prebid.admatic.com.tr/setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.admatic.com.tr/setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.p6fsvqrlv8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=admatic.com.tr; Expires=Tue, 15 Jul 2025 05:27:18 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2PGhyRFabrr8D%2FEieJyP9CDdbAwilykAbbCWxHqAXPWLbIzbY7EN3FCHJJdlRlKOWmeiKADAaVJFRarG7AfxwB34Z1QUlh39Ak2XeO85KEM%2FYCEbfpDDx8KvIH1rsumXqQzOPFSLDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 931145d5ecdfb51d-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5344&min_rtt=5258&rtt_var=2143&sent=14&recv=10&lost=0&retrans=0&sent_bytes=3781&recv_bytes=2151&delivery_rate=106967&cwnd=12000&unsent_bytes=0&cid=1f20a2c0ad2021ec&ts=67&x=1", cfExtPri, cfHdrFlush;dur=0
prebid.admatic.com.tr/setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=4bef6064-c52d-4063-97e4-fceaac1a8993
200 OK 0 B URL GET prebid.admatic.com.tr/setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=4bef6064-c52d-4063-97e4-fceaac1a8993
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=4bef6064-c52d-4063-97e4-fceaac1a8993 HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.p6fsvqrlv8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJwaXhhZCI6eyJ1aWQiOiI0YmVmNjA2NC1jNTJkLTQwNjMtOTdlNC1mY2VhYWMxYTg5OTMiLCJleHBpcmVzIjoiMjAyNS0wNC0zMFQwNToyNzoxOC43NTQ3NTE2NzJaIn19fQ==; Path=/; Domain=admatic.com.tr; Expires=Tue, 15 Jul 2025 05:27:18 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QMhkxDi5WKgRkfqMMkgZncPnDqkrjNpVJ1Hv%2BJKhvCksrCJlzVChU1wHLY3acOfF%2FaoS%2FpGYiz51B8w0CYBroSGcMprlWmkSjKPaAPmD%2BFIOx%2FslVFKS9ztxroX1JdUAW2FVeMfNiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 931145d60d15b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5785&min_rtt=5258&rtt_var=2489&sent=16&recv=11&lost=0&retrans=0&sent_bytes=5698&recv_bytes=2195&delivery_rate=39817&cwnd=12000&unsent_bytes=0&cid=1f20a2c0ad2021ec&ts=93&x=1", cfExtPri, cfHdrFlush;dur=0
prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f
200 OK 0 B URL GET prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZG1hdGljIjp7InVpZCI6IjgwN2ZiMmU0LWVmMTUtNDBjZS04NDJiLTM2Njg4ZGY2OTgyZiIsImV4cGlyZXMiOiIyMDI1LTA0LTMwVDA1OjI3OjE5LjQzMTYyMTUxN1oifX19; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vt%2FvlGTO87Yrpbf%2BUz9jRByl%2Bb68jDeNL3lCkc1%2Bw8pby8oiJ8Rzxt0ZBCBCI5JYH9Q6bxQMJEK7fHtHXE2v8C7Ci6WogMxsDJPQSafQqpq4SDqZAWRTsstti%2F5eDCVFpn%2BXlov6VrMZJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145da48f70b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5214&min_rtt=4453&rtt_var=2213&sent=12&recv=8&lost=0&retrans=0&sent_bytes=3776&recv_bytes=1354&delivery_rate=144168&cwnd=12000&unsent_bytes=0&cid=caf6a9724cd0c5b0&ts=117&x=1", cfExtPri, cfHdrFlush;dur=0
upfion.com/img/plane.svg
200 OK 684 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
File type SVG Scalable Vector Graphics image
Hash 4f25968fc51a5e49dc1ea503d5d60e38
4221937e757eb15329dbc318092c9058044c5f73
d454583aa343d4c8aa4e42c0876b20e60c20c0b89284e4ef0c662d0426c18254
GET /img/plane.svg HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/xkVp5PF
Cookie: XSRF-TOKEN=eyJpdiI6Ik9vTTFlVmFHVkN5UmIwd2J1U1MzM1E9PSIsInZhbHVlIjoiL3Z2dFRQUUFFQTBUakVyZVIyUjA0UVJyYlBFeFBLaHV0dTJsN3RQYTl2eWV3a01yQ2dMMzZkL1JKYVFaZE53Y1lRU0tXV0xzVGFmRDR0QnpQd0VramJoUDcyaTJVdE1yUlIrVk5uR1ZXVzRmRmNqaC9sdU51WC9Lc3p3NGcza0UiLCJtYWMiOiI0ZGY2ZTgzNTY5MDk3MWVmODJhMjMzNTZkZjNkNzEwYmZkYjMzOTIxZDk2ZjA3ZDI1MTdmYzY2NGVlZTA5MjA3IiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6Im5IR3FIdklRcnhnMHltRkdOelJ2bFE9PSIsInZhbHVlIjoiSVlHcFBIajFlcFFhdVNLM3dyWUFxSTh0enYrUDdQWGh1KzRvSVhQQStkdWRCOHc5QjZicFFqTlJVOXQ4QXRzL3QwZHVCS2xra0xNUVFXQTBRS2tIanVUYU9EV1BnTlgvNDBCdTJUZ3FERVVXYWtueGlJeGplamhHNVBqclJ2SksiLCJtYWMiOiIyNzllNTFhZGYxMjQyMzdhOGY4ZWQzOGQ4MzA0ZGJhMWQzMDFiNTI0YWUzYTNlZGUyZjI3NmRjZDllZjVjM2MxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:09 GMT
content-type: image/svg+xml
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JtVCb4scMry9YUH6SjDMUVopiahVUoOhQCalji4wef5n%2F77Z9545l3HrR48CT%2FzWRpDRfNU2b4MkB34kBYIcbLhFgnpeCrib3NJDz8E%2BGCmyabkSz8ZqpJn5Kj%2BO"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 28 Sep 2024 07:01:06 GMT
etag: W/"66f7a9b2-2ac"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 221
content-encoding: br
cf-ray: 9311459eacc3712f-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=4145&x=16"
ukankingwithea.com/
500 Internal Server Error 183 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:7E:37:44:90:B9:05:B4:82:CD:5A:71:84:A1:C8:84:66:33:BC:78
ValiditySat, 01 Mar 2025 13:28:14 GMT - Fri, 30 May 2025 14:26:54 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 607f8a53dbf072834a28425fae6b0084
a64f05fe0b51691778ebf447e3664bfbd78cbe42
30032743c9cc551853d7e87cd9335dd20bb136932179fcb7f8136b2f5e9033ba
GET / HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 500 Internal Server Error
date: Wed, 16 Apr 2025 05:27:12 GMT
content-type: text/html
server: cloudflare
cf-cache-status: DYNAMIC
cf-ray: 931145aefb7956a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
mp.4dex.io/prebid
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1415
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:13 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_jk01yjlns1e9hrrq6
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145b698d6b503-OSL
X-Firefox-Spdy: h2
korbthejethii.org/eWtqb2NWVAkcXi0GGh81PT1ZNzUVBSgnGy08PT4gHVpbNjoeIkwbCh1WW15XS19aWEUJAg5SUl8YHg4XDBhXXFNJWkwGDR8EV19TSVpMGV5IRVlbTUpdRFtFDFZHXUUNGwsIXkhNGhsXFVZbWFdNXFJeUUpYW1pa
204 No Content 0 B URL POST korbthejethii.org/eWtqb2NWVAkcXi0GGh81PT1ZNzUVBSgnGy08PT4gHVpbNjoeIkwbCh1WW15XS19aWEUJAg5SUl8YHg4XDBhXXFNJWkwGDR8EV19TSVpMGV5IRVlbTUpdRFtFDFZHXUUNGwsIXkhNGhsXFVZbWFdNXFJeUUpYW1pa
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectkorbthejethii.org
FingerprintAC:C5:70:CA:80:C4:25:2D:59:91:BA:6E:75:53:46:35:55:53:09:5C
ValidityThu, 03 Apr 2025 12:14:42 GMT - Wed, 02 Jul 2025 13:13:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /eWtqb2NWVAkcXi0GGh81PT1ZNzUVBSgnGy08PT4gHVpbNjoeIkwbCh1WW15XS19aWEUJAg5SUl8YHg4XDBhXXFNJWkwGDR8EV19TSVpMGV5IRVlbTUpdRFtFDFZHXUUNGwsIXkhNGhsXFVZbWFdNXFJeUUpYW1pa HTTP/1.1
Host: korbthejethii.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/3 204 No Content
date: Wed, 16 Apr 2025 05:27:13 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vigm0Q3tgidps2VuGPVlfVl9XDsaP0rr2tkNAjLW6DYwBYcBFFfY7SaR0S83oBqbnw0pgP4g%2F6n%2B9JS5oWxzxFbuHuJtuzee%2BJXvLqzuPDPNtM4jc7wmPHtlM5bwycD7aYXCSA%3D%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-origin: *
cf-cache-status: DYNAMIC
cf-ray: 931145b57e0e7131-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4441&min_rtt=598&rtt_var=2693&sent=46&recv=63&lost=0&retrans=0&sent_bytes=5566&recv_bytes=4043&delivery_rate=1915&cwnd=12000&unsent_bytes=0&cid=02fc5febb2213f84&ts=2960&x=16"
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1679
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://upfion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
ghb2.adtelligent.com/v2/auction/
200 OK 4.0 kB URL POST ghb2.adtelligent.com/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb2.adtelligent.com
FingerprintB7:1D:0B:7E:B9:8C:3E:57:D3:53:4C:0E:1B:80:46:5F:04:80:D0:DF
ValidityTue, 25 Mar 2025 00:00:00 GMT - Mon, 23 Jun 2025 23:59:59 GMT
Hash 582d1be39163a92faa247e40fec0162a
b224de3d3c5834205ec4dca638e46b13cfbe747f
3e52d8111d25d26f48f9ae2432032d48d7f9c12627ece79b403563baf14eb34c
POST /v2/auction/ HTTP/1.1
Host: ghb2.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 322
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Wed, 16 Apr 2025 05:27:14 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1174
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
upfion.com/img/logo.svg
200 OK 22 kB IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
File type SVG Scalable Vector Graphics image
Hash 1e28749acbd90e7e99a883c1890327cd
638b4525d3f0ed776db136ca1025a8961f46c9e0
d526da1f4d4af45cefd2a0d140abec2beddc3150d13c47d3de893eaa278a369d
GET /img/logo.svg HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/xkVp5PF
Cookie: XSRF-TOKEN=eyJpdiI6Ik9vTTFlVmFHVkN5UmIwd2J1U1MzM1E9PSIsInZhbHVlIjoiL3Z2dFRQUUFFQTBUakVyZVIyUjA0UVJyYlBFeFBLaHV0dTJsN3RQYTl2eWV3a01yQ2dMMzZkL1JKYVFaZE53Y1lRU0tXV0xzVGFmRDR0QnpQd0VramJoUDcyaTJVdE1yUlIrVk5uR1ZXVzRmRmNqaC9sdU51WC9Lc3p3NGcza0UiLCJtYWMiOiI0ZGY2ZTgzNTY5MDk3MWVmODJhMjMzNTZkZjNkNzEwYmZkYjMzOTIxZDk2ZjA3ZDI1MTdmYzY2NGVlZTA5MjA3IiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6Im5IR3FIdklRcnhnMHltRkdOelJ2bFE9PSIsInZhbHVlIjoiSVlHcFBIajFlcFFhdVNLM3dyWUFxSTh0enYrUDdQWGh1KzRvSVhQQStkdWRCOHc5QjZicFFqTlJVOXQ4QXRzL3QwZHVCS2xra0xNUVFXQTBRS2tIanVUYU9EV1BnTlgvNDBCdTJUZ3FERVVXYWtueGlJeGplamhHNVBqclJ2SksiLCJtYWMiOiIyNzllNTFhZGYxMjQyMzdhOGY4ZWQzOGQ4MzA0ZGJhMWQzMDFiNTI0YWUzYTNlZGUyZjI3NmRjZDllZjVjM2MxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:09 GMT
content-type: image/svg+xml
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q8GhRr1g7%2FfhpojPrtU0oLmA3CKF42j5MQmSAt7mpFgtfGk5OgI496AodcA1I1TmVhWdQymRBJC%2Fgx5SACtTmGaIwZV1OXLme8WHsjEUFdsB6u4ccKwHj0sxKoH5"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 28 Sep 2024 07:01:06 GMT
etag: W/"66f7a9b2-56e8"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 222
content-encoding: br
cf-ray: 9311459eacbf712f-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=4139&x=16"
upfion.com/img/menu.svg
200 OK 1.8 kB IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
File type SVG Scalable Vector Graphics image
Hash e194fab3eea9f00d5a3814c4df00ac8c
4a9760c8ec110364d025527e26730e78ae0b3ac0
3d3e6705b468cecdd78fb9a1ee6688d60e1d2c1caa0db7baa88db460315dccea
GET /img/menu.svg HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/xkVp5PF
Cookie: XSRF-TOKEN=eyJpdiI6Ik9vTTFlVmFHVkN5UmIwd2J1U1MzM1E9PSIsInZhbHVlIjoiL3Z2dFRQUUFFQTBUakVyZVIyUjA0UVJyYlBFeFBLaHV0dTJsN3RQYTl2eWV3a01yQ2dMMzZkL1JKYVFaZE53Y1lRU0tXV0xzVGFmRDR0QnpQd0VramJoUDcyaTJVdE1yUlIrVk5uR1ZXVzRmRmNqaC9sdU51WC9Lc3p3NGcza0UiLCJtYWMiOiI0ZGY2ZTgzNTY5MDk3MWVmODJhMjMzNTZkZjNkNzEwYmZkYjMzOTIxZDk2ZjA3ZDI1MTdmYzY2NGVlZTA5MjA3IiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6Im5IR3FIdklRcnhnMHltRkdOelJ2bFE9PSIsInZhbHVlIjoiSVlHcFBIajFlcFFhdVNLM3dyWUFxSTh0enYrUDdQWGh1KzRvSVhQQStkdWRCOHc5QjZicFFqTlJVOXQ4QXRzL3QwZHVCS2xra0xNUVFXQTBRS2tIanVUYU9EV1BnTlgvNDBCdTJUZ3FERVVXYWtueGlJeGplamhHNVBqclJ2SksiLCJtYWMiOiIyNzllNTFhZGYxMjQyMzdhOGY4ZWQzOGQ4MzA0ZGJhMWQzMDFiNTI0YWUzYTNlZGUyZjI3NmRjZDllZjVjM2MxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:09 GMT
content-type: image/svg+xml
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d9A7t8hhWi8Pf6sVL3O%2FXkqifJBC4ylZyfZdFRX6aEY56Qca9thXAU8P1ZBZxnRCeMfFCP6TcajIsclB5lOmmH4TJBg7iQJnUfj%2FQFZRc2hcyI37dPXI8wlGpr1J"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 28 Sep 2024 07:01:06 GMT
etag: W/"66f7a9b2-72e"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 222
content-encoding: br
cf-ray: 9311459eacc0712f-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=4139&x=16"
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: application/json
Content-Length: 1116
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ixq6m%2FYAmqvFNW8t97NEqVfNO7NVY%2FBOpxsyP98pZKHZZ%2FwLwdaE7qXesJmwrgXhnl4VHXsEWRrCF7cjhA4%2BA1O1tY9%2Fxhqq2AbeZQJG1thINrVc4LaGo5FfuHxSvDTPQYFVZaG5dpr6rGgcAAA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145ba58c9568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=7017&min_rtt=418&rtt_var=10974&sent=21&recv=27&lost=0&retrans=0&sent_bytes=5850&recv_bytes=6774&delivery_rate=5601547&cwnd=257&unsent_bytes=0&cid=8db4039eb9680c89&ts=794&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230508
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230508
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230508 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 16 Apr 2025 05:27:10 GMT
location: https://st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
server: cloudflare
cf-ray: 931145a3dfe85687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
gpp.netpub.media/17447812318760.33753050351774994/run.js?v=17447812318760.33753050351774994
200 OK 251 B URL GET gpp.netpub.media/17447812318760.33753050351774994/run.js?v=17447812318760.33753050351774994
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 54f643b0fa8a7d71cb117679a6fbb2ce
573d440c0f9fa4cf53e85cf86a86eba173933a1c
851d2ece063bcac9a5addec55308a32557f978d2daf3950395fc3dc41e9e9336
GET /17447812318760.33753050351774994/run.js?v=17447812318760.33753050351774994 HTTP/1.1
Host: gpp.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:12 GMT
content-type: application/javascript
last-modified: Wed, 21 Feb 2024 16:05:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145abdb3e0b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
upfion.com/favicon.ico
302 Found 1.8 kB IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/xkVp5PF
Cookie: XSRF-TOKEN=eyJpdiI6Ik9vTTFlVmFHVkN5UmIwd2J1U1MzM1E9PSIsInZhbHVlIjoiL3Z2dFRQUUFFQTBUakVyZVIyUjA0UVJyYlBFeFBLaHV0dTJsN3RQYTl2eWV3a01yQ2dMMzZkL1JKYVFaZE53Y1lRU0tXV0xzVGFmRDR0QnpQd0VramJoUDcyaTJVdE1yUlIrVk5uR1ZXVzRmRmNqaC9sdU51WC9Lc3p3NGcza0UiLCJtYWMiOiI0ZGY2ZTgzNTY5MDk3MWVmODJhMjMzNTZkZjNkNzEwYmZkYjMzOTIxZDk2ZjA3ZDI1MTdmYzY2NGVlZTA5MjA3IiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6Im5IR3FIdklRcnhnMHltRkdOelJ2bFE9PSIsInZhbHVlIjoiSVlHcFBIajFlcFFhdVNLM3dyWUFxSTh0enYrUDdQWGh1KzRvSVhQQStkdWRCOHc5QjZicFFqTlJVOXQ4QXRzL3QwZHVCS2xra0xNUVFXQTBRS2tIanVUYU9EV1BnTlgvNDBCdTJUZ3FERVVXYWtueGlJeGplamhHNVBqclJ2SksiLCJtYWMiOiIyNzllNTFhZGYxMjQyMzdhOGY4ZWQzOGQ4MzA0ZGJhMWQzMDFiNTI0YWUzYTNlZGUyZjI3NmRjZDllZjVjM2MxIiwidGFnIjoiIn0%3D; ab=1; _ga_X2GS5JDQMX=GS1.1.1744781231.1.0.1744781231.0.0.0; _ga=GA1.1.1117235367.1744781231; _ga_75C4L64NEB=GS1.1.1744781231.1.0.1744781231.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 16 Apr 2025 05:27:12 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d4KeKUWagABpQWXM269jwPdp1O%2Fn0aH1WaM8x0Xr2gA%2B6STD%2FeUimJTq4omXayAScFLKoTx189DBaBUXbBQr7PMID7LEPLC7ThtwkpyJTaX31f2RUrbww%2BY92VR6"}],"group":"cf-nel","max_age":604800}
x-powered-by: PHP/8.2.15
link: <https://upfion.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
location: https://upfion.com/wp-content/uploads/2025/02/cropped-Add-a-heading-28-32x32.png
cf-cache-status: BYPASS
cf-ray: 931145ae6fff712f-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=6855&x=16"
dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
200 OK 4.5 kB URL GET dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint19:1F:3A:AA:76:12:7A:0E:2D:D7:56:48:23:5A:97:86:93:EC:A9:71
ValidityFri, 11 Apr 2025 09:48:48 GMT - Thu, 10 Jul 2025 09:48:47 GMT
File type HTML document, ASCII text, with very long lines (4527), with no line terminators
Hash 69bf68aff4685c991e1456bc396766cc
9017f2171182a16209a51c6089c3c719122e52e6
01eb74b2ce51970a0e31b67e974a5b774901554c5b2c44e2cf613cd99ff9a490
GET /cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
x-powered-by: Pixad
set-cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f; Max-Age=2592000; Domain=.netaddiction.tech; Path=/; Expires=Fri, 16 May 2025 05:27:18 GMT; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fEXCmS8H7Ok2cyboExP9dRMlzRN6JKg7Xz8L33Tn9%2FjPnhlni%2BcfQZfOpS9jy71KZwWFeSJ5UIgxQTExl%2Bza0gLzGTodWwRxB4CMopMevsgQ7R4FLC0v4hmBnADK0FkuI%2FaIOUU7o%2BOSMCIqtX%2BT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145d3eb3056b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2124&min_rtt=571&rtt_var=2469&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2916&recv_bytes=1409&delivery_rate=4900169&cwnd=253&unsent_bytes=0&cid=b57d201a2b4a57de&ts=95&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZHRhcmdldCI6eyJ1aWQiOiI2Yjg5ZTY3ZjM0NmZiYzc1IiwiZXhwaXJlcyI6IjIwMjUtMDQtMzBUMDU6Mjc6MTkuNTk0NDA1MDY0WiJ9fX0=; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RL6JRlnbGpiwLH0Mgs5PRC1mPBUv2TpRqHlYnIBwlqSKw4VB%2B%2BXEEtgmmPP5%2FcV%2BZxezE11OJLKxM22AKRChqN083%2BfOTMpyiSl0wDmtifzCDjj8KtdsuOIO6lzgDpDaCxX3rY%2Fg1Lhwsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145db5a030b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7565&min_rtt=4453&rtt_var=6361&sent=16&recv=12&lost=0&retrans=0&sent_bytes=4869&recv_bytes=2569&delivery_rate=9014&cwnd=12000&unsent_bytes=0&cid=caf6a9724cd0c5b0&ts=282&x=1", cfExtPri, cfHdrFlush;dur=0
st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hQDSwkIJPoQUtHKB%2FhtYkyJ9Qg7pP%2FsvcWizjOVrY3C64bTXWoB2lZApaaJ3yF6Yd5M%2Fq4A%2Bk7k4IylbKPP58K5o8ux6DwLz5UD5uwuIZQ%2B2REmhBERX5UQ3%2Bm1YjMd1igu%2FNr8hAejFmr0%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 931145a5ac085697-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3610&min_rtt=728&rtt_var=1908&sent=67&recv=86&lost=0&retrans=0&sent_bytes=6615&recv_bytes=6585&delivery_rate=2212&cwnd=12000&unsent_bytes=0&cid=4d29bfbf7435b0b8&ts=258&x=16"
ghb.console.adtarget.com.tr/v2/auction/
200 OK 770 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
FingerprintC9:39:D1:73:F2:72:97:2D:92:AB:2E:CB:67:C6:32:DF:B2:01:5F:40
ValidityTue, 25 Mar 2025 00:00:00 GMT - Mon, 23 Jun 2025 23:59:59 GMT
Hash 4f0acc8336c8cc1d552a54f40af88d1c
2538d7e45822f1aab4aa006c215f612408927da4
f5398c9f0468b1fe903361c33da6f421000a79caf6d565b4c32bd8ac8b10629a
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 264
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Wed, 16 Apr 2025 05:27:14 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 414
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
FingerprintED:BA:91:9A:CB:EC:22:39:89:33:B3:89:63:24:E9:7B:58:48:A7:F2
ValiditySat, 05 Apr 2025 21:00:24 GMT - Fri, 04 Jul 2025 22:00:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 331
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:13 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://upfion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145b6ddb656ba-OSL
X-Firefox-Spdy: h2
mp.4dex.io/prebid
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1407
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:13 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_imvz4s9dw1441vn
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145b6586bb503-OSL
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nx%2FCHLijLF8tJ1rIU%2FxVzjRaJF7EpQLeLZ%2BITY7MVOyM0mcRF9SJ3Ovv4GxXugLa1NyQ%2FcopiI%2B05ClOVN0Z8dG171kdsnCmOnw3Pe1hyA7cfBdAArkhzIkqmOhumwi4TA0vF2REoYo0MITFFBU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145b8eedf568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=2442&min_rtt=418&rtt_var=3887&sent=8&recv=13&lost=0&retrans=0&sent_bytes=3598&recv_bytes=1369&delivery_rate=5601547&cwnd=254&unsent_bytes=0&cid=8db4039eb9680c89&ts=409&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BKhJiF%2BHuXuWhtUVxaM46pJyMOjTF7fNDynf4tAXT2Y0vBT2x22NLDwUBGw7STNGQHu3DFo%2FyT1blTErlA1wD%2FY34aWLZYQ18DDKjAEF%2Bu%2BARoUJh6sPRMTAhTFJzW6hknHz962G%2BHU8VuZJ66k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145b8be98568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=667&min_rtt=418&rtt_var=447&sent=6&recv=10&lost=0&retrans=0&sent_bytes=2819&recv_bytes=1153&delivery_rate=5601547&cwnd=253&unsent_bytes=0&cid=8db4039eb9680c89&ts=372&x=0"
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
FingerprintED:BA:91:9A:CB:EC:22:39:89:33:B3:89:63:24:E9:7B:58:48:A7:F2
ValiditySat, 05 Apr 2025 21:00:24 GMT - Fri, 04 Jul 2025 22:00:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 328
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://upfion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145bd0dca56ba-OSL
X-Firefox-Spdy: h2
upfion.com/wp-content/uploads/2025/02/cropped-Add-a-heading-28-32x32.png
200 OK 1.8 kB URL GET upfion.com/wp-content/uploads/2025/02/cropped-Add-a-heading-28-32x32.png
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Hash 15bb3649bd37d8bc93f009e8d9bb7cb5
08c30dcea1a2d845e36ae2a413d4d4db00d506e3
f813406101c46d6450d337ee018b2d780a978ca041fd3e782952bcb817a750b7
GET /wp-content/uploads/2025/02/cropped-Add-a-heading-28-32x32.png HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/xkVp5PF
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9vTTFlVmFHVkN5UmIwd2J1U1MzM1E9PSIsInZhbHVlIjoiL3Z2dFRQUUFFQTBUakVyZVIyUjA0UVJyYlBFeFBLaHV0dTJsN3RQYTl2eWV3a01yQ2dMMzZkL1JKYVFaZE53Y1lRU0tXV0xzVGFmRDR0QnpQd0VramJoUDcyaTJVdE1yUlIrVk5uR1ZXVzRmRmNqaC9sdU51WC9Lc3p3NGcza0UiLCJtYWMiOiI0ZGY2ZTgzNTY5MDk3MWVmODJhMjMzNTZkZjNkNzEwYmZkYjMzOTIxZDk2ZjA3ZDI1MTdmYzY2NGVlZTA5MjA3IiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6Im5IR3FIdklRcnhnMHltRkdOelJ2bFE9PSIsInZhbHVlIjoiSVlHcFBIajFlcFFhdVNLM3dyWUFxSTh0enYrUDdQWGh1KzRvSVhQQStkdWRCOHc5QjZicFFqTlJVOXQ4QXRzL3QwZHVCS2xra0xNUVFXQTBRS2tIanVUYU9EV1BnTlgvNDBCdTJUZ3FERVVXYWtueGlJeGplamhHNVBqclJ2SksiLCJtYWMiOiIyNzllNTFhZGYxMjQyMzdhOGY4ZWQzOGQ4MzA0ZGJhMWQzMDFiNTI0YWUzYTNlZGUyZjI3NmRjZDllZjVjM2MxIiwidGFnIjoiIn0%3D; ab=2; _ga_X2GS5JDQMX=GS1.1.1744781231.1.0.1744781231.0.0.0; _ga=GA1.1.1117235367.1744781231; _ga_75C4L64NEB=GS1.1.1744781231.1.0.1744781231.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:15 GMT
content-type: image/png
content-length: 1793
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gm%2BN55i%2FXoSUpcL49mvvQxyBf9j4uTIKWYFdfpi91tTs8BCHN%2BV5U9ek8NWK1mLSbFDe2IACOhDNoT%2BmldYbbUOUZZdWcrrdeIa3zUf7rlgkqwXRPnHGxvNhtdG%2B"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 23 Feb 2025 18:56:19 GMT
etag: "701-62ed3c775e9cc"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5753
accept-ranges: bytes
cf-ray: 931145c0aac8712f-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=9593&x=16"
csync.smilewanted.com/
200 OK 6.4 kB IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
FingerprintED:BA:91:9A:CB:EC:22:39:89:33:B3:89:63:24:E9:7B:58:48:A7:F2
ValiditySat, 05 Apr 2025 21:00:24 GMT - Fri, 04 Jul 2025 22:00:04 GMT
File type JavaScript source, ASCII text, with very long lines (2005)
Hash be880ab143c7f7cab28554fc57ea0d20
785e265c117f17aa276e64126b240f3f49a3a53b
d00854b6bb6821699e747a99c81eba83728634a4dc3ddc06b8dfb1960f80217c
GET / HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:17 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145cffe9956ba-OSL
content-encoding: br
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H1FIlE38QuXxsfy%2BTbyobkY3tWTy1qn8AKXwPx7WfGtU%2FUYbXGi1CKPORGlDpcNEA4HFSpqRfO8te0Dg3Ak9%2FFPhtJoEqaTNK3dXBG%2FbqJn4DDB%2BDTFh24Nt7il1GWJuCWo93lbYo%2BlNwbg%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 931145a5ac095697-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3610&min_rtt=728&rtt_var=1908&sent=67&recv=86&lost=0&retrans=0&sent_bytes=6615&recv_bytes=6585&delivery_rate=2212&cwnd=12000&unsent_bytes=0&cid=4d29bfbf7435b0b8&ts=260&x=16"
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: application/json
Content-Length: 1829
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mMdPEuE197O7QardBGclKxu7bt8ycsKORprhwApiWB9H9m83ajrMGe4C4Husr5CN3akAvfJX2rR03h%2B4gpcHjn%2Ftqlqj5EUUyaB6lrYNyjryawbqO0uNa%2Bl%2B3n3vP5qPo3N4Nd1rBF%2BB7niK%2B%2FA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145b96f76568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=9016&min_rtt=418&rtt_var=13351&sent=18&recv=23&lost=0&retrans=0&sent_bytes=4949&recv_bytes=5671&delivery_rate=5601547&cwnd=257&unsent_bytes=0&cid=8db4039eb9680c89&ts=610&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=0d4845e6-3a46-447e-b8de-861b63af7922
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=0d4845e6-3a46-447e-b8de-861b63af7922
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=0d4845e6-3a46-447e-b8de-861b63af7922 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJtZW1icmFuYSI6eyJ1aWQiOiIwZDQ4NDVlNi0zYTQ2LTQ0N2UtYjhkZS04NjFiNjNhZjc5MjIiLCJleHBpcmVzIjoiMjAyNS0wNC0zMFQwNToyNzoxOS41OTM3MjAwNTRaIn19fQ==; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qUh%2FTVWb6tHsOCidlYPV7KyoOFzCwOCfC5fDNWmHe%2FF1cYDS6ybO17pnzoRs5OsTl49rXjeFh5hgz1aZZ%2FTjhC3DnEgXx9X1k%2FfMsyRkt3TOuNHzRQGeuLclUGosd4%2FvH32NqMV5vIiWeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145db59ff0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7565&min_rtt=4453&rtt_var=6361&sent=18&recv=12&lost=0&retrans=0&sent_bytes=6834&recv_bytes=2569&delivery_rate=9014&cwnd=12000&unsent_bytes=0&cid=caf6a9724cd0c5b0&ts=288&x=1", cfExtPri, cfHdrFlush;dur=0
d3eksfxlf7bv9h.cloudfront.net/?fsked=1139924
200 OK 385 kB URL GET d3eksfxlf7bv9h.cloudfront.net/?fsked=1139924
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (38488)
Size 385 kB (384831 bytes)
Hash 01a58552c3c738a0a9ccbc63318be1f8
a21cff132546407e8cb5f3bdb26d0db3381b7ee0
049fb985363ecdf5f7f79af27154da1b4e06e56de4982e683997d0a6886ec21d
GET /?fsked=1139924 HTTP/1.1
Host: d3eksfxlf7bv9h.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 127254
date: Wed, 16 Apr 2025 05:27:10 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Gcd-hJ-rAe79EcWUkH6karrHwfRfJKDfFSW_-zjRQC6Q4nCz1J8Hcw==
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230511
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230511
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230511 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 16 Apr 2025 05:27:10 GMT
location: https://st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
server: cloudflare
cf-ray: 931145a3bfb95687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=netaddiction&gdpr=0&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f
200 OK 0 B URL GET prebid.admatic.com.tr/setuid?bidder=netaddiction&gdpr=0&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=netaddiction&gdpr=0&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: adplus_digital_id=0.p6fsvqrlv8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJuZXRhZGRpY3Rpb24iOnsidWlkIjoiODA3ZmIyZTQtZWYxNS00MGNlLTg0MmItMzY2ODhkZjY5ODJmIiwiZXhwaXJlcyI6IjIwMjUtMDQtMzBUMDU6Mjc6MTkuMDU2MjQ5MzU2WiJ9fX0=; Path=/; Domain=admatic.com.tr; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GPGp2hyLVUEoXK5xI2B6bGFJqygtSqYB%2FU4ovPVuuxxT1DeIGRwtJANRuGToO1nGcMIEcje2H42%2FBYOJCL5RRYK%2FolSKAP7vtwA0Xy3ZJAIe2R7PeEk0sbYd%2FBDB5CfhOk0vo1tOsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 931145d7f80fb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7743&min_rtt=5258&rtt_var=5784&sent=20&recv=14&lost=0&retrans=0&sent_bytes=7767&recv_bytes=3032&delivery_rate=45024&cwnd=12000&unsent_bytes=0&cid=1f20a2c0ad2021ec&ts=392&x=1", cfExtPri, cfHdrFlush;dur=0
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
302 Found 0 B URL GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint52:0D:0F:B6:ED:2C:03:72:E4:DA:FE:6A:3B:DF:24:86:26:97:53:FF
ValidityThu, 20 Mar 2025 11:20:34 GMT - Thu, 12 Jun 2025 11:20:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:pupXxw7OCaD8X0S8F8LeEw84KssQnQ:EuXki04MAnpgmI59; Expires=Fri, 16-Apr-2027 05:27:12 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 16 Apr 2025 05:27:12 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVupxwmdxYPPWxjrRieFuLo_HLtsYc47ESfZxQ_JAxQ0QxdJ4kuJgs_eZDhbVPyUvvsfnRe3
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-hVJbdx2qgIW7nVh2_2WhOg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
korbthejethii.org/S0JPMVZkfSxCaygHKEkMDhgFVyENGisBHDMDGWMuGBp3cAMlB2lFPy9/fgBieXZ/BnA7KysMZ20xO1AiPjFyAHAiLClea200cgB4eHZhAmBldmlEa3pkO0E3LH9+FyY/NiMMZ3x2ewZuenB8AWJ9dQ
204 No Content 0 B URL GET korbthejethii.org/S0JPMVZkfSxCaygHKEkMDhgFVyENGisBHDMDGWMuGBp3cAMlB2lFPy9/fgBieXZ/BnA7KysMZ20xO1AiPjFyAHAiLClea200cgB4eHZhAmBldmlEa3pkO0E3LH9+FyY/NiMMZ3x2ewZuenB8AWJ9dQ
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectkorbthejethii.org
FingerprintAC:C5:70:CA:80:C4:25:2D:59:91:BA:6E:75:53:46:35:55:53:09:5C
ValidityThu, 03 Apr 2025 12:14:42 GMT - Wed, 02 Jul 2025 13:13:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /S0JPMVZkfSxCaygHKEkMDhgFVyENGisBHDMDGWMuGBp3cAMlB2lFPy9/fgBieXZ/BnA7KysMZ20xO1AiPjFyAHAiLClea200cgB4eHZhAmBldmlEa3pkO0E3LH9+FyY/NiMMZ3x2ewZuenB8AWJ9dQ HTTP/1.1
Host: korbthejethii.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:10 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145a2ac675688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fstatic.netpub.media/renderer/prebid_250401.js
200 OK 686 kB URL GET fstatic.netpub.media/renderer/prebid_250401.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (54063)
Size 686 kB (686358 bytes)
Hash 6e4a879ec3d0d20e0ab720e855141e0a
d31cf3b4d0f91a1ba7a5dc45b8c04ffcb12b827c
fb0255d2db6851a5514df54d608e894884517cda86e736f7f93bd797f91c33eb
GET /renderer/prebid_250401.js HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 01 Apr 2025 10:27:36 GMT
cache-control: max-age=14400
expires: Wed, 16 Apr 2025 05:27:12 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 931145ab1a4d0b65-OSL
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1899
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://upfion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
ghb2.adtelligent.com/v2/auction/
200 OK 4.0 kB URL POST ghb2.adtelligent.com/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb2.adtelligent.com
FingerprintB7:1D:0B:7E:B9:8C:3E:57:D3:53:4C:0E:1B:80:46:5F:04:80:D0:DF
ValidityTue, 25 Mar 2025 00:00:00 GMT - Mon, 23 Jun 2025 23:59:59 GMT
Hash cea5a349a632739235bf54a78793ce50
a9d1350655d48185b5ae682594f15351bc9b8353
f8ecbd992f7d2aa062195b9c0ae075d943f55dd3ff6b15aecdf5acb6644e6f8f
POST /v2/auction/ HTTP/1.1
Host: ghb2.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 337
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Wed, 16 Apr 2025 05:27:14 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1176
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1883
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://upfion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
korbthejethii.org/c01JM2dccipAWhB/A2IpHT0NZgoYHRhYISsXGH0oIXwHWiY2BG9HDhdweAJUSnR7B0EDJC0OVlU+PVITBj50AkEaIy9cWlU7dAJJQHlnAFFdeW9GWkJrPUMGFHB4FRcHOSUOVkR5fQRfQn96A1NBfg
204 No Content 0 B URL GET korbthejethii.org/c01JM2dccipAWhB/A2IpHT0NZgoYHRhYISsXGH0oIXwHWiY2BG9HDhdweAJUSnR7B0EDJC0OVlU+PVITBj50AkEaIy9cWlU7dAJJQHlnAFFdeW9GWkJrPUMGFHB4FRcHOSUOVkR5fQRfQn96A1NBfg
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectkorbthejethii.org
FingerprintAC:C5:70:CA:80:C4:25:2D:59:91:BA:6E:75:53:46:35:55:53:09:5C
ValidityThu, 03 Apr 2025 12:14:42 GMT - Wed, 02 Jul 2025 13:13:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c01JM2dccipAWhB/A2IpHT0NZgoYHRhYISsXGH0oIXwHWiY2BG9HDhdweAJUSnR7B0EDJC0OVlU+PVITBj50AkEaIy9cWlU7dAJJQHlnAFFdeW9GWkJrPUMGFHB4FRcHOSUOVkR5fQRfQn96A1NBfg HTTP/1.1
Host: korbthejethii.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:10 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145a2ac645688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yLyX4FFa5O41j8j75OiNOg%2BsOYQjbwarFXPim05nvC39zA0p6QfQ0ZJUPA90mYXQ%2FSHGJOPGx8YyBpYbdEnbjhEGrM4kK6L8AS2XWCqZVVGoi%2B4X2TtH2tpZCNxurRCQZ%2F7JWI5%2FH5MMHQxfF3E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145bd4d0c568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=11426&min_rtt=418&rtt_var=17049&sent=24&recv=31&lost=0&retrans=0&sent_bytes=6942&recv_bytes=6990&delivery_rate=5601547&cwnd=257&unsent_bytes=0&cid=8db4039eb9680c89&ts=1107&x=0"
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
302 Found 0 B URL GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint52:0D:0F:B6:ED:2C:03:72:E4:DA:FE:6A:3B:DF:24:86:26:97:53:FF
ValidityThu, 20 Mar 2025 11:20:34 GMT - Thu, 12 Jun 2025 11:20:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:W4dGe0lfj9DYSQynEDY0fCLEI33KHw:AJp37wxJkMNuIHHv; Expires=Fri, 16-Apr-2027 05:27:12 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 16 Apr 2025 05:27:12 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVuZLsvU8rW2zPJNZJqz4pgEBtyCuwOc6sZGnYymX5F7nS9dRl7mCM7vS2gWabldFX_PD-NCHw
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-9RPiO4OibQhjKq4DLzvT8w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVuwTRjjTxtsnoX1DW5wXw29zRLTXBwMMOYiolKBCdZ5P02EORUXHTP-V_z6oa-oQYm3K6NkIw&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1091421207%3A1744781232504089
403 Forbidden 0 B URL GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVuwTRjjTxtsnoX1DW5wXw29zRLTXBwMMOYiolKBCdZ5P02EORUXHTP-V_z6oa-oQYm3K6NkIw&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1091421207%3A1744781232504089
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint12:A5:4A:1B:8A:02:5B:3E:ED:E8:C5:88:16:6F:BF:DE:14:12:DD:CA
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVuwTRjjTxtsnoX1DW5wXw29zRLTXBwMMOYiolKBCdZ5P02EORUXHTP-V_z6oa-oQYm3K6NkIw&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1091421207%3A1744781232504089 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 16 Apr 2025 05:27:12 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-gcNj57k8IQ3OJnPw-jGDaQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.google.com/tools/feedback/help_api.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ghelp/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.pENtOsDS8sc.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WgMOCXUHu39UWq4cxvc4n44csdnPdLkwZRUtr5o%2BaDzfGXJ%2BRHv8sViMpeb2iF67Rx%2BdBFTYzGGaeErFMhw1RPftQXf1W6p9tsygEOEGJ3KwbN8fbHp8puLsLEX%2BcYAnb59weE7uh6e%2FSwA%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 931145a58c025697-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3610&min_rtt=728&rtt_var=1908&sent=67&recv=86&lost=0&retrans=0&sent_bytes=6615&recv_bytes=6585&delivery_rate=2212&cwnd=12000&unsent_bytes=0&cid=4d29bfbf7435b0b8&ts=251&x=16"
id.a-mx.com/sync/?tagId=bmV0cHViLmNvbQ&ref=null&u=https://upfion.com/xkVp5PF&tl=https://upfion.com/xkVp5PF&nf=0&rt=true&v=8.52.2&av=2.0&vg=pbjs_broly250401&us_privacy=null&am=null&gdpr=0&gdpr_consent=
200 OK 66 B URL GET id.a-mx.com/sync/?tagId=bmV0cHViLmNvbQ&ref=null&u=https://upfion.com/xkVp5PF&tl=https://upfion.com/xkVp5PF&nf=0&rt=true&v=8.52.2&av=2.0&vg=pbjs_broly250401&us_privacy=null&am=null&gdpr=0&gdpr_consent=
IP
ASN #60068 Datacamp Limited
Requested by https://upfion.com/xkVp5PF
Certificate IssuerSectigo Limited
Subjectid.a-mx.com
Fingerprint80:DE:0D:11:57:5C:17:6D:06:7D:EA:45:FA:0C:4B:4F:04:49:4B:B4
ValidityMon, 11 Nov 2024 00:00:00 GMT - Thu, 11 Dec 2025 23:59:59 GMT
Hash ade9697d0e96c270e96789cc5aee362e
45857e33a8bdb6f7ebe6419d4a13ecfbe51beda6
29cb1e166525bb7368030a84cd08f3ec8767528b0f5bcab67c4e87b43b00299b
GET /sync/?tagId=bmV0cHViLmNvbQ&ref=null&u=https://upfion.com/xkVp5PF&tl=https://upfion.com/xkVp5PF&nf=0&rt=true&v=8.52.2&av=2.0&vg=pbjs_broly250401&us_privacy=null&am=null&gdpr=0&gdpr_consent= HTTP/1.1
Host: id.a-mx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 16 Apr 2025 07:27:17 +0200
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
content-type: application/json
content-length: 66
dsp-service.admatic.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
302 Found 0 B URL GET dsp-service.admatic.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectdsp-service.admatic.com.tr
Fingerprint4A:46:A5:28:33:FA:59:3C:B4:57:40:DE:DE:FA:D7:07:E6:82:78:18
ValidityMon, 10 Mar 2025 03:46:23 GMT - Sun, 08 Jun 2025 03:46:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Cookie: adplus_digital_id=0.p6fsvqrlv8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: text/html; charset=utf-8
location: https://prebid.admatic.com.tr/setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=59758ede-a616-4872-b0fa-4481ee059a37
access-control-allow-origin: *
x-powered-by: AdMatic
vary: Accept, Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: admatic-k8s
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5TuY%2F4K4DWyzcgtPWaE4p6B9oGah2Xw2ERJ9p92BCxTQTi8ZwV7zR0%2FqkSfst1OZnzDpoDDQ8Z6opo9bSRbC5e%2B1EcT227Bm8x2FliPq9t%2B9lBnspAc6CID67TOAlF5YN%2FCHo716TSrKZP0Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 931145d3b967568b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=863&min_rtt=459&rtt_var=893&sent=7&recv=9&lost=0&retrans=0&sent_bytes=2789&recv_bytes=1287&delivery_rate=5353049&cwnd=253&unsent_bytes=0&cid=1df79cc415a3ca57&ts=91&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f
200 OK 0 B URL GET prebid.netaddiction.tech/setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJuZXRhZGRpY3Rpb24iOnsidWlkIjoiODA3ZmIyZTQtZWYxNS00MGNlLTg0MmItMzY2ODhkZjY5ODJmIiwiZXhwaXJlcyI6IjIwMjUtMDQtMzBUMDU6Mjc6MTkuMjU1MDczNjE0WiJ9fX0=; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4hjyPlGuYH9WEnCy7fkiwHwb0oduCC8Fq%2FkB4cahLDQJXdjgynYybWwwI%2FUWsItKvCk7otLegQXnBdsvX5ozLUYlWzi1f9PKSyczt0SRjgA4fWNQ9GcqgVOof%2BYUwXI1oIIiK07x1EEIPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145d93bb4712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1011&min_rtt=453&rtt_var=836&sent=13&recv=13&lost=0&retrans=0&sent_bytes=4595&recv_bytes=1657&delivery_rate=5353049&cwnd=256&unsent_bytes=0&cid=5b90d8f20c6bf527&ts=65&x=0"
X-Firefox-Spdy: h2
wasalwayssu.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
200 OK 3.1 kB URL GET wasalwayssu.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
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerAmazon
Subjectwasalwayssu.org
Fingerprint58:AE:7B:E5:9F:4D:7C:F3:81:06:32:CC:D5:98:EC:95:58:89:90:54
ValiditySun, 06 Apr 2025 00:00:00 GMT - Tue, 05 May 2026 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (3072), with no line terminators
Hash 66efbf721363a9e1110c4d6b71247e9e
fcac74355dc4968b0c09e4a07931022a3e019005
a07e6b1bf317686a1eb289c59ca969e4604ef8a39f28c96b9a3e7e3488f76768
GET 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 HTTP/1.1
Host: wasalwayssu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1218
date: Wed, 16 Apr 2025 05:27:10 GMT
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
set-cookie: AWSALB=cmAtR+1Qp05sJ+AqHeUDddBt9tZims8GuB5AYNBbZv3DZn7Ru/9S6sQejMbYwDJyV2eU8OIGFipxjR4L8MIGoBLYVpsQe99/mrDmU2xFNEceza6x8oFlXR+ntIqV; Expires=Wed, 23 Apr 2025 05:27:10 GMT; Path=/
AWSALBCORS=cmAtR+1Qp05sJ+AqHeUDddBt9tZims8GuB5AYNBbZv3DZn7Ru/9S6sQejMbYwDJyV2eU8OIGFipxjR4L8MIGoBLYVpsQe99/mrDmU2xFNEceza6x8oFlXR+ntIqV; Expires=Wed, 23 Apr 2025 05:27:10 GMT; Path=/; SameSite=None
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 4838101f07e2dfcd1db4abc88031f082.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 9KAltP5BRS57qtdouDpdDJZs9LdeMRoX_SuYbtwz2RXsoMrdKBwCwg==
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVuZLsvU8rW2zPJNZJqz4pgEBtyCuwOc6sZGnYymX5F7nS9dRl7mCM7vS2gWabldFX_PD-NCHw
302 Found 0 B URL GET accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVuZLsvU8rW2zPJNZJqz4pgEBtyCuwOc6sZGnYymX5F7nS9dRl7mCM7vS2gWabldFX_PD-NCHw
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint52:0D:0F:B6:ED:2C:03:72:E4:DA:FE:6A:3B:DF:24:86:26:97:53:FF
ValidityThu, 20 Mar 2025 11:20:34 GMT - Thu, 12 Jun 2025 11:20:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVuZLsvU8rW2zPJNZJqz4pgEBtyCuwOc6sZGnYymX5F7nS9dRl7mCM7vS2gWabldFX_PD-NCHw HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:QangcBFeuecCHRrW9NlAk3wZEYrlPA:ERK7wrzUP9oKSe4Z;Path=/;Expires=Fri, 16-Apr-2027 05:27:12 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 16 Apr 2025 05:27:12 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVsg9PXVMyKCmTk_RACVvzLKlk-p-mdrXJPLBMhngIT0-Iy8ZmwQgQ9i48fmaRg7A1bX2eRbyg&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1758418577%3A1744781232544571
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: script-src 'nonce-yGgQ1hHtTcIN3gpV1-4jHw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 417
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1425
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: max-age=0, private, must-revalidate
date: Wed, 16 Apr 2025 05:27:13 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
200 OK 708 B URL GET fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 1ed53ab12b40ec4e280585f2c3908b6b
a6c5bc71591e90c9e436b1e797a1eef112fb6590
2e64e3d3a12b919e9e0508456d555a5d855cbb4a1505dfaf878f012524aa6c8f
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 07 Apr 2025 19:45:58 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4995
server: cloudflare
cf-ray: 931145a6bd120b65-OSL
X-Firefox-Spdy: h2
dsp-service.pixad.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dpixad%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
302 Found 0 B URL GET dsp-service.pixad.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dpixad%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectdsp-service.pixad.com.tr
Fingerprint24:5E:67:67:13:78:E1:3D:E6:FE:04:4C:39:E4:61:91:76:13:B9:53
ValiditySun, 02 Mar 2025 06:43:48 GMT - Sat, 31 May 2025 06:43:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dpixad%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.pixad.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: text/html; charset=utf-8
location: https://prebid.admatic.com.tr/setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=4bef6064-c52d-4063-97e4-fceaac1a8993
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept, Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: pixad-k8s
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IhA0nWjm7jmP7I1ljHjVel1eUtRh1BHyFy83LCD8ZxzB9h5A3c9J94001i4ItbJkDEwLrjXTSX4kXwcou5LXHH5vNj843uffqaGJ5kER7dIqSybMMpdxB%2FPcGyEB9qtvTsueAsH4sMB%2FEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 931145d3cfd80b02-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1878&min_rtt=366&rtt_var=2961&sent=6&recv=10&lost=0&retrans=0&sent_bytes=2860&recv_bytes=1399&delivery_rate=5227436&cwnd=253&unsent_bytes=0&cid=b8f9f3d8ca489ae2&ts=91&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2xuMhMLh9m53%2BYNNuR%2BC4cgT397aOl42XQMYAHAWLsFNF39qMl9vaU%2Fed1dmhPyBJadGgZuXXEu3U%2F5SHmQk6f2fp8zu6rC40p9qZ1hIG7lo7%2FEgWlY4uRGp3gGULD144%2BdzcTOt1S1sew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145db5a050b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7565&min_rtt=4453&rtt_var=6361&sent=17&recv=12&lost=0&retrans=0&sent_bytes=5904&recv_bytes=2569&delivery_rate=9014&cwnd=12000&unsent_bytes=0&cid=caf6a9724cd0c5b0&ts=286&x=1", cfExtPri, cfHdrFlush;dur=0
mp.4dex.io/prebid
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 2005
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:13 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_3qou66ua2ybaw3225r
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145b6486ab503-OSL
X-Firefox-Spdy: h2
gpp.netpub.media/init.js
200 OK 739 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash aaee79c1ad6d5d6ce8c18aa000285386
3c20aa1526d0d2a123a665e563b3b7427b3b33cb
078ca4194bef5fc3c8e4c9e79f0f65254c1bf602d7c8ad4d589a60052a618074
GET /init.js HTTP/1.1
Host: gpp.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:10 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 08 Dec 2024 00:36:50 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9311459f9d990b65-OSL
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 771 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
FingerprintC9:39:D1:73:F2:72:97:2D:92:AB:2E:CB:67:C6:32:DF:B2:01:5F:40
ValidityTue, 25 Mar 2025 00:00:00 GMT - Mon, 23 Jun 2025 23:59:59 GMT
Hash 1ee8a449b820cd7cedb05283b1fa0ac2
8668447f5da5b63f16aaf2cc070f9738c30bc64e
df2bd29adf04a2362151d72fb8366f11ab73dd4dc9f61e0a82ecb6f054c1bdfa
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 267
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Wed, 16 Apr 2025 05:27:14 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 416
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZHRhcmdldCI6eyJ1aWQiOiI2Yjg5ZTY3ZjM0NmZiYzc1IiwiZXhwaXJlcyI6IjIwMjUtMDQtMzBUMDU6Mjc6MTkuMjUxODI5OTAyWiJ9fX0=; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YXWL1y%2BjrmlqfScCAlbYAFW6NYwHgpLzeJdFzplUe%2BRfIIYlbikQsnmUSpdysDANqh4fEyOSeTp8EBPGZcuAvU993JcuTzaCDaaQxkaYYmZDZwy%2Fwk23ZcoElnbw3gvzbzClOBaCSnn5jg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145d92bab712f-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=699&min_rtt=453&rtt_var=524&sent=10&recv=11&lost=0&retrans=0&sent_bytes=3844&recv_bytes=1657&delivery_rate=5353049&cwnd=253&unsent_bytes=0&cid=5b90d8f20c6bf527&ts=62&x=0"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-197252557-1
200 OK 275 kB URL GET www.googletagmanager.com/gtag/js?id=UA-197252557-1
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT
File type JavaScript source, ASCII text, with very long lines (5436)
Size 275 kB (275329 bytes)
Hash 5b3e469e72288db5b57d4eaa3f75b213
e35c0b79ddd05d0e9918eb2fce6b078be92b1d6f
12857463962b50a7a19ed8f8d7e3013aa3425eac84d56c60ef2d034b8691d339
GET /gtag/js?id=UA-197252557-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 05:27:10 GMT
expires: Wed, 16 Apr 2025 05:27:10 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Apr 2025 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1052:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1052:0
report-to: {"group":"ascgcycc:1052:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1052:0"}],}
server: Google Tag Manager
content-length: 96098
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 0 B URL HEAD pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
Fingerprint78:5B:F8:FF:50:87:46:A8:DF:37:9D:38:26:34:7C:3B:1B:89:3C:DF
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Wed, 16 Apr 2025 05:27:11 GMT
expires: Wed, 16 Apr 2025 05:27:11 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 11309201420003577409
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52680
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
FingerprintED:BA:91:9A:CB:EC:22:39:89:33:B3:89:63:24:E9:7B:58:48:A7:F2
ValiditySat, 05 Apr 2025 21:00:24 GMT - Fri, 04 Jul 2025 22:00:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 542
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:13 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://upfion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145b60c7356ba-OSL
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 770 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
FingerprintC9:39:D1:73:F2:72:97:2D:92:AB:2E:CB:67:C6:32:DF:B2:01:5F:40
ValidityTue, 25 Mar 2025 00:00:00 GMT - Mon, 23 Jun 2025 23:59:59 GMT
Hash f3d1e63e8b36323088d829f0a5df3c26
dcb12c53245bb9f3a47b9b2227d5a0bb3adacf35
28466ccded8eb1934dac20f1e113d60bb1be954963f4aa5523dc406820140011
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 375
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Wed, 16 Apr 2025 05:27:14 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 415
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
static.smilewanted.com/js/decode_consent/decode_consent.js
200 OK 50 kB URL GET static.smilewanted.com/js/decode_consent/decode_consent.js
IP
Requested by https://csync.smilewanted.com/
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
FingerprintED:BA:91:9A:CB:EC:22:39:89:33:B3:89:63:24:E9:7B:58:48:A7:F2
ValiditySat, 05 Apr 2025 21:00:24 GMT - Fri, 04 Jul 2025 22:00:04 GMT
File type JavaScript source, ASCII text, with very long lines (49614), with no line terminators
Hash 00ff8001302d3748ba139466fc3910c1
8210e702fe525e6cddc84758ec51e96a4d703186
eb4db95cf7c97ce22bd98d1b95dfd82204843cc8854cbe0b3b6b93be4fa41a2f
GET /js/decode_consent/decode_consent.js HTTP/1.1
Host: static.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 17:11:55 GMT
etag: W/"607873db-c1ce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 15109
vary: Accept-Encoding
server: cloudflare
cf-ray: 931145d1d95b56ba-OSL
content-encoding: br
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=71446a81-babd-44a9-a829-848490210f89
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=71446a81-babd-44a9-a829-848490210f89
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=71446a81-babd-44a9-a829-848490210f89 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJtZW1icmFuYSI6eyJ1aWQiOiI3MTQ0NmE4MS1iYWJkLTQ0YTktYTgyOS04NDg0OTAyMTBmODkiLCJleHBpcmVzIjoiMjAyNS0wNC0zMFQwNToyNzoxOS45NDM1NDk5NDJaIn19fQ==; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FtzaPKlonv6s%2Fg8lRaEdx1Mo5OcvNvRWbstySEtD4EAsYKZquJ7xzkXaJkxOkxPaif482Wk%2F1BdEnrosvGyamDUdzDYnt3ZhaYLzTTiGWJSOCQTUkH8cvrAvHH6MqdPTSvbCTdZHMXSqKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145dd8c680b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=10058&min_rtt=4453&rtt_var=6898&sent=28&recv=22&lost=0&retrans=0&sent_bytes=12011&recv_bytes=4790&delivery_rate=46190&cwnd=12000&unsent_bytes=0&cid=caf6a9724cd0c5b0&ts=631&x=1", cfExtPri, cfHdrFlush;dur=0
gpp.netpub.media/17447812307140.7754830104646655/run.js?v=17447812307140.7754830104646655
200 OK 251 B URL GET gpp.netpub.media/17447812307140.7754830104646655/run.js?v=17447812307140.7754830104646655
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 54f643b0fa8a7d71cb117679a6fbb2ce
573d440c0f9fa4cf53e85cf86a86eba173933a1c
851d2ece063bcac9a5addec55308a32557f978d2daf3950395fc3dc41e9e9336
GET /17447812307140.7754830104646655/run.js?v=17447812307140.7754830104646655 HTTP/1.1
Host: gpp.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:10 GMT
content-type: application/javascript
last-modified: Wed, 21 Feb 2024 16:05:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145a55b2c0b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
302 Found 86 B URL GET a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectadpartner.pro
Fingerprint22:C1:BC:73:C5:B7:D7:10:FF:CB:BA:FA:DC:55:2C:3B:A0:60:5F:BD
ValiditySun, 30 Mar 2025 08:08:15 GMT - Sat, 28 Jun 2025 08:08:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D HTTP/1.1
Host: a4p.adpartner.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: text/html; charset=utf-8
content-length: 224
location: https://prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=0d4845e6-3a46-447e-b8de-861b63af7922
cache-control: no-store no-transform
X-Firefox-Spdy: h2
302 Found 96 kB IP
Certificate IssuerGoogle Trust Services
Subjectupfiles.com
FingerprintBC:8F:5D:54:39:BA:6C:00:6E:25:8D:25:EA:D6:EE:D2:57:6E:A9:32
ValidityTue, 15 Apr 2025 08:45:18 GMT - Mon, 14 Jul 2025 09:42:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xkVp5PF HTTP/1.1
Host: upfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 16 Apr 2025 05:27:06 GMT
content-type: text/html; charset=UTF-8
location: https://upfion.com/xkVp5PF?token=eyJpdiI6ImRoODZGQ0duTlM4bEtpQkVVakp1a3c9PSIsInZhbHVlIjoiY1NQM2lML2I2YU9DeUthNVZUTTRzUT09IiwibWFjIjoiYWU4NGM3YjU2MjQ2MzhhYThiZTI3MmJiY2Q0ZDUwNzY5ZjdiNDE4M2ExYmIwZmMwNWU3MmVkNDQyZjk2ZDA1NyIsInRhZyI6IiJ9
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
cf-ray: 9311458538107131-OSL
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O1uFCYk0lPh9hjs8XXrxfATRAEngVFdWZBZFnFcWKhIbw1cfwzBkkr7OzHPeD5SA5Q5uL%2BdKpAV20Fmj4zBc7zzRg2Ty0WQvw388%2FA9xFESPzMVVUWirHkkdNgW6xw%3D%3D"}],"group":"cf-nel","max_age":604800}
set-cookie: XSRF-TOKEN=eyJpdiI6IkRHZ3ErT0lHRGdjdGk2WXNBcXZEQkE9PSIsInZhbHVlIjoiR3FLRXlKNU5Db25IN1JwQzR3ZjFsRlJwVGRWaWZ3S21CNXo0NHZ6ZzZnYXVsRS9wNkxGQUZvVWF0ZkNmNkZpKzZjUHA0KzVIZFRWTC94RG9NVVBsQUVOaDhwdTA0Q1k2cHg1S2ZnaGVnYWoxUWd1dFl4SGd6dnpQb2lmYzFZaUQiLCJtYWMiOiIxOGMwYTgxODMyYmMwZTU3NmMxYWNiYmYzNGI5NjIwNTg4ODE0MzQ3NzI0NTM2NjgwNGMyYWVhNTdjZTU4OGZjIiwidGFnIjoiIn0%3D; SameSite=Lax; Path=/; Max-Age=604800; Expires=Wed, 23 Apr 2025 05:27:06 GMT
upfiles_session=eyJpdiI6InZoSXIwNDZhTnZWS3d2ZzVIZnVHdWc9PSIsInZhbHVlIjoidHZHRm5abDlRYnVPdXZZdHZHTVBCWGdLdmtsK3FER2RSN3FQK1J5MEE4VGlyMnoxSTdLeHlpcksyRnh3UFp0VUo4Vlp3UTU2YjdSSEowbjU0ejlTMTNlNVZkUWMyTHBUb3NuRDd2MjNSRjRBUVg2cDI3Mkl3NlBDaE9vWnRualUiLCJtYWMiOiJlNjA0OGMyOGZhNWZlZDBiNzk3YThkOTk3MjMzMTc1ZWQ1YmM0YWRkYzhmZGU2YzViYzM5NDQ4NzY2ZmVkN2FkIiwidGFnIjoiIn0%3D; HttpOnly; SameSite=Lax; Path=/; Max-Age=604800; Expires=Wed, 23 Apr 2025 05:27:06 GMT
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6345&min_rtt=437&rtt_var=11777&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3274&recv_bytes=1252&delivery_rate=7017770&cwnd=254&unsent_bytes=0&cid=7a9ffdf9c92ff2dc&ts=1029&x=0"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&family=Roboto:wght@400;500;700;900&display=swap
200 OK 32 kB URL GET fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&family=Roboto:wght@400;500;700;900&display=swap
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint3C:2E:67:30:A6:95:F3:D3:61:49:AB:AC:BC:D1:CF:77:3E:33:8F:B7
ValidityThu, 20 Mar 2025 11:19:46 GMT - Thu, 12 Jun 2025 11:19:45 GMT
File type ASCII text, with very long lines (1572)
Hash 23ed335cc60de02e9ce66a0dde88ab85
e6523c63c4e63478b51b51a0e7dcdef6d2d974e6
cbc07c5ca04e6b266bd03b5ece5bdb19c2faf70e01b081261165d380cdd02271
GET /css2?family=Inter:wght@400;500;600;700&family=Roboto:wght@400;500;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 16 Apr 2025 05:27:10 GMT
date: Wed, 16 Apr 2025 05:27:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
server.smartytech.io/match?redirect=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buser_id%7D
302 Found 86 B URL GET server.smartytech.io/match?redirect=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buser_id%7D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectsmartytech.io
Fingerprint60:E0:3D:99:1F:C7:B1:1B:D4:89:46:E5:09:62:3C:10:F1:D4:CB:56
ValiditySun, 30 Mar 2025 09:07:53 GMT - Sat, 28 Jun 2025 09:07:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?redirect=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buser_id%7D HTTP/1.1
Host: server.smartytech.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: image/gif
content-length: 200
location: https://prebid.admatic.com.tr/setuid?bidder=membrana&gdpr=0&gdpr_consent=&f=i&uid=f0ec83c9-adaf-4931-a40f-e758d3d33b0a
expires: Wed, 11 Nov 1998 11:11:11 GMT
last-modified: Wed, 16 Apr 2025 05:27:18 GMT
pragma: no-cache
set-cookie: uid=f0ec83c9-adaf-4931-a40f-e758d3d33b0a; Path=/; Expires=Thu, 16 Apr 2026 05:27:18 GMT; Secure; SameSite=None
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, no-store no-transform
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7Ta5VwWsYEz7eSzZXazs2xpHtbCI5TWFbdiKqynaZvJl3nOi%2BohspaI0mGH80ZuvKBrRynB7AjSzwSUd%2B7iHsc%2FGOIO1Gov05hFojdEWY3HPdQdZ5uRLDOMoPw5Yry7sso0alaURoG874DK7ZJ8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145bd5d16568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=11426&min_rtt=418&rtt_var=17049&sent=25&recv=31&lost=0&retrans=0&sent_bytes=7486&recv_bytes=6990&delivery_rate=5601547&cwnd=257&unsent_bytes=0&cid=8db4039eb9680c89&ts=1114&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PWNpih%2BbbcC%2Fb5hLyma4mSUJ4TeOZRPgzEwsdKhAuLyzXc0MFP7RlqqySo4eKdnWSqdhdiIY6It5lqhCudg6qDckrk79kqmoP7Lw2sImCMjIuSt2a7ZGjdzFLlu493UbwXHSlVo2gE98tDc%2B6Fk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145bd6d21568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=10958&min_rtt=418&rtt_var=13724&sent=26&recv=32&lost=0&retrans=0&sent_bytes=7924&recv_bytes=6990&delivery_rate=5601547&cwnd=257&unsent_bytes=0&cid=8db4039eb9680c89&ts=1125&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=agzJGAUpoj1HGubx68P9wpFM3HXgt9qNAniK60hlQJJ88MfUB6%2Ffn3ABwXHe2%2BPJNH%2BB87GRRGbHxplDBOLuj6P0NHGB4TdXoL7y%2FGZ81BXC2qrjNLN4tZSbItLaRvf2zhoJ%2ByrLR2YnJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145d92bad712f-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=699&min_rtt=453&rtt_var=524&sent=7&recv=11&lost=0&retrans=0&sent_bytes=2910&recv_bytes=1657&delivery_rate=5353049&cwnd=253&unsent_bytes=0&cid=5b90d8f20c6bf527&ts=61&x=0"
X-Firefox-Spdy: h2
sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
302 Found 86 B URL GET sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerZeroSSL
Subjectsync.console.adtarget.com.tr
FingerprintED:8C:47:D0:F4:82:C5:4F:57:FD:F5:2D:94:C8:7F:3B:9E:6E:E4:81
ValidityWed, 12 Mar 2025 00:00:00 GMT - Tue, 10 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D HTTP/1.1
Host: sync.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: vmuid=6b89e67f346fbc75
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Adtarget
Date: Wed, 16 Apr 2025 05:27:18 GMT
Content-Length: 0
Etag: 6b89e67f346fbc75
Location: https://prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75
Set-Cookie: vmuid=6b89e67f346fbc75; expires=Fri, 18 Jul 2025 05:27:19 GMT; domain=.console.adtarget.com.tr; path=/; secure; SameSite=None
fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.engine.js?npr=ecc4921d61efb74228baf9332a3a45d1
200 OK 222 kB URL GET fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.engine.js?npr=ecc4921d61efb74228baf9332a3a45d1
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (57274)
Size 222 kB (221575 bytes)
Hash 09e51b42a2f69aa763e2ad0fc4dcaa16
3275fb412cff4cc5229f560372545f03f85ea619
46965a1199f4fbea3d0e1c460b6d462bc43536a05fa7be7e89d88c1344417b8c
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.engine.js?npr=ecc4921d61efb74228baf9332a3a45d1 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 07 Apr 2025 19:45:58 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4995
server: cloudflare
cf-ray: 931145a998a90b65-OSL
X-Firefox-Spdy: h2
mp.4dex.io/prebid
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1418
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_tbflisdm0j7lo32ftp
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145bd1842b503-OSL
X-Firefox-Spdy: h2
wasalwayssu.org/aUxjNTgILgBYBwhxARNNGyBeEAovaVFzXFopCEZeESAFAlofdQsbWwUjFlFeGyMNQRYHKRcQCi8fB2F6CC8JZG8xNjJgex4KOWVTUQoxdHYDHxRvei8lDHRtOwEteU8jHytzAFkUJVZZMRQUbGoRPAZ+U1B4KgZ+AwUiQnA+Cy15XhEBJFN5MwMmZAkYGiVSbTEmUmV9AQ4Gem1RCjYEfUx+IXB5BQ4lXAwqGxsBdiINNVB9PxkZcG0KKDt9TyEaNl1cJx0LUX8/O1RjTzA2IW1qKgk2VnkKKzVRf1gdUndtDR0iWFcKHSV0ewgnLnBvHg5GB344FDlkeQRhDHNgOz8kV1QKBC1NbgYdCE18KwRad1wFDSBUXysPNnR1Cx0UUXohIRNXfTwvImVqDRQrWQFMfiVkcCMEInJMKg4mZHkIfQByaj8VGXR+LBg7THIxDgl4eggZOlRqOxUVYU88aglGVwc8XnluKHUxDUoBdVp+Xl8
200 OK 3.1 kB URL GET wasalwayssu.org/aUxjNTgILgBYBwhxARNNGyBeEAovaVFzXFopCEZeESAFAlofdQsbWwUjFlFeGyMNQRYHKRcQCi8fB2F6CC8JZG8xNjJgex4KOWVTUQoxdHYDHxRvei8lDHRtOwEteU8jHytzAFkUJVZZMRQUbGoRPAZ+U1B4KgZ+AwUiQnA+Cy15XhEBJFN5MwMmZAkYGiVSbTEmUmV9AQ4Gem1RCjYEfUx+IXB5BQ4lXAwqGxsBdiINNVB9PxkZcG0KKDt9TyEaNl1cJx0LUX8/O1RjTzA2IW1qKgk2VnkKKzVRf1gdUndtDR0iWFcKHSV0ewgnLnBvHg5GB344FDlkeQRhDHNgOz8kV1QKBC1NbgYdCE18KwRad1wFDSBUXysPNnR1Cx0UUXohIRNXfTwvImVqDRQrWQFMfiVkcCMEInJMKg4mZHkIfQByaj8VGXR+LBg7THIxDgl4eggZOlRqOxUVYU88aglGVwc8XnluKHUxDUoBdVp+Xl8
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerAmazon
Subjectwasalwayssu.org
Fingerprint58:AE:7B:E5:9F:4D:7C:F3:81:06:32:CC:D5:98:EC:95:58:89:90:54
ValiditySun, 06 Apr 2025 00:00:00 GMT - Tue, 05 May 2026 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (3067), with no line terminators
Hash ee386a46bf8666ad2e69d472dfeb8d98
4ec97590f4ec17b13821dd2eb9ceac9462c3829c
d5b7a46851c9ddcc4e664286c9512b2fae3a5548562b76d8c69a7d5e6d48c10a
GET /aUxjNTgILgBYBwhxARNNGyBeEAovaVFzXFopCEZeESAFAlofdQsbWwUjFlFeGyMNQRYHKRcQCi8fB2F6CC8JZG8xNjJgex4KOWVTUQoxdHYDHxRvei8lDHRtOwEteU8jHytzAFkUJVZZMRQUbGoRPAZ+U1B4KgZ+AwUiQnA+Cy15XhEBJFN5MwMmZAkYGiVSbTEmUmV9AQ4Gem1RCjYEfUx+IXB5BQ4lXAwqGxsBdiINNVB9PxkZcG0KKDt9TyEaNl1cJx0LUX8/O1RjTzA2IW1qKgk2VnkKKzVRf1gdUndtDR0iWFcKHSV0ewgnLnBvHg5GB344FDlkeQRhDHNgOz8kV1QKBC1NbgYdCE18KwRad1wFDSBUXysPNnR1Cx0UUXohIRNXfTwvImVqDRQrWQFMfiVkcCMEInJMKg4mZHkIfQByaj8VGXR+LBg7THIxDgl4eggZOlRqOxUVYU88aglGVwc8XnluKHUxDUoBdVp+Xl8 HTTP/1.1
Host: wasalwayssu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1211
date: Wed, 16 Apr 2025 05:27:10 GMT
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
set-cookie: AWSALB=I4x0YhNQKE0dHr3M3ay9a231NW0lISwJ21f6OjnL7P1+fAKpPbQ4FkCGV2/xX2EHX7nzRz67fFCPKtrjoZwuG7SYXNPCzcTqLsIXhdtE4F/i+EQLGvBA5XwjLgfS; Expires=Wed, 23 Apr 2025 05:27:10 GMT; Path=/
AWSALBCORS=I4x0YhNQKE0dHr3M3ay9a231NW0lISwJ21f6OjnL7P1+fAKpPbQ4FkCGV2/xX2EHX7nzRz67fFCPKtrjoZwuG7SYXNPCzcTqLsIXhdtE4F/i+EQLGvBA5XwjLgfS; Expires=Wed, 23 Apr 2025 05:27:10 GMT; Path=/; SameSite=None
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 4838101f07e2dfcd1db4abc88031f082.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Qdm4xP2HIbU17oLqPvZ5vq1mq4Z43JBwAF5P2hou815FlYmnj8JiyQ==
X-Firefox-Spdy: h2
mp.4dex.io/prebid
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1493
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_o3ma81eau9xvo2d
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145bd0827b503-OSL
X-Firefox-Spdy: h2
ghb.adtelligent.com/v2/auction/
200 OK 4.0 kB URL POST ghb.adtelligent.com/v2/auction/
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb.adtelligent.com
FingerprintB0:FB:4F:89:69:DD:35:D0:9F:F5:08:AC:CC:5A:32:2D:84:62:89:CB
ValiditySun, 23 Mar 2025 00:00:00 GMT - Sat, 21 Jun 2025 23:59:59 GMT
Hash d4b97f826c44179c9d934c75720547a0
bdc8466a64b8c8fda32948d402e0e6fe14ad075b
a8a083e1bb1753deb48dbd1648ecb6fdf2a74f38bbe801e8477fda43f769fdc7
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 334
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Wed, 16 Apr 2025 05:27:15 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1178
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: application/json
Content-Length: 997
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=30fnn2oQpoE3quY6DKRD0qC0D%2Fv6xmt8Y4baA6RC6SnVaC2kRGJWhCgM08DiDEpJIjorz2wuMAccHq96VPJjMB2gFo13QhPUeynswoPj6ofnsiQhYUJQMk%2BCqKScpjdO4vEYYj8cwhDxyCy1TVg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145bdbd99568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=11668&min_rtt=418&rtt_var=11714&sent=31&recv=38&lost=0&retrans=0&sent_bytes=8823&recv_bytes=10539&delivery_rate=5601547&cwnd=257&unsent_bytes=0&cid=8db4039eb9680c89&ts=1292&x=0"
X-Firefox-Spdy: h2
sync.connectad.io/iFrameSyncer?gdpr=0&consent={gdpr_consent}&us_privacy=&gpp=&gpp_sid=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dconnectad%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
204 No Content 0 B URL GET sync.connectad.io/iFrameSyncer?gdpr=0&consent={gdpr_consent}&us_privacy=&gpp=&gpp_sid=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dconnectad%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectconnectad.io
FingerprintB3:0C:5B:E8:D6:57:67:65:9D:6B:8E:63:6F:0B:8E:36:0D:02:19:9A
ValidityWed, 02 Apr 2025 17:30:33 GMT - Tue, 01 Jul 2025 17:30:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iFrameSyncer?gdpr=0&consent={gdpr_consent}&us_privacy=&gpp=&gpp_sid=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dconnectad%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: sync.connectad.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:18 GMT
cache-control: no-cache, private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145d44deeb509-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVsg9PXVMyKCmTk_RACVvzLKlk-p-mdrXJPLBMhngIT0-Iy8ZmwQgQ9i48fmaRg7A1bX2eRbyg&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1758418577%3A1744781232544571
403 Forbidden 0 B URL GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVsg9PXVMyKCmTk_RACVvzLKlk-p-mdrXJPLBMhngIT0-Iy8ZmwQgQ9i48fmaRg7A1bX2eRbyg&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1758418577%3A1744781232544571
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint12:A5:4A:1B:8A:02:5B:3E:ED:E8:C5:88:16:6F:BF:DE:14:12:DD:CA
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVsg9PXVMyKCmTk_RACVvzLKlk-p-mdrXJPLBMhngIT0-Iy8ZmwQgQ9i48fmaRg7A1bX2eRbyg&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1758418577%3A1744781232544571 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 16 Apr 2025 05:27:12 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-security-policy: script-src 'nonce-oC3NgTZE6ClYocLlny7I0Q' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.google.com/tools/feedback/help_api.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ghelp/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.pENtOsDS8sc.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D25ONyL3%2BtLuFZRFzi3ollD1eClIs%2BPpEuZyFERoiabTNDC6OBmMwr9x6jFPNCOl73ku0%2B1WfAW0hR3TBUfpeC4qMuDWr4r%2BifRkJroYFqyn2vZv9A1%2Bf3k590qmbOXzYpZiQPSAzcyp1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145dd7c600b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=10527&min_rtt=4453&rtt_var=7947&sent=27&recv=21&lost=0&retrans=0&sent_bytes=11080&recv_bytes=4746&delivery_rate=40599&cwnd=12000&unsent_bytes=0&cid=caf6a9724cd0c5b0&ts=628&x=1", cfExtPri, cfHdrFlush;dur=0
st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tlC%2F4mKkkAm%2BM%2BttyukToqegKcPjSnEmZDwl9E09W7%2F4kA17kSJFVjbDq%2BbC7ity5O9ZFguZv4GYl%2BgDguzIuSv7ZZ9qZctM3RhNgbifXwiBE3%2BxYeT27sXmcaCWe0CwQ4qyUFvePl1ZaJo%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 931145a59c055697-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3610&min_rtt=728&rtt_var=1908&sent=67&recv=86&lost=0&retrans=0&sent_bytes=6615&recv_bytes=6585&delivery_rate=2212&cwnd=12000&unsent_bytes=0&cid=4d29bfbf7435b0b8&ts=258&x=16"
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20250416
200 OK 1.6 kB URL GET cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20250416
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C
ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT
Hash 075c88488ff7c59b5c27f0679e88d1a3
193a5b87fe294e34ad68715088fb29866e2ed3b5
adc92176310a2e54c68d7d09fa289e26f42927b067c665ee579895928f7c4d67
GET /gh/prebid/currency-file@1/latest.json?date=20250416 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/json; charset=utf-8
x-jsd-version: 1.0.2392
x-jsd-version-type: version
etag: W/"641-GTpbh/4pTjStaHFQiPsphm4u07U"
content-encoding: br
accept-ranges: bytes
date: Wed, 16 Apr 2025 05:27:12 GMT
age: 5187
x-served-by: cache-fra-eddf8230103-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 828
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1683
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://upfion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
static.cdn.admatic.com.tr/sync.html
200 OK 8.7 kB URL GET static.cdn.admatic.com.tr/sync.html
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subjectstatic.cdn.admatic.com.tr
Fingerprint23:64:E7:BE:D9:A0:62:12:F4:32:7D:11:53:C7:8C:F1:A6:78:3D:D3
ValiditySat, 08 Mar 2025 08:25:47 GMT - Fri, 06 Jun 2025 08:25:46 GMT
File type HTML document, ASCII text
Hash 045545d91487b5253f6408fb874991af
ebeccdf1dd303eec8f78e8e4b2ace61e6f1b24f6
7c2c7b57b60d025dfcbdeb800cbec27d19b3744e018a5350f0c0a803467878dc
GET /sync.html HTTP/1.1
Host: static.cdn.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:17 GMT
content-type: text/html
cdn-pullzone: 1905149
cdn-uid: e7d0f040-08f3-443e-a640-656beb6c8b3b
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=3600
last-modified: Wed, 02 Apr 2025 11:26:50 GMT
cdn-storageserver: DE-1022
cdn-fileserver: 639
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/10/2025 13:30:53
cdn-edgestorageid: 755
cdn-requestid: 1714667bc098b46dc4984080adbb5c9f
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yi8QnwywSHLhQwimdtlLHjzL3V5MnAOzxhK6tygihAEfKTzv3NtGifyz9Fghthp%2FmcPNTWiCwB%2BWFQS3imaVtMT9uGvmLHDWjWK3ckvwaWnFgrE42oOGuvrkmwi3XbBYgaY3duRrVXxtYjQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 931145d03dec56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=732&min_rtt=426&rtt_var=632&sent=7&recv=9&lost=0&retrans=0&sent_bytes=2862&recv_bytes=1291&delivery_rate=5768924&cwnd=253&unsent_bytes=0&cid=727aaa1e2eaedcf0&ts=95&x=0"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Apr 2025 10:09:02 GMT
expires: Fri, 10 Apr 2026 10:09:02 GMT
cache-control: public, max-age=31536000
age: 501488
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
200 OK 708 B URL GET fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 1ed53ab12b40ec4e280585f2c3908b6b
a6c5bc71591e90c9e436b1e797a1eef112fb6590
2e64e3d3a12b919e9e0508456d555a5d855cbb4a1505dfaf878f012524aa6c8f
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 07 Apr 2025 19:45:58 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4995
server: cloudflare
cf-ray: 931145a73db40b65-OSL
X-Firefox-Spdy: h2
upfion.com/js/frontend.js?id=a9ead52fa97a2708e6e9
200 OK 1.4 MB URL GET upfion.com/js/frontend.js?id=a9ead52fa97a2708e6e9
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 1.4 MB (1427021 bytes)
Hash a9ead52fa97a2708e6e909b3777bd7fc
b03c394ee849507472f56ab74b7535f6732334f7
b57bb1cc8f2421dfce98acb639dc6177ef3588289d0a175b1f7eac9d704e6b9f
GET /js/frontend.js?id=a9ead52fa97a2708e6e9 HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/xkVp5PF
Cookie: XSRF-TOKEN=eyJpdiI6Ik9vTTFlVmFHVkN5UmIwd2J1U1MzM1E9PSIsInZhbHVlIjoiL3Z2dFRQUUFFQTBUakVyZVIyUjA0UVJyYlBFeFBLaHV0dTJsN3RQYTl2eWV3a01yQ2dMMzZkL1JKYVFaZE53Y1lRU0tXV0xzVGFmRDR0QnpQd0VramJoUDcyaTJVdE1yUlIrVk5uR1ZXVzRmRmNqaC9sdU51WC9Lc3p3NGcza0UiLCJtYWMiOiI0ZGY2ZTgzNTY5MDk3MWVmODJhMjMzNTZkZjNkNzEwYmZkYjMzOTIxZDk2ZjA3ZDI1MTdmYzY2NGVlZTA5MjA3IiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6Im5IR3FIdklRcnhnMHltRkdOelJ2bFE9PSIsInZhbHVlIjoiSVlHcFBIajFlcFFhdVNLM3dyWUFxSTh0enYrUDdQWGh1KzRvSVhQQStkdWRCOHc5QjZicFFqTlJVOXQ4QXRzL3QwZHVCS2xra0xNUVFXQTBRS2tIanVUYU9EV1BnTlgvNDBCdTJUZ3FERVVXYWtueGlJeGplamhHNVBqclJ2SksiLCJtYWMiOiIyNzllNTFhZGYxMjQyMzdhOGY4ZWQzOGQ4MzA0ZGJhMWQzMDFiNTI0YWUzYTNlZGUyZjI3NmRjZDllZjVjM2MxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:09 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ma2Yd%2FKX80jFO6RjOJ%2FqOQYG1qRZl31EOhb8PTt%2FKoYbC4M7WZIjPymK32YSTWutFy7bbM0sRKy5z35D%2FzLGejuIA%2FJ2Cf8tiJuT%2F510KbbRy0EzEnfhpGACzwFQ"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 12:18:07 GMT
vary: Accept-Encoding
etag: W/"67485f7f-15c64d"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 220
content-encoding: br
cf-ray: 9311459eacc5712f-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=4161&x=16"
st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230507
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230507
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230507 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 16 Apr 2025 05:27:10 GMT
location: https://st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
server: cloudflare
cf-ray: 931145a3cfc65687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
200 OK 708 B URL GET fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 1ed53ab12b40ec4e280585f2c3908b6b
a6c5bc71591e90c9e436b1e797a1eef112fb6590
2e64e3d3a12b919e9e0508456d555a5d855cbb4a1505dfaf878f012524aa6c8f
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 07 Apr 2025 19:45:58 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4995
server: cloudflare
cf-ray: 931145a69cf40b65-OSL
X-Firefox-Spdy: h2
gpp.netpub.media/init.js
200 OK 739 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash aaee79c1ad6d5d6ce8c18aa000285386
3c20aa1526d0d2a123a665e563b3b7427b3b33cb
078ca4194bef5fc3c8e4c9e79f0f65254c1bf602d7c8ad4d589a60052a618074
GET /init.js HTTP/1.1
Host: gpp.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 08 Dec 2024 00:36:50 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145aaea1c0b65-OSL
X-Firefox-Spdy: h2
fstatic.netpub.media/extra/cmp/cmp-gdpr.js?v=1
307 Temporary Redirect 739 B URL GET fstatic.netpub.media/extra/cmp/cmp-gdpr.js?v=1
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /extra/cmp/cmp-gdpr.js?v=1 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: text/html
content-length: 169
location: https://gpp.netpub.media/init.js
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 931145aa79bb0b65-OSL
X-Firefox-Spdy: h2
ukankingwithea.com/asd100.bin
200 OK 102 kB URL GET ukankingwithea.com/asd100.bin
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:7E:37:44:90:B9:05:B4:82:CD:5A:71:84:A1:C8:84:66:33:BC:78
ValiditySat, 01 Mar 2025 13:28:14 GMT - Fri, 30 May 2025 14:26:54 GMT
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
GET /asd100.bin HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:12 GMT
content-type: binary/octet-stream
server: cloudflare
access-control-allow-origin: https://upfion.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: STALE
age: 1645154
last-modified: Fri, 28 Mar 2025 04:27:58 GMT
cf-ray: 931145aedb4456a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1885
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://upfion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
csync.smilewanted.com/drop_cookie_sw.php
200 OK 0 B URL GET csync.smilewanted.com/drop_cookie_sw.php
IP
Requested by https://csync.smilewanted.com/
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
FingerprintED:BA:91:9A:CB:EC:22:39:89:33:B3:89:63:24:E9:7B:58:48:A7:F2
ValiditySat, 05 Apr 2025 21:00:24 GMT - Fri, 04 Jul 2025 22:00:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /drop_cookie_sw.php HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: sw_user_params_infos=lRZ4%2B4BjGB75GCG4angrK9eXbSAGhK4VrFU8zbSa8cVnQBtUIbd1yMMWXxbHULsgmghkuYzZqX6jqX2dJCFteHt%2ByuM7Pmcx61Lm1bFaSHC4zBgGlWvgxMsKt2tQ6g%2BMShjPLHSI74SqqFpEdK0vcg%3D%3D; expires=Thu, 16 Apr 2026 11:16:30 GMT; Max-Age=31556952; path=/; domain=smilewanted.com; secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145d239d656ba-OSL
content-encoding: br
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
FingerprintED:BA:91:9A:CB:EC:22:39:89:33:B3:89:63:24:E9:7B:58:48:A7:F2
ValiditySat, 05 Apr 2025 21:00:24 GMT - Fri, 04 Jul 2025 22:00:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 290
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:13 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://upfion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145b78e7356ba-OSL
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=59758ede-a616-4872-b0fa-4481ee059a37
200 OK 0 B URL GET prebid.admatic.com.tr/setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=59758ede-a616-4872-b0fa-4481ee059a37
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=59758ede-a616-4872-b0fa-4481ee059a37 HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.p6fsvqrlv8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZG1hdGljIjp7InVpZCI6IjU5NzU4ZWRlLWE2MTYtNDg3Mi1iMGZhLTQ0ODFlZTA1OWEzNyIsImV4cGlyZXMiOiIyMDI1LTA0LTMwVDA1OjI3OjE4LjczMzg3NzY3OVoifX19; Path=/; Domain=admatic.com.tr; Expires=Tue, 15 Jul 2025 05:27:18 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SuYOU3rSIgswRVZv14dcHv1KOPjffi9e1z9DFdzo5aEMHYhj4AvujngdO0ligajgBr22nofE%2Fsd0yVuGPwolk2OgMA4%2FUOuclR%2FdjuZFH9lhkj6JUzEWj6gu1ROqVY7pIV2474N3lw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 931145d5fcefb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5344&min_rtt=5258&rtt_var=2143&sent=15&recv=10&lost=0&retrans=0&sent_bytes=4736&recv_bytes=2151&delivery_rate=106967&cwnd=12000&unsent_bytes=0&cid=1f20a2c0ad2021ec&ts=70&x=1", cfExtPri, cfHdrFlush;dur=0
200 OK 96 kB IP
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
File type JavaScript source, ASCII text, with very long lines (61165), with CRLF, LF line terminators
Hash edadf5bb443a454a73a4e019bdb88a3e
53f892f81c511f69e5ce086bbb610e7c4c485023
f8bd3281bf83ec7a2bc59d73fa923a12f78638b068c7eeec9182790339fa8b32
GET /xkVp5PF HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Inp1VVVWVE1lb2dSUnhPUmNXaVFqRnc9PSIsInZhbHVlIjoicHpteGJKR2JCbldpVFF5M0MwdURldXYxL0dnRW1PbkFyR003TWVVek9rdUNZQTFtekFCMG12OUhQd3h6SzBNOUxJeWQxYWwyVk5BSWY5OGJRbjNtMkFuSUMzN3htZXBPbXgrRlZNcDVhaXdvWjlJUjVLZVBrbk44aFk4VHhuazUiLCJtYWMiOiI1ODk1ZjZkMGNiNGQ5NTg5MGEwOTBiNzEzMDU1ZTIzMWE5MjgwYTAxZDkzYWExOWM3Njc5YzU3MjhiOTM5N2YzIiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6ImtYeG5wT1AzMGw5OFdtZHdzQTkxTHc9PSIsInZhbHVlIjoia0NIUTB4dDBRM1VOeU9EWkNTYW9oV0pSUWFVaVhMaFp1OFdXZXFLN21vdW5wYmYrSVJUdTZjS0dzZ0JocW9NZ1NvTFlmTHBKblpLL042QlVnbll5UDAwaGtBdlA3ZGJXODJMUGtabXY3enZUOFVYcGpyTzYvVVFPa2tqNTBET3AiLCJtYWMiOiJiNGZjNjNiMmNiMjM1NDVlZTJjYjNmYmYzM2NmNzlmYWI1YzI5MzQ3ZjY1ZjU3ZGFhM2RlNTE2NDliYTE0NzUzIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:09 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qHDO5Pd66mEZuVKgzFZrhJ5%2FHs0xLxqAWhEZnN4%2Fwp8cfUGFhBrDZ1Qo70jRLuoQplLrNZkFH0G7tP%2BFP9LdQ%2Fj6Q7zyIYsnQTSb%2BpezZwFwg%2BklsfUpO2D2Mk%2Fm"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6Ik9vTTFlVmFHVkN5UmIwd2J1U1MzM1E9PSIsInZhbHVlIjoiL3Z2dFRQUUFFQTBUakVyZVIyUjA0UVJyYlBFeFBLaHV0dTJsN3RQYTl2eWV3a01yQ2dMMzZkL1JKYVFaZE53Y1lRU0tXV0xzVGFmRDR0QnpQd0VramJoUDcyaTJVdE1yUlIrVk5uR1ZXVzRmRmNqaC9sdU51WC9Lc3p3NGcza0UiLCJtYWMiOiI0ZGY2ZTgzNTY5MDk3MWVmODJhMjMzNTZkZjNkNzEwYmZkYjMzOTIxZDk2ZjA3ZDI1MTdmYzY2NGVlZTA5MjA3IiwidGFnIjoiIn0%3D; expires=Wed, 23-Apr-2025 05:27:08 GMT; Max-Age=604800; path=/; samesite=lax
upfiles_session=eyJpdiI6Im5IR3FIdklRcnhnMHltRkdOelJ2bFE9PSIsInZhbHVlIjoiSVlHcFBIajFlcFFhdVNLM3dyWUFxSTh0enYrUDdQWGh1KzRvSVhQQStkdWRCOHc5QjZicFFqTlJVOXQ4QXRzL3QwZHVCS2xra0xNUVFXQTBRS2tIanVUYU9EV1BnTlgvNDBCdTJUZ3FERVVXYWtueGlJeGplamhHNVBqclJ2SksiLCJtYWMiOiIyNzllNTFhZGYxMjQyMzdhOGY4ZWQzOGQ4MzA0ZGJhMWQzMDFiNTI0YWUzYTNlZGUyZjI3NmRjZDllZjVjM2MxIiwidGFnIjoiIn0%3D; expires=Wed, 23-Apr-2025 05:27:08 GMT; Max-Age=604800; path=/; httponly; samesite=lax
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 93114594fa8b712f-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=3771&x=16"
korbthejethii.org/NGd0eVAbWBcKbVAKGDsGWSk1IWN6ESNJAlEDGSsIZlZBDgkFNlINOVBaRUhkBlNETHZEDhBEYQxBBw0xQBIHRGESDhofPwlBAkRhGldaS34BQQFEYRITBBg3CVZSCSRAC0lIZwBTQ0FhBlRETWQB
204 No Content 0 B URL GET korbthejethii.org/NGd0eVAbWBcKbVAKGDsGWSk1IWN6ESNJAlEDGSsIZlZBDgkFNlINOVBaRUhkBlNETHZEDhBEYQxBBw0xQBIHRGESDhofPwlBAkRhGldaS34BQQFEYRITBBg3CVZSCSRAC0lIZwBTQ0FhBlRETWQB
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectkorbthejethii.org
FingerprintAC:C5:70:CA:80:C4:25:2D:59:91:BA:6E:75:53:46:35:55:53:09:5C
ValidityThu, 03 Apr 2025 12:14:42 GMT - Wed, 02 Jul 2025 13:13:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /NGd0eVAbWBcKbVAKGDsGWSk1IWN6ESNJAlEDGSsIZlZBDgkFNlINOVBaRUhkBlNETHZEDhBEYQxBBw0xQBIHRGESDhofPwlBAkRhGldaS34BQQFEYRITBBg3CVZSCSRAC0lIZwBTQ0FhBlRETWQB HTTP/1.1
Host: korbthejethii.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:10 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145a2fcd75688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
undefined/U09xQkIyLRIvfTJyE2Q3ISNMZ3AVakMEJmAqGjEkKyMXdSAldhlsIT8gBCYkISAfNmw9KgVncBUcPygMJi02GBQLDjAJFQYFEAEuFRczNSYwGDcbBhUdRScDYg4+BTokDilzNRIeFhQYCyQWBQQFIxUKLhZ+FxRyYwgyewQGC0V0AQENOQQDOy0zKhcQCyAqEBckFggBFRo+GnI8ByQuBAcYNAAGBiM8AAEGNxADJRIHNDUHPBgkJQUVIwkhFjgJEAMDNAUgFwAfFx0YGwF/BScUNCw1EwQrCzMaBB8XHRgABCgzIxc7AjAOBz8aMyk2Chg0DwQwGlw2JwUkIwQRYncfADURLiAuGzUJHTohEhk/EwACATUACgUsKQQhFA5AeyEFNzwAGjQgIRAECgYwOnYHDiIqJgUeOCYaOCAlATUaaRsxLT0/TBEJPRUFCzEwHyct
0 B URL GET undefined/U09xQkIyLRIvfTJyE2Q3ISNMZ3AVakMEJmAqGjEkKyMXdSAldhlsIT8gBCYkISAfNmw9KgVncBUcPygMJi02GBQLDjAJFQYFEAEuFRczNSYwGDcbBhUdRScDYg4+BTokDilzNRIeFhQYCyQWBQQFIxUKLhZ+FxRyYwgyewQGC0V0AQENOQQDOy0zKhcQCyAqEBckFggBFRo+GnI8ByQuBAcYNAAGBiM8AAEGNxADJRIHNDUHPBgkJQUVIwkhFjgJEAMDNAUgFwAfFx0YGwF/BScUNCw1EwQrCzMaBB8XHRgABCgzIxc7AjAOBz8aMyk2Chg0DwQwGlw2JwUkIwQRYncfADURLiAuGzUJHTohEhk/EwACATUACgUsKQQhFA5AeyEFNzwAGjQgIRAECgYwOnYHDiIqJgUeOCYaOCAlATUaaRsxLT0/TBEJPRUFCzEwHyct
IP
Requested by https://upfion.com/xkVp5PF
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /U09xQkIyLRIvfTJyE2Q3ISNMZ3AVakMEJmAqGjEkKyMXdSAldhlsIT8gBCYkISAfNmw9KgVncBUcPygMJi02GBQLDjAJFQYFEAEuFRczNSYwGDcbBhUdRScDYg4+BTokDilzNRIeFhQYCyQWBQQFIxUKLhZ+FxRyYwgyewQGC0V0AQENOQQDOy0zKhcQCyAqEBckFggBFRo+GnI8ByQuBAcYNAAGBiM8AAEGNxADJRIHNDUHPBgkJQUVIwkhFjgJEAMDNAUgFwAfFx0YGwF/BScUNCw1EwQrCzMaBB8XHRgABCgzIxc7AjAOBz8aMyk2Chg0DwQwGlw2JwUkIwQRYncfADURLiAuGzUJHTohEhk/EwACATUACgUsKQQhFA5AeyEFNzwAGjQgIRAECgYwOnYHDiIqJgUeOCYaOCAlATUaaRsxLT0/TBEJPRUFCzEwHyct HTTP/1.1
Host: undefined
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
200 OK 40 kB URL GET fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Hash 9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2
GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Apr 2025 10:03:46 GMT
expires: Fri, 10 Apr 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 501804
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
FingerprintED:BA:91:9A:CB:EC:22:39:89:33:B3:89:63:24:E9:7B:58:48:A7:F2
ValiditySat, 05 Apr 2025 21:00:24 GMT - Fri, 04 Jul 2025 22:00:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 329
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://upfion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145bd3e5156ba-OSL
X-Firefox-Spdy: h2
csync.smilewanted.com/set_partner_userid_get/adaptmx/?gdpr=0
200 OK 0 B URL GET csync.smilewanted.com/set_partner_userid_get/adaptmx/?gdpr=0
IP
Requested by https://csync.smilewanted.com/
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
FingerprintED:BA:91:9A:CB:EC:22:39:89:33:B3:89:63:24:E9:7B:58:48:A7:F2
ValiditySat, 05 Apr 2025 21:00:24 GMT - Fri, 04 Jul 2025 22:00:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /set_partner_userid_get/adaptmx/?gdpr=0 HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://csync.smilewanted.com/
DNT: 1
Connection: keep-alive
Cookie: sw_user_params_infos=lRZ4%2B4BjGB75GCG4angrK9eXbSAGhK4VrFU8zbSa8cVnQBtUIbd1yMMWXxbHULsgmghkuYzZqX6jqX2dJCFteHt%2ByuM7Pmcx61Lm1bFaSHC4zBgGlWvgxMsKt2tQ6g%2BMShjPLHSI74SqqFpEdK0vcg%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145d62e9356ba-OSL
content-encoding: br
X-Firefox-Spdy: h2
upfion.com/css/frontend.css?id=d2ff22fb187252e60fbb
200 OK 260 kB URL GET upfion.com/css/frontend.css?id=d2ff22fb187252e60fbb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
File type ASCII text, with very long lines (59910)
Size 260 kB (260394 bytes)
Hash d2ff22fb187252e60fbb52e57a64d23a
2272fb2bcae1f21a225a487975a976f631cc34e6
f72739ecbc1c32fa446c33a271c8eb262503e62e2f38d230ab29518a88871643
GET /css/frontend.css?id=d2ff22fb187252e60fbb HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/xkVp5PF
Cookie: XSRF-TOKEN=eyJpdiI6Ik9vTTFlVmFHVkN5UmIwd2J1U1MzM1E9PSIsInZhbHVlIjoiL3Z2dFRQUUFFQTBUakVyZVIyUjA0UVJyYlBFeFBLaHV0dTJsN3RQYTl2eWV3a01yQ2dMMzZkL1JKYVFaZE53Y1lRU0tXV0xzVGFmRDR0QnpQd0VramJoUDcyaTJVdE1yUlIrVk5uR1ZXVzRmRmNqaC9sdU51WC9Lc3p3NGcza0UiLCJtYWMiOiI0ZGY2ZTgzNTY5MDk3MWVmODJhMjMzNTZkZjNkNzEwYmZkYjMzOTIxZDk2ZjA3ZDI1MTdmYzY2NGVlZTA5MjA3IiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6Im5IR3FIdklRcnhnMHltRkdOelJ2bFE9PSIsInZhbHVlIjoiSVlHcFBIajFlcFFhdVNLM3dyWUFxSTh0enYrUDdQWGh1KzRvSVhQQStkdWRCOHc5QjZicFFqTlJVOXQ4QXRzL3QwZHVCS2xra0xNUVFXQTBRS2tIanVUYU9EV1BnTlgvNDBCdTJUZ3FERVVXYWtueGlJeGplamhHNVBqclJ2SksiLCJtYWMiOiIyNzllNTFhZGYxMjQyMzdhOGY4ZWQzOGQ4MzA0ZGJhMWQzMDFiNTI0YWUzYTNlZGUyZjI3NmRjZDllZjVjM2MxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:09 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uo9OiqEQttVY0Fnq9Sy4khOtSFcxZu5XtYk9UCU5MVc5c%2FNLg4R78TCB6w1G4I2WHUbViUmqWW3qy%2FcebQb6356xqJ%2BMrfeSiGcKjhSNTy18flQSD2tur8JhLsYY"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 29 Sep 2024 07:44:34 GMT
vary: Accept-Encoding
etag: W/"66f90562-3f92a"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 222
content-encoding: br
cf-ray: 9311459eacbe712f-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=4145&x=16"
ghb.console.adtarget.com.tr/v2/auction/
200 OK 770 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
FingerprintC9:39:D1:73:F2:72:97:2D:92:AB:2E:CB:67:C6:32:DF:B2:01:5F:40
ValidityTue, 25 Mar 2025 00:00:00 GMT - Mon, 23 Jun 2025 23:59:59 GMT
Hash 19bba0b4313e1bddd302414ebf8cbe03
b14580d28a8cad997b39b5db6a7e1ca0115fb413
6b1747e985e0c2e3c28c3b3d555b87092d064814f10698314ffaaae00fce5261
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 266
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Wed, 16 Apr 2025 05:27:14 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 414
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Wed, 16 Apr 2025 05:27:18 GMT
location: https://prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
upfion.com/xkVp5PF?token=eyJpdiI6ImRoODZGQ0duTlM4bEtpQkVVakp1a3c9PSIsInZhbHVlIjoiY1NQM2lML2I2YU9DeUthNVZUTTRzUT09IiwibWFjIjoiYWU4NGM3YjU2MjQ2MzhhYThiZTI3MmJiY2Q0ZDUwNzY5ZjdiNDE4M2ExYmIwZmMwNWU3MmVkNDQyZjk2ZDA1NyIsInRhZyI6IiJ9
302 Found 96 kB URL User Request GET upfion.com/xkVp5PF?token=eyJpdiI6ImRoODZGQ0duTlM4bEtpQkVVakp1a3c9PSIsInZhbHVlIjoiY1NQM2lML2I2YU9DeUthNVZUTTRzUT09IiwibWFjIjoiYWU4NGM3YjU2MjQ2MzhhYThiZTI3MmJiY2Q0ZDUwNzY5ZjdiNDE4M2ExYmIwZmMwNWU3MmVkNDQyZjk2ZDA1NyIsInRhZyI6IiJ9
IP
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xkVp5PF?token=eyJpdiI6ImRoODZGQ0duTlM4bEtpQkVVakp1a3c9PSIsInZhbHVlIjoiY1NQM2lML2I2YU9DeUthNVZUTTRzUT09IiwibWFjIjoiYWU4NGM3YjU2MjQ2MzhhYThiZTI3MmJiY2Q0ZDUwNzY5ZjdiNDE4M2ExYmIwZmMwNWU3MmVkNDQyZjk2ZDA1NyIsInRhZyI6IiJ9 HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImQrdHJKY0tmNmhOeFNTT25KOVFXT3c9PSIsInZhbHVlIjoiUUdJMXQrc3FWbWdHdTZlYWxFWjFwZEV3Z1dwQU5pT2ZjeTdidkRRRjdvOWpZWldhNFhkM3VWMjEyWnFGeEZzQkZaZVBFRHJJY1ZOTlpFMFNSZWFuR0RnOWUrREFTZUwzcGNOdlNlTUlYN0wxcFZyWjZ2aGM4ZXg1eDBsODZuMlUiLCJtYWMiOiIwMTM1NmZmNmQwYTViZDIzMDhlNjMzM2YwMTU2MjQwOWFlNGIxZThmNDdlZjhhYWRkYTRmMjViYWI0MGRmMGY4IiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6IlFMVjY4bWNXOHVBcnhNb1E1aHJ6YlE9PSIsInZhbHVlIjoiOW9lLzRkaXVweSttTFg0bDc1b1crbDZRS3FRZDBZc0R2cTJvVTJvaURhQk42RUhrRnJoNVJRTDBSY0JuamxoendHbmJlTlcreVN5YTVxWnk2UWpuUzdIcVFuM0dlRzdRcXdmbFhHSWFzQmNqa2xpOTNIekdwRE9Xa2VXeHBBSW4iLCJtYWMiOiI5N2M2M2E0YzI5NmY0NmNkMTAzNmVhMTMzNjBjNWMyNjE5MGEwZTQxZjg5MTczMDgyNjBkODIwMTM5YTI5ZmM4IiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 16 Apr 2025 05:27:08 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qUnPcgyvYQkw5B%2BiBR1vaRWXvPsklXg9UjXF3jvcHj1LGpuQzMQhpqRE7oDzjACd%2FMuB9K%2Bq7eMDnoJWZDux3xvgIiwumyr6CgEjYaFo4s6w2rRr6cGxPKLcNOoi"}],"group":"cf-nel","max_age":604800}
cache-control: private, must-revalidate
location: https://upfion.com/xkVp5PF
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6Inp1VVVWVE1lb2dSUnhPUmNXaVFqRnc9PSIsInZhbHVlIjoicHpteGJKR2JCbldpVFF5M0MwdURldXYxL0dnRW1PbkFyR003TWVVek9rdUNZQTFtekFCMG12OUhQd3h6SzBNOUxJeWQxYWwyVk5BSWY5OGJRbjNtMkFuSUMzN3htZXBPbXgrRlZNcDVhaXdvWjlJUjVLZVBrbk44aFk4VHhuazUiLCJtYWMiOiI1ODk1ZjZkMGNiNGQ5NTg5MGEwOTBiNzEzMDU1ZTIzMWE5MjgwYTAxZDkzYWExOWM3Njc5YzU3MjhiOTM5N2YzIiwidGFnIjoiIn0%3D; expires=Wed, 23-Apr-2025 05:27:08 GMT; Max-Age=604800; path=/; samesite=lax
upfiles_session=eyJpdiI6ImtYeG5wT1AzMGw5OFdtZHdzQTkxTHc9PSIsInZhbHVlIjoia0NIUTB4dDBRM1VOeU9EWkNTYW9oV0pSUWFVaVhMaFp1OFdXZXFLN21vdW5wYmYrSVJUdTZjS0dzZ0JocW9NZ1NvTFlmTHBKblpLL042QlVnbll5UDAwaGtBdlA3ZGJXODJMUGtabXY3enZUOFVYcGpyTzYvVVFPa2tqNTBET3AiLCJtYWMiOiJiNGZjNjNiMmNiMjM1NDVlZTJjYjNmYmYzM2NmNzlmYWI1YzI5MzQ3ZjY1ZjU3ZGFhM2RlNTE2NDliYTE0NzUzIiwidGFnIjoiIn0%3D; expires=Wed, 23-Apr-2025 05:27:08 GMT; Max-Age=604800; path=/; httponly; samesite=lax
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
cf-ray: 9311458bb956712f-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=2571&x=16"
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
FingerprintED:BA:91:9A:CB:EC:22:39:89:33:B3:89:63:24:E9:7B:58:48:A7:F2
ValiditySat, 05 Apr 2025 21:00:24 GMT - Fri, 04 Jul 2025 22:00:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 296
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://upfion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145bd1dda56ba-OSL
X-Firefox-Spdy: h2
sync.a-mo.net/cchain?gdpr=0&gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fadaptmx%2F%24UID
421 Misdirected Request 0 B URL GET sync.a-mo.net/cchain?gdpr=0&gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fadaptmx%2F%24UID
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://csync.smilewanted.com/
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain?gdpr=0&gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fadaptmx%2F%24UID HTTP/1.1
Host: sync.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 421 Misdirected Request
content-length: 38
content-type: text/plain
vary: Accept-Encoding
date: Wed, 16 Apr 2025 05:27:18 GMT
server: envoy
X-Firefox-Spdy: h2
upfion.com/js/ads.js
200 OK 1.5 kB IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
File type JavaScript source, ASCII text, with very long lines (1499), with no line terminators
Hash cfda8d31536e90428f6d37f17590d92d
c161162410c27db721479da020406e9e56a8b851
d92d2a6719b8462f29f2c9dc8f7c84be379feb798fdcc85ddade83fbb8fb2a45
GET /js/ads.js HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/xkVp5PF
Cookie: XSRF-TOKEN=eyJpdiI6Ik9vTTFlVmFHVkN5UmIwd2J1U1MzM1E9PSIsInZhbHVlIjoiL3Z2dFRQUUFFQTBUakVyZVIyUjA0UVJyYlBFeFBLaHV0dTJsN3RQYTl2eWV3a01yQ2dMMzZkL1JKYVFaZE53Y1lRU0tXV0xzVGFmRDR0QnpQd0VramJoUDcyaTJVdE1yUlIrVk5uR1ZXVzRmRmNqaC9sdU51WC9Lc3p3NGcza0UiLCJtYWMiOiI0ZGY2ZTgzNTY5MDk3MWVmODJhMjMzNTZkZjNkNzEwYmZkYjMzOTIxZDk2ZjA3ZDI1MTdmYzY2NGVlZTA5MjA3IiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6Im5IR3FIdklRcnhnMHltRkdOelJ2bFE9PSIsInZhbHVlIjoiSVlHcFBIajFlcFFhdVNLM3dyWUFxSTh0enYrUDdQWGh1KzRvSVhQQStkdWRCOHc5QjZicFFqTlJVOXQ4QXRzL3QwZHVCS2xra0xNUVFXQTBRS2tIanVUYU9EV1BnTlgvNDBCdTJUZ3FERVVXYWtueGlJeGplamhHNVBqclJ2SksiLCJtYWMiOiIyNzllNTFhZGYxMjQyMzdhOGY4ZWQzOGQ4MzA0ZGJhMWQzMDFiNTI0YWUzYTNlZGUyZjI3NmRjZDllZjVjM2MxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:09 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nd5yc8wFeJi409ihMtUyqToUVD78Fj%2BH442pWPU9zpq5E6hQd5i9DKSshO8sJwCIGFK8pVHTtZ1ZfVtg5OLsovos3wX7wFPTMxLyHqaAAKKiB8cDmUNhggP2Yg7K"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 12:18:07 GMT
vary: Accept-Encoding
etag: W/"67485f7f-5db"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 220
content-encoding: br
cf-ray: 9311459eacc4712f-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=4144&x=16"
fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
200 OK 708 B URL GET fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 1ed53ab12b40ec4e280585f2c3908b6b
a6c5bc71591e90c9e436b1e797a1eef112fb6590
2e64e3d3a12b919e9e0508456d555a5d855cbb4a1505dfaf878f012524aa6c8f
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 07 Apr 2025 19:45:58 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4995
server: cloudflare
cf-ray: 931145a73db00b65-OSL
X-Firefox-Spdy: h2
script.4dex.io/localstore.js
200 OK 492 B URL GET script.4dex.io/localstore.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectscript.4dex.io
Fingerprint85:83:5E:32:B3:48:93:75:71:3A:97:C5:4C:D8:9F:AA:FD:99:68:FF
ValidityTue, 18 Mar 2025 00:58:21 GMT - Mon, 16 Jun 2025 01:58:17 GMT
File type JavaScript source, ASCII text, with very long lines (491)
Hash 56dbef354a963eec89c1c0d552909198
87c50d783d1e663aeeea5f3ce0dd5d3b521b2a5d
504460751d9d131dae7dcd29927c1cd147be3cb0651003de4ee6b0fea5fef6ae
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Apr 2025 05:27:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"56dbef354a963eec89c1c0d552909198"
Last-Modified: Mon, 24 Mar 2025 20:04:12 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 431046
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ep7AamoqsyiPmpT1AVaWmbpC3llsUBjYweCZWUKMu%2FhI%2FPFdjFSyz1hL0hK8en5ZVyBJgi4m8ZSVK7FY2EZ37XcFtjLNy58A%2BiP72naEwnx4NWqvNEHcLdNq0ovUJTd4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 931145b1ca47b50b-OSL
Content-Encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=476&min_rtt=441&rtt_var=147&sent=5&recv=8&lost=0&retrans=0&sent_bytes=3101&recv_bytes=1014&delivery_rate=7784946&cwnd=251&unsent_bytes=0&cid=e1412c427c38e243&ts=28&x=0"
fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
200 OK 708 B URL GET fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 1ed53ab12b40ec4e280585f2c3908b6b
a6c5bc71591e90c9e436b1e797a1eef112fb6590
2e64e3d3a12b919e9e0508456d555a5d855cbb4a1505dfaf878f012524aa6c8f
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 07 Apr 2025 19:45:58 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4995
server: cloudflare
cf-ray: 931145a988930b65-OSL
X-Firefox-Spdy: h2
fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
200 OK 708 B URL GET fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 1ed53ab12b40ec4e280585f2c3908b6b
a6c5bc71591e90c9e436b1e797a1eef112fb6590
2e64e3d3a12b919e9e0508456d555a5d855cbb4a1505dfaf878f012524aa6c8f
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 07 Apr 2025 19:45:58 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4995
server: cloudflare
cf-ray: 931145a69cda0b65-OSL
X-Firefox-Spdy: h2
dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
200 OK 4.6 kB URL GET dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint19:1F:3A:AA:76:12:7A:0E:2D:D7:56:48:23:5A:97:86:93:EC:A9:71
ValidityFri, 11 Apr 2025 09:48:48 GMT - Thu, 10 Jul 2025 09:48:47 GMT
File type HTML document, ASCII text, with very long lines (4557), with no line terminators
Hash ff5e1ef300d887d65e749a50c31ba0eb
8c542b09e209fd1db5c0f78e8dcc00af65dcb68f
5402a9a7bd39e4df13dfe127207d3a3865b77ec25eda68fa141234ec743822d2
GET /cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m6VXL99XPLFrfzquk7Q5lR4bbHbCNB8KRTLXxXQQxG47keVxrLWrhlTkCYKI1pM65T%2FZeqX1Yf1HrL5c4wfsBBGDHWEtNeSC%2BCW1D%2BAvis2MmGoaQBqG26DlD2DF5qffdBps%2F3a%2BsyO64LaqR3fH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145da4eaf5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19348&min_rtt=5199&rtt_var=9360&sent=20&recv=12&lost=0&retrans=0&sent_bytes=7339&recv_bytes=2773&delivery_rate=55623&cwnd=12000&unsent_bytes=0&cid=58a528e248e08943&ts=942&x=1", cfExtPri, cfHdrFlush;dur=0
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1385
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: max-age=0, private, must-revalidate
date: Wed, 16 Apr 2025 05:27:13 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1381
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: max-age=0, private, must-revalidate
date: Wed, 16 Apr 2025 05:27:13 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.admatic.com.tr/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.p6fsvqrlv8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=admatic.com.tr; Expires=Tue, 15 Jul 2025 05:27:18 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cFnfbBTJSbMVyyneP8GEpGUlCLk2X3xizCNe%2FjJY0U6v71meSBzPMD45Ts0bCW4zupraHuN6eBoC6pe1%2B0b3GOLIdfySKftSoYi5LM0%2BVmDqo9bwZOv6ykjHhsjL%2BRy6oz%2FxZWY%2F3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 931145d54f36b518-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=889&min_rtt=441&rtt_var=798&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2780&recv_bytes=1144&delivery_rate=5678431&cwnd=253&unsent_bytes=0&cid=8f1076fba2c648c1&ts=75&x=0"
X-Firefox-Spdy: h2
www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
200 OK 982 B URL GET www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmisc.google.com
FingerprintDC:71:B0:5D:F1:64:52:89:97:38:1F:44:BE:F1:07:8A:0C:8C:FB:28
ValidityThu, 20 Mar 2025 11:18:55 GMT - Thu, 12 Jun 2025 11:18:54 GMT
File type JavaScript source, ASCII text, with very long lines (982), with no line terminators
Hash 29b29bf242e9d6e07cb6214fb3585ba8
1ee524418b896e707251c338cd702e41b3b6b352
65775fc6681ea4f47f9248cb54bd6e966b5528182136168c9cbeaac02c2d7f1e
GET /recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 16 Apr 2025 05:27:11 GMT
date: Wed, 16 Apr 2025 05:27:11 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1659
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: max-age=0, private, must-revalidate
date: Wed, 16 Apr 2025 05:27:13 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1427
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: max-age=0, private, must-revalidate
date: Wed, 16 Apr 2025 05:27:14 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
onetag-sys.com/usync/?tag=img&redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24%7BUSER_TOKEN%7D&gdpr=0&gdpr_consent=&us_privacy=
302 Found 86 B URL GET onetag-sys.com/usync/?tag=img&redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24%7BUSER_TOKEN%7D&gdpr=0&gdpr_consent=&us_privacy=
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?tag=img&redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24%7BUSER_TOKEN%7D&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: no-store
location: https://prebid.admatic.com.tr/setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid=
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
200 OK 4.6 kB URL GET dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint19:1F:3A:AA:76:12:7A:0E:2D:D7:56:48:23:5A:97:86:93:EC:A9:71
ValidityFri, 11 Apr 2025 09:48:48 GMT - Thu, 10 Jul 2025 09:48:47 GMT
File type HTML document, ASCII text, with very long lines (4557), with no line terminators
Hash ff5e1ef300d887d65e749a50c31ba0eb
8c542b09e209fd1db5c0f78e8dcc00af65dcb68f
5402a9a7bd39e4df13dfe127207d3a3865b77ec25eda68fa141234ec743822d2
GET /cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0u5Am4Qa87jxdsInnkDx0GE%2Bwy6aaB6ox9yEVPnba0Tf4hCasrgZZ2eHNhHXbH18VoSUgPWdo%2BRvrKbL9HPVpiaYufaM0dHg1iRdl4xZTUYUIyOvhtt8%2Bm6fmqnkFLgVkyEktPYFH73Q8oZKZEvj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145d7eba25689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=21103&min_rtt=13449&rtt_var=10510&sent=15&recv=9&lost=0&retrans=0&sent_bytes=3884&recv_bytes=2105&delivery_rate=47363&cwnd=12000&unsent_bytes=0&cid=58a528e248e08943&ts=568&x=1", cfExtPri, cfHdrFlush;dur=0
dsp-service.netaddiction.tech/users/sync/?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D807fb2e4-ef15-40ce-842b-36688df6982f
302 Found 0 B URL GET dsp-service.netaddiction.tech/users/sync/?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D807fb2e4-ef15-40ce-842b-36688df6982f
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint19:1F:3A:AA:76:12:7A:0E:2D:D7:56:48:23:5A:97:86:93:EC:A9:71
ValidityFri, 11 Apr 2025 09:48:48 GMT - Thu, 10 Jul 2025 09:48:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /users/sync/?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D807fb2e4-ef15-40ce-842b-36688df6982f HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: text/html; charset=utf-8
location: https://prebid.netaddiction.tech/setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept, Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NBL8j88tFMDq7ApR9sTJcyoxC84cqg2yjaek5jDss6HNX%2Bli0V9hmGVIbefaNarFxasmb9PSjCMFzzkcIU3YMUTpAqqx%2BmfYimtBjdBCnSEZEpy3u%2FNM%2BC7dpfExtsst72ePeMMaXKcLpfujMshz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145d80bb95689-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19115&min_rtt=5199&rtt_var=11858&sent=18&recv=10&lost=0&retrans=0&sent_bytes=6145&recv_bytes=2148&delivery_rate=4509&cwnd=12000&unsent_bytes=0&cid=58a528e248e08943&ts=593&x=1", cfExtPri, cfHdrFlush;dur=0
a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
302 Found 86 B URL GET a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectadpartner.pro
Fingerprint22:C1:BC:73:C5:B7:D7:10:FF:CB:BA:FA:DC:55:2C:3B:A0:60:5F:BD
ValiditySun, 30 Mar 2025 08:08:15 GMT - Sat, 28 Jun 2025 08:08:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D HTTP/1.1
Host: a4p.adpartner.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: text/html; charset=utf-8
content-length: 224
location: https://prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=71446a81-babd-44a9-a829-848490210f89
cache-control: no-store no-transform
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-X2GS5JDQMX
200 OK 328 kB URL GET www.googletagmanager.com/gtag/js?id=G-X2GS5JDQMX
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT
File type JavaScript source, ASCII text, with very long lines (6129)
Size 328 kB (328455 bytes)
Hash 565d9fdf6709225d262f441a3a79cee0
7384724acd84e9c809426e603eb1b1aea73dce1a
b75598dfc47d98b131fb0e64a93291fc1fa470d371fc6eccc15396a576262eff
GET /gtag/js?id=G-X2GS5JDQMX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 05:27:10 GMT
expires: Wed, 16 Apr 2025 05:27:10 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1052:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1052:0
report-to: {"group":"ascgcycc:1052:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1052:0"}],}
server: Google Tag Manager
content-length: 113571
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OA3jsSOXY9yNOp9J%2BeZlx4FOQDJsK7Pm4shFk8J06%2BNbY3Eo5CQ7u034DJ9%2BgVgLIlWInPPW2Q0U%2FYNg6Cu7Ob0eYX89o5rAS9fIDprYP%2BFDDxoSOAWZS%2FMScynv%2BSbKjn%2FXEBAhP4BR2HY%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 931145a58c005697-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3610&min_rtt=728&rtt_var=1908&sent=67&recv=86&lost=0&retrans=0&sent_bytes=6615&recv_bytes=6585&delivery_rate=2212&cwnd=12000&unsent_bytes=0&cid=4d29bfbf7435b0b8&ts=252&x=16"
st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qw6E0mVadNGlsLojIgCRJYoiqSdjaaeWdt1yhuyMUxffOFyXwc8zC3joJ%2FPg%2FuniDS7f2Y0fxHuaS31p8FtUAHTKiPifCBP5yqytYYDtz%2BLnyWdOc4z2MuXPm%2F6wqXyWpIogn8OYvuly%2Fdw%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 931145a57bff5697-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3610&min_rtt=728&rtt_var=1908&sent=67&recv=86&lost=0&retrans=0&sent_bytes=6615&recv_bytes=6585&delivery_rate=2212&cwnd=12000&unsent_bytes=0&cid=4d29bfbf7435b0b8&ts=251&x=16"
ghb1.adtelligent.com/v2/auction/
200 OK 4.0 kB URL POST ghb1.adtelligent.com/v2/auction/
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb1.adtelligent.com
FingerprintF2:17:C3:EB:74:C1:95:BC:17:5B:5E:C6:16:87:02:9E:DF:D8:50:91
ValidityTue, 25 Mar 2025 00:00:00 GMT - Mon, 23 Jun 2025 23:59:59 GMT
Hash b6a0ae9d3adb9e80fbd7f9e64a801da1
823ae3ef43f75c7f037556d1672d6f2f0386579f
63f4a66e4dc30738ec612e783b750f709e1c16c9a2bb2f048334cb1951a52701
POST /v2/auction/ HTTP/1.1
Host: ghb1.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 319
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Wed, 16 Apr 2025 05:27:14 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1189
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LTffHaPVZk6Oy46C82NojMbIloVEezak%2FjNrZs2gU65QS%2BJjTztAK0M%2F9Fv96NxKtZuTR5Hlo8zHJXHUHwM121hXaZX2POsIOZGD14LJJWnZo6durbaYyMK6dN1YFJQzdTOORKC57cus%2BVrjR9o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145b92f22568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=4298&min_rtt=418&rtt_var=6626&sent=10&recv=14&lost=0&retrans=0&sent_bytes=4473&recv_bytes=1369&delivery_rate=5601547&cwnd=256&unsent_bytes=0&cid=8db4039eb9680c89&ts=440&x=0"
X-Firefox-Spdy: h2
onetag-sys.com/usync/?cb=1744781234197
204 No Content 0 B URL GET onetag-sys.com/usync/?cb=1744781234197
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1744781234197 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
FingerprintED:BA:91:9A:CB:EC:22:39:89:33:B3:89:63:24:E9:7B:58:48:A7:F2
ValiditySat, 05 Apr 2025 21:00:24 GMT - Fri, 04 Jul 2025 22:00:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 294
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:13 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://upfion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145b63ced56ba-OSL
X-Firefox-Spdy: h2
sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
302 Found 86 B URL GET sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerZeroSSL
Subjectsync.console.adtarget.com.tr
FingerprintED:8C:47:D0:F4:82:C5:4F:57:FD:F5:2D:94:C8:7F:3B:9E:6E:E4:81
ValidityWed, 12 Mar 2025 00:00:00 GMT - Tue, 10 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D HTTP/1.1
Host: sync.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: vmuid=6b89e67f346fbc75
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Adtarget
Date: Wed, 16 Apr 2025 05:27:18 GMT
Content-Length: 0
Etag: 6b89e67f346fbc75
Location: https://prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75
Set-Cookie: vmuid=6b89e67f346fbc75; expires=Fri, 18 Jul 2025 05:27:19 GMT; domain=.console.adtarget.com.tr; path=/; secure; SameSite=None
a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
302 Found 86 B URL GET a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectadpartner.pro
Fingerprint22:C1:BC:73:C5:B7:D7:10:FF:CB:BA:FA:DC:55:2C:3B:A0:60:5F:BD
ValiditySun, 30 Mar 2025 08:08:15 GMT - Sat, 28 Jun 2025 08:08:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D HTTP/1.1
Host: a4p.adpartner.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: text/html; charset=utf-8
content-length: 224
location: https://prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=f598008b-d063-424d-bb9f-fe8df12ce65b
cache-control: no-store no-transform
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=membrana&gdpr=0&gdpr_consent=&f=i&uid=f0ec83c9-adaf-4931-a40f-e758d3d33b0a
200 OK 86 B URL GET prebid.admatic.com.tr/setuid?bidder=membrana&gdpr=0&gdpr_consent=&f=i&uid=f0ec83c9-adaf-4931-a40f-e758d3d33b0a
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=membrana&gdpr=0&gdpr_consent=&f=i&uid=f0ec83c9-adaf-4931-a40f-e758d3d33b0a HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.p6fsvqrlv8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJtZW1icmFuYSI6eyJ1aWQiOiJmMGVjODNjOS1hZGFmLTQ5MzEtYTQwZi1lNzU4ZDNkMzNiMGEiLCJleHBpcmVzIjoiMjAyNS0wNC0zMFQwNToyNzoxOS4wNDQxMTMyNTRaIn19fQ==; Path=/; Domain=admatic.com.tr; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sB%2BZAL7HL9Lj311B2vsvJGULGAhwQd82hyW04eKRWLWVR3B5%2FgBcjJKEUWKAnSMie0PXRzRqSO%2F8OyJkiEoxrWZHlbvDIel0qNPplhXYrG86JXUxJrz3Sa94pTIfQWTmqplq6pM8Ew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 931145d7dff7b51d-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7743&min_rtt=5258&rtt_var=5784&sent=19&recv=14&lost=0&retrans=0&sent_bytes=6718&recv_bytes=3032&delivery_rate=45024&cwnd=12000&unsent_bytes=0&cid=1f20a2c0ad2021ec&ts=379&x=1", cfExtPri, cfHdrFlush;dur=0
prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZHRhcmdldCI6eyJ1aWQiOiI2Yjg5ZTY3ZjM0NmZiYzc1IiwiZXhwaXJlcyI6IjIwMjUtMDQtMzBUMDU6Mjc6MTkuOTM1OTczOVoifX19; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KSYvs3iPsKJN5uV9t7Ky1u2nxFzKldU52H05GzlmsQHApJBO7IXyMcqf1z4BCzQV6utNYL3rhMiANibF0BnMC85LmT0UKzby1GAL804%2BphG5w993XS2eAej4AWNcRj71sMq4jmQqZZdlMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145dd7c560b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=10527&min_rtt=4453&rtt_var=7947&sent=26&recv=21&lost=0&retrans=0&sent_bytes=10054&recv_bytes=4746&delivery_rate=40599&cwnd=12000&unsent_bytes=0&cid=caf6a9724cd0c5b0&ts=622&x=1", cfExtPri, cfHdrFlush;dur=0
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
200 OK 40 kB URL GET fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Hash 9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2
GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Apr 2025 10:03:46 GMT
expires: Fri, 10 Apr 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 501804
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230504
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230504
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230504 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 16 Apr 2025 05:27:10 GMT
location: https://st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
server: cloudflare
cf-ray: 931145a3f8015687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ghb.adtelligent.com/v2/auction/
0 B URL POST ghb.adtelligent.com/v2/auction/
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb.adtelligent.com
FingerprintB0:FB:4F:89:69:DD:35:D0:9F:F5:08:AC:CC:5A:32:2D:84:62:89:CB
ValiditySun, 23 Mar 2025 00:00:00 GMT - Sat, 21 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 430
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: application/json
Content-Length: 992
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TH4MrOqIWijFqD5zUM2K41dzhYr4f91Av2NS9KRDiDuoFN%2FyoOG43QMCwi0KJouk3DReY1nhbf4pL4irHfzgCUz1%2FxqPnGxbYHo9AB4Jzc37mRq9eYi9%2FsX%2F1vPSz4CHWS8zFp%2BCdpzb%2BSWz1J8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145b9bfdd568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=7948&min_rtt=418&rtt_var=12148&sent=19&recv=24&lost=0&retrans=0&sent_bytes=5408&recv_bytes=5671&delivery_rate=5601547&cwnd=257&unsent_bytes=0&cid=8db4039eb9680c89&ts=647&x=0"
X-Firefox-Spdy: h2
mp.4dex.io/prebid
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1494
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_89pmynqss9ssxc0
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145bd3862b503-OSL
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: application/json
Content-Length: 1117
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A3UAtO5tSbrihp%2Bm9klbrUfZFeHNHETq5%2BurThpXjqGMOE2EM4EWk1mbZGoMezjSisVyWnKe%2BeNu9G3GhvLDGL2nCsuaRkVeiHETS%2BbjSD8ILQpLTv5SoItVl2f0DnObk%2F3HLKgtQY8D3sJT96Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145bdbd97568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=11668&min_rtt=418&rtt_var=11714&sent=30&recv=38&lost=0&retrans=0&sent_bytes=8363&recv_bytes=10539&delivery_rate=5601547&cwnd=257&unsent_bytes=0&cid=8db4039eb9680c89&ts=1286&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230503
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230503
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230503 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 16 Apr 2025 05:27:10 GMT
location: https://st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
server: cloudflare
cf-ray: 931145a3cfc35687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
upfion.com/images/arrow-down.png?c98e5283a69cb508d054d30256af43c6
200 OK 208 B URL GET upfion.com/images/arrow-down.png?c98e5283a69cb508d054d30256af43c6
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
File type PNG image data, 6 x 12, 8-bit/color RGBA, non-interlaced
Hash 31f073499665afb237f3294219d2d7c6
c1ada0510e31f661dab66203c15a3d6c8f5468d0
59b7ad6d6f457b624e25d22959edc7c83af2ac52edba32fd6648c97af0d1780c
GET /images/arrow-down.png?c98e5283a69cb508d054d30256af43c6 HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/css/frontend.css?id=d2ff22fb187252e60fbb
Cookie: XSRF-TOKEN=eyJpdiI6Ik9vTTFlVmFHVkN5UmIwd2J1U1MzM1E9PSIsInZhbHVlIjoiL3Z2dFRQUUFFQTBUakVyZVIyUjA0UVJyYlBFeFBLaHV0dTJsN3RQYTl2eWV3a01yQ2dMMzZkL1JKYVFaZE53Y1lRU0tXV0xzVGFmRDR0QnpQd0VramJoUDcyaTJVdE1yUlIrVk5uR1ZXVzRmRmNqaC9sdU51WC9Lc3p3NGcza0UiLCJtYWMiOiI0ZGY2ZTgzNTY5MDk3MWVmODJhMjMzNTZkZjNkNzEwYmZkYjMzOTIxZDk2ZjA3ZDI1MTdmYzY2NGVlZTA5MjA3IiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6Im5IR3FIdklRcnhnMHltRkdOelJ2bFE9PSIsInZhbHVlIjoiSVlHcFBIajFlcFFhdVNLM3dyWUFxSTh0enYrUDdQWGh1KzRvSVhQQStkdWRCOHc5QjZicFFqTlJVOXQ4QXRzL3QwZHVCS2xra0xNUVFXQTBRS2tIanVUYU9EV1BnTlgvNDBCdTJUZ3FERVVXYWtueGlJeGplamhHNVBqclJ2SksiLCJtYWMiOiIyNzllNTFhZGYxMjQyMzdhOGY4ZWQzOGQ4MzA0ZGJhMWQzMDFiNTI0YWUzYTNlZGUyZjI3NmRjZDllZjVjM2MxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:10 GMT
content-type: image/png
content-length: 208
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zRbsRjYjxCDFGCrOcM%2FmcdUMpaeSfycceGFQhxpQDRR%2Bd9vCSDMpjWEZsprT7BEFamjL4BzycHaUCGPczNnd2emguAt9VHK8c%2BiJugzWog4aID627OKNuM7aiGfp"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 28 Sep 2024 07:01:06 GMT
etag: "66f7a9b2-d0"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 221
accept-ranges: bytes
cf-ray: 931145a2fd83712f-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=4830&x=16"
www.googletagmanager.com/gtag/js?id=G-75C4L64NEB&l=dataLayer&cx=c>m=457e54e1h1za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950
200 OK 338 kB URL GET www.googletagmanager.com/gtag/js?id=G-75C4L64NEB&l=dataLayer&cx=c>m=457e54e1h1za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT
File type JavaScript source, ASCII text, with very long lines (6129)
Size 338 kB (337764 bytes)
Hash 97fcf35ba079159b3cd9f108c94c2ede
d2ee198f82e1a68cb0581f33e51bcbea764878b5
6c52ccfda68172201ed22a1418e604623ca75ea95bac76647667bea9bb552681
GET /gtag/js?id=G-75C4L64NEB&l=dataLayer&cx=c>m=457e54e1h1za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 05:27:11 GMT
expires: Wed, 16 Apr 2025 05:27:11 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1052:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1052:0
report-to: {"group":"ascgcycc:1052:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1052:0"}],}
server: Google Tag Manager
content-length: 116434
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
d3eksfxlf7bv9h.cloudfront.net/?fsked=1139924
200 OK 385 kB URL GET d3eksfxlf7bv9h.cloudfront.net/?fsked=1139924
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (38488)
Size 385 kB (384831 bytes)
Hash 46419ad93742d9f47cf82857b1f29385
6964aba95a07ebe287cbcd8c37dd4025083036d0
299aa69c0e82ffb06bfdff098b420838468d98136dba840e383642b1c1ab6ebb
GET /?fsked=1139924 HTTP/1.1
Host: d3eksfxlf7bv9h.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 127253
date: Wed, 16 Apr 2025 05:27:11 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A83XHHXe1GU3iEd--yIJGnQPoT61vz8I5hDXQuMLUJ99fX1w7XR6lA==
X-Firefox-Spdy: h2
ukankingwithea.com/
500 Internal Server Error 183 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:7E:37:44:90:B9:05:B4:82:CD:5A:71:84:A1:C8:84:66:33:BC:78
ValiditySat, 01 Mar 2025 13:28:14 GMT - Fri, 30 May 2025 14:26:54 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 607f8a53dbf072834a28425fae6b0084
a64f05fe0b51691778ebf447e3664bfbd78cbe42
30032743c9cc551853d7e87cd9335dd20bb136932179fcb7f8136b2f5e9033ba
GET / HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 500 Internal Server Error
date: Wed, 16 Apr 2025 05:27:12 GMT
content-type: text/html
server: cloudflare
cf-cache-status: DYNAMIC
cf-ray: 931145aefb7b56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HvSMdVL8fbJg1HqgYwghCsXVZZqDlpKlyE4XXSwhkAUIludleWPkUehzMC8dsqaJsKnV8NbpcjwdsTUHQivRvunSp%2BBibLKbX7q45Csduh8cshTwvl9r0YHgfgetpgXVKWHEWCZJixKtRYkJ3N0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145b90ef9568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=2442&min_rtt=418&rtt_var=3887&sent=9&recv=13&lost=0&retrans=0&sent_bytes=4038&recv_bytes=1369&delivery_rate=5601547&cwnd=254&unsent_bytes=0&cid=8db4039eb9680c89&ts=423&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: application/json
Content-Length: 1116
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:15 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=95K%2Fu7YiRXmdUMD%2F7%2FrKw4oN2nBGBRh%2F4bQk6YeptLuZPvajkXgzvBkziHvSM77iAb4T9HtTnLK3%2F23D3ssK7hsNM2SEu5MmJJm%2F1tIIpgEr9pCcWn7HgRSgkEWOuCYVTjEf51aaGEkOqkfQBAc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145bdcda2568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=11187&min_rtt=418&rtt_var=9748&sent=32&recv=39&lost=0&retrans=0&sent_bytes=9472&recv_bytes=10539&delivery_rate=5601547&cwnd=257&unsent_bytes=0&cid=8db4039eb9680c89&ts=1316&x=0"
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=59a18369e249bfb
204 No Content 0 B URL GET onetag-sys.com/usync/?pubId=59a18369e249bfb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=59a18369e249bfb HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
upfion.com/img/faqs-image.svg
200 OK 38 kB URL GET upfion.com/img/faqs-image.svg
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
File type SVG Scalable Vector Graphics image
Hash a60b7216905928c625ae9592044476cd
e70c5be728c7bd1198100337487aafe126834ca3
9a717285429d468fadc4d25179fc6feb49e6335f3af1675fb6be1cb50e7e8322
GET /img/faqs-image.svg HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/xkVp5PF
Cookie: XSRF-TOKEN=eyJpdiI6Ik9vTTFlVmFHVkN5UmIwd2J1U1MzM1E9PSIsInZhbHVlIjoiL3Z2dFRQUUFFQTBUakVyZVIyUjA0UVJyYlBFeFBLaHV0dTJsN3RQYTl2eWV3a01yQ2dMMzZkL1JKYVFaZE53Y1lRU0tXV0xzVGFmRDR0QnpQd0VramJoUDcyaTJVdE1yUlIrVk5uR1ZXVzRmRmNqaC9sdU51WC9Lc3p3NGcza0UiLCJtYWMiOiI0ZGY2ZTgzNTY5MDk3MWVmODJhMjMzNTZkZjNkNzEwYmZkYjMzOTIxZDk2ZjA3ZDI1MTdmYzY2NGVlZTA5MjA3IiwidGFnIjoiIn0%3D; upfiles_session=eyJpdiI6Im5IR3FIdklRcnhnMHltRkdOelJ2bFE9PSIsInZhbHVlIjoiSVlHcFBIajFlcFFhdVNLM3dyWUFxSTh0enYrUDdQWGh1KzRvSVhQQStkdWRCOHc5QjZicFFqTlJVOXQ4QXRzL3QwZHVCS2xra0xNUVFXQTBRS2tIanVUYU9EV1BnTlgvNDBCdTJUZ3FERVVXYWtueGlJeGplamhHNVBqclJ2SksiLCJtYWMiOiIyNzllNTFhZGYxMjQyMzdhOGY4ZWQzOGQ4MzA0ZGJhMWQzMDFiNTI0YWUzYTNlZGUyZjI3NmRjZDllZjVjM2MxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:09 GMT
content-type: image/svg+xml
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cjXXd%2Fqdx9dKIvhfM3XlV%2BbFQzxAlDdHqiHGJojrjlPNkmFi2sWN1lBQKVUDjpgo2Ds1bRhv9zzaKtQVnis5Oc2893%2FeW3Ddie2%2B0GWdusLQUqOUhYGJqLnsQMTp"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 28 Sep 2024 07:01:06 GMT
etag: W/"66f7a9b2-95fb"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 221
content-encoding: br
cf-ray: 9311459eacc1712f-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9122&min_rtt=5553&rtt_var=5609&sent=56&recv=67&lost=0&retrans=0&sent_bytes=6083&recv_bytes=5033&delivery_rate=1846&cwnd=12000&unsent_bytes=0&cid=6b40bca3d87076ea&ts=4146&x=16"
ghb.adtelligent.com/v2/auction/
0 B URL POST ghb.adtelligent.com/v2/auction/
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb.adtelligent.com
FingerprintB0:FB:4F:89:69:DD:35:D0:9F:F5:08:AC:CC:5A:32:2D:84:62:89:CB
ValiditySun, 23 Mar 2025 00:00:00 GMT - Sat, 21 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 316
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: application/json
Content-Length: 995
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:14 GMT
access-control-allow-origin: https://upfion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=URYWJiGC9Cn5TbXnnk32bB61BoZttVcaNaB7qKe2ztf8ARR%2BGYYIMXalGskGcK9e29Os0XD%2FQZ%2FFkr4TbzFu24YXT5tbBJo%2BZgFNX4Yi1F5TZqfJv%2BQ99JgcPhGdNLW4SuZck7bhkDIiWUcmCtQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145bac954568b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=7017&min_rtt=418&rtt_var=10974&sent=22&recv=27&lost=0&retrans=0&sent_bytes=6502&recv_bytes=6774&delivery_rate=5601547&cwnd=257&unsent_bytes=0&cid=8db4039eb9680c89&ts=835&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=f598008b-d063-424d-bb9f-fe8df12ce65b
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=f598008b-d063-424d-bb9f-fe8df12ce65b
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=f598008b-d063-424d-bb9f-fe8df12ce65b HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJtZW1icmFuYSI6eyJ1aWQiOiJmNTk4MDA4Yi1kMDYzLTQyNGQtYmI5Zi1mZThkZjEyY2U2NWIiLCJleHBpcmVzIjoiMjAyNS0wNC0zMFQwNToyNzoxOS43NjE2OTM1MzhaIn19fQ==; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yMoPbNYPOsKnmJQBzO0X%2FhkhLda%2BYb3UGKHnbwv55fA0IQr54qu3xpsr2PxUYvmWkWznLMLeLaYfi%2FbmxJ67jweX1os6KUpRV4W2xs7kYk%2Fxe8NtO0a7j5ce4KghSeMkZ1CRs9H5KBtuCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145dc5b2a0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7739&min_rtt=4453&rtt_var=4980&sent=20&recv=15&lost=0&retrans=0&sent_bytes=7917&recv_bytes=3060&delivery_rate=68607&cwnd=12000&unsent_bytes=0&cid=caf6a9724cd0c5b0&ts=450&x=1", cfExtPri, cfHdrFlush;dur=0
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Wed, 16 Apr 2025 05:27:18 GMT
location: https://prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
ukankingwithea.com/asd100.bin
200 OK 102 kB URL GET ukankingwithea.com/asd100.bin
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:7E:37:44:90:B9:05:B4:82:CD:5A:71:84:A1:C8:84:66:33:BC:78
ValiditySat, 01 Mar 2025 13:28:14 GMT - Fri, 30 May 2025 14:26:54 GMT
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
GET /asd100.bin HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:12 GMT
content-type: binary/octet-stream
server: cloudflare
access-control-allow-origin: https://upfion.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: STALE
age: 1645154
last-modified: Fri, 28 Mar 2025 04:27:58 GMT
cf-ray: 931145aedb4956a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/hbAq-YhJxOnlU-7cpgBoAJHb/recaptcha__en.js
200 OK 562 kB URL GET www.gstatic.com/recaptcha/releases/hbAq-YhJxOnlU-7cpgBoAJHb/recaptcha__en.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT
File type JavaScript source, ASCII text, with very long lines (594)
Size 562 kB (561652 bytes)
Hash a3ba6f3831dfac23271ed79db3467b14
2f93eae45276abdcf26b684ef45036c7bf0d7f61
9c60f375bb60b19dc9bb69d9f8abc316d7652a2f088b26c42fccbdfc15e6ff6a
GET /recaptcha/releases/hbAq-YhJxOnlU-7cpgBoAJHb/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 221651
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Apr 2025 05:03:20 GMT
expires: Thu, 16 Apr 2026 05:03:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 24 Mar 2025 02:01:29 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 1432
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 771 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
FingerprintC9:39:D1:73:F2:72:97:2D:92:AB:2E:CB:67:C6:32:DF:B2:01:5F:40
ValidityTue, 25 Mar 2025 00:00:00 GMT - Mon, 23 Jun 2025 23:59:59 GMT
Hash 11de90632d974960cd8f2f7efc6399a4
ae77d6f49ce4629d633abf49a44bf286a8712559
f9b44179973018629a60d0f1fca3fceec22f9689860003ff5d7768bf9e9c8210
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 283
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Wed, 16 Apr 2025 05:27:14 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 417
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
id.ad-plus.com.tr/?token=0.p6fsvqrlv8
200 OK 0 B URL GET id.ad-plus.com.tr/?token=0.p6fsvqrlv8
IP
ASN #34984 Superonline Iletisim Hizmetleri A.S.
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerGlobalSign nv-sa
Subject*.ad-plus.com.tr
FingerprintA7:AE:D9:3F:30:57:D0:5A:1D:B6:47:78:DA:87:47:47:64:58:70:57
ValidityWed, 24 Jul 2024 13:16:11 GMT - Mon, 25 Aug 2025 13:16:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?token=0.p6fsvqrlv8 HTTP/1.1
Host: id.ad-plus.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Apr 2025 05:27:18 GMT
Content-Length: 0
Connection: keep-alive
set-cookie: tdid_u=191237.72370096005; Path=/; Max-Age=315569260
f7cbc1d14ffcb89e30f7296e35c2bcf5=df53a33bee6b8e15d2ffe11a39dc35cc; path=/; HttpOnly
f5avraaaaaaaaaaaaaaaa_session_=CADBBHADPAJCEEHGOHOICFBKFGOENGMPICMOBBBAAMBIBDOBCONECAGKJOOHEGEOHLEDPMMDLPHNBGBCMDCAJKOAGDAPBABMKKGLDDGMLMJPLGIOCFNNJJGECMHOJFII; HttpOnly; secure;
cache-control: private
Access-Control-Max-Age: 0
Access-Control-Expose-Headers: Content-Length,Set-Cookie,Content-Range
Access-Control-Allow-Methods: GET, PUT, POST, OPTIONS, DELETE
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Slack-Request-Timestamp,X-Slack-Signature,Authorization,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Set-Cookie
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
200 OK 40 kB URL GET fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Hash 9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2
GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Apr 2025 10:03:46 GMT
expires: Fri, 10 Apr 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 501804
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2
200 OK 20 kB URL GET fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 20408, version 1.0
Hash e8730678d4610fa908d3cba1ef0b4ddf
1efcbee909ce74bf04878d74867f12a1e41ae7a4
e921785496ed2d98c2257c88a6f838afa6acbee05cb8467048501bfe2a301461
GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Apr 2025 09:19:04 GMT
expires: Fri, 10 Apr 2026 09:19:04 GMT
cache-control: public, max-age=31536000
age: 504486
last-modified: Wed, 08 Jan 2025 18:23:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVupxwmdxYPPWxjrRieFuLo_HLtsYc47ESfZxQ_JAxQ0QxdJ4kuJgs_eZDhbVPyUvvsfnRe3
302 Found 0 B URL GET accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVupxwmdxYPPWxjrRieFuLo_HLtsYc47ESfZxQ_JAxQ0QxdJ4kuJgs_eZDhbVPyUvvsfnRe3
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint52:0D:0F:B6:ED:2C:03:72:E4:DA:FE:6A:3B:DF:24:86:26:97:53:FF
ValidityThu, 20 Mar 2025 11:20:34 GMT - Thu, 12 Jun 2025 11:20:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVupxwmdxYPPWxjrRieFuLo_HLtsYc47ESfZxQ_JAxQ0QxdJ4kuJgs_eZDhbVPyUvvsfnRe3 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:94BcQgqeIEU8cXtb36AYHQdjZUUokA:lOmYqf0bEYTaLpfc;Path=/;Expires=Fri, 16-Apr-2027 05:27:12 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 16 Apr 2025 05:27:12 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVuwTRjjTxtsnoX1DW5wXw29zRLTXBwMMOYiolKBCdZ5P02EORUXHTP-V_z6oa-oQYm3K6NkIw&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1091421207%3A1744781232504089
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-bL3FJFwnbnZLTIY5bWAagQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 421
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ghb1.adtelligent.com/v2/auction/
200 OK 4.0 kB URL POST ghb1.adtelligent.com/v2/auction/
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb1.adtelligent.com
FingerprintF2:17:C3:EB:74:C1:95:BC:17:5B:5E:C6:16:87:02:9E:DF:D8:50:91
ValidityTue, 25 Mar 2025 00:00:00 GMT - Mon, 23 Jun 2025 23:59:59 GMT
Hash 3bef5aa68a859c8f839028c0722c12b7
f7c3abc03539e71461f0f44e6f9b2ba77ae3a696
c56602e3682221b0067c5f9dbbde2d6a118dc27e532abeebc41c119e839f8878
POST /v2/auction/ HTTP/1.1
Host: ghb1.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 334
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Wed, 16 Apr 2025 05:27:15 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1176
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230505
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230505
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230505 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 16 Apr 2025 05:27:10 GMT
location: https://st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
server: cloudflare
cf-ray: 931145a3f8025687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
200 OK 708 B URL GET fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 1ed53ab12b40ec4e280585f2c3908b6b
a6c5bc71591e90c9e436b1e797a1eef112fb6590
2e64e3d3a12b919e9e0508456d555a5d855cbb4a1505dfaf878f012524aa6c8f
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 07 Apr 2025 19:45:58 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4995
server: cloudflare
cf-ray: 931145a73dbb0b65-OSL
X-Firefox-Spdy: h2
script.4dex.io/a/latest/adagio.js
200 OK 62 kB URL GET script.4dex.io/a/latest/adagio.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectscript.4dex.io
Fingerprint85:83:5E:32:B3:48:93:75:71:3A:97:C5:4C:D8:9F:AA:FD:99:68:FF
ValidityTue, 18 Mar 2025 00:58:21 GMT - Mon, 16 Jun 2025 01:58:17 GMT
File type JavaScript source, ASCII text, with very long lines (62149)
Hash 4ebf7042f3ba84fbe39534d4fa8c5c86
f92b6bede1901b4f4c77612b44f711419b578816
9de56ba22416192d18869051fdaa33876a9b6b3c7ed326abc7c8cc8503027797
GET /a/latest/adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Apr 2025 05:27:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"4ebf7042f3ba84fbe39534d4fa8c5c86"
Last-Modified: Mon, 24 Mar 2025 20:04:09 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
Expires: Mon, 24 Mar 2025 21:30:18 GMT
CF-Cache-Status: HIT
Age: 1931216
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2i1z85X1gBq%2BdieDTHpGmMbFxLBOS2ucf9E3BjtwXkzv%2BXfeN27jb64J3B%2BrAS9l2d7rxz4sZFNsP5hpwK%2F0t%2FMYAr3dZn%2FGbFCK1Ku2qRsy0s37MmwI4uayKtj0DPIB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 931145b8b8ac56c9-OSL
Content-Encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=485&min_rtt=459&rtt_var=138&sent=5&recv=8&lost=0&retrans=0&sent_bytes=3101&recv_bytes=1043&delivery_rate=7798922&cwnd=252&unsent_bytes=0&cid=b1c771c7997d6c5d&ts=354&x=0"
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 0 B URL HEAD pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
Fingerprint78:5B:F8:FF:50:87:46:A8:DF:37:9D:38:26:34:7C:3B:1B:89:3C:DF
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Wed, 16 Apr 2025 05:27:15 GMT
expires: Wed, 16 Apr 2025 05:27:15 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 727174197887037585
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52807
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=luponmedia&gdpr=0&gdpr_consent=&f=i&uid=lm-0c604398-f0ce-4d41-9eda-388508890a7b
200 OK 86 B URL GET prebid.admatic.com.tr/setuid?bidder=luponmedia&gdpr=0&gdpr_consent=&f=i&uid=lm-0c604398-f0ce-4d41-9eda-388508890a7b
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=luponmedia&gdpr=0&gdpr_consent=&f=i&uid=lm-0c604398-f0ce-4d41-9eda-388508890a7b HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.p6fsvqrlv8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJsdXBvbm1lZGlhIjp7InVpZCI6ImxtLTBjNjA0Mzk4LWYwY2UtNGQ0MS05ZWRhLTM4ODUwODg5MGE3YiIsImV4cGlyZXMiOiIyMDI1LTA0LTMwVDA1OjI3OjE5LjE5OTYxMDEwN1oifX19; Path=/; Domain=admatic.com.tr; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VlFAc0C7Ibf4A5bQJPuWfgflgXZJGIS%2F%2Fg6ODJAmKl2iKucaQynJ8HbT70E3ooxqaolfmJVcmplXRDsnDwzoL3aep2R7xbXJCcVUK9IOmMmMIFa%2BLuAGpgHqCDNMHUtIFM%2FJb3MFMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 931145d8d915b51d-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6957&min_rtt=1452&rtt_var=5911&sent=22&recv=16&lost=0&retrans=0&sent_bytes=8766&recv_bytes=3449&delivery_rate=39648&cwnd=12000&unsent_bytes=0&cid=1f20a2c0ad2021ec&ts=542&x=1", cfExtPri, cfHdrFlush;dur=0
orbsdiacle.com/1clkn/34742
200 OK 6 B URL GET orbsdiacle.com/1clkn/34742
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subjectorbsdiacle.com
FingerprintDC:66:4B:87:DC:79:5D:91:0A:16:9F:E1:7B:73:BC:16:94:C8:69:98
ValidityThu, 20 Mar 2025 01:46:31 GMT - Wed, 18 Jun 2025 01:46:30 GMT
File type ASCII text, with no line terminators
Hash 9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /1clkn/34742 HTTP/1.1
Host: orbsdiacle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Apr 2025 05:27:10 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2B2dUFnYQDeASKlPDqi1fwkRT6B%2BtCuykV9PYSE32bTH6T8TwvKB7gb8kZ4afgeGKsbdqaV21ZD62o%2Br5tGl72vC1ZxceR46zWzol%2BJhfhtC7Cus5tES4TabJq6AYjKcPjof6aqza7jhD3VmiZIV4OMWdIe2v2lWwRItJiIaSvytJovg4hPoxFyJ7rIyt9ZL9EYNYizO%2BQviktj2V%2BQcDKPE883N9m4UZjl07JxEc8WSEJ%2FgtOg3A0GfuNVNJ6deYGmFl2%2F%2F73ONxZiUTSpgZCbNw72R%2B3Z03l; expires=Thu, 17-Apr-2025 05:27:10 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Thu, 17-Apr-2025 05:27:10 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230509
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230509
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/9cb58b5eb2422c8f734769e7cf0146cf.min.js?1744781230509 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 16 Apr 2025 05:27:10 GMT
location: https://st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
server: cloudflare
cf-ray: 931145a3bfb55687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 770 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
FingerprintC9:39:D1:73:F2:72:97:2D:92:AB:2E:CB:67:C6:32:DF:B2:01:5F:40
ValidityTue, 25 Mar 2025 00:00:00 GMT - Mon, 23 Jun 2025 23:59:59 GMT
Hash de59dad1302aaae956bbe366cc8098d3
ccfbee79cf16b49277d5c3fcc6f1722afa5fbc2f
8ab03f5b5953e262472cb7b6ab6f130173a5d2b1b984f3acabe3c31575126aa8
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 282
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Wed, 16 Apr 2025 05:27:14 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 414
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
user-sync.adxpremium.services/setuid?bidder=luponmedia&uid=GET&redirect_url=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dluponmedia%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
303 See Other 86 B URL GET user-sync.adxpremium.services/setuid?bidder=luponmedia&uid=GET&redirect_url=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dluponmedia%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerGoogle Trust Services
Subjectadxpremium.services
Fingerprint51:7E:19:84:A9:5D:4C:3E:B2:7A:9E:7D:41:7E:7C:7D:86:0E:B9:BF
ValiditySun, 02 Mar 2025 14:50:45 GMT - Sat, 31 May 2025 15:50:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=luponmedia&uid=GET&redirect_url=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dluponmedia%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: user-sync.adxpremium.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 303 See Other
date: Wed, 16 Apr 2025 05:27:18 GMT
content-type: text/html; charset=utf-8
location: https://prebid.admatic.com.tr/setuid?bidder=luponmedia&gdpr=0&gdpr_consent=&f=i&uid=lm-0c604398-f0ce-4d41-9eda-388508890a7b
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145d44ef556c5-OSL
X-Firefox-Spdy: h2
302 Found 96 kB IP
Certificate IssuerGoogle Trust Services
Subjectupfion.com
FingerprintD0:24:D6:44:F7:F5:FE:7B:1D:B1:DB:60:4A:72:02:48:58:4C:9F:C5
ValiditySat, 22 Feb 2025 04:52:16 GMT - Fri, 23 May 2025 05:51:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xkVp5PF HTTP/1.1
Host: upfion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 16 Apr 2025 05:27:05 GMT
content-type: text/html; charset=UTF-8
location: https://upfiles.com/xkVp5PF
server: cloudflare
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
set-cookie: XSRF-TOKEN=eyJpdiI6ImQrdHJKY0tmNmhOeFNTT25KOVFXT3c9PSIsInZhbHVlIjoiUUdJMXQrc3FWbWdHdTZlYWxFWjFwZEV3Z1dwQU5pT2ZjeTdidkRRRjdvOWpZWldhNFhkM3VWMjEyWnFGeEZzQkZaZVBFRHJJY1ZOTlpFMFNSZWFuR0RnOWUrREFTZUwzcGNOdlNlTUlYN0wxcFZyWjZ2aGM4ZXg1eDBsODZuMlUiLCJtYWMiOiIwMTM1NmZmNmQwYTViZDIzMDhlNjMzM2YwMTU2MjQwOWFlNGIxZThmNDdlZjhhYWRkYTRmMjViYWI0MGRmMGY4IiwidGFnIjoiIn0%3D; SameSite=Lax; Path=/; Max-Age=604800; Expires=Wed, 23 Apr 2025 05:27:05 GMT
upfiles_session=eyJpdiI6IlFMVjY4bWNXOHVBcnhNb1E1aHJ6YlE9PSIsInZhbHVlIjoiOW9lLzRkaXVweSttTFg0bDc1b1crbDZRS3FRZDBZc0R2cTJvVTJvaURhQk42RUhrRnJoNVJRTDBSY0JuamxoendHbmJlTlcreVN5YTVxWnk2UWpuUzdIcVFuM0dlRzdRcXdmbFhHSWFzQmNqa2xpOTNIekdwRE9Xa2VXeHBBSW4iLCJtYWMiOiI5N2M2M2E0YzI5NmY0NmNkMTAzNmVhMTMzNjBjNWMyNjE5MGEwZTQxZjg5MTczMDgyNjBkODIwMTM5YTI5ZmM4IiwidGFnIjoiIn0%3D; HttpOnly; SameSite=Lax; Path=/; Max-Age=604800; Expires=Wed, 23 Apr 2025 05:27:05 GMT
cf-ray: 9311457e5f73568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Apr 2025 10:09:02 GMT
expires: Fri, 10 Apr 2026 10:09:02 GMT
cache-control: public, max-age=31536000
age: 501488
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mp.4dex.io/prebid
204 No Content 0 B IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1500
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 16 Apr 2025 05:27:13 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_k3vqimp76brima6o983
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931145b6d928b503-OSL
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1387
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: max-age=0, private, must-revalidate
date: Wed, 16 Apr 2025 05:27:14 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent={gdpr_consent}&us_privacy={us_privacy}&cb=https%3A%2F%2Fsync.console.adtarget.com.tr%2Fcsync%3Ft%3Dg%26ep%3D737%26traffic_source%3Dsnippet%26sp%3D882919%26pb%3D762470%26c%3D834434%26a%3D776803%26domain%3Dhttps%3A%2F%2Fupfion.com%2FxkVp5PF%26extuid%3D%24%7BUID%7D
302 Found 43 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent={gdpr_consent}&us_privacy={us_privacy}&cb=https%3A%2F%2Fsync.console.adtarget.com.tr%2Fcsync%3Ft%3Dg%26ep%3D737%26traffic_source%3Dsnippet%26sp%3D882919%26pb%3D762470%26c%3D834434%26a%3D776803%26domain%3Dhttps%3A%2F%2Fupfion.com%2FxkVp5PF%26extuid%3D%24%7BUID%7D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent={gdpr_consent}&us_privacy={us_privacy}&cb=https%3A%2F%2Fsync.console.adtarget.com.tr%2Fcsync%3Ft%3Dg%26ep%3D737%26traffic_source%3Dsnippet%26sp%3D882919%26pb%3D762470%26c%3D834434%26a%3D776803%26domain%3Dhttps%3A%2F%2Fupfion.com%2FxkVp5PF%26extuid%3D%24%7BUID%7D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Wed, 16 Apr 2025 05:27:17 GMT
location: https://sync.console.adtarget.com.tr/csync?t=g&ep=737&traffic_source=snippet&sp=882919&pb=762470&c=834434&a=776803&domain=https://upfion.com/xkVp5PF&extuid=&gdpr=0&gdpr_consent=%7Bgdpr_consent%7D
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Wed, 16 Apr 2025 05:27:18 GMT
location: https://prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid.a-mo.net/isyn?gdpr_consent=&gdpr=0&us_privacy=&gpp=&gpp_sid=
204 No Content 0 B URL GET prebid.a-mo.net/isyn?gdpr_consent=&gdpr=0&us_privacy=&gpp=&gpp_sid=
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /isyn?gdpr_consent=&gdpr=0&us_privacy=&gpp=&gpp_sid= HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: max-age=0, private, must-revalidate
date: Wed, 16 Apr 2025 05:27:17 GMT
server: envoy
vary: accept-encoding, Accept-Encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
302 Found 86 B URL GET sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerZeroSSL
Subjectsync.console.adtarget.com.tr
FingerprintED:8C:47:D0:F4:82:C5:4F:57:FD:F5:2D:94:C8:7F:3B:9E:6E:E4:81
ValidityWed, 12 Mar 2025 00:00:00 GMT - Tue, 10 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D HTTP/1.1
Host: sync.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: vmuid=6b89e67f346fbc75
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Adtarget
Date: Wed, 16 Apr 2025 05:27:18 GMT
Content-Length: 0
Etag: 6b89e67f346fbc75
Location: https://prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=6b89e67f346fbc75
Set-Cookie: vmuid=6b89e67f346fbc75; expires=Fri, 18 Jul 2025 05:27:19 GMT; domain=.console.adtarget.com.tr; path=/; secure; SameSite=None
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Apr 2025 10:09:02 GMT
expires: Fri, 10 Apr 2026 10:09:02 GMT
cache-control: public, max-age=31536000
age: 501488
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fstatic.netpub.media/extra/cmp/cmp-gdpr.js
307 Temporary Redirect 739 B URL GET fstatic.netpub.media/extra/cmp/cmp-gdpr.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /extra/cmp/cmp-gdpr.js HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upfion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Wed, 16 Apr 2025 05:27:09 GMT
content-type: text/html
content-length: 169
location: https://gpp.netpub.media/init.js
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 9311459f1d230b65-OSL
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/9cb58b5eb2422c8f734769e7cf0146cf/service.js
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/9cb58b5eb2422c8f734769e7cf0146cf/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 16 Apr 2025 05:27:11 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SZcGO%2FvZpr3S01IUVLAUn4DjVgRCGbqaHQ5zrqnPymE5OTpxFGmREv94PsYO%2FxJQ7UgRZZmfANTHt62sIkoLPL4PkJWklTGGzC7GTzchDQW2oVF7%2BD02Tcqq28jMEXSLgK3cSFzKbIS8mQA%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/9cb58b5eb2422c8f734769e7cf0146cf/45600575.js?npr=ecc4921d61efb74228baf9332a3a45d1
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 931145a58c035697-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3610&min_rtt=728&rtt_var=1908&sent=67&recv=86&lost=0&retrans=0&sent_bytes=6615&recv_bytes=6585&delivery_rate=2212&cwnd=12000&unsent_bytes=0&cid=4d29bfbf7435b0b8&ts=250&x=16"
prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f
200 OK 0 B URL GET prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint09:19:F7:2C:84:BC:3B:6B:81:89:80:F9:1A:16:66:EC:00:F4:E7:99
ValidityFri, 11 Apr 2025 18:11:08 GMT - Thu, 10 Jul 2025 18:11:07 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=807fb2e4-ef15-40ce-842b-36688df6982f HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: uid=807fb2e4-ef15-40ce-842b-36688df6982f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 16 Apr 2025 05:27:19 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZG1hdGljIjp7InVpZCI6IjgwN2ZiMmU0LWVmMTUtNDBjZS04NDJiLTM2Njg4ZGY2OTgyZiIsImV4cGlyZXMiOiIyMDI1LTA0LTMwVDA1OjI3OjE5LjgwNTU3MTc1N1oifX19; Path=/; Domain=netaddiction.tech; Expires=Tue, 15 Jul 2025 05:27:19 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rwPXzZgbpP9FIq6L%2FSbBV%2FLu1XoCuc570SFCkg3RDYub6vGvxRiQLSYXo1spIpGEJfFXxgECxqmtEaCbPTtB60ErwMe4oqLWbf7CzkDh0vF7%2FFKjTkNT%2B0edpUnKMbvTgakCuC5L%2FnGiuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 931145dcab770b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8596&min_rtt=4453&rtt_var=5448&sent=22&recv=17&lost=0&retrans=0&sent_bytes=8997&recv_bytes=3532&delivery_rate=18178&cwnd=12000&unsent_bytes=0&cid=caf6a9724cd0c5b0&ts=494&x=1", cfExtPri, cfHdrFlush;dur=0
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 3127
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://upfion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1692
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://upfion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
sync.console.adtarget.com.tr/csync?t=g&ep=737&traffic_source=snippet&sp=882919&pb=762470&c=834434&a=776803&domain=https://upfion.com/xkVp5PF&extuid=&gdpr=0&gdpr_consent=%7Bgdpr_consent%7D
200 OK 43 B URL GET sync.console.adtarget.com.tr/csync?t=g&ep=737&traffic_source=snippet&sp=882919&pb=762470&c=834434&a=776803&domain=https://upfion.com/xkVp5PF&extuid=&gdpr=0&gdpr_consent=%7Bgdpr_consent%7D
IP
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectsync.console.adtarget.com.tr
FingerprintED:8C:47:D0:F4:82:C5:4F:57:FD:F5:2D:94:C8:7F:3B:9E:6E:E4:81
ValidityWed, 12 Mar 2025 00:00:00 GMT - Tue, 10 Jun 2025 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /csync?t=g&ep=737&traffic_source=snippet&sp=882919&pb=762470&c=834434&a=776803&domain=https://upfion.com/xkVp5PF&extuid=&gdpr=0&gdpr_consent=%7Bgdpr_consent%7D HTTP/1.1
Host: sync.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Wed, 16 Apr 2025 05:27:17 GMT
Content-Type: image/gif
Content-Length: 43
Etag: 6b89e67f346fbc75
Set-Cookie: vmuid=6b89e67f346fbc75; expires=Fri, 18 Jul 2025 05:27:18 GMT; domain=.console.adtarget.com.tr; path=/; secure; SameSite=None
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://upfion.com/xkVp5PF
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 1426
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://upfion.com
cache-control: max-age=0, private, must-revalidate
date: Wed, 16 Apr 2025 05:27:14 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Wed, 16 Apr 2025 05:27:18 GMT
location: https://prebid.admatic.com.tr/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 769 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://upfion.com/xkVp5PF
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
FingerprintC9:39:D1:73:F2:72:97:2D:92:AB:2E:CB:67:C6:32:DF:B2:01:5F:40
ValidityTue, 25 Mar 2025 00:00:00 GMT - Mon, 23 Jun 2025 23:59:59 GMT
Hash b73af792a5ed43e8dc607014b437874e
d742ee8c8085769e18ca079d44982abddf300269
1471ebaf13a2cc106893ac8e4640b7b84bdc47aa968431a4c1be74c7073610ac
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upfion.com/
content-type: text/plain
Content-Length: 281
Origin: https://upfion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Wed, 16 Apr 2025 05:27:14 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 414
Access-Control-Allow-Origin: https://upfion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
104.21.68.26
167.235.37.234
146.59.69.183
176.235.30.103
142.250.74.3
163.5.194.30
185.83.71.234
172.255.103.117
0.0.0.0