static.smilewanted.com/js/decode_consent/decode_consent.js
200 OK 50 kB URL GET static.smilewanted.com/js/decode_consent/decode_consent.js
IP
Requested by https://csync.smilewanted.com/
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
File type JavaScript source, ASCII text, with very long lines (49614), with no line terminators
Hash 00ff8001302d3748ba139466fc3910c1
8210e702fe525e6cddc84758ec51e96a4d703186
eb4db95cf7c97ce22bd98d1b95dfd82204843cc8854cbe0b3b6b93be4fa41a2f
GET /js/decode_consent/decode_consent.js HTTP/1.1
Host: static.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:53 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 17:11:55 GMT
etag: W/"607873db-c1ce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1113035
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb777b90569f-OSL
content-encoding: br
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=netaddiction&gdpr=0&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
200 OK 0 B URL GET prebid.admatic.com.tr/setuid?bidder=netaddiction&gdpr=0&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=netaddiction&gdpr=0&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8 HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: adplus_digital_id=0.ig07crxsabe
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJuZXRhZGRpY3Rpb24iOnsidWlkIjoiNjFiZjY0MjEtZGQyZS00NzYwLWIwNzAtODYzMDZlMWQ2ZmQ4IiwiZXhwaXJlcyI6IjIwMjUtMDQtMDhUMDI6MDc6NTQuMzI0OTU5NjU2WiJ9fX0=; Path=/; Domain=admatic.com.tr; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=grItieuK38jX0i5trdtKC%2FC8cx%2FKF2ZtoiHZJPoO8Q5W9ilocMGFN7Y%2FalgXaLVlEPWlUiY7SwQb6NvfSI4Mdp5ZkMPySqGzdLvs8BFISlSxzNMoFSsu9y2X6abLy%2BsCiwcm%2FkZ7mQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925adb7c6fc156a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4552&min_rtt=4109&rtt_var=1857&sent=12&recv=6&lost=0&retrans=0&sent_bytes=3694&recv_bytes=1247&delivery_rate=154989&cwnd=12000&unsent_bytes=0&cid=d4b52becb3f15f1c&ts=199&x=1", cfExtPri, cfHdrFlush;dur=0
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DB%2B9xpiNSeEt7V%2FXY3Zn1QeUrM2eYsUyaPEyMluTQZq%2FI7jyn39xtVRcUiwV4NcX5xuTmEQq%2BcYWDT3AiUhsQrbrcKCsi6ueA%2BeaC0hYxivQZL2q1dMnI70VIZDqX8wH%2FsKGbUF2ETSeap0%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 925adb561b710b3d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1166
server: cloudflare
cf-ray: 925adb568e6f56c5-OSL
X-Firefox-Spdy: h2
ui.cleverwebserver.com/
200 OK 218 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcleverwebserver.com
Fingerprint3C:ED:1B:95:5A:8D:36:73:A6:5A:3D:6C:ED:F6:68:62:4B:0A:94:47
ValiditySat, 22 Mar 2025 15:00:18 GMT - Fri, 20 Jun 2025 15:59:56 GMT
File type ASCII text, with no line terminators
Hash c3041b971dadf921a740d1dfd49b463a
31aa7486f9eb871fbb73e76f60d8ce44fe3011db
f63c15fda04bea920997f8210a07f1505da832b9715e3dbcbcab9d159df8412d
GET / HTTP/1.1
Host: ui.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
cf-cache-status: DYNAMIC
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: *
server: cloudflare
cf-ray: 925adb58fdf056cc-OSL
content-encoding: br
X-Firefox-Spdy: h2
ukankingwithea.com/
200 OK 27 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:7E:37:44:90:B9:05:B4:82:CD:5A:71:84:A1:C8:84:66:33:BC:78
ValiditySat, 01 Mar 2025 13:28:14 GMT - Fri, 30 May 2025 14:26:54 GMT
File type ASCII text, with no line terminators
Hash d5efc4196bcd9ea57ef38c83f7705edb
995d3f138112f9997504533895510c54c88e81a5
c839e7c5f580745e1f6f63fbfc10a037d15f97eae5252fef715135225d0f197d
GET / HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:49 GMT
content-type: text/plain
set-cookie: csu=1790230552456106@1@1742868469; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7C1epDHnOM0x6f%2FyhWoVw%2FoDiheJiUOHHeOcoMY5tKnz6I9MmimGtOe7RosZjuaTMXhaxGrqMqoAWvHzDwihur23xMPttwWqwPztusAGPbu20THBOZMmhBGJvDv%2FR91Rj%2B0D6dw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb5af8b6569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=655&min_rtt=469&rtt_var=181&sent=84&recv=26&lost=0&retrans=0&sent_bytes=107734&recv_bytes=1266&delivery_rate=47352839&cwnd=254&unsent_bytes=0&cid=365ca1a668b8d283&ts=168&x=0"
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 753 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (781), with no line terminators
Hash 0b035e11d2c17760971cc87fb21b4363
a342621b70afd1a0ff5567262d0dc6296e1aa072
2eec20c3e50a7eaaa2e4d594e97756a60e191ec1736501d2c5dade5b82944737
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 280
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 419
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Mar 2025 02:07:54 GMT
location: https://prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/bitcoin.png
200 OK 31 kB URL GET cdn.cuty.io/images/public/bitcoin.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 2000 x 417, 8-bit colormap, non-interlaced
Hash c072d65a81198a616ea588f4654f1cfb
53ec193adf51c7fcb1a642f680443d90bb3ce91d
391c02102b6a7cce91c572feec8533ecf7b26f7fa1d040ffd940660221abfc4f
GET /images/public/bitcoin.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 30766
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-782e"
expires: Tue, 10 Feb 2026 22:06:50 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3354560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EK2s1NROjToy8PhesTuUi4k1HKJ0NfMoEW4pW0EuHYNiiJrwq3sqksCAoCd8mZ40M0T6txBLDeaAJh3d3%2F%2FrQiL2c39IvkhDCSSuZTCJKnHplUbTS2bjORKLTYAvTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb525c4b7127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2509&min_rtt=409&rtt_var=2386&sent=80&recv=29&lost=0&retrans=0&sent_bytes=93812&recv_bytes=2371&delivery_rate=7661375&cwnd=254&unsent_bytes=31856&cid=6389d0bb614b0a36&ts=110&x=0"
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1402
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:07:48 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
ghb1.adtelligent.com/v2/auction/
200 OK 4.1 kB URL POST ghb1.adtelligent.com/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb1.adtelligent.com
Fingerprint0D:D0:49:54:EC:15:39:A2:9D:39:48:10:A3:D3:92:55:81:38:C2:43
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (4221), with no line terminators
Hash e4469b2237001e6de78f100bd2e25f91
1fbe35e24c09bc6a1643bdc35ce6ef4d6f7892c5
4bdd640f2c532bce98777949caa3cc6b68a7d34e3aa8c6cc873f776f81af9be5
POST /v2/auction/ HTTP/1.1
Host: ghb1.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 430
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1202
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
prebid.netaddiction.tech/setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
200 OK 0 B URL GET prebid.netaddiction.tech/setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJuZXRhZGRpY3Rpb24iOnsidWlkIjoiNjFiZjY0MjEtZGQyZS00NzYwLWIwNzAtODYzMDZlMWQ2ZmQ4IiwiZXhwaXJlcyI6IjIwMjUtMDQtMDhUMDI6MDc6NTQuNjY5MzQ1MjM3WiJ9fX0=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xyofeim%2FwWFRnabxzzE1R5MmVsG702SMOmpdrq%2BSl6VnKkgnX9KodvQcPwwdBQl8hkLiKfSAsWD4QpA9imPPSf2BTzaCWzW%2BslIoUWgH%2FDORgJV9EcJLMjmOFY8fVfJBJq9Je9mg12kj9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb7e2a235685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1184&min_rtt=405&rtt_var=1259&sent=10&recv=13&lost=0&retrans=0&sent_bytes=2862&recv_bytes=1941&delivery_rate=4503888&cwnd=249&unsent_bytes=0&cid=d811f4878832e5b8&ts=139&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-en.png
200 OK 25 kB URL GET cdn.cuty.io/images/shared/locale-en.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Hash 60b5c13f116a3bae2e4adddd1e7b971d
58a924b5673274a280f38c05e3d5e89a700e2c3d
30d039e5187c255a96b025d81ab3be8bbc1874168079d3a3219a3b75665e284f
GET /images/shared/locale-en.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 24647
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-6047"
expires: Tue, 10 Feb 2026 19:48:04 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3354895
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3mxKpL%2BzW0Ubj89Qg3HU3wuvqgHdvSxLCcgUq8nB7xAUB3wyrflmj1JAwEk3u%2B4jQkG8j1SayXYJPHgbDSDv%2BUuUTWuObcFIt2RpdOfWQDCnqcCVzCwgz8VrksKM3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb524c3e7127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2625&min_rtt=409&rtt_var=2873&sent=69&recv=26&lost=0&retrans=0&sent_bytes=79476&recv_bytes=2371&delivery_rate=26824749&cwnd=254&unsent_bytes=19696&cid=6389d0bb614b0a36&ts=107&x=0"
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=59a18369e249bfb
204 No Content 0 B URL GET onetag-sys.com/usync/?pubId=59a18369e249bfb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=59a18369e249bfb HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/linkedin-icon.png
200 OK 228 kB URL GET cdn.cuty.io/images/shared/linkedin-icon.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 976 x 970, 8-bit/color RGBA, non-interlaced
Size 228 kB (227769 bytes)
Hash c25b56612bfcb856e442fcb4fa58d958
10caff4d659c98702bd44b334e124402ef9649b4
53016dc352cde2e291cd6b4ba2fddf3cf5f4aec3c1cc75af07302ef63409222c
GET /images/shared/linkedin-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 227769
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-379b9"
expires: Tue, 10 Feb 2026 20:23:29 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3354560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ATKbM%2F6voWG9Q5uCKeaIp0xvCqO5syxvp5GDK8KKLPZHzd%2FG%2FnNRH8yyL0%2BYigcrdL7LZOm%2BeCgf6xjZyJLUIcuYI3Bn7fa9TSB%2FMmq%2Br0xxWqgzjKU7AaOi%2BpTJkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb524c3a7127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2625&min_rtt=409&rtt_var=2873&sent=69&recv=26&lost=0&retrans=0&sent_bytes=79476&recv_bytes=2371&delivery_rate=26824749&cwnd=254&unsent_bytes=19696&cid=6389d0bb614b0a36&ts=108&x=0"
X-Firefox-Spdy: h2
ghb.adtelligent.com/v2/auction/
200 OK 4.1 kB URL POST ghb.adtelligent.com/v2/auction/
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb.adtelligent.com
FingerprintB0:FB:4F:89:69:DD:35:D0:9F:F5:08:AC:CC:5A:32:2D:84:62:89:CB
ValiditySun, 23 Mar 2025 00:00:00 GMT - Sat, 21 Jun 2025 23:59:59 GMT
File type ASCII text, with very long lines (4221), with no line terminators
Hash 4646f6a43d21a5b68844e5a5dbfd1185
180312dd5b381744c9c96bbb04a2c1851520e97d
3d41edddb39f93dba043a9f9b98b1cc8a3a86d388e11eb5e8e123ad8218f1ee0
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 315
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Tue, 25 Mar 2025 02:07:51 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1221
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Mar 2025 02:07:53 GMT
location: https://prebid.admatic.com.tr/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
302 Found 86 B URL GET a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectadpartner.pro
FingerprintD6:53:9A:7B:8F:CD:3A:58:6A:19:B0:66:10:58:59:68:AE:5B:FA:BB
ValidityTue, 14 Jan 2025 08:08:25 GMT - Mon, 14 Apr 2025 08:08:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D HTTP/1.1
Host: a4p.adpartner.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: text/html; charset=utf-8
content-length: 224
location: https://prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=259d119b-ba14-4759-9be0-0cf195941d3e
cache-control: no-store no-transform
X-Firefox-Spdy: h2
pix.netpub.info/o?n=100&a=20&g=admatic&zz=6a4ae89e7480c0e436a6aa099bdacb88225e6395776b4a5f48ac201c759fd027&i=3&x=netpub&b=object&j=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&q=160&aa=efa0c35c478e24f5b65a10692ab4e782&s=interactive&t=1742868469917&o=0&e=0&h=0&v=1.6.0&yy=05a5e17798f2178cb09d208f243d50a3&c=1.6368697037465347&m=1024&d=https%3A%2F%2Fcutyion.com%2FjhRN0&p=212&l=1280&xx=PBAUCTION&k=div_netpub_campaign_wyxy3nmr06m4c5nc9&r=600&f=pb&y=en-US&ww=504866011e5d44d471cdffe99a8759f1
200 OK 632 B URL GET pix.netpub.info/o?n=100&a=20&g=admatic&zz=6a4ae89e7480c0e436a6aa099bdacb88225e6395776b4a5f48ac201c759fd027&i=3&x=netpub&b=object&j=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&q=160&aa=efa0c35c478e24f5b65a10692ab4e782&s=interactive&t=1742868469917&o=0&e=0&h=0&v=1.6.0&yy=05a5e17798f2178cb09d208f243d50a3&c=1.6368697037465347&m=1024&d=https%3A%2F%2Fcutyion.com%2FjhRN0&p=212&l=1280&xx=PBAUCTION&k=div_netpub_campaign_wyxy3nmr06m4c5nc9&r=600&f=pb&y=en-US&ww=504866011e5d44d471cdffe99a8759f1
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.info
Fingerprint56:17:64:34:08:12:75:29:07:B5:8D:B0:E2:DB:E0:AD:D1:5C:B7:4A
ValidityMon, 10 Feb 2025 19:21:32 GMT - Sun, 11 May 2025 20:21:25 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3
Hash 1777703097166d4fbc483b24a6654e65
cf4603ece85c7c1a16ff6af37f4a4acf75717336
56841cd65645da99411d174f621c873e0544d59c9154336b65bcf71915a2ae45
GET /o?n=100&a=20&g=admatic&zz=6a4ae89e7480c0e436a6aa099bdacb88225e6395776b4a5f48ac201c759fd027&i=3&x=netpub&b=object&j=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&q=160&aa=efa0c35c478e24f5b65a10692ab4e782&s=interactive&t=1742868469917&o=0&e=0&h=0&v=1.6.0&yy=05a5e17798f2178cb09d208f243d50a3&c=1.6368697037465347&m=1024&d=https%3A%2F%2Fcutyion.com%2FjhRN0&p=212&l=1280&xx=PBAUCTION&k=div_netpub_campaign_wyxy3nmr06m4c5nc9&r=600&f=pb&y=en-US&ww=504866011e5d44d471cdffe99a8759f1 HTTP/1.1
Host: pix.netpub.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:50 GMT
content-type: image/jpeg
content-length: 632
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=54A%2BnXvy1N%2FPCbQf88Sy3mjjp260Mz4qPqB5ZYbOpYQMGfTqnN8%2F56OjOL2V2%2BwLGZEGxUPgevMW8CWcVur0uDflwdHiojaPnkvUIIJU%2BrrTckHUEGQ00T2U%2FnOFqPlqbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb61fdcbb4f3-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=799&min_rtt=520&rtt_var=504&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3200&recv_bytes=1480&delivery_rate=6092566&cwnd=254&unsent_bytes=0&cid=e3364da9789b54b6&ts=68&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:50 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gQTLOalQpRxBwu2ne1S9aI96%2BDGH4ReGGRcT3YKSUN5LLiqyozGo2dxWhtbH%2Buw8FMn4YbOcZWkUR8owDdU2JUR8IuhSjqeN28pkAZ0sz1IDuiep3ta%2FozaXFjFs4SVdkdQO0f3rtk9vKQMEWkM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb626e4f0afa-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=4552&min_rtt=458&rtt_var=8018&sent=14&recv=20&lost=0&retrans=0&sent_bytes=5805&recv_bytes=1564&delivery_rate=4984509&cwnd=257&unsent_bytes=0&cid=5d2cf8c012eb3fe6&ts=974&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/arrow-down.svg
200 OK 220 B URL GET cdn.cuty.io/images/shared/arrow-down.svg
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash c3e833f5fa7b1a4f2827058cdba8c3ab
09822f9d135ca26e8ddbbb5814b43da1f330906d
415fd6c9065ac04a741d6a02282eb772174831e47d035b8b1f3be240026f46a6
GET /images/shared/arrow-down.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/svg+xml
last-modified: Sun, 21 Jul 2024 07:29:21 GMT
etag: W/"669cb8d1-dc"
expires: Tue, 11 Nov 2025 03:28:21 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 10437007
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C2BKA9Yv6AzyldUmZH%2FK1MwRPO7IQBgg%2F%2FXf37y%2Fmii6vtlDOVhdQBBSpEBXBsHDQU4lKqhp4BZWm%2FL%2BiPJb4L25zlyVhwRC8qRby%2F1zB40ZxusBM6ROkIyRy9LqSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb524c3f7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2625&min_rtt=409&rtt_var=2873&sent=69&recv=26&lost=0&retrans=0&sent_bytes=79476&recv_bytes=2371&delivery_rate=26824749&cwnd=254&unsent_bytes=19696&cid=6389d0bb614b0a36&ts=108&x=0"
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1673
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.admatic.com.tr/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.ig07crxsabe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=admatic.com.tr; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MkACrovm0ZfD%2FTr9XNY8RQwF40Uwa%2FcQfrteUmAdCY0o28aqFh7SmCes4Vh79NSgeZKdDoFeXWA%2BaOtwaV1BgGGgeX0dHUKL5y%2FwckDi2%2FAAOUxVPTcFzCaHTP%2BLM01S0lsvEmrPBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925adb7aaeb8568b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1168&min_rtt=442&rtt_var=1507&sent=7&recv=13&lost=0&retrans=0&sent_bytes=2853&recv_bytes=1758&delivery_rate=5208633&cwnd=253&unsent_bytes=0&cid=ccf36c798722e1f2&ts=126&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467957
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467957
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467957 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 301 Moved Permanently
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html
content-length: 167
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kZab0b4VuOd84UbI4iWzrmOCKxqGPll9RnUqWk3dG5I97w4bvzjQC9tT8qJij28DRB49AiwwIP5azGdvrDu1xTtBczyLiMfA%2Bu2430kOs7viYPQGx13mE9n3fK8GjIyMu238HfgZQql%2FtJ8%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:07:48 GMT
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cf-ray: 925adb550b6b0b3d-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1166
server: cloudflare
cf-ray: 925adb580f4456c5-OSL
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
302 Found 0 B URL GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint4B:95:33:75:06:A7:4B:8D:93:0F:44:A4:E7:B2:1E:51:52:D7:30:DC
ValidityMon, 10 Mar 2025 08:37:54 GMT - Mon, 02 Jun 2025 08:37:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:DP8MSseFArtbpJyDWy8SSs2eTvipCw:HnzCOPg-aldSb7s1; Expires=Thu, 25-Mar-2027 02:07:48 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:07:48 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVu3T2zu7iQMFTt8n9x6spliwmVh2UPgK7lOVj9eRHHnNzr2UNqSuAyadO5mbWD-CU3Y6vjnRw
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-nwCkRQUY2wnEKQvtEcxxaA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dsp-service.pixad.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dpixad%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
302 Found 0 B URL GET dsp-service.pixad.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dpixad%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectdsp-service.pixad.com.tr
Fingerprint24:5E:67:67:13:78:E1:3D:E6:FE:04:4C:39:E4:61:91:76:13:B9:53
ValiditySun, 02 Mar 2025 06:43:48 GMT - Sat, 31 May 2025 06:43:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dpixad%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.pixad.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 25 Mar 2025 02:07:53 GMT
content-type: text/html; charset=utf-8
location: https://prebid.admatic.com.tr/setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=71f39a54-ebb5-441d-9533-55351dd8013b
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept, Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: pixad-k8s
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PfkJDlkD2OYE1ITTNQwCdzN6UA%2B7CxzfGQGB0ucgpivmk8R1ZabjyYCiy0xjCVfH%2F9zJS%2F5dbtduHBbsE1QP4iIPDg3a9UY08wrQB%2BvoHHDhQ97cDgN%2BkcWvRjNvXpHrS30UrrZF%2BFEU1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925adb79ae7ab4fd-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfCacheStatus;desc="DYNAMIC", cfL4;desc="?proto=TCP&rtt=696&min_rtt=439&rtt_var=522&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2864&recv_bytes=1399&delivery_rate=4771004&cwnd=253&unsent_bytes=0&cid=e3ea9e24f100bb14&ts=126&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/payeer.png
200 OK 1.4 kB URL GET cdn.cuty.io/images/public/payeer.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 167 x 35, 8-bit colormap, non-interlaced
Hash 076721e6bc9e7ebd04612c544a59e3ce
777b33fdf4ec2212b9613e50d46e203d54163dbb
6602b89e29d6eeb6f85296cffc62529106f8481cb7376a082dc931461844283d
GET /images/public/payeer.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 1390
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-56e"
expires: Tue, 10 Feb 2026 19:51:50 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3354895
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=44TtAp7toYJQQmUB9NU9exzUDiLCtFfnETROFlo9wvQh1T9CUauXAM35gHO%2FvyI2FCAoYxMeldojArsBYuoIpO0Q8%2BcV0x5p4vQ7BKNbuDqmCNuVGPXbho3L6TDE6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb52ac7b7127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=4706&min_rtt=409&rtt_var=391&sent=488&recv=224&lost=0&retrans=0&sent_bytes=673748&recv_bytes=3253&delivery_rate=29103628&cwnd=144&unsent_bytes=0&cid=6389d0bb614b0a36&ts=159&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467705
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467705
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467705 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: text/html
content-length: 167
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:07:47 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tW6MJIj%2FRvMx053VbBpaXGQ6u0AEFtzT6fNogO5ZX5uojsbsnf%2FiEyh4q0YbzgbEhOwpmBnnFs2eYXc5MabFXFniG3EQ9KbXHNqtyL944N13wzg1fXT63e0rUing0igDixiumaMViQqDY%2B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb539fceb529-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=816&min_rtt=535&rtt_var=308&sent=11&recv=12&lost=0&retrans=0&sent_bytes=4141&recv_bytes=1306&delivery_rate=7567944&cwnd=254&unsent_bytes=0&cid=76609e1d49008f09&ts=45&x=0"
X-Firefox-Spdy: h2
ghb.adtelligent.com/v2/auction/
200 OK 4.1 kB URL POST ghb.adtelligent.com/v2/auction/
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb.adtelligent.com
FingerprintB0:FB:4F:89:69:DD:35:D0:9F:F5:08:AC:CC:5A:32:2D:84:62:89:CB
ValiditySun, 23 Mar 2025 00:00:00 GMT - Sat, 21 Jun 2025 23:59:59 GMT
File type ASCII text, with very long lines (4220), with no line terminators
Hash e8ad0083fb415788a55ac992bad28f5f
e194170d5239746ee6f6cd791909526b7ad57992
cd4b6dc0dd173be316c496a36e386252f65befe2617b4b8c24c6479d9773efb5
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 336
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1214
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVssvYzUdIuP-gDy6Kjf1hSb_8JJCAfYJoH-7_lj-ViFYGAN_7yRLoOcUMp_xiIiC08EeATH9A&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1745105052%3A1742868470726852
403 Forbidden 0 B URL GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVssvYzUdIuP-gDy6Kjf1hSb_8JJCAfYJoH-7_lj-ViFYGAN_7yRLoOcUMp_xiIiC08EeATH9A&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1745105052%3A1742868470726852
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint57:E3:38:DA:15:E9:22:1D:17:E2:12:42:3A:88:03:62:6E:F5:C0:53
ValidityMon, 10 Mar 2025 08:36:06 GMT - Mon, 02 Jun 2025 08:36:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVssvYzUdIuP-gDy6Kjf1hSb_8JJCAfYJoH-7_lj-ViFYGAN_7yRLoOcUMp_xiIiC08EeATH9A&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1745105052%3A1742868470726852 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:07:50 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-eDcPXlIseZmJvzvxKRI6jQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.google.com/tools/feedback/help_api.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ghelp/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.Iew5X21fS_0.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ghb.console.adtarget.com.tr/v2/auction/
200 OK 754 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (782), with no line terminators
Hash 54c1c6ff934ca1bf6ecb486c658d4bb8
645dc822188aad39c172f30fdffe1e9515c36f2e
84cdb1a89f5555915966929ac3c71fcfb4533f47b319be7c0c8809f022cc23d0
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 281
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 420
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
cdn.cuty.io/images/public/usdt.png
200 OK 67 kB URL GET cdn.cuty.io/images/public/usdt.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 2560 x 817, 8-bit/color RGBA, non-interlaced
Hash 1320a67b3392ed2bfe9e3734ddfd2d2b
952aa8ceae4362e33e4e7de372694a37bd747eb5
bba0f811185072747208aa5d22793e3fa0c8f4048a5496553872f452845c0376
GET /images/public/usdt.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 67278
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-106ce"
expires: Tue, 10 Feb 2026 20:15:43 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3438238
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lXCMMn%2FZA3KEyxJbKNcTA4xB%2BJEecCTEHKTMTlXTcpIh%2BEoEsVv2hUgpGCPHte0dwfZUgGWUTwJV0qOSKDR9NnnzrQLMIMyyRMM4n7KJy63dXNhgo2SHTdSd8Wr6xA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb525c4c7127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2192&min_rtt=409&rtt_var=1153&sent=108&recv=34&lost=0&retrans=0&sent_bytes=132540&recv_bytes=2371&delivery_rate=6475849&cwnd=254&unsent_bytes=31856&cid=6389d0bb614b0a36&ts=112&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467955
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467955
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467955 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 301 Moved Permanently
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html
content-length: 167
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QmbcArSr6f8%2FgWPwNcZ5t0yNUJyw6Fq0QWM8dFKXTvO7APeIoSzm4ljlYFNgTkqxAmjQIDrH9BrsNCVxLDMzISQxp5TYgYUsymmHgkSAsrdUFU6RdrlW6pxDQnOcZ69uDx%2F%2BAstppJ7KAP4%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:07:48 GMT
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cf-ray: 925adb550b690b3d-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
call.cleverwebserver.com/?id=90136&c=NO&r=03&l=270&b=Firefox&bv=0&os=Win10&mob=0&v=2.34.1&lg=en-US&ref=aHR0cHM6Ly9jdXR5aW9uLmNvbS9qaFJOMA%3D%3D&ruri=&s=e8b70da63a3bd27a683422cd203d53a09108a95a44854b62a3e901ac0757cb32&e=CnX7qrmc&st=W&iv=-1
403 Forbidden 0 B URL GET call.cleverwebserver.com/?id=90136&c=NO&r=03&l=270&b=Firefox&bv=0&os=Win10&mob=0&v=2.34.1&lg=en-US&ref=aHR0cHM6Ly9jdXR5aW9uLmNvbS9qaFJOMA%3D%3D&ruri=&s=e8b70da63a3bd27a683422cd203d53a09108a95a44854b62a3e901ac0757cb32&e=CnX7qrmc&st=W&iv=-1
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcleverwebserver.com
Fingerprint3C:ED:1B:95:5A:8D:36:73:A6:5A:3D:6C:ED:F6:68:62:4B:0A:94:47
ValiditySat, 22 Mar 2025 15:00:18 GMT - Fri, 20 Jun 2025 15:59:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?id=90136&c=NO&r=03&l=270&b=Firefox&bv=0&os=Win10&mob=0&v=2.34.1&lg=en-US&ref=aHR0cHM6Ly9jdXR5aW9uLmNvbS9qaFJOMA%3D%3D&ruri=&s=e8b70da63a3bd27a683422cd203d53a09108a95a44854b62a3e901ac0757cb32&e=CnX7qrmc&st=W&iv=-1 HTTP/1.1
Host: call.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Tue, 25 Mar 2025 02:08:03 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb59fe5156cc-OSL
content-encoding: br
X-Firefox-Spdy: h2
script.4dex.io/localstore.js
200 OK 492 B URL GET script.4dex.io/localstore.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectscript.4dex.io
Fingerprint85:83:5E:32:B3:48:93:75:71:3A:97:C5:4C:D8:9F:AA:FD:99:68:FF
ValidityTue, 18 Mar 2025 00:58:21 GMT - Mon, 16 Jun 2025 01:58:17 GMT
File type JavaScript source, ASCII text, with very long lines (501), with no line terminators
Hash 3a461820d65554e3c9fac0513c78762d
b2e11ddb4a89841d83c2f79f6c06ac210c7acc9f
bd15ee919b19377c361ae64c6ad39732415574bfb109afb7fe28c1a83f45efb3
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"56dbef354a963eec89c1c0d552909198"
Last-Modified: Tue, 04 Mar 2025 09:40:49 GMT
Vary: Accept-Encoding
Expires: Mon, 24 Mar 2025 20:35:58 GMT
CF-Cache-Status: HIT
Age: 21711
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FbZRcI9qiIk8sN%2FbY4HvA5Etih42Ab6VWjq4niRnha4C%2BK8%2BwHVRKLEfC0lc%2F5M0opCXKIDjqx%2B4zgWl%2FN9QUbulXZdWvI3QOsuugEyy%2FXUaP9GyrVKanmNmYavOrjem"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 925adb5baae3b515-OSL
Content-Encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=1182&min_rtt=912&rtt_var=472&sent=5&recv=8&lost=0&retrans=0&sent_bytes=3102&recv_bytes=984&delivery_rate=4716612&cwnd=252&unsent_bytes=0&cid=61f27e20293e8086&ts=46&x=0"
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1402
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:07:48 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
302 Found 86 B URL GET a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectadpartner.pro
FingerprintD6:53:9A:7B:8F:CD:3A:58:6A:19:B0:66:10:58:59:68:AE:5B:FA:BB
ValidityTue, 14 Jan 2025 08:08:25 GMT - Mon, 14 Apr 2025 08:08:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D HTTP/1.1
Host: a4p.adpartner.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: text/html; charset=utf-8
content-length: 224
location: https://prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=33870a74-168b-47e5-8363-ec8a3c0774a8
cache-control: no-store no-transform
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1876
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
static.cdn.admatic.com.tr/sync.html
200 OK 8.1 kB URL GET static.cdn.admatic.com.tr/sync.html
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subjectstatic.cdn.admatic.com.tr
Fingerprint23:64:E7:BE:D9:A0:62:12:F4:32:7D:11:53:C7:8C:F1:A6:78:3D:D3
ValiditySat, 08 Mar 2025 08:25:47 GMT - Fri, 06 Jun 2025 08:25:46 GMT
File type HTML document, ASCII text, with very long lines (9286), with no line terminators
Hash 03fa07d23ef614f748cb9a737ea28a3e
87da1fc240f5f917c9ac943415595ed802bb2a87
438f44f1aa3bc29a5f2bf8079a0f137c8e5a7c69e544403919fd6525d6bb8109
GET /sync.html HTTP/1.1
Host: static.cdn.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:53 GMT
content-type: text/html
cdn-pullzone: 1905149
cdn-uid: e7d0f040-08f3-443e-a640-656beb6c8b3b
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=3600
last-modified: Fri, 15 Nov 2024 07:02:35 GMT
cdn-storageserver: DE-676
cdn-fileserver: 639
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/24/2025 13:42:54
cdn-edgestorageid: 1075
cdn-requestid: 714e47b75f389b6184cbc891b660daa5
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yQZicA7aXqKHxjxfmBtDg0fAwprwT1tIXPeLPsiLzxUYAwm6VBOWJOdb8es7XF2VsaaKO2kVUL44wp%2BPGgdpGzRFYCUEcW46ohxH3vWiowRaxBuyEK%2FLE4sq5WYWPlu4yuN3pgaH84AIebo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925adb74da8e569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=889&min_rtt=505&rtt_var=762&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2863&recv_bytes=1275&delivery_rate=5199281&cwnd=253&unsent_bytes=0&cid=532cf61d7d69d541&ts=101&x=0"
X-Firefox-Spdy: h2
id.ad-plus.com.tr/?token=0.ig07crxsabe
200 OK 0 B URL GET id.ad-plus.com.tr/?token=0.ig07crxsabe
IP
ASN #34984 Superonline Iletisim Hizmetleri A.S.
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerGlobalSign nv-sa
Subject*.ad-plus.com.tr
FingerprintA7:AE:D9:3F:30:57:D0:5A:1D:B6:47:78:DA:87:47:47:64:58:70:57
ValidityWed, 24 Jul 2024 13:16:11 GMT - Mon, 25 Aug 2025 13:16:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?token=0.ig07crxsabe HTTP/1.1
Host: id.ad-plus.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Mar 2025 02:07:53 GMT
Content-Length: 0
Connection: keep-alive
set-cookie: tdid_u=190435.4520947757; Path=/; Max-Age=315569260
f7cbc1d14ffcb89e30f7296e35c2bcf5=ec1aa9c0679b41b39c92d6cc7b20d78f; path=/; HttpOnly
f5avraaaaaaaaaaaaaaaa_session_=OICGPIPFLOJLCGOBNGBBNOPAIKNNAONEPLEDJLPANGOGGDDLEEHKBNNEDEDBEEDGIHODKEIBOPIJHIHPGKHAMEHIKAPEOHHDBAMPMDJDEEDNABMNDDKAJFECDDJMMIFE; HttpOnly; secure;
cache-control: private
Access-Control-Max-Age: 0
Access-Control-Expose-Headers: Content-Length,Set-Cookie,Content-Range
Access-Control-Allow-Methods: GET, PUT, POST, OPTIONS, DELETE
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Slack-Request-Timestamp,X-Slack-Signature,Authorization,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Set-Cookie
prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZHRhcmdldCI6eyJ1aWQiOiIyNWY0NzkyMTExYTI4MzliIiwiZXhwaXJlcyI6IjIwMjUtMDQtMDhUMDI6MDc6NTQuNzAxODcxNjI3WiJ9fX0=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jrWgu6JNKFXvlN%2F2tCWX68rwSOzSQpphjfqgfHydRHdZKEeGZB%2FHWZ%2BpwXa8IQazBZ4ZHAWqT%2F8Yqkh%2FQ6HMaxgztzVAgub6hFUA76bixrSAv%2BpT5UBnSpsLaOvZfMvwc2eIZqHC0TitAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb7eba625685-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1217&min_rtt=405&rtt_var=460&sent=18&recv=19&lost=0&retrans=0&sent_bytes=5960&recv_bytes=2162&delivery_rate=4503888&cwnd=253&unsent_bytes=0&cid=d811f4878832e5b8&ts=172&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q17xXcu4kLA3PTpopSVcfcRuQ2MHk91HZXAbBDX27q%2F1aMiL4Z%2FDYQ1tFpfn1%2B1DvbKchVrl5%2B%2Bg4TSzNfdjOHDuRCYcWOSG6modIEj6QKTT%2F%2BBKczpAM2jg3L%2BILjxwGdMZ7UN56NqCtdc%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 925adb561b6e0b3d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
script.4dex.io/a/latest/adagio.js
200 OK 62 kB URL GET script.4dex.io/a/latest/adagio.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectscript.4dex.io
Fingerprint85:83:5E:32:B3:48:93:75:71:3A:97:C5:4C:D8:9F:AA:FD:99:68:FF
ValidityTue, 18 Mar 2025 00:58:21 GMT - Mon, 16 Jun 2025 01:58:17 GMT
File type JavaScript source, ASCII text, with very long lines (62149)
Hash 4ebf7042f3ba84fbe39534d4fa8c5c86
f92b6bede1901b4f4c77612b44f711419b578816
9de56ba22416192d18869051fdaa33876a9b6b3c7ed326abc7c8cc8503027797
GET /a/latest/adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"4ebf7042f3ba84fbe39534d4fa8c5c86"
Last-Modified: Mon, 24 Mar 2025 20:04:09 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
Age: 18060
Expires: Mon, 24 Mar 2025 21:36:49 GMT
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0kJQRpYaoBpZtGw2u5EgXPu79NhqjeA4OPR%2FJB66tqGVJEMReHfh%2FoeaKLoKKK5QAADDQ9LyJ3FqU1P%2FtR8VN%2B22YhswEzYWzSKUX4W%2Fncs%2BD9Z47H2v%2FC34R1Oqaeqn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 925adb604d79b515-OSL
Content-Encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=2811&min_rtt=2719&rtt_var=713&sent=5&recv=8&lost=0&retrans=0&sent_bytes=3102&recv_bytes=1014&delivery_rate=1446071&cwnd=252&unsent_bytes=0&cid=c12352492c14f3b8&ts=120&x=0"
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVu3T2zu7iQMFTt8n9x6spliwmVh2UPgK7lOVj9eRHHnNzr2UNqSuAyadO5mbWD-CU3Y6vjnRw
302 Found 0 B URL GET accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVu3T2zu7iQMFTt8n9x6spliwmVh2UPgK7lOVj9eRHHnNzr2UNqSuAyadO5mbWD-CU3Y6vjnRw
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint57:E3:38:DA:15:E9:22:1D:17:E2:12:42:3A:88:03:62:6E:F5:C0:53
ValidityMon, 10 Mar 2025 08:36:06 GMT - Mon, 02 Jun 2025 08:36:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AXH0vVu3T2zu7iQMFTt8n9x6spliwmVh2UPgK7lOVj9eRHHnNzr2UNqSuAyadO5mbWD-CU3Y6vjnRw HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:jmkNEx-0VDhzi056ZaAEqtf7s04qBg:6pUOcIRm0GAj_Fx0;Path=/;Expires=Thu, 25-Mar-2027 02:07:50 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:07:50 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVssvYzUdIuP-gDy6Kjf1hSb_8JJCAfYJoH-7_lj-ViFYGAN_7yRLoOcUMp_xiIiC08EeATH9A&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1745105052%3A1742868470726852
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: script-src 'nonce-IDrdBtzIALqYDwJ1XCk63g' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 419
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 10:09:01 GMT
expires: Fri, 20 Mar 2026 10:09:01 GMT
cache-control: public, max-age=31536000
age: 403127
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fstatic.netpub.media/renderer/prebid_241216.js
200 OK 681 kB URL GET fstatic.netpub.media/renderer/prebid_241216.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (54063)
Size 681 kB (681336 bytes)
Hash 8e95e7a8fe634790d50e7da1f895e075
b80f5a78c1a450fb57be84061f84d1c1f7411a3e
792b9a55a780caaeccdd056084e57fe644b87caa9ba71062c6b3008726c1daac
GET /renderer/prebid_241216.js HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 16 Dec 2024 13:41:12 GMT
cache-control: max-age=14400
expires: Tue, 25 Mar 2025 02:07:49 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 925adb59b80956c5-OSL
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:49 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kp8CvmAQ%2B6Sf0AMgCMgITAed%2B5rF0xLhXmeUXBDKZomrdUhcSJgTdyqIj559%2B06qiJZp%2F7EQL40zWbsEM4ezRFy%2BHjya6kY91vD8gFUF7UDZHTEN%2B9rmBAvFC8%2BA9nbouytpea0yKWq3EU%2FMDL0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb5d1c710afa-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=738&min_rtt=458&rtt_var=592&sent=9&recv=11&lost=0&retrans=0&sent_bytes=3591&recv_bytes=1280&delivery_rate=4984509&cwnd=253&unsent_bytes=0&cid=5d2cf8c012eb3fe6&ts=122&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:49 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k8Apq7%2BYVg%2BR%2B8fPaJCw5TZLJ2CETgKFveKvycO3OddXEOCMZA0ft925k%2FpUtwdfigeWJH2tHDdyril1WU0%2FBkp0psC%2FNXfPj6Ciidj3OrmRkRJ2NeMq0m8Z%2Bx04GMbwD1U2oNEa7QDLQ7kuI%2F4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb5ddcc30afa-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=6563&min_rtt=458&rtt_var=11844&sent=11&recv=14&lost=0&retrans=0&sent_bytes=4467&recv_bytes=1351&delivery_rate=4984509&cwnd=256&unsent_bytes=0&cid=5d2cf8c012eb3fe6&ts=247&x=0"
X-Firefox-Spdy: h2
dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
200 OK 4.6 kB URL GET dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint74:FE:1E:F4:4F:B1:68:C0:81:16:C4:85:68:0D:7D:1F:61:EF:31:DF
ValidityTue, 11 Feb 2025 09:45:46 GMT - Mon, 12 May 2025 09:45:45 GMT
File type HTML document, ASCII text, with very long lines (4777), with no line terminators
Hash a43fb56c1ee42a3a27eca9a63bcb5b71
a7f32e405c20ceef1bed5a2c6f3cf40347fd82f9
1eceed4a1bdeac9e56bd441457a44f800061998f2c2b54576d45614c112ccac6
GET /cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uKJFjmSYOxXv2tGcJsOHLIGaju0NZmXmi%2F4Idd%2Fk23gdwzI5Tzz4rqEGA1q1OEvZgYx%2BPxQMbffe%2BMr8qvW6qDhHP0SIxsh%2BWc61RcklPQ4%2FAS4ZLkQGdICFRE%2BP2Ynq75NYmkA5Ahi1j2U6y3Is"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb7c5d35b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4922&min_rtt=4691&rtt_var=2222&sent=15&recv=11&lost=0&retrans=0&sent_bytes=3876&recv_bytes=2210&delivery_rate=97764&cwnd=12000&unsent_bytes=0&cid=c27b3ab36fbfe9bd&ts=379&x=1", cfExtPri, cfHdrFlush;dur=0
cdn.cuty.io/images/shared/burger.svg
200 OK 207 B URL GET cdn.cuty.io/images/shared/burger.svg
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash 573aef439a6b96a62a233ed0341072d5
875bae0f4d6c067b8faccf9a58799e789e480997
f6226868923f3764988c58d88d5136f2ecf3fb899365c8f418a2b81da8413d82
GET /images/shared/burger.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/svg+xml
last-modified: Fri, 15 Nov 2024 06:46:21 GMT
etag: W/"6736ee3d-cf"
expires: Wed, 26 Nov 2025 02:06:38 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 8203372
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fw5b3n%2FMECjCVsZHyBebkCg%2ByFCVJOOAIpovik2QZ6F8E%2B6WoAPcPdxbgN1BFBYItrAam4DEweAzVfyqr4RSZH8LUGX9LWkkFYn7VF%2FxQMSEXt8AkMjFFa7409B34Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb52bc7f7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2739&min_rtt=409&rtt_var=1278&sent=509&recv=231&lost=0&retrans=0&sent_bytes=694554&recv_bytes=3253&delivery_rate=29103628&cwnd=159&unsent_bytes=0&cid=6389d0bb614b0a36&ts=167&x=0"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 10:09:01 GMT
expires: Fri, 20 Mar 2026 10:09:01 GMT
cache-control: public, max-age=31536000
age: 403127
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20250325
200 OK 1.6 kB URL GET cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20250325
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C
ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1715), with no line terminators
Hash da2bcf12af7e70307855935dbfb4ccff
beb7c32b7b382ccfcf0f5184366c2c37d1d4f59b
d8d89bac91b40db341d9ddd6c7c2cd58e63806963947162c95d02145251b6ee7
GET /gh/prebid/currency-file@1/latest.json?date=20250325 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/json; charset=utf-8
x-jsd-version: 1.0.2370
x-jsd-version-type: version
etag: W/"629-w5mzzl6NtgNmT86s6lH3OnxwcmY"
content-encoding: br
accept-ranges: bytes
date: Tue, 25 Mar 2025 02:07:49 GMT
age: 36417
x-served-by: cache-fra-eddf8230103-FRA, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 814
X-Firefox-Spdy: h2
dsp-service.admatic.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
302 Found 0 B URL GET dsp-service.admatic.com.tr/users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectdsp-service.admatic.com.tr
Fingerprint4A:46:A5:28:33:FA:59:3C:B4:57:40:DE:DE:FA:D7:07:E6:82:78:18
ValidityMon, 10 Mar 2025 03:46:23 GMT - Sun, 08 Jun 2025 03:46:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /users/sync/?redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Cookie: adplus_digital_id=0.ig07crxsabe
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 25 Mar 2025 02:07:53 GMT
content-type: text/html; charset=utf-8
location: https://prebid.admatic.com.tr/setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=0d6fe62a-2a7a-4097-ae99-441c60503ba5
access-control-allow-origin: *
x-powered-by: AdMatic
vary: Accept, Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: admatic-k8s
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ifz6fd41KjgyumKngFoXJcInT21fuFFLXiTZH6ab0x%2F21pvK5qIPLmuqvmefvSVbBsLdTWWOcBGgXwrqOadF1nquzbqw%2BeY0LzEhV1pb5TDxo6STCA7kBGyf9dtp0eTfRp8ccBOfEeReAZEj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925adb799e7f712f-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1056&min_rtt=441&rtt_var=1144&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2865&recv_bytes=1426&delivery_rate=6020790&cwnd=253&unsent_bytes=0&cid=37e1628566700bdc&ts=125&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/js/public/layouts/app.js?id=c6f3544d59459ef4967d8d8075ae7bcc
200 OK 344 kB URL GET cdn.cuty.io/js/public/layouts/app.js?id=c6f3544d59459ef4967d8d8075ae7bcc
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
Size 344 kB (343687 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/public/layouts/app.js?id=c6f3544d59459ef4967d8d8075ae7bcc HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: application/javascript
last-modified: Thu, 28 Nov 2024 12:18:27 GMT
vary: Accept-Encoding
etag: W/"67485f93-53e87"
expires: Fri, 28 Nov 2025 12:18:30 GMT
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 10072154
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GHBpZX%2F75BtNLaRKM4%2B5gSTf3QnhfF6WnFu7KgnBHCyMYlhXDak2Q%2BkGAYDkGv%2B9kAy28o0FfeHqJuw5Ihp2eOXz3XkiiXbGyGlRRf5PTn3wPqFDPIlCM%2BUk%2FCALPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb524c397127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2614&min_rtt=409&rtt_var=3802&sent=60&recv=25&lost=0&retrans=0&sent_bytes=67316&recv_bytes=2371&delivery_rate=5259079&cwnd=254&unsent_bytes=31856&cid=6389d0bb614b0a36&ts=106&x=0"
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1421
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:50 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_xtdtmryhp8v7s8w71fj
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb61cf32569c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=82yR%2FaUawkje55piviSyyOq9El9ySXmF%2FXk8lagHX9Lyot5ZbLYNOyW9lpJIxRyuH%2FV%2BZRqI3mtE4NLsxKq0EjSsjuRd%2FURMBLdioPe7VO9lEbODiDWUGvr9m9HzHtCdQRYlPVqQzfZmKVI%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 925adb54cb670b3d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 0 B URL HEAD pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
Fingerprint62:6A:C2:E9:1E:CD:CA:3F:55:5E:09:5E:16:A5:45:F1:3A:0B:1C:09
ValidityMon, 10 Mar 2025 08:35:58 GMT - Mon, 02 Jun 2025 08:35:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Tue, 25 Mar 2025 02:07:49 GMT
expires: Tue, 25 Mar 2025 02:07:49 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 2754450660152975768
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52672
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 754 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (782), with no line terminators
Hash 946d49f49fc6fc0872fd333870fc2e72
7dd47c58db42be8474c786751dde2ff957569aa1
5bec22a9c39fc8c31634c1d365168b516b0e7627c3d147aeaa06f25b85ba6fb7
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 374
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 420
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
pix.netpub.info/o?l=1280&r=250&k=div_netpub_campaign_x5jlsadjdfhn29d&g=admatic&yy=8913c467b5967016ca3e8c89e1560632&y=en-US&j=0&xx=PBAUCTION&q=300&t=1742868470013&m=1024&aa=efa0c35c478e24f5b65a10692ab4e782&i=3&p=275&b=request&zz=efdf0955e895c40ceacd82be955e9b3b65fefe3f5efb572df70cff0c0e4c6af4&o=490&ww=79af79294da87cee04e5e3e68374e1e6&d=https%3A%2F%2Fcutyion.com%2FjhRN0&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&x=netpub&h=0&c=17.92038730825749&f=pb&n=100&v=1.6.0&w=8d7c9a9e6384e4de5b6cc926e14c0280&e=0&s=interactive&a=23
200 OK 633 B URL GET pix.netpub.info/o?l=1280&r=250&k=div_netpub_campaign_x5jlsadjdfhn29d&g=admatic&yy=8913c467b5967016ca3e8c89e1560632&y=en-US&j=0&xx=PBAUCTION&q=300&t=1742868470013&m=1024&aa=efa0c35c478e24f5b65a10692ab4e782&i=3&p=275&b=request&zz=efdf0955e895c40ceacd82be955e9b3b65fefe3f5efb572df70cff0c0e4c6af4&o=490&ww=79af79294da87cee04e5e3e68374e1e6&d=https%3A%2F%2Fcutyion.com%2FjhRN0&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&x=netpub&h=0&c=17.92038730825749&f=pb&n=100&v=1.6.0&w=8d7c9a9e6384e4de5b6cc926e14c0280&e=0&s=interactive&a=23
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.info
Fingerprint56:17:64:34:08:12:75:29:07:B5:8D:B0:E2:DB:E0:AD:D1:5C:B7:4A
ValidityMon, 10 Feb 2025 19:21:32 GMT - Sun, 11 May 2025 20:21:25 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3
Hash 38effb443d2f12d922e6c6cc67020fc3
fc6eb712f8db1df672d8a205efd0d670742d026f
61db856c5e88afe9a6cd068840b8b535abe6d31a065cdde10088f928e0bc9316
GET /o?l=1280&r=250&k=div_netpub_campaign_x5jlsadjdfhn29d&g=admatic&yy=8913c467b5967016ca3e8c89e1560632&y=en-US&j=0&xx=PBAUCTION&q=300&t=1742868470013&m=1024&aa=efa0c35c478e24f5b65a10692ab4e782&i=3&p=275&b=request&zz=efdf0955e895c40ceacd82be955e9b3b65fefe3f5efb572df70cff0c0e4c6af4&o=490&ww=79af79294da87cee04e5e3e68374e1e6&d=https%3A%2F%2Fcutyion.com%2FjhRN0&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&x=netpub&h=0&c=17.92038730825749&f=pb&n=100&v=1.6.0&w=8d7c9a9e6384e4de5b6cc926e14c0280&e=0&s=interactive&a=23 HTTP/1.1
Host: pix.netpub.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:50 GMT
content-type: image/jpeg
content-length: 633
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mv6BoaGPxNh37syydFB8oIgKNnkJRC92eCXj3rtyFAiyOFXFT%2Fsqw9K7uMse5g5XQezPR%2BzKc6PMiCn00GDzlKY8EQ1NRJxx2LSwR9OwWW0AGK2an5xmOa%2BSFFUX3pZm2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb629e15b4f3-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=883&min_rtt=520&rtt_var=545&sent=10&recv=12&lost=0&retrans=0&sent_bytes=4459&recv_bytes=1971&delivery_rate=6092566&cwnd=257&unsent_bytes=0&cid=e3364da9789b54b6&ts=162&x=0"
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 326
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:49 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb5cadba569f-OSL
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js
200 OK 911 B URL GET www.google.com/recaptcha/api.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint2F:CC:05:C5:14:C4:CD:A4:26:05:31:F9:67:40:7C:D3:39:74:34:0C
ValidityMon, 10 Mar 2025 08:37:46 GMT - Mon, 02 Jun 2025 08:37:45 GMT
File type JavaScript source, ASCII text, with very long lines (911), with no line terminators
Hash 54836d07a856f5b9a4e1714b86e21845
f87c92538683805b3464e1a828a6075d5799c7d3
02b6a60158e419737bb0501ce21e7b1b56d89c9f9eb26a91ac82a230742071ff
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Tue, 25 Mar 2025 02:07:47 GMT
date: Tue, 25 Mar 2025 02:07:47 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ssp-service.adtarget.biz/impression/collect?data=eyJuZXR3b3JrSWQiOiI2NzUwMzUzY2M3ZGQyY2NmNmUwMDlkMTgiLCJiaWRkZXJJZCI6ImFkZm9ybSIsInB1Ymxpc2hlcklkIjoiY3V0eWlvbi5jb20iLCJzaXplIjoiMzAweDI1MCIsImRldmljZSI6ImRlc2t0b3AiLCJwcmljZSI6MS4zOTE0MjEyNjI3ODMwNzQ0LCJjb3VudHJ5IjoiTk9SIiwib3MiOiJ3aW5kb3dzIiwiYnJvd3NlciI6IkZpcmVmb3giLCJjdXJyZW5jeSI6IlVTRCIsIm1vZGVsIjoic3RhbmRhcmQiLCJtZWRpYVR5cGUiOiJiYW5uZXIiLCJhZFVuaXQiOiJ1bmtub3duIiwidG9rZW4iOiJjMWQ1MDRjNy03ZDQ0LTRkODctYjI5Zi04ZjUzZmI5NmZjOGMiLCJjb21taXNzaW9uX3N0YXR1cyI6MSwiY3JlYXRlZEF0IjoxNzQyODY4NDY5Nzc3LCJlbnZpcm9ubWVudCI6IldFQiIsIm5ldHdvcmtSZXZlbnVlIjowfQ==&n=5548533711&p=cutyion.com&t=1742868469777
200 OK 35 B URL GET ssp-service.adtarget.biz/impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742868469777
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subjectssp-service.adtarget.biz
Fingerprint28:42:BD:28:0C:E5:24:5B:02:96:CE:18:7E:D7:11:00:91:D8:6B:17
ValidityWed, 19 Mar 2025 17:55:20 GMT - Tue, 17 Jun 2025 17:55:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742868469777 HTTP/1.1
Host: ssp-service.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cutyion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:51 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-powered-by: Adtarget
etag: W/"23-X71HIiL+uKIs9biqXcW44Tr4jis"
strict-transport-security: max-age=31536000; includeSubDomains
working-on: programmatic
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rykZVZ1IB2eiLjzAJ4x7DS1Qnkk5o1HA0Rfk5tJE4rebyRWA01DID1ghMNsnbxsly%2FfEHjd1Y4n0M0WtS5W%2BIDSQbA9mjZPo6JlG06pER0ETTl%2FNGf8%2FSE6c2UjEGQVgAbtpQTAKnQMUFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb6a1f99569a-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1256&min_rtt=430&rtt_var=941&sent=15&recv=15&lost=0&retrans=1&sent_bytes=4838&recv_bytes=3397&delivery_rate=5255898&cwnd=256&unsent_bytes=0&cid=b38a03e2b815b8af&ts=1405&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/twitter-icon.png
200 OK 809 B URL GET cdn.cuty.io/images/shared/twitter-icon.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 32 x 28, 8-bit/color RGBA, non-interlaced
Hash 057b26d74519a32a2e278d6c89d97d19
6e8f8c66b55bddf2c37c169babaf372e11015267
977c15df2295c7f457b797893def2a978abae8f05c957a2176f9c650ca9305d8
GET /images/shared/twitter-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 809
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-329"
expires: Thu, 19 Feb 2026 08:30:48 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1118590
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2eA8v9qEvJ885tQMXt6eJ3miYHGVWSTnchuNXCqtTopmpIUL95tSCKX2cGlOwCBD1hyzvq8lFbiNTZoASSf3V1AeLlpOtXgv%2BipU1dR2KMA8Bi2R3dHdI%2Bi2JgmuNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb52bc837127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2739&min_rtt=409&rtt_var=1278&sent=515&recv=231&lost=0&retrans=0&sent_bytes=698299&recv_bytes=3253&delivery_rate=29103628&cwnd=159&unsent_bytes=0&cid=6389d0bb614b0a36&ts=167&x=0"
X-Firefox-Spdy: h2
dsp-service.netaddiction.tech/users/sync/?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D61bf6421-dd2e-4760-b070-86306e1d6fd8
302 Found 0 B URL GET dsp-service.netaddiction.tech/users/sync/?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D61bf6421-dd2e-4760-b070-86306e1d6fd8
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint74:FE:1E:F4:4F:B1:68:C0:81:16:C4:85:68:0D:7D:1F:61:EF:31:DF
ValidityTue, 11 Feb 2025 09:45:46 GMT - Mon, 12 May 2025 09:45:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /users/sync/?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D61bf6421-dd2e-4760-b070-86306e1d6fd8 HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: text/html; charset=utf-8
location: https://prebid.netaddiction.tech/setuid?bidder=netaddiction&gdpr=&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept, Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BVfayDwd36ODfkdxPl3ONHVJjNiJqpFSkoy0NVDsuZQum%2BtKp%2FPw%2FX8YNfi7jpkXUMK6yxTfC3HpJuQ2IXx8KYisvhbontbxByYU7YSomGlZZXQ%2FGMZSVmjuE8bPadOGnjhwtl%2F7nItljnfRHapn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb7c6d42b515-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4524&min_rtt=1733&rtt_var=2463&sent=19&recv=12&lost=0&retrans=0&sent_bytes=6174&recv_bytes=2254&delivery_rate=6724&cwnd=12000&unsent_bytes=0&cid=c27b3ab36fbfe9bd&ts=392&x=1", cfExtPri, cfHdrFlush;dur=0
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 10:09:01 GMT
expires: Fri, 20 Mar 2026 10:09:01 GMT
cache-control: public, max-age=31536000
age: 403127
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1361
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:07:48 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Mar 2025 02:07:53 GMT
location: https://prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/bUO1BXI8H9PgjAPSW9hwuSeI/recaptcha__en.js
200 OK 561 kB URL GET www.gstatic.com/recaptcha/releases/bUO1BXI8H9PgjAPSW9hwuSeI/recaptcha__en.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT
Size 561 kB (560963 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /recaptcha/releases/bUO1BXI8H9PgjAPSW9hwuSeI/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 220514
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Mar 2025 10:58:23 GMT
expires: Tue, 24 Mar 2026 10:58:23 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 17 Mar 2025 04:01:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 54565
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ghb2.adtelligent.com/v2/auction/
200 OK 4.1 kB URL POST ghb2.adtelligent.com/v2/auction/
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb2.adtelligent.com
Fingerprint92:3F:88:3B:C2:15:EE:E0:3B:90:C3:C2:98:90:42:3B:52:59:A0:2F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (4219), with no line terminators
Hash c38122dafdfd401691a26c002c997e84
91b6a8dfed4a7a08e15e33ef9756fd0839a919d1
9da4f9a8a6294d4edc1e8067f89ee2f185d1ad1adde1a6e375f1a5db9099e22f
POST /v2/auction/ HTTP/1.1
Host: ghb2.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 335
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Tue, 25 Mar 2025 02:07:50 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1210
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
ssp-service.adtarget.biz/impression/collect?data=eyJuZXR3b3JrSWQiOiI2NzUwMzUzY2M3ZGQyY2NmNmUwMDlkMTgiLCJiaWRkZXJJZCI6ImFkZm9ybSIsInB1Ymxpc2hlcklkIjoiY3V0eWlvbi5jb20iLCJzaXplIjoiMzAweDI1MCIsImRldmljZSI6ImRlc2t0b3AiLCJwcmljZSI6MS4zOTE0MjEyNjI3ODMwNzQ0LCJjb3VudHJ5IjoiTk9SIiwib3MiOiJ3aW5kb3dzIiwiYnJvd3NlciI6IkZpcmVmb3giLCJjdXJyZW5jeSI6IlVTRCIsIm1vZGVsIjoic3RhbmRhcmQiLCJtZWRpYVR5cGUiOiJiYW5uZXIiLCJhZFVuaXQiOiJ1bmtub3duIiwidG9rZW4iOiJlNThlOWZjYi02MjJhLTQ3MzMtOThlMy02YTc1N2JmZWQ0NzQiLCJjb21taXNzaW9uX3N0YXR1cyI6MSwiY3JlYXRlZEF0IjoxNzQyODY4NDY5ODM5LCJlbnZpcm9ubWVudCI6IldFQiIsIm5ldHdvcmtSZXZlbnVlIjowfQ==&n=5548533711&p=cutyion.com&t=1742868469839
200 OK 35 B URL GET ssp-service.adtarget.biz/impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742868469839
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subjectssp-service.adtarget.biz
Fingerprint28:42:BD:28:0C:E5:24:5B:02:96:CE:18:7E:D7:11:00:91:D8:6B:17
ValidityWed, 19 Mar 2025 17:55:20 GMT - Tue, 17 Jun 2025 17:55:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742868469839 HTTP/1.1
Host: ssp-service.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cutyion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:50 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-powered-by: Adtarget
etag: W/"23-X71HIiL+uKIs9biqXcW44Tr4jis"
strict-transport-security: max-age=31536000; includeSubDomains
working-on: programmatic
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ReOOa4n%2FHaq38poYCL8UhfGPgll0KeIv2%2B8MjclyqKYhLs09sdC6udmn7IQV78u2AjX2JftMGWWIp2t8PZSVNZdngpwPsVCdU%2BrT9TnYKjuFNEkT2T%2FTCpCONal0zha%2FVOVMCVFikPoV%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb62fc17569a-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1289&min_rtt=430&rtt_var=1166&sent=13&recv=13&lost=0&retrans=1&sent_bytes=4302&recv_bytes=2834&delivery_rate=5255898&cwnd=256&unsent_bytes=0&cid=b38a03e2b815b8af&ts=258&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
200 OK 4.0 kB URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
File type JavaScript source, ASCII text, with very long lines (4139), with no line terminators
Hash bbbc72d93429c4e48e6e2e1446748a73
d103640cf21c9242a22f61b4d19aedac1b448a4e
af8c8013e522f034e3364e2ae2dc3a13aa35c4615bf120344ea1b1e74eee2134
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 972
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://cutyion.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
x-powered-by: Adtarget
etag: W/"f8f-BMlxUhAl+AAc9PCn6GhpSIod8qc"
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r%2BzNelDDLWwLwSbArzZMHuXTeimNUkvfLJqCFxybv0SHFSMNN048ikVx6NU5ZzKNzcTX1FSoCtqWFfHgpB3eo2m1hY9Lbx3TTU5JMDC96MZAK4%2Ba8w7d%2BGdbEMx6PxMBOGeK8ULNYHHcW5a6u3U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb5eca30712e-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=2108&min_rtt=472&rtt_var=2337&sent=20&recv=17&lost=0&retrans=0&sent_bytes=8892&recv_bytes=5684&delivery_rate=5218018&cwnd=253&unsent_bytes=0&cid=dca05875a873a7c3&ts=682&x=0"
X-Firefox-Spdy: h2
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fadaptmx%2F
302 Found 0 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fadaptmx%2F
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://csync.smilewanted.com/
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fadaptmx%2F HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Mar 2025 02:07:53 GMT
location: https://csync.smilewanted.com/set_partner_userid_get/adaptmx/?gdpr=0
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
ssp-service.adtarget.biz/impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742868469779
200 OK 35 B URL GET ssp-service.adtarget.biz/impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742868469779
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subjectssp-service.adtarget.biz
Fingerprint28:42:BD:28:0C:E5:24:5B:02:96:CE:18:7E:D7:11:00:91:D8:6B:17
ValidityWed, 19 Mar 2025 17:55:20 GMT - Tue, 17 Jun 2025 17:55:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742868469779 HTTP/1.1
Host: ssp-service.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cutyion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:50 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-powered-by: Adtarget
etag: W/"23-X71HIiL+uKIs9biqXcW44Tr4jis"
strict-transport-security: max-age=31536000; includeSubDomains
working-on: programmatic
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y0QSpJPkxgdLZsUaCTwwMlr%2By3MiXbz8F9IHkqP9Py5ZrBjeoZ4a1bkelrfpDQDtPBms09nODtRlb6BqdVrAeV9zPqop9b39H%2BkTvfDzhb0KrkuPYqbmIHKcobIOUKb7l0lSBC38Ni4RCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb627be4569a-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1281&min_rtt=430&rtt_var=1532&sent=11&recv=11&lost=0&retrans=1&sent_bytes=3772&recv_bytes=2272&delivery_rate=5255898&cwnd=256&unsent_bytes=0&cid=b38a03e2b815b8af&ts=177&x=0"
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVso-ltQhOCxfeFccPybvAuwvyqexqjBaT1hWl1XFg2cSBBQ-eo4YsJ_zMPJyOiBhuIaGH4xKQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S841914091%3A1742868470730675
403 Forbidden 0 B URL GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVso-ltQhOCxfeFccPybvAuwvyqexqjBaT1hWl1XFg2cSBBQ-eo4YsJ_zMPJyOiBhuIaGH4xKQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S841914091%3A1742868470730675
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint57:E3:38:DA:15:E9:22:1D:17:E2:12:42:3A:88:03:62:6E:F5:C0:53
ValidityMon, 10 Mar 2025 08:36:06 GMT - Mon, 02 Jun 2025 08:36:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVso-ltQhOCxfeFccPybvAuwvyqexqjBaT1hWl1XFg2cSBBQ-eo4YsJ_zMPJyOiBhuIaGH4xKQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S841914091%3A1742868470730675 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:07:50 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-OihM2qeZS_Fx-uoQis9Aow' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.google.com/tools/feedback/help_api.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ghelp/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.Iew5X21fS_0.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.cuty.io/images/shared/logo.svg
200 OK 6.0 kB URL GET cdn.cuty.io/images/shared/logo.svg
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash 10818db4ec7670bce1cec5b9b1f02d75
22d063511fa1e4f3efb06b2abd9aa862146d019c
77a7737552b4e0954efe947589319270841bb3d0b5862ffed4820c61e3dba70d
GET /images/shared/logo.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/svg+xml
last-modified: Sun, 21 Jul 2024 07:29:21 GMT
etag: W/"669cb8d1-175a"
expires: Thu, 16 Oct 2025 22:32:55 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 13062853
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QVoB9pbVSNRPsVE46LU29hB0LG50ZtkiXePGcoL8kHov0LC9LH%2FaBsmPx21bFHg21pnSqAHqicpRxgXykTVEXwZiMC%2BaJP3EFQS8tQNT8pg%2BVPUxYYT7JgXxxpA%2FFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb52bc817127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2739&min_rtt=409&rtt_var=1278&sent=511&recv=231&lost=0&retrans=0&sent_bytes=695271&recv_bytes=3253&delivery_rate=29103628&cwnd=159&unsent_bytes=0&cid=6389d0bb614b0a36&ts=167&x=0"
X-Firefox-Spdy: h2
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1166
server: cloudflare
cf-ray: 925adb567e6656c5-OSL
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
200 OK 4.0 kB URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
File type JavaScript source, ASCII text, with very long lines (4124), with no line terminators
Hash 0e824fafce2241f6514218c68ccb66b0
e172d88c1b816dde8f9a8be4ffd7f058ce4019b1
498705c20d3f5a3eddd79412e390eae0a1d26897ec4f0a64a6fa73619b500894
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1092
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://cutyion.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
x-powered-by: Adtarget
etag: W/"f80-qR3oup5Cp/6dRd9p/eJrnRG3CbQ"
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Oj%2FfGs6mb8YSuu6lv0bq54XEI6bK3Hp3oYXLNS7GnHiLseG16%2F2UeXo1mmLTS96CUbgPdWmicaaBoDuXeZYtAQ7X91jRQeGF6XQedyduvuS2tJ8BSnFW8EcXDHKkGd5IK4oLlUJ68gVoCOFbLKs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb5f4a61712e-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1808&min_rtt=472&rtt_var=2315&sent=17&recv=16&lost=0&retrans=0&sent_bytes=6004&recv_bytes=5684&delivery_rate=5218018&cwnd=253&unsent_bytes=0&cid=dca05875a873a7c3&ts=653&x=0"
X-Firefox-Spdy: h2
ukankingwithea.com/asd100.bin
200 OK 102 kB URL GET ukankingwithea.com/asd100.bin
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:7E:37:44:90:B9:05:B4:82:CD:5A:71:84:A1:C8:84:66:33:BC:78
ValiditySat, 01 Mar 2025 13:28:14 GMT - Fri, 30 May 2025 14:26:54 GMT
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
GET /asd100.bin HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 1820
last-modified: Tue, 25 Mar 2025 01:37:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A5wl9rvM%2FczFg7vjaEI%2BcmUYbU5CxbNbJuWE6tZvvoiP3MrErtPcL5uC2Z1aLWY1FfgYrEsw4VEmg7u5QhvoU5RWo5Q2utTQzTSGQfaA6JgKPOTrDbdJHrOrzjbm%2BnW6fVrahYE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb5af8b4569a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=904&min_rtt=526&rtt_var=451&sent=7&recv=12&lost=0&retrans=0&sent_bytes=3293&recv_bytes=1266&delivery_rate=7412969&cwnd=254&unsent_bytes=0&cid=365ca1a668b8d283&ts=62&x=0"
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 292
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:49 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb5c8dae569f-OSL
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1500
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_at890vpidtgkfyih5je
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb5cfc8f569c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
pix.netpub.info/o?c=15.583918143170434&x=netpub&e=0&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&v=1.6.0&r=250&zz=f62a2f3c90ba3d9b80971a0dbf417d427cb7bcd1ebd2410525c6b1acfcffd3f1&s=interactive&b=request&g=admatic&j=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&xx=PBAUCTION&t=1742868471212&f=pb&p=572&yy=df2078e488df0207092ca05dc81135f1&a=20&y=en-US&m=1024&aa=efa0c35c478e24f5b65a10692ab4e782&n=100&l=1280&h=0&ww=b11e4792e0a492b4b2fb9a909a479ccc&q=300&o=490&i=3&d=https%3A%2F%2Fcutyion.com%2FjhRN0&k=div_netpub_campaign_xbcibqev9ntcwa857ji
200 OK 632 B URL GET pix.netpub.info/o?c=15.583918143170434&x=netpub&e=0&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&v=1.6.0&r=250&zz=f62a2f3c90ba3d9b80971a0dbf417d427cb7bcd1ebd2410525c6b1acfcffd3f1&s=interactive&b=request&g=admatic&j=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&xx=PBAUCTION&t=1742868471212&f=pb&p=572&yy=df2078e488df0207092ca05dc81135f1&a=20&y=en-US&m=1024&aa=efa0c35c478e24f5b65a10692ab4e782&n=100&l=1280&h=0&ww=b11e4792e0a492b4b2fb9a909a479ccc&q=300&o=490&i=3&d=https%3A%2F%2Fcutyion.com%2FjhRN0&k=div_netpub_campaign_xbcibqev9ntcwa857ji
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.info
Fingerprint56:17:64:34:08:12:75:29:07:B5:8D:B0:E2:DB:E0:AD:D1:5C:B7:4A
ValidityMon, 10 Feb 2025 19:21:32 GMT - Sun, 11 May 2025 20:21:25 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3
Hash 066dbcc8c35b0d008481bb13e6a559c4
6330d0f9697bc24b47ccd0df232c939a5c1d7414
d6e46f09a31afd6d904d67cb6f0cf48554af92b558e09ac95d078711b9af3c3c
GET /o?c=15.583918143170434&x=netpub&e=0&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&v=1.6.0&r=250&zz=f62a2f3c90ba3d9b80971a0dbf417d427cb7bcd1ebd2410525c6b1acfcffd3f1&s=interactive&b=request&g=admatic&j=0&w=8d7c9a9e6384e4de5b6cc926e14c0280&xx=PBAUCTION&t=1742868471212&f=pb&p=572&yy=df2078e488df0207092ca05dc81135f1&a=20&y=en-US&m=1024&aa=efa0c35c478e24f5b65a10692ab4e782&n=100&l=1280&h=0&ww=b11e4792e0a492b4b2fb9a909a479ccc&q=300&o=490&i=3&d=https%3A%2F%2Fcutyion.com%2FjhRN0&k=div_netpub_campaign_xbcibqev9ntcwa857ji HTTP/1.1
Host: pix.netpub.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:51 GMT
content-type: image/jpeg
content-length: 632
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7YYsZoOnjSAng0mw2fveREQ522go2WHXLCx%2FhhWVEMmsRUYxtwv0eEnMmT%2BPBaQvqSRRdQDNpFwRx3q3Ea3vPhOkvItOD8HZK37%2F%2FX4BuyCTYmYKYuoKcYySYzUHKtmSIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb6a2a1cb4f3-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=952&min_rtt=520&rtt_var=424&sent=18&recv=16&lost=0&retrans=0&sent_bytes=6691&recv_bytes=2954&delivery_rate=6092566&cwnd=257&unsent_bytes=0&cid=e3364da9789b54b6&ts=1371&x=0"
X-Firefox-Spdy: h2
d8sllv1cwflbw.cloudfront.net/?vllsd=1157445
200 OK 191 kB URL GET d8sllv1cwflbw.cloudfront.net/?vllsd=1157445
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
Size 191 kB (190610 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?vllsd=1157445 HTTP/1.1
Host: d8sllv1cwflbw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 64315
date: Tue, 25 Mar 2025 02:07:47 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L6ZtMGTm2PfNvVyQ5LG96k_siSGLZbCyxMHiFYd-5x5Grh1ulYwi9Q==
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1501
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_xbcibqev9ntcwa857ji
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb5cbc7c569c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
200 OK 4.0 kB URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
File type JavaScript source, ASCII text, with very long lines (4124), with no line terminators
Hash cd2a003945463d169dcea3fa5acd66de
cba68d59f14e4cc73ae94a07c52244d58639056a
707b9ae4b4a735777810958608167946b2057cd2603e4a93099279f19ef12c98
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1092
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://cutyion.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
x-powered-by: Adtarget
etag: W/"f80-/XCL2qJx7rRj/FveXRY2a2ot3pc"
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xSXarb45KD1I0ogDkSFt%2BtqG61WZShQhc%2FrgV0wVsX2KvI9QXJywU9uOVAkSUaiGO6mjxrFKhziPzBsZpcz6adpmNtvDHTOWBfoP8nvS68e5xG%2FkmSqNAkYWmy76YssSmUs5Uhe%2BEfabScJINv0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb5f9a88712e-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1911&min_rtt=472&rtt_var=2147&sent=23&recv=18&lost=0&retrans=0&sent_bytes=11803&recv_bytes=5684&delivery_rate=5464150&cwnd=253&unsent_bytes=0&cid=dca05875a873a7c3&ts=712&x=0"
X-Firefox-Spdy: h2
a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
302 Found 86 B URL GET a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectadpartner.pro
FingerprintD6:53:9A:7B:8F:CD:3A:58:6A:19:B0:66:10:58:59:68:AE:5B:FA:BB
ValidityTue, 14 Jan 2025 08:08:25 GMT - Mon, 14 Apr 2025 08:08:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/match?redirect=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dmembrana%26gdpr%3D${gdpr}%26gdpr_consent%3D${gdpr_consent}%26f%3Di%26uid%3D%7Buser_id%7D HTTP/1.1
Host: a4p.adpartner.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Tue, 25 Mar 2025 02:07:55 GMT
content-type: text/html; charset=utf-8
content-length: 224
location: https://prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=8984dbd3-b103-4d51-8dfb-4267a7e17cd6
cache-control: no-store no-transform
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 331
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:49 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb5cfddb569f-OSL
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 2007
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_e4hcit9lk9uy0z58mgg
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb612eb6569c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:07:55 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZHRhcmdldCI6eyJ1aWQiOiIyNWY0NzkyMTExYTI4MzliIiwiZXhwaXJlcyI6IjIwMjUtMDQtMDhUMDI6MDc6NTUuMTI3MjE1MDVaIn19fQ==; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:55 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hrx0ANPU%2BnX%2Blo24gqzxkio1pdKrMijsl3XHb72YB4pmAGEOMnnRj90f1S15XkMPbK7km3WjYZHlK7xwdg%2FaStKwMbDVnONibWpyB4FjHmwTBhJE%2BGzh6scQR0hR8zJnr%2FBRPGY5FC%2FXJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb816f4156aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5704&min_rtt=4914&rtt_var=2679&sent=20&recv=13&lost=0&retrans=0&sent_bytes=6874&recv_bytes=2969&delivery_rate=2698&cwnd=12000&unsent_bytes=0&cid=a92dc3d01c56e36b&ts=430&x=1", cfExtPri, cfHdrFlush;dur=0
200 OK 49 kB IP
Certificate IssuerGoogle Trust Services
Subjectcutyion.com
FingerprintA5:9F:55:6D:EE:B9:54:68:05:DB:30:6E:AB:11:E3:27:02:E9:3A:B5
ValidityThu, 20 Feb 2025 05:03:23 GMT - Wed, 21 May 2025 06:02:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jhRN0 HTTP/1.1
Host: cutyion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: must-revalidate, no-cache, no-store, private
pragma: no-cache
expires: -1
x-frame-options: SAMEORIGIN, SAMEORIGIN
set-cookie: origin=cuty; expires=Tue, 24 Feb 2026 02:07:46 GMT; Max-Age=29030400; path=/; secure; httponly; samesite=lax
XSRF-TOKEN=eyJpdiI6InBocW14eVdhSVFsWExxWXNwQml4TWc9PSIsInZhbHVlIjoidVM4NmlVdEJ0Y3JTcWpSUDZvR2J3R2lwYmRmcmdhODZtd3ZyVEw4Q3BacjhDYWVkRmZrQ2Z2Yk94a2dkc0RyeTZoNU9lK1hyRHFjaTFQL3BHcEdsdWJQeGMxUjlJSWtXdWNERTRyYTNMSEw0VmpkbGJzM01ZYXVIVFdWNk5vYkkiLCJtYWMiOiJiNjAxZjQ0MzFhYWYwNjdjYzc5ZTFjMWU0YjgxM2QzY2E4NzEyZjdlYzQ2YjI3YzhkYTY3ZDEzMDBkZTMyYjg2IiwidGFnIjoiIn0%3D; expires=Tue, 01 Apr 2025 02:07:46 GMT; Max-Age=604800; path=/; samesite=lax
cutyio_session=eyJpdiI6Imd1a3BES2l2Ty9NVEhTM0dNUmh0THc9PSIsInZhbHVlIjoiWk5BczczaWEzNmdTTDRRZUhqN0I0cXh4b3l1S0xxSmRRS3NWUmlnOFlaa0JCZmcyUEpaL2c4MlNZZmJ2S1VJejhOQTN2VXJzdlJ6K3NLdDhrQ3FzUlhzZm45U0FoWmtWdEc5UDVhcW9CSCtiMW44NzhEbk9WT0xzdm5aZENBSFYiLCJtYWMiOiI2MzY0MmY3YzA0ZjA2NGViOGE3MWIxMGMxNTRhMmYwNGUxMzhmMWU5N2I1MzMzOGM1NjcyNDM3M2NiZmUxYzhkIiwidGFnIjoiIn0%3D; expires=Tue, 01 Apr 2025 02:07:46 GMT; Max-Age=604800; path=/; httponly; samesite=lax
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m9%2Fi5an9P1uKAwqaLGeOXXjDENIm%2BOikdw%2FTliWRK5tPyVsJnmxB1rWvhtGxBdXJRfLZCms6Jo8xtoI8nHcPkQc0BtkNGYKJMFSpfyXHS2bWQodIQhLyhiouat7WzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb460fed5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6672&min_rtt=702&rtt_var=11581&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3273&recv_bytes=1250&delivery_rate=5746031&cwnd=254&unsent_bytes=0&cid=22e7f33f9800c2ee&ts=1601&x=0"
X-Firefox-Spdy: h2
cdn-adtech.com/1a0942083b83d8f3eb8ef33d4731b7e4.js
200 OK 63 kB URL GET cdn-adtech.com/1a0942083b83d8f3eb8ef33d4731b7e4.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcdn-adtech.com
Fingerprint5D:99:60:F4:06:CA:EF:FA:7C:77:B1:B8:F9:BF:3F:23:5F:6C:41:14
ValidityFri, 21 Feb 2025 11:05:59 GMT - Thu, 22 May 2025 12:04:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1a0942083b83d8f3eb8ef33d4731b7e4.js HTTP/1.1
Host: cdn-adtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
x-amz-id-2: VEM2m7k22XvQx8JHY3UqXVU40aw6JlUgi/LH1iUQj5azccdnEiGjeSoUH0ZkGP03IX1lnS7VDJqsCvhz8MGflw==
x-amz-request-id: 62J05FGBRCEB1NDX
last-modified: Fri, 14 Mar 2025 11:17:41 GMT
etag: W/"e29e26d34dd25f6dedc33ac66a65bac0"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4O.JwztvUL00Cd9_3yhLeJUUqWRZF_Jf
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VuVlGS8kEi%2FmIZ9ExBdyUCksftbHjkez4foSGSR0zVQjzAe5uZciGogBh%2FkXrlZqZ%2BsrAdBT%2FfoCJYj73lwtHefh6vDSisC7g%2Fxvy6gODcfIqeu7aC4J%2B4jQVkdvh0K4QA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb557db65685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=911&min_rtt=440&rtt_var=800&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3206&recv_bytes=1063&delivery_rate=7215946&cwnd=250&unsent_bytes=0&cid=df7b4ded0a1bbe34&ts=237&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nfo2aOc9dn29oZ5QuhzH53mHyX%2Bk1Q7GNfqoGefX4UMvqL4y8ORvxv9LljZmi37XcpghhwFFvgGYiLgjjNC2LyhalETvWsgL6FftGF%2BLYbm%2BD5H09QphLGFV9vrgn9ghI4pUmaE%2FptMfsAs%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 925adb561b700b3d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1166
server: cloudflare
cf-ray: 925adb568e6956c5-OSL
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:49 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aAiShvpgpIvKi8UmALtcRBoTasa445mG37NjZT1JGI4VoyFQvDa%2BaEB%2FJRVHuh4h%2FB3cscIWZVLYbyvBjB4RokeuEV5zx9NsN9VEpOVaXgeMfYI6DL63QLycm3P4qkvbWjTFHatEnrOnnVGtG5k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb5cbc5a0afa-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=738&min_rtt=458&rtt_var=592&sent=8&recv=11&lost=0&retrans=0&sent_bytes=2819&recv_bytes=1280&delivery_rate=4984509&cwnd=253&unsent_bytes=0&cid=5d2cf8c012eb3fe6&ts=120&x=0"
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1360
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:07:49 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-fr.png
200 OK 16 kB URL GET cdn.cuty.io/images/shared/locale-fr.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Hash d5c12041f2ddd200c2c881e5be833179
52ca2be8bf29666646ce347a5d0ef3f6cd547ca9
8c1d20e07e73934ea05d1a1990ad742073d9c674d81b09c2f76fa08eaf286eaf
GET /images/shared/locale-fr.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 16411
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-401b"
expires: Tue, 10 Feb 2026 19:50:16 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3354560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rw6s61TRcTD3ZcJfgQeKolxQlju6vaasyBR8Fh6t%2BSfTRafq1NsPUCoEcvf0Zr4pc0vqvrscq5znclE%2F%2FgdwBZwHyWcA%2BJl0KL1jHoCVqyZnJ0BNlFrCxQ%2FZnfGtBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb52ac7d7127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=4300&min_rtt=409&rtt_var=480&sent=491&recv=225&lost=0&retrans=0&sent_bytes=675711&recv_bytes=3253&delivery_rate=29103628&cwnd=146&unsent_bytes=0&cid=6389d0bb614b0a36&ts=165&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531
200 OK 52 kB URL GET cdn.cuty.io/css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type ASCII text, with very long lines (52547)
Hash a66d1b3f490ee5b9c79bc9f7135b2531
dec1f851c99a7b3bedfc5eab237653e936492542
c6d2443a652a5a4d0ec21c76ab36874b2da6a67edefda281ba35875e82bb7f78
GET /css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: text/css
last-modified: Wed, 28 Dec 2022 14:22:02 GMT
vary: Accept-Encoding
etag: W/"63ac510a-cd44"
expires: Wed, 29 Oct 2025 05:03:46 GMT
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 10014253
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rrxSvYqAz3dPZPZ5qt7sncJLzGJIfOm3ALN3SGRrMSkY1X9SkFepb3OVmzyGTbFuOpXPqgzV8gYYcV9S2VAf%2FKPaobtVsjxmpYwqffmvsDve%2FsByiRQZVffa0y%2BVGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb52bc867127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1401&min_rtt=409&rtt_var=138&sent=678&recv=250&lost=0&retrans=0&sent_bytes=927005&recv_bytes=3253&delivery_rate=29651877&cwnd=158&unsent_bytes=1646&cid=6389d0bb614b0a36&ts=170&x=0"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 10:09:01 GMT
expires: Fri, 20 Mar 2026 10:09:01 GMT
cache-control: public, max-age=31536000
age: 403127
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pix.netpub.info/o?s=interactive&x=netpub&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&xx=PBAUCTION&c=17.921505864646&n=100&g=admatic&w=8d7c9a9e6384e4de5b6cc926e14c0280&t=1742868470099&d=https%3A%2F%2Fcutyion.com%2FjhRN0&aa=efa0c35c478e24f5b65a10692ab4e782&v=1.6.0&l=1280&k=div_netpub_campaign_at890vpidtgkfyih5je&b=fetch&zz=a3f20ce7607f9e0ebbaa7fd6d1cd8b9f49c4cbf5fb3c360fd39ef0d22412a5a9&p=660&h=0&j=0&q=300&a=23&y=en-US&i=3&o=490&m=1024&yy=24ac67282eb270a2de2bd4a6d8c15bd9&ww=f7f1590dd9957931c3e095eb3c68b1e6&r=250&e=0&f=pb
200 OK 632 B URL GET pix.netpub.info/o?s=interactive&x=netpub&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&xx=PBAUCTION&c=17.921505864646&n=100&g=admatic&w=8d7c9a9e6384e4de5b6cc926e14c0280&t=1742868470099&d=https%3A%2F%2Fcutyion.com%2FjhRN0&aa=efa0c35c478e24f5b65a10692ab4e782&v=1.6.0&l=1280&k=div_netpub_campaign_at890vpidtgkfyih5je&b=fetch&zz=a3f20ce7607f9e0ebbaa7fd6d1cd8b9f49c4cbf5fb3c360fd39ef0d22412a5a9&p=660&h=0&j=0&q=300&a=23&y=en-US&i=3&o=490&m=1024&yy=24ac67282eb270a2de2bd4a6d8c15bd9&ww=f7f1590dd9957931c3e095eb3c68b1e6&r=250&e=0&f=pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.info
Fingerprint56:17:64:34:08:12:75:29:07:B5:8D:B0:E2:DB:E0:AD:D1:5C:B7:4A
ValidityMon, 10 Feb 2025 19:21:32 GMT - Sun, 11 May 2025 20:21:25 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3
Hash 64034e1764adb552374bdf3b30a61485
9ecee5bc58583fb2c37dca703ecc312b16060575
9bcfae57160badb1fea401804a054a779fa690eb3c95eba0ed746ea5d25705c4
GET /o?s=interactive&x=netpub&u=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&xx=PBAUCTION&c=17.921505864646&n=100&g=admatic&w=8d7c9a9e6384e4de5b6cc926e14c0280&t=1742868470099&d=https%3A%2F%2Fcutyion.com%2FjhRN0&aa=efa0c35c478e24f5b65a10692ab4e782&v=1.6.0&l=1280&k=div_netpub_campaign_at890vpidtgkfyih5je&b=fetch&zz=a3f20ce7607f9e0ebbaa7fd6d1cd8b9f49c4cbf5fb3c360fd39ef0d22412a5a9&p=660&h=0&j=0&q=300&a=23&y=en-US&i=3&o=490&m=1024&yy=24ac67282eb270a2de2bd4a6d8c15bd9&ww=f7f1590dd9957931c3e095eb3c68b1e6&r=250&e=0&f=pb HTTP/1.1
Host: pix.netpub.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:50 GMT
content-type: image/jpeg
content-length: 632
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QwtikzPr%2BRnKEtN559DURqkBPQxkEeHlSInO2GskxnmkrV02IXNJqWrnoH6A4kZj6wjpeZB56tarH04ibTISq%2FTLekW3mkHvpYD0SSfu0dvwgMdZjLFdG0vJJexkXqI9NQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb634e7db4f3-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=923&min_rtt=520&rtt_var=489&sent=14&recv=14&lost=0&retrans=0&sent_bytes=5578&recv_bytes=2461&delivery_rate=6092566&cwnd=257&unsent_bytes=0&cid=e3364da9789b54b6&ts=292&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/money-tree.png
200 OK 28 kB URL GET cdn.cuty.io/images/public/money-tree.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 166 x 261, 8-bit/color RGBA, non-interlaced
Hash b9c1f6949e61fdf5272ce94b2d297eec
c60dda0dea1215405f6c2fba5f30ab6c92efc1d0
bb8ce1ceb98f2a5be933d8bd813e774cd03d3d37d54ac00fa6c6534a99a45dae
GET /images/public/money-tree.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 27646
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-6bfe"
expires: Fri, 13 Feb 2026 16:33:11 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3354560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wdmql75YlOwCOgiw6ErsUGSUce1WHowyraHo1G4zX%2FyzErH%2FTVO86pYT1dY2zq3TCwWGUqdoMCUU%2BRgwW97eRqWwA7sSbguCEd2JRa1oWC997ICh8G6T%2Bpi%2Fa4GmtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb525c4a7127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2509&min_rtt=409&rtt_var=2386&sent=74&recv=28&lost=0&retrans=0&sent_bytes=85748&recv_bytes=2371&delivery_rate=7661375&cwnd=254&unsent_bytes=13424&cid=6389d0bb614b0a36&ts=110&x=0"
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1416
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_wyxy3nmr06m4c5nc9
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb5cac68569c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
200 OK 4.6 kB URL GET dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint74:FE:1E:F4:4F:B1:68:C0:81:16:C4:85:68:0D:7D:1F:61:EF:31:DF
ValidityTue, 11 Feb 2025 09:45:46 GMT - Mon, 12 May 2025 09:45:45 GMT
File type HTML document, ASCII text, with very long lines (4777), with no line terminators
Hash a43fb56c1ee42a3a27eca9a63bcb5b71
a7f32e405c20ceef1bed5a2c6f3cf40347fd82f9
1eceed4a1bdeac9e56bd441457a44f800061998f2c2b54576d45614c112ccac6
GET /cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
x-powered-by: Pixad
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EGBeejpcCgGosLdOVC8C0eacx%2FwwZJpqrETQe5fdHkjjgn6KpwDalOUsczaymCGOTyYea%2BuSIuoWTvmSNgRDx83nOkijMYJMtXtTOwb%2B8DHLm7ejbXeeYYDxPSu8ubLkmUjegUHtaNoJUSWC80Xi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb7e3e01b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4185&min_rtt=1733&rtt_var=2524&sent=21&recv=14&lost=0&retrans=0&sent_bytes=7371&recv_bytes=2879&delivery_rate=53628&cwnd=12000&unsent_bytes=0&cid=c27b3ab36fbfe9bd&ts=679&x=1", cfExtPri, cfHdrFlush;dur=0
ssp-service.adtarget.biz/impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742868469808
200 OK 35 B URL GET ssp-service.adtarget.biz/impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742868469808
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subjectssp-service.adtarget.biz
Fingerprint28:42:BD:28:0C:E5:24:5B:02:96:CE:18:7E:D7:11:00:91:D8:6B:17
ValidityWed, 19 Mar 2025 17:55:20 GMT - Tue, 17 Jun 2025 17:55:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /impression/collect?data=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&n=5548533711&p=cutyion.com&t=1742868469808 HTTP/1.1
Host: ssp-service.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cutyion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:50 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-powered-by: Adtarget
etag: W/"23-X71HIiL+uKIs9biqXcW44Tr4jis"
strict-transport-security: max-age=31536000; includeSubDomains
working-on: programmatic
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LlfNoAwsG1sxh8Yb%2BaSOhn%2Bjx93VgYldRuXhLxHLvPTlUTMIW8CXOaZpgQACkJ2%2FsY0TrY7i%2BHUfA8%2BU59Sszr1534Cb3ZhZOdE6NwNu%2FwbaWt4LKMFv6S2pkDBLRwnZ6gn7RBncjSnKtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb61bb97569a-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=750&min_rtt=430&rtt_var=626&sent=7&recv=9&lost=0&retrans=0&sent_bytes=2908&recv_bytes=1710&delivery_rate=5255898&cwnd=253&unsent_bytes=0&cid=b38a03e2b815b8af&ts=116&x=0"
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=71f39a54-ebb5-441d-9533-55351dd8013b
200 OK 0 B URL GET prebid.admatic.com.tr/setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=71f39a54-ebb5-441d-9533-55351dd8013b
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=pixad&gdpr=0&gdpr_consent=&f=b&uid=71f39a54-ebb5-441d-9533-55351dd8013b HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.ig07crxsabe
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJwaXhhZCI6eyJ1aWQiOiI3MWYzOWE1NC1lYmI1LTQ0MWQtOTUzMy01NTM1MWRkODAxM2IiLCJleHBpcmVzIjoiMjAyNS0wNC0wOFQwMjowNzo1NC4xMjU1NTM0MzVaIn19fQ==; Path=/; Domain=admatic.com.tr; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zP4yND4gw1tXXBoeWPvW8xINNGcpYbxx4BiqHXlbKg1pbthX2ILimJ1LWWY3ZIqQ0IZ0XQ1DZQCBEJWKl%2F7vLa%2BcC20zEZlvOErDZX76rqQzl6qEdgn8OuOBatO9B2wGhKx7a75hNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925adb7afedf568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2184&min_rtt=442&rtt_var=2193&sent=13&recv=16&lost=0&retrans=0&sent_bytes=5061&recv_bytes=1758&delivery_rate=5208633&cwnd=257&unsent_bytes=0&cid=ccf36c798722e1f2&ts=173&x=0"
X-Firefox-Spdy: h2
sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
302 Found 86 B URL GET sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerZeroSSL
Subjectsync.console.adtarget.com.tr
FingerprintED:8C:47:D0:F4:82:C5:4F:57:FD:F5:2D:94:C8:7F:3B:9E:6E:E4:81
ValidityWed, 12 Mar 2025 00:00:00 GMT - Tue, 10 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D HTTP/1.1
Host: sync.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Adtarget
Date: Tue, 25 Mar 2025 02:07:54 GMT
Content-Length: 0
Etag: 25f4792111a2839b
Location: https://prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b
Set-Cookie: vmuid=25f4792111a2839b; expires=Thu, 26 Jun 2025 02:07:54 GMT; domain=.console.adtarget.com.tr; path=/; secure; SameSite=None
prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZHRhcmdldCI6eyJ1aWQiOiIyNWY0NzkyMTExYTI4MzliIiwiZXhwaXJlcyI6IjIwMjUtMDQtMDhUMDI6MDc6NTQuNzIwMDQ5NzgxWiJ9fX0=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gpxxrSCB2pH4IcXXDVjSLEDBJqRjRdPo%2FpOsaQBTB7YeqQUo1UTNr5WCXn8xTnYWQcjy1KSSjfwjjYSNmDq5vpKwoGs8zaeD%2BRCIGxkrV2FlTRd5HPY8GLOia2Tub3s4VV9WLvuwCkd%2BKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb7eda6d5685-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1615&min_rtt=405&rtt_var=1167&sent=22&recv=21&lost=0&retrans=0&sent_bytes=7555&recv_bytes=2162&delivery_rate=4503888&cwnd=253&unsent_bytes=0&cid=d811f4878832e5b8&ts=190&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/step-3.svg
200 OK 1.1 kB URL GET cdn.cuty.io/images/public/step-3.svg
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash 7183e196f55e65ce79742695036c23cd
a9e0fac30a2daa48fa55286152e4ddd1e16fa512
c4f5a911c7f89b1da640b9eba806fdf5ee40d0163702817838bf6409f16f5525
GET /images/public/step-3.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/svg+xml
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
etag: W/"67485f94-45b"
expires: Sat, 29 Nov 2025 02:02:06 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 8123812
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hD2noQNo65wukF2FJS6eXvb2Of077tiaVduZauimacDUEFGh6auvV03mPELKl7Swq2YDiNfvgx0P50m888BGa6qvYeE0pLPRsTUzXghYKaRww2lOGzkkogmE21derw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb524c487127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2509&min_rtt=409&rtt_var=2386&sent=74&recv=28&lost=0&retrans=0&sent_bytes=85748&recv_bytes=2371&delivery_rate=7661375&cwnd=254&unsent_bytes=13424&cid=6389d0bb614b0a36&ts=109&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467956
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467956
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467956 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 301 Moved Permanently
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html
content-length: 167
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CPRY5Sek8SfqpYrd4YaeXE7HS5%2FXKZvJUCqpaSdrDVWjuhLsngVV4IiGglp3d%2F53%2BMz5gW1FnNNcgrFQhflMr2z6wYTDkzZ3SfKXIhX75%2FzVUGIRyESOUBwsQMEy1JB23G4w%2FjSKEqLGD6g%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:07:48 GMT
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cf-ray: 925adb550b6a0b3d-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1667
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
onetag-sys.com/usync/?cb=1742868469745
204 No Content 0 B URL GET onetag-sys.com/usync/?cb=1742868469745
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1742868469745 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1876
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1636
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:07:49 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/perfectMoney.png
200 OK 202 kB URL GET cdn.cuty.io/images/public/perfectMoney.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 5000 x 1023, 8-bit/color RGBA, non-interlaced
Size 202 kB (202386 bytes)
Hash 4d75a89e0baae4c6032c0fa68053830f
c9a28f03bf0e3fbbb2807db76921973872d8b390
0e007c0179add623da4b02762178d86c0d3ef3c69e8284b62f8d2e34380e0dbf
GET /images/public/perfectMoney.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 202386
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-31692"
expires: Tue, 10 Feb 2026 20:59:45 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3354560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ykBTnU8KTkl3qQmMI6yoVP4ShU6%2FyW6nSfbH4GrPrrINuJfhTmnBJWacHD8r81Qthqe3edhr7HiFbLXcD38%2BCAOb1pv3zR51%2FSSQlBw%2BUfvcM6sghcVq46ExWnjYiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb52bc857127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2454&min_rtt=409&rtt_var=1173&sent=537&recv=233&lost=0&retrans=0&sent_bytes=725131&recv_bytes=3253&delivery_rate=29103628&cwnd=168&unsent_bytes=0&cid=6389d0bb614b0a36&ts=168&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467708
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467708
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467708 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: text/html
content-length: 167
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:07:47 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jGUIE8jQf%2FM%2BrpVV8U3qspb%2B1qcgndyXwhhdPnPIl%2FI9VjG6M%2FOQIqyWfyvwzRUri8zXwkT3HnMPKJcBp8zNHBFYBxDF7acaLRbb8XoXPTZ%2BsdJROmZIGWEBrJ2TWdzPYSlSth8FKedTw60%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb539fcbb529-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=816&min_rtt=535&rtt_var=308&sent=8&recv=12&lost=0&retrans=0&sent_bytes=3226&recv_bytes=1306&delivery_rate=7567944&cwnd=254&unsent_bytes=0&cid=76609e1d49008f09&ts=43&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467954
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467954
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467954 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 301 Moved Permanently
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html
content-length: 167
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mv%2F6HK6Sxo%2Fyq5Hdd44WYHzGti8v26DHYcFLls1JCiRpnVCRBAORomt9EnfeluQ5O9WxxTLPuDADCBqnFTgqVlhsMgbGphT6Vf3l%2FZtNXvKRn1jvsbC4u1GgXwTOliFPdgHFzu4uvnWMOnc%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:07:48 GMT
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cf-ray: 925adb550b680b3d-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
ghb.console.adtarget.com.tr/v2/auction/
200 OK 754 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (782), with no line terminators
Hash 81cac790fd51d654176bf912993bb123
f271d69fec930d7c2b10a99cca8c32c70cdf6abe
d5c1c740c56045ffca13199534a67b86950e8891c7fabdc590d0377eee830177
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 281
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 420
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bw5DZblIj2VclBHrrUw5wrCxNPjM95DRCqJLKiiykfrZ2fV93cON%2F8yuBlI%2FQNxK9VLpVUKg5M93xUx6J3lxmFvtKo7uLkuFUnOrcfV2pJ7PR0bvznbQp1GGlyfadEDwtqX2coHE1mR6RE0%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 925adb54cb660b3d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
302 Found 86 B URL GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Mar 2025 02:07:53 GMT
location: https://prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/heading-background.png
200 OK 107 kB URL GET cdn.cuty.io/images/public/heading-background.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 1440 x 720, 8-bit/color RGBA, non-interlaced
Size 107 kB (107203 bytes)
Hash e6f5d768d4773ec1e3b75b2db352f7bf
6d0575e7897ea024422ce003abe0c20fa3762f83
15e9a191aef4c2d8d504df2367c89aaf857ca48862b098746fa1f524e3c8fa00
GET /images/public/heading-background.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cuty.io/css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 107203
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-1a2c3"
expires: Tue, 10 Feb 2026 20:06:09 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3396197
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o6M0bx5QCAyFXyKQcAs2lKh6hiI5%2Fok%2FtyS95hDmbC3CC0xNqBOTgprnvVR13DWgyd8eX7zpmBAG3JUtZ9HqsvR9HvrSLqL7T2nyQRgcUoF8lGfdSp0%2FxmvMEaB%2BOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb532b1a568f-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=27313&min_rtt=4118&rtt_var=18112&sent=12&recv=6&lost=0&retrans=0&sent_bytes=4101&recv_bytes=1153&delivery_rate=154670&cwnd=12000&unsent_bytes=0&cid=d88d686189d4219e&ts=111&x=1", cfExtPri, cfHdrFlush;dur=0
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 973
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:50 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tc3%2BrvBTUv25TrFhf%2Bt%2FOBzVEY5eYs5bxeoxn0RVY5ZGkHSk%2F%2FMLitQ01vS4bQHzaNkHaS0up4hgyxTeU9%2BrWLul51YikpNFPSbCq%2Fz23KuPNapZTelehv27KDLdmXfKJZpks8UZeRAzLyfogsg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb62cbae712e-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=8832&min_rtt=447&rtt_var=14511&sent=35&recv=30&lost=0&retrans=0&sent_bytes=15624&recv_bytes=9786&delivery_rate=5464150&cwnd=253&unsent_bytes=0&cid=dca05875a873a7c3&ts=1313&x=0"
X-Firefox-Spdy: h2
csync.smilewanted.com/
200 OK 6.4 kB IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
File type JavaScript source, ASCII text, with very long lines (6711), with no line terminators
Hash 8820fc438884a131eb5dba5a286142bc
5cbefca64d898763822d2bd7c0cba670cf92054c
e473f57487df4ad7b5be6ef0562e07501e6621626dd32e7e579fb83d0350a146
GET / HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:53 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb754aac569f-OSL
content-encoding: br
X-Firefox-Spdy: h2
sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
302 Found 86 B URL GET sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerZeroSSL
Subjectsync.console.adtarget.com.tr
FingerprintED:8C:47:D0:F4:82:C5:4F:57:FD:F5:2D:94:C8:7F:3B:9E:6E:E4:81
ValidityWed, 12 Mar 2025 00:00:00 GMT - Tue, 10 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D HTTP/1.1
Host: sync.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Adtarget
Date: Tue, 25 Mar 2025 02:07:54 GMT
Content-Length: 0
Etag: 25f4792111a2839b
Location: https://prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b
Set-Cookie: vmuid=25f4792111a2839b; expires=Thu, 26 Jun 2025 02:07:54 GMT; domain=.console.adtarget.com.tr; path=/; secure; SameSite=None
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x%2Flt3Z7tFqqG8HJZtEQ9TWjU6hboGojJAbT1Pz230ZN4AUkza8shFRmKXGYe1eHH2q%2FVJeeB5LUHW%2FeziaOAE4A7r0uyl64YtCJUrdWyMY%2Fq9CPchf5o4VVsTplOAPPqpB09gl3CtIsIz3Y%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 925adb54cb650b3d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
302 Found 86 B URL GET sync.console.adtarget.com.tr/csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerZeroSSL
Subjectsync.console.adtarget.com.tr
FingerprintED:8C:47:D0:F4:82:C5:4F:57:FD:F5:2D:94:C8:7F:3B:9E:6E:E4:81
ValidityWed, 12 Mar 2025 00:00:00 GMT - Tue, 10 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?redir=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadtarget%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%7Buid%7D HTTP/1.1
Host: sync.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: vmuid=25f4792111a2839b
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Adtarget
Date: Tue, 25 Mar 2025 02:07:54 GMT
Content-Length: 0
Etag: 25f4792111a2839b
Location: https://prebid.netaddiction.tech/setuid?bidder=adtarget&gdpr=0&gdpr_consent=&f=i&uid=25f4792111a2839b
Set-Cookie: vmuid=25f4792111a2839b; expires=Thu, 26 Jun 2025 02:07:55 GMT; domain=.console.adtarget.com.tr; path=/; secure; SameSite=None
prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=8984dbd3-b103-4d51-8dfb-4267a7e17cd6
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=8984dbd3-b103-4d51-8dfb-4267a7e17cd6
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=8984dbd3-b103-4d51-8dfb-4267a7e17cd6 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:07:55 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJtZW1icmFuYSI6eyJ1aWQiOiI4OTg0ZGJkMy1iMTAzLTRkNTEtOGRmYi00MjY3YTdlMTdjZDYiLCJleHBpcmVzIjoiMjAyNS0wNC0wOFQwMjowNzo1NS4xMzYxODI5MjdaIn19fQ==; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:55 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2BBazDv0r1VSDzcW10PNZZ1jvoFdkA44XaNMMLttJrPIjN8mMVV6F%2BnnAOpt3avyCbW0mdGk5AkgUkLDsNhL3kQTm3fKjo%2B%2BXc0e7ccquU4OgLAwkNxD%2BkWtPSulN4kCkOWal86R56ZhvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb817f4856aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5629&min_rtt=4914&rtt_var=2159&sent=21&recv=14&lost=0&retrans=0&sent_bytes=7911&recv_bytes=3013&delivery_rate=72018&cwnd=12000&unsent_bytes=0&cid=a92dc3d01c56e36b&ts=440&x=1", cfExtPri, cfHdrFlush;dur=0
prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6YtxeCu1FK%2BPVYoZRkEWFki5LjH05DqgASgo0bIhrE5agJjlTvrz%2FZ28gJPkyktYjRJyQkh0BfpYw4m8lv1lRlEYGJ3B%2BPMbTTp1D7VtYJYpHxK7uXquNxV4zmsJs36ldTILMeFKNqsxDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb7e4a305685-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1203&min_rtt=405&rtt_var=738&sent=14&recv=16&lost=0&retrans=0&sent_bytes=4529&recv_bytes=2044&delivery_rate=4503888&cwnd=253&unsent_bytes=0&cid=d811f4878832e5b8&ts=150&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
200 OK 0 B URL GET prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZG1hdGljIjp7InVpZCI6IjYxYmY2NDIxLWRkMmUtNDc2MC1iMDcwLTg2MzA2ZTFkNmZkOCIsImV4cGlyZXMiOiIyMDI1LTA0LTA4VDAyOjA3OjU0LjY3Nzk2OTM0WiJ9fX0=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QSwmPXygXjtdS1hEjQ4ZR6oz6C2KzzYuq07vwSLaNTtcaJzl%2BA%2F9elz8QUVUOa9pHkCwTMZW4HIYFMmWD5oln6yqJKnE5jnqgeevaI6wuYEiij9ZuMiUp2%2Ba3tvug0OKIHIi8tLtnzY6bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb7e4a2d5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1199&min_rtt=405&rtt_var=973&sent=12&recv=14&lost=0&retrans=0&sent_bytes=3842&recv_bytes=1941&delivery_rate=4503888&cwnd=251&unsent_bytes=0&cid=d811f4878832e5b8&ts=148&x=0"
X-Firefox-Spdy: h2
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1166
server: cloudflare
cf-ray: 925adb580f4956c5-OSL
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
200 OK 4.0 kB URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
File type JavaScript source, ASCII text, with very long lines (4125), with no line terminators
Hash 4d4fcd4276d3928cf8c55357bf8e8019
4e1e5da7f91d3c02305fed4017d369095913ed99
8c7cad1c210f9448f577028ee090f5f836e118404b91ff7b4c0787ed456c10e4
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1093
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://cutyion.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
x-powered-by: Adtarget
etag: W/"f81-HkY4i3XFkErO6gcHMJCGuSByBKE"
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=88Ugj5HLSaLcyiYweVhlRXjhOTmePfrviyFkwz8fZqJmU9EudG8ruyeTsl1ibG259DLYftk1oaQ7tWc%2FO7WvJyOflJJBgUz9OyvRyJh%2BbzPONtSg6vGBbc0PH31iHebA7BCK8RviKC%2FoPCF6YgQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb5eea3f712e-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1808&min_rtt=472&rtt_var=2315&sent=14&recv=16&lost=0&retrans=0&sent_bytes=2819&recv_bytes=5684&delivery_rate=5218018&cwnd=253&unsent_bytes=0&cid=dca05875a873a7c3&ts=651&x=0"
X-Firefox-Spdy: h2
302 Found 49 kB IP
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jhRN0 HTTP/1.1
Host: cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 25 Mar 2025 02:07:45 GMT
content-type: text/html; charset=UTF-8
location: https://cutyion.com/jhRN0
cache-control: must-revalidate, no-cache, no-store, private
pragma: no-cache
expires: -1
x-frame-options: SAMEORIGIN, SAMEORIGIN
set-cookie: origin=cuty; expires=Tue, 24 Feb 2026 02:07:45 GMT; Max-Age=29030400; path=/; secure; httponly; samesite=lax
XSRF-TOKEN=eyJpdiI6InhBRE1zM244aFBJWGZjUHVrejBqMHc9PSIsInZhbHVlIjoiNVNmTjVzaFQyWERuSW5SSGZsYzlPdjRTQ1lWeGhrYmxFQ1YvdUg5aXNaYlU1MUVNbGFZNDNKV1UzWHB3ckdRbDN6eFEvelVTa1pzRkJQV2hpQ0gwWndJUE5VN3h4bDFvOFJXTlhFSzBXOVhqNVR6ZC9ZWFBUUUN1SXpFaU54SnMiLCJtYWMiOiJjZmM2OTZjYmRkYTBlY2M3MDc5OTI5NDZmN2Y0ZGMxNzkzZjQ2ZDE0ZGRkYmE3NzYwMzM4MzYwNWIwODU3MDNlIiwidGFnIjoiIn0%3D; expires=Tue, 01 Apr 2025 02:07:45 GMT; Max-Age=604800; path=/; samesite=lax
cutyio_session=eyJpdiI6IjFZNXNaUkFsUWhtMnZRd1gyR084ZFE9PSIsInZhbHVlIjoibkxRdVg0UXB1RzBXVmdudS9VRFZpWlJvVWYxb1pCWDROOGdwdmJDL05nRTlYMUZmYjhlUDE2YlJ4WHdZUzRKNlZtRGllQk5VU1BLeXlwL2FpcUJxamdsSXAyN1d5MkxxRURlZkc5bDB3cUY5Znl2SURoNkFUMUxIbmt4NVdYOVAiLCJtYWMiOiI1YTBmMTY5MjAxNjM2OWUzNjU0MWI0MjQ1NDdlOTkwMzcyNDBiMTU2ZGJjMzliNDQzMTJkMTgzMWY1NzUzY2I0IiwidGFnIjoiIn0%3D; expires=Tue, 01 Apr 2025 02:07:45 GMT; Max-Age=604800; path=/; httponly; samesite=lax
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mXb0ThuZ7oiZuS0HjGXVPdBCfbvf7cbZBTtWyglCKgq060j4TjlOWzMxBUTt7DtswAfqExuadOcCbVPByPO4%2F4%2FGPKY4G3A3RQ7iE%2BMcOhmb0YATdld9VGeW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb3f8a79b515-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=888&min_rtt=733&rtt_var=371&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3187&recv_bytes=1123&delivery_rate=4626198&cwnd=254&unsent_bytes=0&cid=e75c6ae201e3f29b&ts=969&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:49 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3oqTwrpGjLbriFSNEfwFm1mfw0BzvBi15p4XdE96pBEtpAtGmuEpcH6LytEmUcSHDLIQ%2F9K8YCoicDu4xsC0xJ76iKAt6AU9p0lrBHQ%2Bh16U89FLuBeVcON2yStQDaegVUrxSokZkYf5aVAgEv8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb5ccc5d0afa-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1015&min_rtt=458&rtt_var=998&sent=10&recv=12&lost=0&retrans=0&sent_bytes=4034&recv_bytes=1280&delivery_rate=4984509&cwnd=255&unsent_bytes=0&cid=5d2cf8c012eb3fe6&ts=130&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:50 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ws0PCBKqxx3Lm3nxfECanz5m9Qz3j3REqbPuTiELvgZWte%2FGfais8qeUFvVpy3hby3rfFjvBtNh1QI1ryBW82Ui17N3P9sVpJaZzwo0x6WWpn8UGgYqp4I9ij2FqvCt8AU6KdnnPRmff06Dgkk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb622e3e0afa-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=5134&min_rtt=458&rtt_var=9139&sent=13&recv=18&lost=0&retrans=0&sent_bytes=5372&recv_bytes=1493&delivery_rate=4984509&cwnd=257&unsent_bytes=0&cid=5d2cf8c012eb3fe6&ts=930&x=0"
X-Firefox-Spdy: h2
gpp.netpub.media/17428684687440.4940593790530283/run.js?v=17428684687440.4940593790530283
200 OK 251 B URL GET gpp.netpub.media/17428684687440.4940593790530283/run.js?v=17428684687440.4940593790530283
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with no line terminators
Hash 945277581d767415edcae0911173c943
9a7e509c4b0cb318b6e32a93f88af95f21b5760b
874b90f5b2bf0b3dac07481e766603bed23e9e05d685873b50dce5eb8432e08d
GET /17428684687440.4940593790530283/run.js?v=17428684687440.4940593790530283 HTTP/1.1
Host: gpp.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
last-modified: Wed, 21 Feb 2024 16:05:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb59d80f56c5-OSL
content-encoding: br
X-Firefox-Spdy: h2
csync.smilewanted.com/drop_cookie_sw.php
200 OK 0 B URL GET csync.smilewanted.com/drop_cookie_sw.php
IP
Requested by https://csync.smilewanted.com/
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /drop_cookie_sw.php HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:53 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: sw_user_params_infos=8sdRREvsw7LjLys0YvGw87yNx97OHYnj497gAHQkVi3%2Bdnk4vehFTt2ep0SVezswmHoOTR97JZrCE8zKewVoDAETzxb2ORoHNPFOLNmDEN6Mia0dNse%2BBrdIA0FOk2u62VIizqGST6jfBLBQ4PyhoQ%3D%3D; expires=Wed, 25 Mar 2026 07:57:05 GMT; Max-Age=31556952; path=/; domain=smilewanted.com; secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb77dbaf569f-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/step-2.svg
200 OK 1.5 kB URL GET cdn.cuty.io/images/public/step-2.svg
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash 8c5c449a625ae15af38b7d406e452c50
824a94b8f13755d497a2ff2623d0b81cae675247
9c9ccc56d3f951a187a16f2333b0d2a63aefcb2550e6ed82d385948759f34217
GET /images/public/step-2.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/svg+xml
last-modified: Sun, 21 Jul 2024 07:29:21 GMT
etag: W/"669cb8d1-607"
expires: Thu, 31 Jul 2025 08:17:43 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 20454599
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lGRkeX6mohUlG%2BwaOHbPBS6Iti1vU3ri76VoD9MoAh5xMBl%2BKZbZrX%2FjKkDkhlHj4vmMgTzAji52%2FiOlgshqTYOXc%2BjCxSMIGycYnkH9zX64aC3E5c9XEmEoaiC%2B0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb524c3d7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2614&min_rtt=409&rtt_var=3802&sent=60&recv=25&lost=0&retrans=0&sent_bytes=67316&recv_bytes=2371&delivery_rate=5259079&cwnd=254&unsent_bytes=31856&cid=6389d0bb614b0a36&ts=107&x=0"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-GGDCMPL4QP
200 OK 345 kB URL GET www.googletagmanager.com/gtag/js?id=G-GGDCMPL4QP
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT
File type JavaScript source, ASCII text, with very long lines (5436)
Size 345 kB (345115 bytes)
Hash e3f534cb4400c3298858f6f84bb90b6e
859616e42e0e34255e648a05c3ce843302726d40
b07f89d1b0b08272c67f42411726fa4418f7be2186c031dc607839a54c780ca8
GET /gtag/js?id=G-GGDCMPL4QP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 25 Mar 2025 02:07:47 GMT
expires: Tue, 25 Mar 2025 02:07:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 117869
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ghb.adtelligent.com/v2/auction/
200 OK 4.1 kB URL POST ghb.adtelligent.com/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb.adtelligent.com
FingerprintB0:FB:4F:89:69:DD:35:D0:9F:F5:08:AC:CC:5A:32:2D:84:62:89:CB
ValiditySun, 23 Mar 2025 00:00:00 GMT - Sat, 21 Jun 2025 23:59:59 GMT
File type ASCII text, with very long lines (4221), with no line terminators
Hash 30f88afbb2270e8871ee7b7d5f9eb4d0
30b5cacc3d80445a0aa08283367a14c1d8653da0
15bd4861fd1467948261c5cab709a5eb4cce0fa6f184409ef027655640b2a585
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 319
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1206
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 544
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:49 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb613819569f-OSL
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1408
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:50 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_mdajja6lerdfea0
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb623f62569c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
prebid.a-mo.net/isyn?gdpr_consent=&gdpr=0&us_privacy=&gpp=&gpp_sid=
204 No Content 0 B URL GET prebid.a-mo.net/isyn?gdpr_consent=&gdpr=0&us_privacy=&gpp=&gpp_sid=
IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /isyn?gdpr_consent=&gdpr=0&us_privacy=&gpp=&gpp_sid= HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:07:52 GMT
server: envoy
vary: accept-encoding, Accept-Encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
200 OK 4.5 kB URL GET dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectdsp-service.netaddiction.tech
Fingerprint74:FE:1E:F4:4F:B1:68:C0:81:16:C4:85:68:0D:7D:1F:61:EF:31:DF
ValidityTue, 11 Feb 2025 09:45:46 GMT - Mon, 12 May 2025 09:45:45 GMT
File type HTML document, ASCII text, with very long lines (4745), with no line terminators
Hash ec83f730661139f9d19e9c1635f73ac6
b212aec1e71ba30939c9d5306c22ec681c498e44
92ef5d6c781dc557500b2ad2da70e46a2a6e0fe211f27d78db52bbec53c3c9b3
GET /cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/1.1
Host: dsp-service.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:53 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
x-powered-by: Pixad
set-cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8; Max-Age=2592000; Domain=.netaddiction.tech; Path=/; Expires=Thu, 24 Apr 2025 02:07:53 GMT; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: admanager-report
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ISSM7iHmLSLa7LPlMc4s761Xo4MoXkDUnsYBaZ8JxIuOHjDOV%2FfFgjihQcnxYF2VI2tu6UO3fmqWw1TinRK1chWJR4PqxUYyneA2kAQh7knmxh6farg2iJcGCVrZO%2BWO%2F2tIVEt3%2FCHR3YnMHvKa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb79ed420afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=629&min_rtt=468&rtt_var=373&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2871&recv_bytes=1409&delivery_rate=5189964&cwnd=253&unsent_bytes=0&cid=67b7d8c8495c3b7b&ts=73&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467707
301 Moved Permanently 708 B URL GET st.mastinstungmoreal.com/static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467707
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/8d7c9a9e6384e4de5b6cc926e14c0280.min.js?1742868467707 HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: text/html
content-length: 167
location: https://st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
cache-control: max-age=3600
expires: Tue, 25 Mar 2025 03:07:47 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MGJLIiiiyl4rz7iBuTR%2F79EziO8Ros%2FWsF8p%2B1R6MVmQq%2B0rUcqHfN1jg5SxVLFU2n1KkfyicmaVzhDR6OvFPdBvaZCn6uBGUTrm6i9AHIJdZQpdJRbAU3ryv8LS7HzFREofNIpVzLVMge4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb539fd0b529-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=964&min_rtt=535&rtt_var=526&sent=14&recv=13&lost=0&retrans=0&sent_bytes=4798&recv_bytes=1306&delivery_rate=7567944&cwnd=257&unsent_bytes=0&cid=76609e1d49008f09&ts=46&x=0"
X-Firefox-Spdy: h2
fstatic.netpub.media/extra/cmp/cmp-gdpr.js?v=1
307 Temporary Redirect 739 B URL GET fstatic.netpub.media/extra/cmp/cmp-gdpr.js?v=1
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /extra/cmp/cmp-gdpr.js?v=1 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html
content-length: 169
location: https://gpp.netpub.media/init.js
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb58bf9f56c5-OSL
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1403
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:07:49 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
ghb2.adtelligent.com/v2/auction/
200 OK 4.1 kB URL POST ghb2.adtelligent.com/v2/auction/
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb2.adtelligent.com
Fingerprint92:3F:88:3B:C2:15:EE:E0:3B:90:C3:C2:98:90:42:3B:52:59:A0:2F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (4221), with no line terminators
Hash 2a388a29f5a2fb942bf7f59535085d2c
831111e8df724c5a022ca66026d2080be3a23dc0
9368b3829ec7d9b45f40b734809149605c528f6f1d6584cf06fb7cfcbcbdbd7a
POST /v2/auction/ HTTP/1.1
Host: ghb2.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 321
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1217
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
csync.smilewanted.com/set_partner_userid_get/adaptmx/?gdpr=0
200 OK 0 B URL GET csync.smilewanted.com/set_partner_userid_get/adaptmx/?gdpr=0
IP
Requested by https://csync.smilewanted.com/
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /set_partner_userid_get/adaptmx/?gdpr=0 HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://csync.smilewanted.com/
DNT: 1
Connection: keep-alive
Cookie: sw_user_params_infos=8sdRREvsw7LjLys0YvGw87yNx97OHYnj497gAHQkVi3%2Bdnk4vehFTt2ep0SVezswmHoOTR97JZrCE8zKewVoDAETzxb2ORoHNPFOLNmDEN6Mia0dNse%2BBrdIA0FOk2u62VIizqGST6jfBLBQ4PyhoQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:53 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb79fcd0569f-OSL
content-encoding: br
X-Firefox-Spdy: h2
pugmarktagua.com/1clkn/60028
200 OK 6 B URL GET pugmarktagua.com/1clkn/60028
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subjectpugmarktagua.com
FingerprintF0:75:F2:51:FD:44:36:04:26:0C:3B:2C:F5:EC:73:86:FF:4D:44:98
ValiditySun, 19 Jan 2025 20:07:29 GMT - Sat, 19 Apr 2025 20:07:28 GMT
File type ASCII text, with no line terminators
Hash 9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /1clkn/60028 HTTP/1.1
Host: pugmarktagua.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Mar 2025 02:07:47 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2B2dUFnYQDeASKlPDqi1fwkRT6B%2BtCuykV9PYSE32bTH6T8TwvKB7gb8kZ4afgeGKsbdqaV21ZD62o%2Br5tGl72vC1ZxceR46zWzol%2BJhfhtC7Cus5tES4TabJq6AYjKcPjof6aqza7jhD3VmiZIV4OMWdIe2v2lWwRItJiIaSvytJovg4hPoxFyJ7rIyt9ZL9EYNYizO%2BQviktj2V%2BQcDKPE883N9m4UZjl07JxEc8WSEJ%2FgtOg3A0GfuNVNJ6deYGmFl2%2F%2F73ONxZiUTSpgZCbNw72R%2B3Z03l; expires=Wed, 26-Mar-2025 02:07:47 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Wed, 26-Mar-2025 02:07:47 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1166
server: cloudflare
cf-ray: 925adb580f4656c5-OSL
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 753 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (781), with no line terminators
Hash 0c191b0f37120d0b4fde784846f3c905
680b8a43f905283b82eed9accfe6371d6d3e4b35
4e5da13a68f6f3da04d8cab3f6a107e13d90f75e8f3d6d9ec76dc22db9e9139e
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 264
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 419
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 3120
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 295
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:50 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb61984d569f-OSL
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/facebook-icon.png
200 OK 409 B URL GET cdn.cuty.io/images/shared/facebook-icon.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Hash 681da37c7ab779001ee20a72b5d44412
8416f3e43fcde2f22c95a489f3f2d4fd876e5a74
691f00c0c64d110b68cf4237589633da601dfd5112c8c048c87ebd915db64bb7
GET /images/shared/facebook-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 409
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-199"
expires: Tue, 10 Feb 2026 20:39:34 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3354560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0q8uoBShizyWDasbMmjCJBp0ZhrAD0uvn9IArL9s213Z3IzkM%2Btmf1kJMEOVkV3EJhbBSmVbv0lSqy8gvGqcqsHtmn3U5KQ5mUK%2F35B94%2F0LuiCRz0AWQdpAgMSP6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb52bc827127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2739&min_rtt=409&rtt_var=1278&sent=507&recv=231&lost=0&retrans=0&sent_bytes=693613&recv_bytes=3253&delivery_rate=29103628&cwnd=159&unsent_bytes=0&cid=6389d0bb614b0a36&ts=167&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/paypal.png
200 OK 25 kB URL GET cdn.cuty.io/images/public/paypal.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 1600 x 456, 8-bit colormap, non-interlaced
Hash 48de132288c9e8873f23c67a3ce9ea33
a9e8a10f5323abfc22c7e1fd0da62bffb6a4f3be
b5bf12e42fca5c8e7bf614f3cacc6aaa41275acf4bebb3bfe1db2e5002c21777
GET /images/public/paypal.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 24721
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-6091"
expires: Tue, 10 Feb 2026 20:22:09 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3280994
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sruUQtQEM5wZDVxkWuh1ushbcLdGv1XNqjVPc1AaQMeUQpjMMDDAajIIhCcW0qs7k6OYh%2BbW6r7Fw87sJYnXbFDAAhtK0TaPukJ%2BdiqWeULio47ql5kaTC2XDmacoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb52bc847127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2636&min_rtt=409&rtt_var=1163&sent=518&recv=232&lost=0&retrans=0&sent_bytes=699824&recv_bytes=3253&delivery_rate=29103628&cwnd=164&unsent_bytes=0&cid=6389d0bb614b0a36&ts=167&x=0"
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 754 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (782), with no line terminators
Hash de34c68cb246f85cfd7de8981c9585b1
f89414c5d443f6216cc788a3248e539351d65549
960fbafd53f402df131743ed5e946e39d08e8963e7e638b17a73f28c511b767f
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 263
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 420
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL OPTIONS netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:50 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hdeCEI67CaTlIoxjnL%2BZ1oG0aOCexdvGfwYuxNnDMeckCKNA8BZMGCwE6YHzi59E3Cs4kGj4CWhAVp6TPmVG%2FvrRaBUc58uT8KIvomdRmZHQMGdLkJ4gwO2Pb21IMA1Wb%2BgcTt7K9xcjDTlKoaM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb617e020afa-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=5801&min_rtt=458&rtt_var=10406&sent=12&recv=16&lost=0&retrans=0&sent_bytes=4912&recv_bytes=1422&delivery_rate=4984509&cwnd=257&unsent_bytes=0&cid=5d2cf8c012eb3fe6&ts=827&x=0"
X-Firefox-Spdy: h2
st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
302 Found 708 B URL GET st.mastinstungmoreal.com/r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmastinstungmoreal.com
Fingerprint99:B8:2A:22:B2:50:66:83:DF:67:60:A0:27:70:93:AF:9F:9B:FF:88
ValiditySat, 01 Mar 2025 23:32:34 GMT - Sat, 31 May 2025 00:32:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/service.js HTTP/1.1
Host: st.mastinstungmoreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XGqww9NeL46Qda57NRtHy%2F5v4FElAItAeLsnAoiJKpJotbc3jaVTIr8EdojKIi0pWiNiC6tcnwN3ciT6k63UtRQzHbwWXppaU7lnAEwxpUt%2BKS8lkWflYhSbpb%2B%2F2WsvN2b8MfVldNswQDQ%3D"}],"group":"cf-nel","max_age":604800}
location: https://fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
cf-cache-status: DYNAMIC
cf-ray: 925adb561b6f0b3d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
200 OK 0 B URL GET prebid.netaddiction.tech/setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=admatic&gdpr=&gdpr_consent=&f=b&uid=61bf6421-dd2e-4760-b070-86306e1d6fd8 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dsp-service.netaddiction.tech/
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:07:55 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZG1hdGljIjp7InVpZCI6IjYxYmY2NDIxLWRkMmUtNDc2MC1iMDcwLTg2MzA2ZTFkNmZkOCIsImV4cGlyZXMiOiIyMDI1LTA0LTA4VDAyOjA3OjU1LjA3NjA4OTc2NFoifX19; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:55 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sArStFY3a7l99CopEx8SudEDZmk0fFsqxYcT6EomGAKEg2ODOrpUFHOzPDxaGbtfbLmUoDo35If4Vjs49GKmB7Slovg7F7J8zOAJCOra1UZ7AK1hMfZ%2FUeAqxhm2jOyvAWvt047brZeVNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb80bed456aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5481&min_rtt=4914&rtt_var=2977&sent=14&recv=9&lost=0&retrans=0&sent_bytes=3810&recv_bytes=1755&delivery_rate=67737&cwnd=12000&unsent_bytes=0&cid=a92dc3d01c56e36b&ts=380&x=1", cfExtPri, cfHdrFlush;dur=0
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 290
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:50 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb622891569f-OSL
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVuMuln5JknFcTEg-6hqXf7frb9yXIaOW2-R5690T_p-d9ZnxcXm7cbyY_glMUUG8V5dQKIG
302 Found 0 B URL GET accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVuMuln5JknFcTEg-6hqXf7frb9yXIaOW2-R5690T_p-d9ZnxcXm7cbyY_glMUUG8V5dQKIG
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint57:E3:38:DA:15:E9:22:1D:17:E2:12:42:3A:88:03:62:6E:F5:C0:53
ValidityMon, 10 Mar 2025 08:36:06 GMT - Mon, 02 Jun 2025 08:36:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVuMuln5JknFcTEg-6hqXf7frb9yXIaOW2-R5690T_p-d9ZnxcXm7cbyY_glMUUG8V5dQKIG HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:SCsS00fpmb4YX2XnNfZkvVdZ5-4_cw:SzcGTAA8g0WgdEC0;Path=/;Expires=Thu, 25-Mar-2027 02:07:50 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:07:50 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AXH0vVso-ltQhOCxfeFccPybvAuwvyqexqjBaT1hWl1XFg2cSBBQ-eo4YsJ_zMPJyOiBhuIaGH4xKQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S841914091%3A1742868470730675
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-pdLpSdrost8u1G48p9EHfQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 416
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
prebid.admatic.com.tr/setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.admatic.com.tr/setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.ig07crxsabe
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=admatic.com.tr; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k6MIwGvh6r1tse%2FcN3sY1b5MYX3l05ZoFgm3KEgTVO%2FP9Bd%2FdqzvdZOLs9Y%2FWsKpQjosIOwP0Xwufi%2BHm6zlZzVuQAW86ZI05kQLIXYmUtdMCb2PpewaNevVKALMdxLt4H%2B1vSEXfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925adb7abebc568b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1168&min_rtt=442&rtt_var=1507&sent=9&recv=13&lost=0&retrans=0&sent_bytes=3780&recv_bytes=1758&delivery_rate=5208633&cwnd=253&unsent_bytes=0&cid=ccf36c798722e1f2&ts=131&x=0"
X-Firefox-Spdy: h2
onetag-sys.com/usync/?tag=img&redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24%7BUSER_TOKEN%7D&gdpr=0&gdpr_consent=&us_privacy=
302 Found 86 B URL GET onetag-sys.com/usync/?tag=img&redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24%7BUSER_TOKEN%7D&gdpr=0&gdpr_consent=&us_privacy=
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?tag=img&redir=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24%7BUSER_TOKEN%7D&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.cdn.admatic.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: no-store
location: https://prebid.admatic.com.tr/setuid?bidder=onetag&gdpr=0&gdpr_consent=&f=i&uid=
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-ar.png
200 OK 51 kB URL GET cdn.cuty.io/images/shared/locale-ar.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Hash c81b22802da2b0f2d79452c15098ddb3
abd99b0b24da4d6d74513bb6b2b3311289a3dacc
7b93d647c94f9591b74af237bd20641b982004b56285802a69a2d83fa4b3b8a5
GET /images/shared/locale-ar.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 51070
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-c77e"
expires: Tue, 10 Feb 2026 19:56:06 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3354560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=akCKx1OrxL16WhNlTHKKH7kCfZa2s5jkuSKxjw%2BlI0ItnxXbZVliBM%2BqYabFO42giRf%2BPzDAVjEnNxCc%2FEUPa85yV9cYD5gs8ue5f9lcGvHvc9GE56nGk4TVOgpM4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb524c457127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2494&min_rtt=409&rtt_var=995&sent=181&recv=39&lost=0&retrans=0&sent_bytes=233654&recv_bytes=2371&delivery_rate=18298230&cwnd=254&unsent_bytes=31856&cid=6389d0bb614b0a36&ts=117&x=0"
X-Firefox-Spdy: h2
ghb.console.adtarget.com.tr/v2/auction/
200 OK 754 B URL POST ghb.console.adtarget.com.tr/v2/auction/
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb.console.adtarget.com.tr
Fingerprint22:D9:D6:E9:49:E3:E2:65:72:C3:89:D5:6C:35:16:C1:2C:64:21:0F
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (782), with no line terminators
Hash 9d0452c74fa9a9ee967e6a4fcbac075d
550f89576bf4b20afa17fb51340f650fc754a8da
76afdfbeb24eec8eda7948b3070509a09a31881ac1491f47f05ba2f410db5635
POST /v2/auction/ HTTP/1.1
Host: ghb.console.adtarget.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 265
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtarget
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 419
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1663
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
prebid.admatic.com.tr/setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=0d6fe62a-2a7a-4097-ae99-441c60503ba5
200 OK 0 B URL GET prebid.admatic.com.tr/setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=0d6fe62a-2a7a-4097-ae99-441c60503ba5
IP
Requested by https://static.cdn.admatic.com.tr/sync.html
Certificate IssuerLet's Encrypt
Subjectprebid.admatic.com.tr
FingerprintA6:91:76:ED:B8:E7:07:22:45:04:19:46:8F:0E:4B:1D:83:E7:A6:74
ValidityFri, 07 Mar 2025 04:34:02 GMT - Thu, 05 Jun 2025 04:34:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?bidder=admatic&gdpr=0&gdpr_consent=&f=b&uid=0d6fe62a-2a7a-4097-ae99-441c60503ba5 HTTP/1.1
Host: prebid.admatic.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static.cdn.admatic.com.tr/
DNT: 1
Connection: keep-alive
Cookie: adplus_digital_id=0.ig07crxsabe
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJhZG1hdGljIjp7InVpZCI6IjBkNmZlNjJhLTJhN2EtNDA5Ny1hZTk5LTQ0MWM2MDUwM2JhNSIsImV4cGlyZXMiOiIyMDI1LTA0LTA4VDAyOjA3OjU0LjExNTM1MzMzMVoifX19; Path=/; Domain=admatic.com.tr; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
working-on: admatic-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=evM%2Bj3K5Fnic2XRq1TOfdCoAox54b%2BLG22lXzfaejAKqHvIDVJGilvjqFQOtfN7ohtUK6g2nCa9mXQaLQYOJ1RZR1DG74P7RcXvNYkWA8Mav2zhPs%2Bg1MSMWoqXbWBgUAvLmASdAZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
permissions-policy: browsing-topics=()
server: cloudflare
cf-ray: 925adb7aeed5568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1753&min_rtt=442&rtt_var=1776&sent=11&recv=15&lost=0&retrans=0&sent_bytes=4368&recv_bytes=1758&delivery_rate=5208633&cwnd=257&unsent_bytes=0&cid=ccf36c798722e1f2&ts=162&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d0uxMCLVlEiG4mOY7tS6vIoqreCoRVqgbeDied0nmPkH%2FNGmtTeWkN2RUSIzFoafxqg3TfymEEbNdJGnG47TCUbTGki%2Bo3%2FcbSH8G6GW6tSaMqMvNPDkOBFPaYw9i11LgAvQRE8ZzD1%2FDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb7eda695685-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1704&min_rtt=405&rtt_var=1319&sent=20&recv=20&lost=0&retrans=0&sent_bytes=6966&recv_bytes=2162&delivery_rate=4503888&cwnd=253&unsent_bytes=0&cid=d811f4878832e5b8&ts=184&x=0"
X-Firefox-Spdy: h2
gpp.netpub.media/init.js
200 OK 739 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (795), with no line terminators
Hash 69f3216b4691604f8ee9cc64c097a98e
05cf108a7180bb917aee6a58697b0b877689733d
df925a3541c1698a6f839b68c9e9f9760ac57891881bd80b81cf1ec506be9d0a
GET /init.js HTTP/1.1
Host: gpp.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 08 Dec 2024 00:36:50 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb593fdb56c5-OSL
X-Firefox-Spdy: h2
prebid.smilewanted.com/
204 No Content 0 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectsmilewanted.com
Fingerprint1D:FF:F3:5B:68:00:EE:E7:41:5A:F9:43:8E:3F:7F:48:E8:69:FD:7C
ValidityWed, 05 Feb 2025 20:52:57 GMT - Tue, 06 May 2025 21:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 331
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:49 GMT
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: https://cutyion.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb5cddcc569f-OSL
X-Firefox-Spdy: h2
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 708 B URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (758), with no line terminators
Hash e34c2ff0b57d8d9802207c6736a719db
ceaad15d9451ac9a09858919f72f0ca87c895938
9743f58a510e9c5c48f53a62d54e001a411b096daccc2cc8f5bc0649e3d603cc
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1166
server: cloudflare
cf-ray: 925adb581f4c56c5-OSL
X-Firefox-Spdy: h2
cdn.cuty.io/js/public/layouts/_partials/nav-links.js?id=feb56f52dc16955bcf984886eddb68b8
200 OK 3.0 kB URL GET cdn.cuty.io/js/public/layouts/_partials/nav-links.js?id=feb56f52dc16955bcf984886eddb68b8
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type JavaScript source, ASCII text, with very long lines (3042), with no line terminators
Hash feb56f52dc16955bcf984886eddb68b8
5a09c88aa68e7539c9ed86642f32024cacaac616
2e06d31fc20688f3d0b3c9e380adfe1a78d5d8a3c151e0c393a87c841d13421d
GET /js/public/layouts/_partials/nav-links.js?id=feb56f52dc16955bcf984886eddb68b8 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: application/javascript
last-modified: Thu, 28 Nov 2024 12:18:27 GMT
vary: Accept-Encoding
etag: W/"67485f93-be2"
expires: Thu, 19 Feb 2026 07:45:43 GMT
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1038709
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZXgLqVkI07r8PTjursA1zCw0rKXhW%2FqUXIgUnJE7NvNyAIS9u2WfKPD1P4wpB6khlkayZFqunuCWijSltCAQ%2BrP5vf9Lb%2BAEJEu799aeHJrDBzIILJbw1Nuty%2FW05g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb524c387127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2614&min_rtt=409&rtt_var=3802&sent=10&recv=25&lost=0&retrans=0&sent_bytes=3188&recv_bytes=2371&delivery_rate=5259079&cwnd=254&unsent_bytes=0&cid=6389d0bb614b0a36&ts=104&x=0"
X-Firefox-Spdy: h2
fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.engine.js?npr=f9ff4d32c16c60fa00457a74e6a90698
200 OK 216 kB URL GET fstatic.netpub.media/r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.engine.js?npr=f9ff4d32c16c60fa00457a74e6a90698
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectnetpub.media
Fingerprint60:F0:FB:B9:86:6E:26:74:77:36:19:44:E5:A6:20:E3:FD:33:3D:6D
ValidityThu, 27 Feb 2025 09:51:27 GMT - Wed, 28 May 2025 10:51:23 GMT
File type JavaScript source, ASCII text, with very long lines (57274)
Size 216 kB (216168 bytes)
Hash 5bc480ba168a5d2a358e8b764552b59d
5bf073a92cf386247bea6bbda3ef3930a188dd37
b76bbaa7ebaf01279036e8c7b3d3ac17d1530d46b699f1b6799fc1635cc978ab
GET /r/8d7c9a9e6384e4de5b6cc926e14c0280/46f805a3.engine.js?npr=f9ff4d32c16c60fa00457a74e6a90698 HTTP/1.1
Host: fstatic.netpub.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Mar 2025 13:05:21 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1165
server: cloudflare
cf-ray: 925adb580f4356c5-OSL
X-Firefox-Spdy: h2
mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint7A:DA:F3:B5:17:58:97:F4:74:18:FD:39:85:E2:C5:02:10:13:F8:F1
ValiditySat, 22 Feb 2025 03:17:29 GMT - Fri, 23 May 2025 04:17:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1492
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Splits. no seat with adunits, mapping rule and shaping
x-version: 3.0.0-gcp-ams
x-warn: Parsing the Prebid Request. int_scc_sid, Process Splits. all case seats filetered for: ban_div_netpub_campaign_x5jlsadjdfhn29d
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 925adb5cac69569c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 970
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:50 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9jSxcVhfIR8QitZ538fXGHMqN%2B%2FutaA7qJyDNAvfwvjQySmNd0hF1jdAHQWfTnQIvAT0EBTXikNkLnCB25nq7RzdRs58wkrx5mWGnJxlrVBtsVFmugWPr6l0qr4W3oa7dB9dYqHi9oxb%2BN58J7A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb62ebbe712e-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=10023&min_rtt=447&rtt_var=16174&sent=34&recv=29&lost=0&retrans=0&sent_bytes=15170&recv_bytes=9786&delivery_rate=5464150&cwnd=253&unsent_bytes=0&cid=dca05875a873a7c3&ts=1229&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/x.svg
200 OK 209 B URL GET cdn.cuty.io/images/shared/x.svg
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash 3e1b70de2d8ba641caec6e9029002c3e
48b16f34f74be52a8327a2277318355d0f3b9c92
15b6092561584cbee1e5760429718329e67a6ad70a77da4e56f6adae0ed8e95f
GET /images/shared/x.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/svg+xml
last-modified: Sun, 21 Jul 2024 07:29:21 GMT
etag: W/"669cb8d1-d1"
expires: Thu, 06 Nov 2025 04:26:21 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 10284979
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x9ULn4cpDE5YiHXxtvMW51VX49kNkKNSDMvUd7AoyPKbj7hyQKZGhobfLr%2FeDXADrRKE7fNJhmuF5pPmvy7V%2Fhl1OQvXoZ877%2FyxwOd0sK1hPDs%2BqQxH%2FzaWY7%2FOKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb52bc807127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2739&min_rtt=409&rtt_var=1278&sent=505&recv=231&lost=0&retrans=0&sent_bytes=692877&recv_bytes=3253&delivery_rate=29103628&cwnd=159&unsent_bytes=0&cid=6389d0bb614b0a36&ts=166&x=0"
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
302 Found 0 B URL GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint4B:95:33:75:06:A7:4B:8D:93:0F:44:A4:E7:B2:1E:51:52:D7:30:DC
ValidityMon, 10 Mar 2025 08:37:54 GMT - Mon, 02 Jun 2025 08:37:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:1WnA_uPWcHl89b4drfMl9yT8WlWy_g:_OGJC3asmR7ZVjFZ; Expires=Thu, 25-Mar-2027 02:07:49 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 25 Mar 2025 02:07:49 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AXH0vVuMuln5JknFcTEg-6hqXf7frb9yXIaOW2-R5690T_p-d9ZnxcXm7cbyY_glMUUG8V5dQKIG
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-Me-KKWg22OD1JZ3rosV25Q' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-es.png
200 OK 13 kB URL GET cdn.cuty.io/images/shared/locale-es.png
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Hash cd2f27e52bb7592e28676a86a3309158
796b9f96cbd568743713d06478e26c8e690e3723
0e656966f1958200ae6fbba050fc6eaebb9b1c60edaaffca31d26525bc59c826
GET /images/shared/locale-es.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/png
content-length: 12579
cache-control: max-age=31536000
cf-bgj: h2pri,csam-hash
etag: "67485f94-3123"
expires: Fri, 13 Feb 2026 16:29:04 GMT
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 3354560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BB0won9J2iRTZiQypvQG6aELvWdN%2BXVShsKq7BI%2BpLb0TCHPTL3eCpNXGfOCWMSCbTwytEGdr4LNGk19xnDBntLB%2F1tFyBc6mqzVDr7nyNfD6jQUiSMtNbOweL0C%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb524c427127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2509&min_rtt=409&rtt_var=2386&sent=69&recv=27&lost=0&retrans=0&sent_bytes=79476&recv_bytes=2371&delivery_rate=7661375&cwnd=254&unsent_bytes=19696&cid=6389d0bb614b0a36&ts=109&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/js/public/links/first.js?id=546df8a8f0170b68416d0c1c965c0a02
200 OK 251 kB URL GET cdn.cuty.io/js/public/links/first.js?id=546df8a8f0170b68416d0c1c965c0a02
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
Size 251 kB (251245 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/public/links/first.js?id=546df8a8f0170b68416d0c1c965c0a02 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: application/javascript
last-modified: Thu, 28 Nov 2024 12:18:27 GMT
vary: Accept-Encoding
etag: W/"67485f93-3d56d"
expires: Fri, 28 Nov 2025 12:18:30 GMT
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 10072154
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JqDDcJBnNUKnwvUrIQ6A5g56j3Z0YMM%2FLEjomttJ47bU%2BF29fHkKGJPeDBwOUceVZNbLwLu60q95185Be36PshDMk1no8GHeM1VNRaqTTaj88jeT2XtPtOU%2Byx%2B01A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb524c377127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2614&min_rtt=409&rtt_var=3802&sent=43&recv=25&lost=0&retrans=0&sent_bytes=44322&recv_bytes=2371&delivery_rate=5259079&cwnd=254&unsent_bytes=0&cid=6389d0bb614b0a36&ts=105&x=0"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
200 OK 13 kB URL GET fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint69:99:38:F9:7C:82:8E:AC:7D:DA:EA:3E:1C:E4:7F:52:1B:36:41:AA
ValidityMon, 10 Mar 2025 08:37:02 GMT - Mon, 02 Jun 2025 08:37:01 GMT
Hash c9f36658dc59e8d22550c0578261f3fe
a1eba985bc4b782370a308070b807480e297c1c5
39f85da7dc77694bd52d522dd305c05fde96a07d3b44b3bdbc29ca11e7d93812
GET /css2?family=Inter:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cutyion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 25 Mar 2025 02:07:47 GMT
date: Tue, 25 Mar 2025 02:07:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hipanditlastedallth.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
200 OK 3.1 kB URL GET hipanditlastedallth.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
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerAmazon
Subjecthipanditlastedallth.com
Fingerprint3F:BD:EB:47:01:97:EA:0D:B1:C2:BE:9F:3A:F8:B8:E1:A1:22:CF:A1
ValiditySun, 09 Mar 2025 00:00:00 GMT - Tue, 07 Apr 2026 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (3100), with no line terminators
Hash 908705b10862fbfe1cf6fcaeb025357b
0f460069ebc33321ab13eeefd410e12d6c44f41f
f8b340a2aba5512c62a7f032bdd0cbbb0e01f626053958b56927f3ae23adcefe
GET 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 HTTP/1.1
Host: hipanditlastedallth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1216
date: Tue, 25 Mar 2025 02:07:48 GMT
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
set-cookie: AWSALB=SxWkivQlgSdxzNvhXV2vfkZQdWCjsrinhe/D79UgLybC1MMePrPmLmbTDoYTAUWQRkB+1RrZC2H8iWc0FzMNOi2syS8g65Yk8djz9Wpvoz4cKBvbtvpULP3a2HlH; Expires=Tue, 01 Apr 2025 02:07:48 GMT; Path=/
AWSALBCORS=SxWkivQlgSdxzNvhXV2vfkZQdWCjsrinhe/D79UgLybC1MMePrPmLmbTDoYTAUWQRkB+1RrZC2H8iWc0FzMNOi2syS8g65Yk8djz9Wpvoz4cKBvbtvpULP3a2HlH; Expires=Tue, 01 Apr 2025 02:07:48 GMT; Path=/; SameSite=None
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 648da69bb4c2221c403be08a06311d98.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: lXeFU-CKMGdxZjCmBuEkIbw3f6Xgzd_pAZsPIoceWORQgMh5sJvoSA==
X-Firefox-Spdy: h2
stedallthrought.com/dFVGMW5baiVCUxBkIlggIjEEaF8HGB9aWxgAF2sAJRIIYywjYWBFBxBodwBbQ2FyBEgEPCIMX1ImMlAaASZ7AEgdOyBeU1IjewBAR2FoAlhaYWBEU0VzMkEPE2h3Fx4AISoMX0NhdAlYTGFwBldHYQ
204 No Content 0 B URL GET stedallthrought.com/dFVGMW5baiVCUxBkIlggIjEEaF8HGB9aWxgAF2sAJRIIYywjYWBFBxBodwBbQ2FyBEgEPCIMX1ImMlAaASZ7AEgdOyBeU1IjewBAR2FoAlhaYWBEU0VzMkEPE2h3Fx4AISoMX0NhdAlYTGFwBldHYQ
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectstedallthrought.com
FingerprintFB:1B:E3:BB:E3:E9:CF:2E:2C:B1:8E:F7:97:26:27:56:F7:28:CD:C3
ValidityMon, 17 Feb 2025 15:33:32 GMT - Sun, 18 May 2025 15:42:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dFVGMW5baiVCUxBkIlggIjEEaF8HGB9aWxgAF2sAJRIIYywjYWBFBxBodwBbQ2FyBEgEPCIMX1ImMlAaASZ7AEgdOyBeU1IjewBAR2FoAlhaYWBEU0VzMkEPE2h3Fx4AISoMX0NhdAlYTGFwBldHYQ HTTP/1.1
Host: stedallthrought.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:48 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MN1dSQM7o7URpwfM81hnaU1zH4eLhtlw6cby61g5WB%2F92YbAfS1b4TaZwqbSGJVeoPrfcdHBPlMlwbnn9e%2BfmGx7iDszVne6wLeIezpg2cggACK0ce9UpxjR9fJy%2FbH9FCQu5yLt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb554b070b3d-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2299&min_rtt=445&rtt_var=3405&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3221&recv_bytes=1180&delivery_rate=7607705&cwnd=254&unsent_bytes=0&cid=3482d8ac5b68059f&ts=154&x=0"
X-Firefox-Spdy: h2
ghb1.adtelligent.com/v2/auction/
200 OK 4.1 kB URL POST ghb1.adtelligent.com/v2/auction/
IP
ASN #24940 Hetzner Online GmbH
Requested by https://cutyion.com/jhRN0
Certificate IssuerZeroSSL
Subjectghb1.adtelligent.com
Fingerprint0D:D0:49:54:EC:15:39:A2:9D:39:48:10:A3:D3:92:55:81:38:C2:43
ValidityFri, 24 Jan 2025 00:00:00 GMT - Thu, 24 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (4220), with no line terminators
Hash 73ab7563d7b667ea00c9d483a21d325e
b6e7beda3a00f8cab45fecf3ae4f7c868b69f3a7
bf1a7359e17b7c98e48e2aeeff91d87599bd719dd0f992e4bee146795eecb8cc
POST /v2/auction/ HTTP/1.1
Host: ghb1.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 332
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Tue, 25 Mar 2025 02:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1206
Access-Control-Allow-Origin: https://cutyion.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
Permissions-Policy: browsing-topics=()
X-Robots-Tag: noindex
Content-Encoding: gzip
prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid=
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&f=i&uid= HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:07:55 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:55 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bc%2FxP4kcBmK4enWtLMkFQrJz7O71QIum%2FePszYm2CwmXaXpE0tG%2FgG0yBy03X0qXqRPtOPcHnxry5P3dYRpacbp5iuiDy34OWmfplBzeKAieJ7BMvloD2AA4QoTWNxPNGq%2FUQa9O%2FS3taQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb816f4256aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5704&min_rtt=4914&rtt_var=2679&sent=19&recv=13&lost=0&retrans=0&sent_bytes=5944&recv_bytes=2969&delivery_rate=2698&cwnd=12000&unsent_bytes=0&cid=a92dc3d01c56e36b&ts=430&x=1", cfExtPri, cfHdrFlush;dur=0
prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=33870a74-168b-47e5-8363-ec8a3c0774a8
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=33870a74-168b-47e5-8363-ec8a3c0774a8
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.netaddiction.tech%2Fsetuid%3Fbidder%3Dadmatic%26gdpr%3D%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=33870a74-168b-47e5-8363-ec8a3c0774a8 HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 25 Mar 2025 02:07:55 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJtZW1icmFuYSI6eyJ1aWQiOiIzMzg3MGE3NC0xNjhiLTQ3ZTUtODM2My1lYzhhM2MwNzc0YTgiLCJleHBpcmVzIjoiMjAyNS0wNC0wOFQwMjowNzo1NS4xMjIxNjYzMDZaIn19fQ==; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:55 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ASu5Tbk1z314rNWWVCdpUh%2BAW6lLNn4C0c5kI%2FkBbopBcY9eXQ2NiA5fjPcKfsfnP1D2Q19VsJS47KC%2B7W8pxiKWiT0o1VojkaCV3ig0AOA7GAFKUFsSS1OoibPSaS8sowylYxdtzJCwpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb810f0656aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5704&min_rtt=4914&rtt_var=2679&sent=18&recv=13&lost=0&retrans=0&sent_bytes=4894&recv_bytes=2969&delivery_rate=2698&cwnd=12000&unsent_bytes=0&cid=a92dc3d01c56e36b&ts=426&x=1", cfExtPri, cfHdrFlush;dur=0
cdn.cuty.io/js/layouts/base.js?id=c9af373408ef250e890e1cfc6dee6e27
200 OK 106 kB URL GET cdn.cuty.io/js/layouts/base.js?id=c9af373408ef250e890e1cfc6dee6e27
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
Size 106 kB (106169 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/layouts/base.js?id=c9af373408ef250e890e1cfc6dee6e27 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: application/javascript
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
vary: Accept-Encoding
etag: W/"67485f94-19eb9"
expires: Wed, 25 Feb 2026 02:18:55 GMT
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 946836
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GPVGiG2CIVfPIM8UslMj1ILEed7uCCRTKbZNqHPG1YzRlVTeOVgEmuAWFBSAVLMOPLNx9JGZQx79jD4vt2VaFnsMNPA%2BFLNparP%2BoB48KOoiKk%2F3KaUJAdI8p7ZFyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb524c367127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2614&min_rtt=409&rtt_var=3802&sent=13&recv=25&lost=0&retrans=0&sent_bytes=5078&recv_bytes=2371&delivery_rate=5259079&cwnd=254&unsent_bytes=0&cid=6389d0bb614b0a36&ts=105&x=0"
X-Firefox-Spdy: h2
netpubmedia.rtb.adtarget.biz/pb
204 No Content 0 B URL POST netpubmedia.rtb.adtarget.biz/pb
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.rtb.adtarget.biz
Fingerprint3B:0D:C6:A2:F4:88:E8:78:E8:05:C6:3C:14:D4:8A:1C:EF:F7:7C:BD
ValidityWed, 19 Mar 2025 17:54:04 GMT - Tue, 17 Jun 2025 17:54:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: netpubmedia.rtb.adtarget.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1807
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 25 Mar 2025 02:07:50 GMT
access-control-allow-origin: https://cutyion.com
vary: Origin
access-control-allow-credentials: true
x-powered-by: Adtarget
strict-transport-security: max-age=31536000; includeSubDomains
working-on: adtarget-k8s
working-app: layer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HpNKkSYC9IlhChUqOCFOONemh7GrbANZSGkQd%2B3glvjX7qzZ9Td2eTcMJ5tm%2FxnIggoVB3r8ajtjUlaEfo%2FkzXNJf%2B2qYXQMxK8EqsUj7xDPD9WB%2FrNDuSw3St%2B5fGtoNF%2BLRmPyUnrf6jD8Up0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb620b61712e-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=4854&min_rtt=447&rtt_var=7784&sent=33&recv=28&lost=0&retrans=0&sent_bytes=14695&recv_bytes=9786&delivery_rate=5464150&cwnd=253&unsent_bytes=0&cid=dca05875a873a7c3&ts=1104&x=0"
X-Firefox-Spdy: h2
prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=259d119b-ba14-4759-9be0-0cf195941d3e
200 OK 86 B URL GET prebid.netaddiction.tech/setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=259d119b-ba14-4759-9be0-0cf195941d3e
IP
Requested by https://dsp-service.netaddiction.tech/cookie_sync?r=https%3A%2F%2Fprebid.admatic.com.tr%2Fsetuid%3Fbidder%3Dnetaddiction%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
Certificate IssuerLet's Encrypt
Subjectprebid.netaddiction.tech
Fingerprint3B:35:BF:0D:1D:C0:AA:EA:FD:E0:51:3B:34:04:6A:CA:B5:54:BF:66
ValidityTue, 11 Feb 2025 15:35:46 GMT - Mon, 12 May 2025 15:35:45 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash 6c6641b08f4be6f479f1588af08054b3
8da28b3146834c48fd843b108749191516d2a65d
c2ecff291918a3caf0b7e470323e89f2a1f05b92e12a10649e598cacebe62acf
GET /setuid?bidder=membrana&gdpr=${gdpr}&gdpr_consent=${gdpr_consent}&f=i&uid=259d119b-ba14-4759-9be0-0cf195941d3e HTTP/1.1
Host: prebid.netaddiction.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsp-service.netaddiction.tech/
DNT: 1
Connection: keep-alive
Cookie: uid=61bf6421-dd2e-4760-b070-86306e1d6fd8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:54 GMT
content-type: image/png
content-length: 86
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=eyJ0ZW1wVUlEcyI6eyJtZW1icmFuYSI6eyJ1aWQiOiIyNTlkMTE5Yi1iYTE0LTQ3NTktOWJlMC0wY2YxOTU5NDFkM2UiLCJleHBpcmVzIjoiMjAyNS0wNC0wOFQwMjowNzo1NC42ODg5OTkwMzdaIn19fQ==; Path=/; Domain=netaddiction.tech; Expires=Mon, 23 Jun 2025 02:07:54 GMT
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
working-on: netaddiction-k8s
working-app: prebid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1VYO02RqtTC1KNyBkvPSQhYwyq1OJ9VEPAMFCaLxnk51pTqgpVu4FhjlYSBChQk%2BRQYpQzBvO1NRgkz9NB0kV6RxAJQmkABLgMOaZleTO9nIkJd5iT2Bah3rgxP3mnrrKZWdcwtXFyuQfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 925adb7eaa595685-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1224&min_rtt=405&rtt_var=595&sent=16&recv=18&lost=0&retrans=0&sent_bytes=5188&recv_bytes=2162&delivery_rate=4503888&cwnd=253&unsent_bytes=0&cid=d811f4878832e5b8&ts=159&x=0"
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/step-1.svg
200 OK 1.6 kB URL GET cdn.cuty.io/images/public/step-1.svg
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerGoogle Trust Services
Subjectcuty.io
Fingerprint77:F7:40:D4:E6:9D:3B:84:B4:41:37:92:33:34:4A:51:A9:AE:FB:CB
ValidityMon, 24 Mar 2025 05:53:05 GMT - Sun, 22 Jun 2025 06:50:49 GMT
File type SVG Scalable Vector Graphics image
Hash ee427377dbfff15e6da345e1991a0b1f
6d47dd305204a822000b23dc24a934c3643c46e3
60e47d750e85000feef914fbacc57176578fceb08438ec21587a52c4b7de06f6
GET /images/public/step-1.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Mar 2025 02:07:47 GMT
content-type: image/svg+xml
last-modified: Thu, 28 Nov 2024 12:18:28 GMT
etag: W/"67485f94-658"
expires: Sat, 29 Nov 2025 03:00:29 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 8361630
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PItTJLfUCSwfHvmDgGYknY4tQfCqB3RB%2FVTnSn%2FBbAUpxMXBiCmrvfDQaT7xL8aHhCRSW1TvdZ2Jf7cei14bi9gKqfiztdkASiqbcRZlN%2BTTJEAwbez4%2BnJ4dSaqsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 925adb524c3b7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2614&min_rtt=409&rtt_var=3802&sent=60&recv=25&lost=0&retrans=0&sent_bytes=67316&recv_bytes=2371&delivery_rate=5259079&cwnd=254&unsent_bytes=31856&cid=6389d0bb614b0a36&ts=106&x=0"
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 15 B URL POST onetag-sys.com/prebid-request
IP
Requested by https://cutyion.com/jhRN0
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint26:2D:63:1A:A7:C6:41:9C:A2:F5:39:CB:C4:F2:77:55:75:D9:90:82
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sat, 27 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba3521ccf7af080a568234f8e8a12a05
7d395437fdda85c7043352a30e356d095f77b19e
e81b0645d550bb2f6da79d0d92ab1b6b7e984dfbaef4db76ebf4216bb896ef8b
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1871
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://cutyion.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
204 No Content 0 B IP
ASN #60558 Phoenix Nap, LLC.
Requested by https://cutyion.com/jhRN0
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
FingerprintA2:A1:4C:F9:09:AA:E5:6A:EA:D6:2C:4A:D7:B0:53:8E:78:DC:F1:B8
ValiditySat, 01 Mar 2025 08:49:04 GMT - Fri, 30 May 2025 08:49:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1364
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Mar 2025 02:07:49 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
id.a-mx.com/sync/?tagId=bmV0cHViLmNvbQ&ref=null&u=https://cutyion.com/jhRN0&tl=https://cutyion.com/jhRN0&nf=0&rt=true&v=8.52.2&av=2.0&vg=pbjs_broly241216&us_privacy=null&am=null&gdpr=0&gdpr_consent=
200 OK 66 B URL GET id.a-mx.com/sync/?tagId=bmV0cHViLmNvbQ&ref=null&u=https://cutyion.com/jhRN0&tl=https://cutyion.com/jhRN0&nf=0&rt=true&v=8.52.2&av=2.0&vg=pbjs_broly241216&us_privacy=null&am=null&gdpr=0&gdpr_consent=
IP
ASN #60068 Datacamp Limited
Requested by https://cutyion.com/jhRN0
Certificate IssuerSectigo Limited
Subjectid.a-mx.com
Fingerprint80:DE:0D:11:57:5C:17:6D:06:7D:EA:45:FA:0C:4B:4F:04:49:4B:B4
ValidityMon, 11 Nov 2024 00:00:00 GMT - Thu, 11 Dec 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 890c48ed6ba13b0709f8dece94b121af
f3d046cb0756521501ec585dd96cc5aaed0d2166
9914a5a7270c6a15aa140df7a6b8719b77bc954828297a2d2ba07caafa1ecd92
GET /sync/?tagId=bmV0cHViLmNvbQ&ref=null&u=https://cutyion.com/jhRN0&tl=https://cutyion.com/jhRN0&nf=0&rt=true&v=8.52.2&av=2.0&vg=pbjs_broly241216&us_privacy=null&am=null&gdpr=0&gdpr_consent= HTTP/1.1
Host: id.a-mx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://cutyion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Tue, 25 Mar 2025 03:07:52 +0100
access-control-allow-credentials: true
access-control-allow-origin: https://cutyion.com
content-type: application/json
content-length: 66
104.22.25.116
151.101.65.229
172.255.103.117
163.5.194.36
167.235.94.177
176.235.30.103
185.83.71.234
137.74.6.209
0.0.0.0