.co/static/js/bootstrap.min.js?v=21
200 OK 58 kB URL GET HTTP/2 rentry.co/static/js/bootstrap.min.js?v=21
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectrentry.co
FingerprintE7:D0:80:87:87:67:89:07:84:1C:9F:8F:A1:14:19:9A:74:71:02:85
ValidityTue, 18 Jun 2024 17:27:11 GMT - Mon, 16 Sep 2024 17:27:10 GMT
File type JavaScript source, ASCII text, with very long lines (57791)
Hash e1d98d47689e00f8ecbc5d9f61bdb42e
6778fed3cf095a318141a31f455c8f4663885bde
0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b
GET /static/js/bootstrap.min.js?v=21 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/hasdhdbn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 16:34:09 GMT
etag: W/"6644e401-e2d8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 150749
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fc%2BfewT2NDIkYfJCxC4%2FQ2jiy1jq1Cltb05fEPxzj07rZtvg3z3TaLTqVt7%2BMQDUDHp3n5OTU6HDg0Dey6SHWz1MzRae2Cu6rnf1Ye8rc%2FZNgUC6qFqrsLwgkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89f4919e3d12b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET rentry.co/static/css/bootstrap.min.css?v=85
200 OK 187 kB URL GET HTTP/2 rentry.co/static/css/bootstrap.min.css?v=85
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectrentry.co
FingerprintE7:D0:80:87:87:67:89:07:84:1C:9F:8F:A1:14:19:9A:74:71:02:85
ValidityTue, 18 Jun 2024 17:27:11 GMT - Mon, 16 Sep 2024 17:27:10 GMT
File type ASCII text, with very long lines (65324)
Size 187 kB (187197 bytes)
Hash db6a5aff114273b70b55e6d552d194c2
923880e0dbbb6d12fa2b798f7b3ffcb1b5cf81d2
03c7c488104260c3708fd7d862a7a181b6dd07e4d679d0113b9624e98d70541c
GET /static/css/bootstrap.min.css?v=85 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/hasdhdbn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:44 GMT
content-type: text/css
last-modified: Wed, 15 May 2024 16:34:10 GMT
etag: W/"6644e402-2db3d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 150749
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d8UY%2BCpuu7sikOTD9PHPUkA9NV1niSOuFgTmRDJXw2n7mHPb5l2XuxVBDHtTi6lcdOw4Jvh7hH%2B%2FRYsOPlOcrzIaR9NJvk8vhn8DeAaNwZxHqpWXjAVwVlbqbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89f4919e3d0db51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET cdn.dxkulture.com/x/sync.html
200 OK 2.1 kB URL GET HTTP/2 cdn.dxkulture.com/x/sync.html
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerLet's Encrypt
Subjectcdn.dxkulture.com
Fingerprint3F:4C:6A:47:56:3E:F9:42:BD:F5:33:FC:C5:2C:F8:5D:06:9D:2A:C8
ValidityMon, 27 May 2024 06:09:50 GMT - Sun, 25 Aug 2024 06:09:49 GMT
File type HTML document, ASCII text, with very long lines (2210), with no line terminators
Hash 61e832c0472a4d6652dfd506a43b6ccc
3b67fede88d42920d4c05032e5a100286d66bece
0676f5135f1c813b6f2d6e04c0dadf01443d3ebb48090e71a5b82bd5581cc586
GET /x/sync.html HTTP/1.1
Host: cdn.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:49 GMT
content-type: text/html
last-modified: Wed, 10 Apr 2024 13:45:25 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx0000046343f8f07a1daf1-0066869081-a42ba8a2-nyc3c
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: 4cf2344c-b5f4-4372-87f8-a2f54204ed44
cache-control: max-age=3600
x-envoy-upstream-healthchecked-cluster:
cf-cache-status: HIT
age: 54
set-cookie: __cf_bm=AxCMftiV8CWvLzSCaSN84ioljY09WVkLYYHFVz0NItU-1720321069-1.0.1.1-vxSGV41amMrnntDdRsnQPmEe5ILhWIGwsF8To1CcDyE6mOIo8smEZ_BStafDokb9OeoO.IhFXtEcSuqXnBqfng; path=/; expires=Sun, 07-Jul-24 03:27:49 GMT; domain=.cdn.dxkulture.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 89f491bf2c1bb51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
POST ib.adnxs.com/ut/v3/prebid
200 OK 13 kB URL POST HTTP/2 ib.adnxs.com/ut/v3/prebid
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerDigiCert Inc
Subject*.adnxs.com
Fingerprint67:2D:49:EE:1E:AF:D8:2B:B2:85:1A:C5:39:29:91:05:8E:5E:6F:AA
ValidityWed, 14 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1147
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.4
date: Sun, 07 Jul 2024 02:57:46 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: https://rentry.co
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
an-x-request-uuid: 2a60cde9-9d71-4eb8-a156-98ca34884de1
set-cookie: icu=ChgIvahBEAoYASABKAEwqoiotAY4AUABSAEQqoiotAYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 05-Oct-2024 02:57:46 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=4541379375796869621; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 05-Oct-2024 02:57:46 GMT; Domain=.adnxs.com; Secure; HttpOnly
x-proxy-origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
content-encoding: gzip
X-Firefox-Spdy: h2
GET adsdk.microsoft.com/native-to-display/sdk.js
200 OK 106 kB URL GET HTTP/2 adsdk.microsoft.com/native-to-display/sdk.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://rentry.co/hasdhdbn
Certificate IssuerMicrosoft Corporation
Subjectadsdk.microsoft.com
Fingerprint52:D6:11:07:FB:68:13:C6:61:88:3E:2E:27:78:29:98:6D:6D:C6:35
ValidityWed, 03 Jul 2024 13:28:51 GMT - Mon, 30 Dec 2024 13:28:51 GMT
File type JavaScript source, ASCII text, with very long lines (63572)
Size 106 kB (105802 bytes)
Hash 470b66e4e66f4be27fe26ce499dd0766
9f12b9a7b6377473e22a51a44651e52ebcc8503f
14250467b81ea4c8d875261066de46df7e4ebdd978e24f381c8b712b8bea351a
GET /native-to-display/sdk.js HTTP/1.1
Host: adsdk.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Referer: https://rentry.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 02 Jul 2024 18:55:52 GMT
x-ms-request-id: 5a7120d3-701e-0084-36b1-cc91e3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 20240707T025748Z-17d85d5877c2zbkky1193mbh4s00000004yg000000001sbd
x-fd-int-roxy-purgeid: 72322283
x-cache: TCP_HIT
content-encoding: br
access-control-allow-origin: *
cache-control: private, max-age=3600, stale-while-revalidate=86400
X-Firefox-Spdy: h2
200 OK 9.7 kB URL User Request GET HTTP/2 IP
Certificate IssuerGoogle Trust Services
Subjectrentry.co
FingerprintE7:D0:80:87:87:67:89:07:84:1C:9F:8F:A1:14:19:9A:74:71:02:85
ValidityTue, 18 Jun 2024 17:27:11 GMT - Mon, 16 Sep 2024 17:27:10 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (10202), with no line terminators
Hash bd14d1e10312155e0b15a53b6dbf7811
3314d40d71c590881dff185ca551428321b2d288
23815763b8840b84f37b48f200eeabf233025e8707252f7e497153b2504283d4
GET /hasdhdbn HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fuked01.pro/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:44 GMT
content-type: text/html; charset=utf-8
vary: Origin, Cookie
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: Vary
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OsXPxTronzHXpA%2F4xfUBpNlI0RgAtPjnDbNqVVSFkg9qZdBCUfhBmcZ8tbkY7U66JZMXxn7JwZxJ%2FPQWe1EQoGZ3qQ%2FkbEARvzxQysHcIpcB7TV1ToJ1aPVrtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89f4919cccb1b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET static.vidazoo.com/basev/vwpt.js
200 OK 155 kB URL GET HTTP/2 static.vidazoo.com/basev/vwpt.js
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectvidazoo.com
Fingerprint79:FF:DE:89:10:C3:76:F2:E9:75:53:0E:D0:53:A0:40:7D:63:20:C9
ValidityMon, 01 Jul 2024 08:35:13 GMT - Sun, 29 Sep 2024 08:35:12 GMT
File type JavaScript source, ASCII text, with very long lines (65385)
Size 155 kB (155159 bytes)
Hash e0be4e68aa8f69f0cf16d66603218edd
db0975664fa3d7b21a9f055cfd446bdf7688f824
54a49c467d069f9f9831ff3d8be1dd05bf6855c0ce71d1d825bea00dcc87df53
GET /basev/vwpt.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: application/javascript
content-length: 44464
x-amz-id-2: 9gIvPyrPH6haHzqdk+QAgnZGqtqqkDrZcrSS/x5yoTbBgxJ1t5NDawrPfQUV1Tshoj3jK+OoMlE=
x-amz-request-id: W9F0ZEA96AXKXWQ0
last-modified: Thu, 27 Jun 2024 07:14:43 GMT
etag: "12e4ed0037217bcfbefee69c5e08b013"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 61870
expires: Mon, 08 Jul 2024 02:57:45 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 89f491a2aef256b5-OSL
X-Firefox-Spdy: h2
GET btloader.com/tag?o=5102648370397184&upapi=true
200 OK 69 kB URL GET HTTP/2 btloader.com/tag?o=5102648370397184&upapi=true
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectbtloader.com
Fingerprint57:4E:02:4C:1F:5B:69:D5:23:7A:5D:7E:3C:A7:E2:85:4A:75:A1:FB
ValidityWed, 12 Jun 2024 07:44:00 GMT - Tue, 10 Sep 2024 07:43:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 8dd5222506fec2a22b9e01dd17a65873
c4d4d050acfd89b0a51da576c0a5f1249b5f4df8
876ed5773d43e3475418b7dbfb5800b834ccd6b937f2d4b6995c7d08f6a6230a
GET /tag?o=5102648370397184&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:45 GMT
content-type: application/javascript
content-length: 21868
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
content-encoding: gzip
etag: "db7974240b4d85a94451cbd4e39ab5ec"
last-modified: Sun, 07 Jul 2024 02:41:09 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 982
accept-ranges: bytes
server: cloudflare
cf-ray: 89f491a2bc3d8f55-CPH
X-Firefox-Spdy: h2
GET public.servenobid.com/sync.html
200 OK 8.8 kB URL GET HTTP/2 public.servenobid.com/sync.html
IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerAmazon
Subject*.servenobid.com
Fingerprint96:33:3B:11:8E:FE:89:CB:05:31:59:EF:8B:B5:EF:32:91:13:48:BB
ValidityFri, 08 Dec 2023 00:00:00 GMT - Sun, 05 Jan 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (9102), with no line terminators
Hash 55794f6e614829a49b46a21b7ffd52fc
4d1cd76130e104fb76dea4a0b82fac4f8baf129c
2ed6ccc463559262937c06726ef9fee0d060e1c41352c484e5ef57aaf1490b91
GET /sync.html HTTP/1.1
Host: public.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
last-modified: Mon, 24 Jun 2024 17:30:33 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-codebuild-content-sha256: e85ce636e46111a4b4f9520e655fe4e505db219b92a60cf2504a3109632a1894
x-amz-version-id: null
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-1:559734745816:build/adserver-public-prod:91b96671-a23b-434c-bbfe-e75e3d8863b4
x-amz-meta-codebuild-content-md5: fceea412101a80be2cceb2589b2a6236
server: AmazonS3
content-encoding: br
date: Sat, 06 Jul 2024 04:19:03 GMT
cache-control: max-age=86400
etag: W/"7539259c67f95d55bc8f9727d6ad7ba7"
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: joq29Lp7pT1R3vygAhAe0jBb3HQbnzVN5IWaYNVlUjZDYywdQw_mTg==
age: 81527
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
GET rentry.co/favicon.ico
200 OK 15 kB IP
Requested by https://rentry.co/hasdhdbn
Certificate IssuerGoogle Trust Services
Subjectrentry.co
FingerprintE7:D0:80:87:87:67:89:07:84:1C:9F:8F:A1:14:19:9A:74:71:02:85
ValidityTue, 18 Jun 2024 17:27:11 GMT - Mon, 16 Sep 2024 17:27:10 GMT
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Hash b102d58bb28a83de9b59fedcd08d17ea
8b6edee7f5d96b69c6e4f0c4e8376c640a34aa63
93eab1e1c50b4ff5b4aa5eefa6e85ce7bae235b52886914529c8b8aa4319f26c
GET /favicon.ico HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/hasdhdbn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 Jul 2024 02:57:44 GMT
content-type: image/x-icon
last-modified: Wed, 15 May 2024 16:34:09 GMT
etag: W/"6644e401-3aee"
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400, vary
cf-cache-status: HIT
age: 3743
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Tnvsr%2FmQc%2FZ%2B4K%2Bbd7bA0YRBJocfWhUMzFPjYhdjXlrSrOP9rT0R9YnTve3NsI%2FpTToNTPKZhOWeVfFVfR9uKqFNsa9t3sV7bgfq2ACgoYz6t3a%2F9hg4x7CIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89f4919fed86b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
188.114.97.1
68.183.108.195
95.101.172.253
185.89.210.82
54.77.16.92
104.26.2.16
23.36.77.32
51.89.9.252
0.0.0.0