504 B IP
ASN #20940 Akamai International B.V.
Hash a66c295e9c31b5c5f601479940f89b43
ba9c2e62f5c4b19157528a11c87c8940a8c6a34c
a523b727283578a67ff36ad3095de86a3facc4f7a27d95e9535b9cbce09d0880
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "A523B727283578A67FF36AD3095DE86A3FACC4F7A27D95E9535B9CBCE09D0880"
Last-Modified: Tue, 08 Oct 2024 07:46:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6309
Expires: Tue, 08 Oct 2024 14:51:03 GMT
Date: Tue, 08 Oct 2024 13:05:54 GMT
Connection: keep-alive
GET static.vidazoo.com/basev/vwpt.js
200 OK 45 kB URL GET HTTP/2 static.vidazoo.com/basev/vwpt.js
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectvidazoo.com
Fingerprint5D:37:20:71:E6:39:7A:97:AE:09:1C:78:12:C0:E4:4E:DE:EE:CA:1A
ValidityFri, 30 Aug 2024 10:00:23 GMT - Thu, 28 Nov 2024 10:00:22 GMT
File type JavaScript source, ASCII text, with very long lines (65376)
Hash 0a9ad2dbbcba16a1edcccce5216f0935
1eca733fbaa3985066db0118cd54959eaa510d61
5ed0c667d661413ceed43d7b1f90a78bd291a69eb7a9d99e3f57aef0da2a54f0
GET /basev/vwpt.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:54 GMT
content-type: application/javascript
content-length: 44756
x-amz-id-2: 1JVZP6BcIVO+wlw2zykOQzGu3nHqjtvhbDX6xinzqw+JcdDA0eoFfVyjxCoDVaZFHVVGugakqGs=
x-amz-request-id: KXMYFZE7Z6B1Y3A5
last-modified: Tue, 27 Aug 2024 06:53:48 GMT
etag: "01c56a16bd874f63197c60e811e7b3a9"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 9241
expires: Wed, 09 Oct 2024 13:05:54 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 8cf6585caca256ba-OSL
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-LLFSDKZXET
200 OK 97 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-LLFSDKZXET
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT
File type JavaScript source, ASCII text, with very long lines (5945)
Hash e7713d76b4e106d5702490064c438b8d
e734e934429263ebf1edf3265bca81e6206edc7b
6e4e613d773067a33de6f3729c4131362ac7ead79992f1970b9f6ee6f82198d9
GET /gtag/js?id=G-LLFSDKZXET HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Oct 2024 13:05:54 GMT
expires: Tue, 08 Oct 2024 13:05:54 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 97355
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET rentry.co/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 0 B URL GET HTTP/2 rentry.co/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectrentry.co
Fingerprint0E:D2:55:73:5A:E5:74:1E:21:00:4C:3C:2C:EF:69:9F:0B:BB:42:98
ValidityFri, 16 Aug 2024 19:49:55 GMT - Thu, 14 Nov 2024 19:49:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Tue, 08 Oct 2024 13:05:54 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/62ec4f065604/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KpJDv%2FuPWsMcs9qg32sQoCFQW0mOOHIX6hdOKvF3FHIVlsA8BPgqZBuWJ33smBKXI9TvYCvBb6YC5cV5EF9xo0Kp%2FBFhlj0yxOloHXFZualLbekr%2FQzd2YH9Lg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf6585df9c1b4ff-OSL
X-Firefox-Spdy: h2
GET static.vidazoo.com/basev/tcf/1.0.3/tcf.js
200 OK 5.0 kB URL GET HTTP/2 static.vidazoo.com/basev/tcf/1.0.3/tcf.js
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectvidazoo.com
Fingerprint5D:37:20:71:E6:39:7A:97:AE:09:1C:78:12:C0:E4:4E:DE:EE:CA:1A
ValidityFri, 30 Aug 2024 10:00:23 GMT - Thu, 28 Nov 2024 10:00:22 GMT
File type JavaScript source, ASCII text, with very long lines (15909)
Hash fae4a47e2ef8a40cf5a398527998a329
cbf85cab1c802d207cc26643b03376bd7c6de8a7
ced2b5e941867d92627d8f06c5ba98a4786f8fb5de8f4b89537112fc73bb8ed3
GET /basev/tcf/1.0.3/tcf.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:54 GMT
content-type: application/javascript
content-length: 5047
x-amz-id-2: 3o9yYdC1AAmDSkrCjTx0qszWgmxuDPub7IYzIhdhZHH1BG2NcMMSBDa/EQjSD/HsGJvVOHWB26Y=
x-amz-request-id: YST746YA7N6QH66Y
last-modified: Mon, 08 Jan 2024 10:40:28 GMT
etag: "c754706f000335ac7007603f04f43f2d"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 9239
expires: Wed, 09 Oct 2024 13:05:54 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 8cf6585dee9d56ba-OSL
X-Firefox-Spdy: h2
GET static.vidazoo.com/basev/cmp/1.0.1/cmp.js
200 OK 1.4 kB URL GET HTTP/2 static.vidazoo.com/basev/cmp/1.0.1/cmp.js
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectvidazoo.com
Fingerprint5D:37:20:71:E6:39:7A:97:AE:09:1C:78:12:C0:E4:4E:DE:EE:CA:1A
ValidityFri, 30 Aug 2024 10:00:23 GMT - Thu, 28 Nov 2024 10:00:22 GMT
File type JavaScript source, ASCII text, with very long lines (3389)
Hash c775abccacfe7d85e2c32a4da8ab177c
52364c286abb247ad1954d9687c7dbd513fe10e4
2345e6cbff5c4272c633dafc3d96b17107fa2bb3643fa3efa5ce4718c52adead
GET /basev/cmp/1.0.1/cmp.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:54 GMT
content-type: application/javascript
content-length: 1399
x-amz-id-2: YewMMiqP7b5hjVgAG0H/mDLSFKoiiicCgrCgWuHifwgG56a3PnyWoQqzrFisNqpNieScP43wZ2c=
x-amz-request-id: 3EP9P6Q4M1919TW5
last-modified: Tue, 12 Mar 2024 16:34:24 GMT
etag: "537d031a09119574ca284f3fe36dd61b"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 9239
expires: Wed, 09 Oct 2024 13:05:54 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 8cf6585dee9c56ba-OSL
X-Firefox-Spdy: h2
GET cdn4.buysellads.net/pub/rentryco.js?1728392400000
200 OK 197 kB URL GET HTTP/2 cdn4.buysellads.net/pub/rentryco.js?1728392400000
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerLet's Encrypt
Subject*.cdn4.buysellads.net
FingerprintEC:D7:99:F5:7B:3C:3A:48:4E:82:F3:23:0C:F1:7D:FB:0B:0A:44:CB
ValidityThu, 19 Sep 2024 17:42:35 GMT - Wed, 18 Dec 2024 17:42:34 GMT
File type JavaScript source, ASCII text, with very long lines (59519)
Size 197 kB (196743 bytes)
Hash 2011ab00f8bfac15778e98e42d0ee644
2e98f3c0817cbe3b10cea5ec40d48395f861c401
c4c5c7f1ea60160ee2c99ac61b92c30923b1fe29f85fa8f9760e745c94e58e05
GET /pub/rentryco.js?1728392400000 HTTP/1.1
Host: cdn4.buysellads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=3600, stale-while-revalidate
content-encoding: gzip
content-type: application/javascript
etag: 2e98f3c0817cbe3b10cea5ec40d48395f861c401
server: srv-ams3-2
vary: Accept-Encoding
date: Tue, 08 Oct 2024 13:05:55 GMT
X-Firefox-Spdy: h2
GET btloader.com/tag?o=5102648370397184&upapi=true
200 OK 23 kB URL GET HTTP/2 btloader.com/tag?o=5102648370397184&upapi=true
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectbtloader.com
FingerprintF7:C9:36:49:34:40:BA:B8:DE:36:F7:ED:6B:F1:54:AD:40:C8:A9:19
ValidityTue, 08 Oct 2024 07:25:21 GMT - Mon, 06 Jan 2025 07:25:20 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 3bf8ced75ed7481e8c5c7a6bd5c7ceff
1239e250d18417488e7d11558eabf61a7adb2d02
70da08f72ab32ecef258d04f966798d6610ca7781f7eb1d8bf723398e06d48b7
GET /tag?o=5102648370397184&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:55 GMT
content-type: application/javascript
content-length: 22620
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
content-encoding: gzip
etag: "72a3c1accd0b288e3cf949d94324ed30"
last-modified: Tue, 08 Oct 2024 12:52:42 GMT
vary: Origin, Accept-Encoding
x-robots-tag: noindex, nofollow
via: 1.1 google
cf-cache-status: HIT
age: 718
accept-ranges: bytes
server: cloudflare
cf-ray: 8cf65860e84756b1-OSL
X-Firefox-Spdy: h2
GET script.4dex.io/localstore.js
200 OK 580 B URL GET HTTP/1.1 script.4dex.io/localstore.js
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectscript.4dex.io
Fingerprint47:B5:FE:D4:D2:33:E9:E3:16:14:FC:E8:38:56:A0:F7:D1:57:D7:D7
ValiditySat, 21 Sep 2024 23:41:56 GMT - Sat, 21 Dec 2024 00:41:53 GMT
File type JavaScript source, ASCII text, with very long lines (1371)
Hash 00a8e13a83b2bbab51af8e55f52be363
57340eb5c07e50d96f4a04bd4c220f0f24cec649
3aec57ffa5c31e185202ddaa3b5b9d9872d4504f4546ab4eea1298baaf3c7cc7
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 08 Oct 2024 13:05:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"00a8e13a83b2bbab51af8e55f52be363"
Last-Modified: Wed, 28 Aug 2024 15:06:32 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 856656
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i%2FpTM5SJdNJgI36QIHUfO3SLpn%2B%2Be7EywjZEkZp%2BfN9eEZXOUlUZHgQcflPqe%2FSAhdGshfvhImFtbG77uxVEBTI%2FB4EoJoV40Nm6yIddoTV0xAbmDdohgt6aQkQoS6Md"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8cf658614b287130-OSL
Content-Encoding: br
POST hb.yellowblue.io/hb-multi
200 OK 108 B URL POST HTTP/2 hb.yellowblue.io/hb-multi
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerAmazon
Subject*.yellowblue.io
FingerprintF6:26:FE:49:4A:50:FB:11:34:86:E2:79:8F:43:68:A1:1E:B6:8D:6B
ValidityMon, 18 Mar 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hash ba422b5e1420c136722c54d7b3cd0dbd
f390022f515d6e8af9942dfeb98235f7cd33f58f
90349eac7c149d17f15171620bca4e2f6073794da9f008d83f692521df00a376
POST /hb-multi HTTP/1.1
Host: hb.yellowblue.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1365
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 108
date: Tue, 08 Oct 2024 13:05:55 GMT
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF, X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://rentry.co
content-encoding: gzip
x-reason: do not track ifa
x-envoy-upstream-service-time: 21
server: istio-envoy
x-cache: Miss from cloudfront
via: 1.1 d5d7b369f72f565a0dffcd2db50ec516.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: BnIec5jw6dM44_SH1kvLfCkJauVqFqX5JmK7mSMpeQupQQzRmr_ytg==
X-Firefox-Spdy: h2
POST rt.marphezis.com/hb
204 No Content 0 B IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerSectigo Limited
Subject*.marphezis.com
Fingerprint6F:63:01:32:09:D9:BE:4B:F8:91:E6:14:FB:7B:BA:10:B1:4F:93:F4
ValidityTue, 12 Dec 2023 00:00:00 GMT - Fri, 10 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /hb HTTP/1.1
Host: rt.marphezis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 674
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 08 Oct 2024 13:05:55 GMT
access-control-allow-origin: https://rentry.co
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-headers: Content-Type, Authorization, X-Requested-With
access-control-allow-credentials: true
access-control-expose-headers: Content-Length
access-control-max-age: 86400
cache-control: no-store
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
GET script.4dex.io/a/latest/adagio.js
200 OK 19 kB URL GET HTTP/1.1 script.4dex.io/a/latest/adagio.js
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectscript.4dex.io
Fingerprint47:B5:FE:D4:D2:33:E9:E3:16:14:FC:E8:38:56:A0:F7:D1:57:D7:D7
ValiditySat, 21 Sep 2024 23:41:56 GMT - Sat, 21 Dec 2024 00:41:53 GMT
File type JavaScript source, ASCII text, with very long lines (62425)
Hash 3bd20e5fbdd6d804d194856ed36c4ccb
8417d54e1621d36d687f7d983b051398856b0d1f
c06f0ff3bff18094a91fb345b425c2d6cbac9fb8ea56f6db2e879cd49fa36510
GET /a/latest/adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 08 Oct 2024 13:05:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"3bd20e5fbdd6d804d194856ed36c4ccb"
Last-Modified: Wed, 28 Aug 2024 15:06:29 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
CF-Cache-Status: HIT
Age: 856572
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4IChMck3wrs3nebo2fsEIhaFnXH5slLpKrl31XghcZJZ3AanAInq%2B%2FfGRWXJj%2F9AHS8B3b9kZRqQZoe37fC17BsEPL1JU7yxzzbig%2FGXfxLLCVuh7ngBavmA4uw0HtMA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8cf658626e540b41-OSL
Content-Encoding: br
GET ad-delivery.net/px.gif?ch=2
200 OK 43 B URL GET HTTP/2 ad-delivery.net/px.gif?ch=2
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectad-delivery.net
Fingerprint38:D1:FD:58:74:1F:51:30:B5:83:EF:C9:64:4C:D1:6E:B7:C7:14:B7
ValidityThu, 12 Sep 2024 11:17:38 GMT - Wed, 11 Dec 2024 11:17:37 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=2 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:55 GMT
content-type: image/gif
content-length: 43
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
x-guploader-uploadid: ABPtcPqbKSdoxbAA410mrggZiKfDXsJhP9ixcj5r_g42RwC-BpGRQV1l4taKqygKMi5bdZIZlA
expires: Sat, 14 Sep 2024 07:25:02 GMT
cache-control: public, max-age=86400
age: 2094354
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YLo1Ca%2BHxwhuHJQgGiP8k0vHoALuToENtffP40os5YgupmFm7KyLhChbACLVMzfJaQN2bO%2BSWTcS5oTRZKg%2BsvykWrhnFyDgglSC5nkegmRU06tsHLoO4BFehGouv33SQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf65862ba3f56b7-OSL
X-Firefox-Spdy: h2
POST onetag-sys.com/prebid-request
200 OK 41 B URL POST HTTP/2 onetag-sys.com/prebid-request
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1885
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://rentry.co
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
GET ad-delivery.net/px.gif?ch=1&e=0.7572771850979297
200 OK 43 B URL GET HTTP/2 ad-delivery.net/px.gif?ch=1&e=0.7572771850979297
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectad-delivery.net
Fingerprint38:D1:FD:58:74:1F:51:30:B5:83:EF:C9:64:4C:D1:6E:B7:C7:14:B7
ValidityThu, 12 Sep 2024 11:17:38 GMT - Wed, 11 Dec 2024 11:17:37 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.7572771850979297 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:55 GMT
content-type: image/gif
content-length: 43
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
x-guploader-uploadid: ABPtcPqbKSdoxbAA410mrggZiKfDXsJhP9ixcj5r_g42RwC-BpGRQV1l4taKqygKMi5bdZIZlA
expires: Sat, 14 Sep 2024 07:25:02 GMT
cache-control: public, max-age=86400
age: 2094354
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a92zKYBZKzcrhEVXtOegGpk5HhoQKJ6ivx7JoPx5OxpB1JKIWtvIs6JIg1I%2FToVZZrP4U2YLkx87SWiUzkxrNDxKG5a%2FICZ7g9if5B%2BYtc4bLPPD3uuUvk97kgAnAxa8sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf65862ca5456b7-OSL
X-Firefox-Spdy: h2
GET cadmus.script.ac/dahhc4ozyvjm6/script.js
200 OK 3 B URL GET HTTP/2 cadmus.script.ac/dahhc4ozyvjm6/script.js
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerLet's Encrypt
Subjectscript.ac
FingerprintE3:B2:70:06:64:54:E4:B4:25:FC:11:FF:E2:10:5E:1F:3B:A9:78:5B
ValidityWed, 21 Aug 2024 15:35:30 GMT - Tue, 19 Nov 2024 15:35:29 GMT
Hash b519d08ef66fd54910edbedba6181ec2
8d06436c33a3086259f2f1ccaf03425707eeff17
101ead936a2281d53dcc064b7e2a2ab0d53b92ef3ef7b34b668673007895c860
GET /dahhc4ozyvjm6/script.js HTTP/1.1
Host: cadmus.script.ac
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:55 GMT
content-type: application/javascript
content-length: 3
age: 0
cache-control: public,max-age=259200,stale-while-revalidate=86400,stale-if-error=259200
etag: W/"601055f6a0c6408859f97b5f0a84bdb88441a80e"
last-modified: Mon, 01 Jan 2018 00:00:00 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf65862edfa0b65-OSL
X-Firefox-Spdy: h2
GET c.4dex.io/pba.gif?v=1&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=1&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectc.4dex.io
FingerprintD4:0E:8D:DB:CC:EA:9F:EB:13:63:33:93:35:85:C0:ED:DE:1E:BF:2F
ValiditySun, 18 Aug 2024 13:49:25 GMT - Sat, 16 Nov 2024 14:42:38 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=1&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 08 Oct 2024 13:05:55 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET c.4dex.io/pba.gif?v=1&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=1&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectc.4dex.io
FingerprintD4:0E:8D:DB:CC:EA:9F:EB:13:63:33:93:35:85:C0:ED:DE:1E:BF:2F
ValiditySun, 18 Aug 2024 13:49:25 GMT - Sat, 16 Nov 2024 14:42:38 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=1&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 08 Oct 2024 13:05:55 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
472 B IP
Hash f7adc3a704c9c87449f7eeea3c37f684
8696f333e531e502e5b113fdd9a06f29a998ef34
5baa80150f5415051710eec271560a912ad365b1e1027accdfe9f3928636539b
POST /s/wr3/32w HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 13:05:55 GMT
Cache-Control: public, max-age=14400
Content-Security-Policy-Report-Only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/sytroprc:52:0
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to=coop_reporting
Report-To: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/sytroprc:52:0"}],}
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
472 B IP
Hash f7adc3a704c9c87449f7eeea3c37f684
8696f333e531e502e5b113fdd9a06f29a998ef34
5baa80150f5415051710eec271560a912ad365b1e1027accdfe9f3928636539b
POST /s/wr3/32w HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 13:05:55 GMT
Cache-Control: public, max-age=14400
Content-Security-Policy-Report-Only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/sytroprc:52:0
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to=coop_reporting
Report-To: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/sytroprc:52:0"}],}
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
POST exchange.cootlogix.com/prebid/multi/65e9e879eab3382166f737dc
204 No Content 0 B URL POST HTTP/1.1 exchange.cootlogix.com/prebid/multi/65e9e879eab3382166f737dc
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint42:4E:B5:0E:ED:B9:5B:73:77:57:21:E2:AA:3E:A0:B3:D5:3D:A9:D8
ValidityThu, 19 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/multi/65e9e879eab3382166f737dc HTTP/1.1
Host: exchange.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 877
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
access-control-allow-origin: https://rentry.co
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
set-cookie: vdz_sync=8760fcf6-a590-2057-8544-3cbf37ff5889; Domain=.cootlogix.com; Path=/; Expires=Thu, 07 Nov 2024 13:05:55 GMT; Secure; SameSite=None
date: Tue, 08 Oct 2024 13:05:55 GMT
GET api.btloader.com/pv?tid=P6Qz8TDIU&w=5123465689956352&o=5102648370397184&cv=2.1.59-1-g78ed83d&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2Fv5dwfbvq&sid=MiKez2BTRf&pm=true&upapi=true
204 No Content 0 B URL GET HTTP/2 api.btloader.com/pv?tid=P6Qz8TDIU&w=5123465689956352&o=5102648370397184&cv=2.1.59-1-g78ed83d&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2Fv5dwfbvq&sid=MiKez2BTRf&pm=true&upapi=true
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectapi.btloader.com
FingerprintE9:22:7F:19:59:05:BB:3B:A1:7C:02:8B:42:5B:86:2A:EF:A6:DD:4C
ValidityTue, 01 Oct 2024 03:06:26 GMT - Mon, 30 Dec 2024 03:57:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pv?tid=P6Qz8TDIU&w=5123465689956352&o=5102648370397184&cv=2.1.59-1-g78ed83d&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Frentry.co%2Fv5dwfbvq&sid=MiKez2BTRf&pm=true&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Tue, 08 Oct 2024 13:05:56 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET api.btloader.com/country?o=5102648370397184
200 OK 37 B URL GET HTTP/2 api.btloader.com/country?o=5102648370397184
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectapi.btloader.com
FingerprintE9:22:7F:19:59:05:BB:3B:A1:7C:02:8B:42:5B:86:2A:EF:A6:DD:4C
ValidityTue, 01 Oct 2024 03:06:26 GMT - Mon, 30 Dec 2024 03:57:38 GMT
Hash bdfe458835550c34f45fc9fdfeebb12a
0f08aa02e7bcbf4c5e991a5defb2fdbd03a86f3d
ad26ec64cc613fbfbd47faaf39f9921c2b19769bde1d3c5c2857a671e7863cf9
GET /country?o=5102648370397184 HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: private, max-age=300, stale-while-revalidate=600, stale-if-error=600
content-type: application/json
vary: Origin
date: Tue, 08 Oct 2024 13:05:56 GMT
content-length: 37
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST exchange.cootlogix.com/prebid/multi/65e9e879eab3382166f737dc
204 No Content 0 B URL POST HTTP/1.1 exchange.cootlogix.com/prebid/multi/65e9e879eab3382166f737dc
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint42:4E:B5:0E:ED:B9:5B:73:77:57:21:E2:AA:3E:A0:B3:D5:3D:A9:D8
ValidityThu, 19 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/multi/65e9e879eab3382166f737dc HTTP/1.1
Host: exchange.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 899
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
access-control-allow-origin: https://rentry.co
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
set-cookie: vdz_sync=202dfb16-f106-5229-6a4b-4df82d364c80; Domain=.cootlogix.com; Path=/; Expires=Thu, 07 Nov 2024 13:05:55 GMT; Secure; SameSite=None
date: Tue, 08 Oct 2024 13:05:55 GMT
472 B IP
Hash f7adc3a704c9c87449f7eeea3c37f684
8696f333e531e502e5b113fdd9a06f29a998ef34
5baa80150f5415051710eec271560a912ad365b1e1027accdfe9f3928636539b
POST /s/wr3/32w HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 13:05:56 GMT
Cache-Control: public, max-age=14400
Content-Security-Policy-Report-Only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/sytroprc:52:0
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to=coop_reporting
Report-To: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/sytroprc:52:0"}],}
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
POST ib.adnxs.com/ut/v3/prebid
200 OK 252 B URL POST HTTP/2 ib.adnxs.com/ut/v3/prebid
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerDigiCert Inc
Subject*.adnxs.com
Fingerprint67:2D:49:EE:1E:AF:D8:2B:B2:85:1A:C5:39:29:91:05:8E:5E:6F:AA
ValidityWed, 14 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
Hash b0395934d76d2396923e01feb5759042
a19c51cfe6a1b4460966961418ed5667275cc64c
936e2ea8bfb77891e80e89d9c6d38ad5d5eb620b73f8a25cdd39b477df30c621
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1149
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.4
date: Tue, 08 Oct 2024 13:05:56 GMT
content-type: application/json; charset=utf-8
content-length: 252
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: https://rentry.co
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
an-x-request-uuid: 39a2c8a4-ac09-4a43-bc3b-3b1f816c98bc
x-proxy-origin: 91.90.42.154; 91.90.42.154; 940.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
X-Firefox-Spdy: h2
GET c.4dex.io/pba.gif?v=2&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0&bdrs_cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=2&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0&bdrs_cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectc.4dex.io
FingerprintD4:0E:8D:DB:CC:EA:9F:EB:13:63:33:93:35:85:C0:ED:DE:1E:BF:2F
ValiditySun, 18 Aug 2024 13:49:25 GMT - Sat, 16 Nov 2024 14:42:38 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=2&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1699624989460-1_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_FixedFooter_ROS&mts=ban&ban_szs=728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0&bdrs_cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 08 Oct 2024 13:05:56 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET c.4dex.io/pba.gif?v=2&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0&bdrs_cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C
200 OK 43 B URL GET HTTP/2 c.4dex.io/pba.gif?v=2&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0&bdrs_cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectc.4dex.io
FingerprintD4:0E:8D:DB:CC:EA:9F:EB:13:63:33:93:35:85:C0:ED:DE:1E:BF:2F
ValiditySun, 18 Aug 2024 13:49:25 GMT - Sat, 16 Nov 2024 14:42:38 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pba.gif?v=2&pbjsv=8.45.0&org_id=1116&site=rentry-co&pv_id=05ec5c01-a566-4bd3-8bb9-5073cfdff4cb&auct_id=c047734a-acd3-4a80-b0fc-425285ac26a9&adu_code=bsa-zone_1700727262982-7_123456&url_dmn=rentry.co&pgtyp=undefined&plcmt=Rentryco_S2S_TopLeaderboard_ROS&mts=ban&ban_szs=468x60%2C728x90%2C970x90%2C980x90%2C990x90&bdrs=adagio%2Cadyoulike%2Cappnexus%2Cbcmssp%2Ccriteo%2Ceplanning%2Cnobid%2Conetag%2Copenx%2Cpubmatic%2Crise%2Crubicon%2Csmartadserver%2Cvidazoo&adg_mts=ban&bdrs_bid=0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0%2C0&bdrs_cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 08 Oct 2024 13:05:56 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET onetag-sys.com/usync/?cb=1728392755716
204 No Content 0 B URL GET HTTP/2 onetag-sys.com/usync/?cb=1728392755716
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1728392755716 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
GET onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
204 No Content 0 B URL GET HTTP/2 onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint9D:25:F4:C3:B5:6A:40:DB:23:4A:02:98:48:44:09:DB:7C:07:BF:90
ValidityTue, 23 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
GET sync.cootlogix.com/api/sync/iframe/?cid=&gdpr=0&gdpr_consent=&us_privacy=
200 OK 109 B URL GET HTTP/2 sync.cootlogix.com/api/sync/iframe/?cid=&gdpr=0&gdpr_consent=&us_privacy=
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint42:4E:B5:0E:ED:B9:5B:73:77:57:21:E2:AA:3E:A0:B3:D5:3D:A9:D8
ValidityThu, 19 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 9b7355ecddaf0c12398a48659278a7e6
5181162df39733dda7a615293993d26df753d769
a1aa01f31d4087317f5d4e5ef4ea70a73e38124a45f1553dbe8968ea16068b84
GET /api/sync/iframe/?cid=&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: sync.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Cookie: vdz_sync=202dfb16-f106-5229-6a4b-4df82d364c80
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-credentials: true
p3p: CP="NOI DSP COR PSAo PSDo OUR IND UNI COM NAV ADMa"
access-control-allow-methods: GET, HEAD, OPTIONS, POST
content-type: text/html
content-length: 109
date: Tue, 08 Oct 2024 13:05:59 GMT
X-Firefox-Spdy: h2
GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
302 Found 0 B URL GET HTTP/2 prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
IP
ASN #49981 WorldStream B.V.
Requested by https://public.servenobid.com/sync.html
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
Fingerprint1B:31:3F:62:25:3C:F9:F5:AA:37:45:E8:68:E5:41:C3:0E:70:C8:C1
ValidityMon, 02 Sep 2024 11:39:42 GMT - Sun, 01 Dec 2024 11:39:41 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 08 Oct 2024 13:05:59 GMT
location: https://ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
GET ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
200 OK 0 B URL GET HTTP/2 ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=327&uid=&us_privacy=1YN-&gdpr=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:59 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
GET cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D
204 No Content 0 B URL GET HTTP/2 cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subject*.yellowblue.io
Fingerprint3E:2F:02:15:24:62:BE:D4:BC:D1:64:8E:24:5F:A0:20:D8:CD:E1:DA
ValidityMon, 18 Mar 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D HTTP/1.1
Host: cs-server-s2s.yellowblue.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 08 Oct 2024 13:06:00 GMT
x-envoy-upstream-service-time: 8
server: istio-envoy
X-Firefox-Spdy: h2
POST ads.servenobid.com/adreq?cb=2849
200 OK 108 B URL POST HTTP/2 ads.servenobid.com/adreq?cb=2849
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
Hash 9130e987b4e1bc2e60ce050706ae7762
65b29fa67955ea5d6b935be74714e7debf05bebc
f8d80bedea6aeedc7a7e6c9a8bc0c8983a3a1546fc1aa823218359789fb96c49
POST /adreq?cb=2849 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 874
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:55 GMT
content-type: application/json
access-control-allow-origin: https://rentry.co
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
GET ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
204 No Content 0 B URL GET HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerAmazon
Subjectssp.disqus.com
FingerprintB7:96:BD:15:65:56:33:FE:02:3A:A7:8A:57:8F:70:4E:6A:F5:33:36
ValidityThu, 19 Sep 2024 00:00:00 GMT - Fri, 17 Oct 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 08 Oct 2024 13:06:00 GMT
cache-control: no-store
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
GET ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26pid%3D%26uid%3D%24UID&partner=kulturemedia
204 No Content 0 B URL GET HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26pid%3D%26uid%3D%24UID&partner=kulturemedia
IP
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerAmazon
Subjectssp.disqus.com
FingerprintB7:96:BD:15:65:56:33:FE:02:3A:A7:8A:57:8F:70:4E:6A:F5:33:36
ValidityThu, 19 Sep 2024 00:00:00 GMT - Fri, 17 Oct 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.dxkulture.com%2Fsetuid%3Fbidder%3Dzeta%26pid%3D%26uid%3D%24UID&partner=kulturemedia HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Tue, 08 Oct 2024 13:06:02 GMT
cache-control: no-store
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
GET ads.dxkulture.com/usync/lr.gif?pid=
302 Found 107 B URL GET HTTP/1.1 ads.dxkulture.com/usync/lr.gif?pid=
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
FingerprintDB:A1:D3:32:39:D1:A1:54:00:65:69:0A:D5:B3:E9:42:97:EA:13:F5
ValidityThu, 25 Jul 2024 05:59:03 GMT - Wed, 23 Oct 2024 05:59:02 GMT
File type HTML document, ASCII text
Hash 2cee74ce318bc98d624867ddcbc4b4d6
39618e526d6ee829f3207ecbbfe5713e56a2855d
2c813276fb915a4400ca98143eec6475da4f0a6ee5b21b2f57135240faa91b05
GET /usync/lr.gif?pid= HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Cookie: mtuid=b7cc0ff4-6ecc-49ae-8d30-86f0729f7707
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Tue, 08 Oct 2024 13:06:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 107
Connection: close
Location: https://idsync.rlcdn.com/712910.gif?partner_uid=b7cc0ff4-6ecc-49ae-8d30-86f0729f7707
Vary: Origin
Strict-Transport-Security: max-age=31536000; includeSubDomains
GET ads.dxkulture.com/usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID
301 Moved Permanently 119 B URL GET HTTP/1.1 ads.dxkulture.com/usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
FingerprintDB:A1:D3:32:39:D1:A1:54:00:65:69:0A:D5:B3:E9:42:97:EA:13:F5
ValidityThu, 25 Jul 2024 05:59:03 GMT - Wed, 23 Oct 2024 05:59:02 GMT
File type HTML document, ASCII text
Hash fdc08ad573a287e79804b6d0cc933e87
f62126dfaefc26bd6ba1875b7cd95e8141f79620
23c75be29217df98d0e841fd6ece4afe077152606aeea04537b1501c4948bcc1
GET /usync?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D369%26uid%3D%24UID HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Cookie: mtuid=b7cc0ff4-6ecc-49ae-8d30-86f0729f7707
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Tue, 08 Oct 2024 13:06:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 119
Connection: close
Location: https://ads.servenobid.com/sync?pid=369&uid=b7cc0ff4-6ecc-49ae-8d30-86f0729f7707
Vary: Origin
Strict-Transport-Security: max-age=31536000; includeSubDomains
GET ads.servenobid.com/sync?pid=369&uid=b7cc0ff4-6ecc-49ae-8d30-86f0729f7707
200 OK 0 B URL GET HTTP/2 ads.servenobid.com/sync?pid=369&uid=b7cc0ff4-6ecc-49ae-8d30-86f0729f7707
IP
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerAmazon
Subjectads.servenobid.com
FingerprintA5:AA:49:D0:11:97:9B:D6:A9:AE:1B:96:17:90:07:21:8A:CF:8E:C3
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sun, 27 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=369&uid=b7cc0ff4-6ecc-49ae-8d30-86f0729f7707 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdn.dxkulture.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:06:03 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_369=b7cc0ff4-6ecc-49ae-8d30-86f0729f7707; domain=servenobid.com; SameSite=None; Expires=Tue, 15 Oct 2024 13:06:03 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
POST mp.4dex.io/prebid
200 OK 66 B IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectmp.4dex.io
Fingerprint56:F6:75:F5:D4:2C:0C:16:22:3A:0E:5D:4A:D5:00:BC:1D:33:CD:E2
ValidityThu, 29 Aug 2024 01:52:26 GMT - Wed, 27 Nov 2024 01:52:25 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 11d1ae94e48460e0405bcc40b31de384
b149e18e71fde2a2a413017f2e077400fe8984f5
d747208190f9be45b2509596f8d09bba483af78f595147f1fa81defdcd9c49c0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
content-type: text/plain
Content-Length: 1805
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:55 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://rentry.co
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Calling bidders. no bid responses
x-version: 3.0.0-gcp-ams
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8cf65861f88db524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
GET rentry.co/static/js/jquery.min.js?v=22
200 OK 92 kB URL GET HTTP/2 rentry.co/static/js/jquery.min.js?v=22
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectrentry.co
Fingerprint0E:D2:55:73:5A:E5:74:1E:21:00:4C:3C:2C:EF:69:9F:0B:BB:42:98
ValidityFri, 16 Aug 2024 19:49:55 GMT - Thu, 14 Nov 2024 19:49:54 GMT
File type JavaScript source, ASCII text, with very long lines (65451)
Hash 0d9824e6289fa893434c354eadde4075
b9a1358f185c7239829712de6830333829e9bd33
4c1add9ba5d6cde3a03149a022b61163b35c4d5c738cf32470e7e7bd611e4ac6
GET /static/js/jquery.min.js?v=22 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/v5dwfbvq
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:54 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2024 18:32:20 GMT
etag: W/"66e9cb34-166ee"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 1794745
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J8OLGMAQKaOOUydVTHD4kjBBL00RLHHXBr1fr0Qf9zQnPjbzVHC5xvsH3yFf7B8AUzMDjbWUtYH2YHB1k8Bk2oEMHG092pDkDjSySbv9e%2B3%2FdOYUcfUlFtTtgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf6585c7f61b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET rentry.co/static/js/bootstrap.min.js?v=22
200 OK 58 kB URL GET HTTP/2 rentry.co/static/js/bootstrap.min.js?v=22
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectrentry.co
Fingerprint0E:D2:55:73:5A:E5:74:1E:21:00:4C:3C:2C:EF:69:9F:0B:BB:42:98
ValidityFri, 16 Aug 2024 19:49:55 GMT - Thu, 14 Nov 2024 19:49:54 GMT
File type JavaScript source, ASCII text, with very long lines (57791)
Hash e1d98d47689e00f8ecbc5d9f61bdb42e
6778fed3cf095a318141a31f455c8f4663885bde
0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b
GET /static/js/bootstrap.min.js?v=22 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/v5dwfbvq
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:54 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2024 18:32:20 GMT
etag: W/"66e9cb34-e2d8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 1794745
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RCrEPJODrER4HpADmwv3D75mw6T2rg57earq7hGu8gnp8gjNIr0mFA64p%2Bp3HvVGGQ%2Fk8qz%2B5KZlv4YF2gL3WMlby%2BRCxI1Jvk%2BXTqLAvCZmPrE9F%2FmiquIA6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf6585c7f64b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET ads.dxkulture.com/xuid?pid=
200 OK 0 B URL GET HTTP/1.1 ads.dxkulture.com/xuid?pid=
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://cdn.dxkulture.com/x/sync.html
Certificate IssuerLet's Encrypt
Subjectads.dxkulture.com
FingerprintDB:A1:D3:32:39:D1:A1:54:00:65:69:0A:D5:B3:E9:42:97:EA:13:F5
ValidityThu, 25 Jul 2024 05:59:03 GMT - Wed, 23 Oct 2024 05:59:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xuid?pid= HTTP/1.1
Host: ads.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.dxkulture.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 08 Oct 2024 13:06:00 GMT
Content-Length: 0
Connection: close
Cache-Control: no-cache, no-store
Set-Cookie: mtuid=b7cc0ff4-6ecc-49ae-8d30-86f0729f7707; Path=/; Domain=dxkulture.com; Expires=Sun, 06 Apr 2025 13:06:00 GMT; Secure; SameSite=None
Vary: Origin
Strict-Transport-Security: max-age=31536000; includeSubDomains
GET public.servenobid.com/sync.html
200 OK 8.9 kB URL GET HTTP/2 public.servenobid.com/sync.html
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerAmazon
Subject*.servenobid.com
Fingerprint96:33:3B:11:8E:FE:89:CB:05:31:59:EF:8B:B5:EF:32:91:13:48:BB
ValidityFri, 08 Dec 2023 00:00:00 GMT - Sun, 05 Jan 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (9200), with no line terminators
Hash 30fb194cc8e3eaba60cd4fcb624e59cc
0be3898cce41351d82e0f1406ad7c1864fb1479f
fe51b46260313fdde0ed38ab486ae2fb8b78e14a8b697a82985e75eece439b44
GET /sync.html HTTP/1.1
Host: public.servenobid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
last-modified: Fri, 09 Aug 2024 18:03:42 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-codebuild-content-sha256: 0c862cfbec86cf35da41ccff65cebb329952af81fbec4518f938686b910c80ab
x-amz-version-id: null
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-1:559734745816:build/adserver-public-prod:f39297af-ab1b-4fa1-9c17-e707d9442122
x-amz-meta-codebuild-content-md5: c019d5c9f38b298a15d2331367789657
server: AmazonS3
content-encoding: gzip
date: Tue, 08 Oct 2024 04:01:12 GMT
cache-control: max-age=86400
etag: W/"a421cafd19c21284be567b12002cf378"
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z9xD7m9I4b5f10ncTNze37KiiemuafTeeg02iAE1t5nySewO9gc9YA==
age: 32698
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
GET cdn.dxkulture.com/x/sync.html
200 OK 2.5 kB URL GET HTTP/2 cdn.dxkulture.com/x/sync.html
IP
Requested by https://public.servenobid.com/sync.html
Certificate IssuerLet's Encrypt
Subjectcdn.dxkulture.com
FingerprintDE:88:F3:26:B4:A0:0D:FB:82:23:5C:4F:A2:91:C8:75:84:0E:4B:7A
ValidityFri, 26 Jul 2024 05:11:26 GMT - Thu, 24 Oct 2024 05:11:25 GMT
File type JavaScript source, ASCII text, with very long lines (2625), with no line terminators
Hash 9f410e45389e6b3d1ddbb7f2f86aebfc
159c277e101d68d1ef45468818175544c12e173e
37cd627518d5765b8dc7bd0c71ed86dcc336a3b16392edaf7d4920c13f8f611a
GET /x/sync.html HTTP/1.1
Host: cdn.dxkulture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:59 GMT
content-type: text/html
last-modified: Wed, 31 Jul 2024 11:10:14 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx00000dc0e0999cafc06b9-0066e43401-bc599245-nyc3c
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: 4cf2344c-b5f4-4372-87f8-a2f54204ed44
cache-control: max-age=3600
x-envoy-upstream-healthchecked-cluster:
cf-cache-status: HIT
age: 1321
set-cookie: __cf_bm=hpBVR5_Et5c6XPZIwWz67RFq.cNZnfEiyy3iu_dhwFw-1728392759-1.0.1.1-REitUOzizaSihxRC16Jh_Qr2jF2SjS.LE_VOdXhLdv.eLB6cl4ckjn0xWgFJii0L2sUDPLbFm6qq.MVfkwft8g; path=/; expires=Tue, 08-Oct-24 13:35:59 GMT; domain=.cdn.dxkulture.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8cf6587c2c51b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
GET rentry.co/cdn-cgi/challenge-platform/h/b/scripts/jsd/62ec4f065604/main.js?
200 OK 8.1 kB URL GET HTTP/2 rentry.co/cdn-cgi/challenge-platform/h/b/scripts/jsd/62ec4f065604/main.js?
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectrentry.co
Fingerprint0E:D2:55:73:5A:E5:74:1E:21:00:4C:3C:2C:EF:69:9F:0B:BB:42:98
ValidityFri, 16 Aug 2024 19:49:55 GMT - Thu, 14 Nov 2024 19:49:54 GMT
File type JavaScript source, ASCII text, with very long lines (8062), with no line terminators
Hash fb8ae330d3374126f53ae9ec2e385a6b
ceb1520f39bc94357dcc94dc3b9040b4c64b3162
7111d42fb13c33bdca6230da7694c57079371fdbee5b2688d1e54af6862a43ae
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/62ec4f065604/main.js? HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:54 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rQY7soD4i1g6Bztx2dPG28NCgEr7ZAlUpdBwbxOVjRGN1f8Ub8jlKA19Cowb1w38B6MGtyCzWgHTAXYyQfWjCp0RFkq%2BGu%2FOgBc3CBpSwUXtn8%2Fku%2FlNFFAn0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf6585e1a01b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
POST rentry.co/cdn-cgi/challenge-platform/h/b/jsd/r/8cf6585a4c50b4ff
200 OK 0 B URL POST HTTP/2 rentry.co/cdn-cgi/challenge-platform/h/b/jsd/r/8cf6585a4c50b4ff
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectrentry.co
Fingerprint0E:D2:55:73:5A:E5:74:1E:21:00:4C:3C:2C:EF:69:9F:0B:BB:42:98
ValidityFri, 16 Aug 2024 19:49:55 GMT - Thu, 14 Nov 2024 19:49:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/8cf6585a4c50b4ff HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12133
Origin: https://rentry.co
DNT: 1
Connection: keep-alive
Referer: https://rentry.co/v5dwfbvq
Cookie: _ga_LLFSDKZXET=GS1.1.1728392754.1.0.1728392754.0.0.0; _ga=GA1.1.783621487.1728392755
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:55 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.rentry.co; HttpOnly; Secure; SameSite=None
cf_clearance=M45FlZ8C8B.uUTyCXf4qYmcqsYSyngqaP1hO91FjJkM-1728392755-1.2.1.1-ChzPS5FO8FP8_sMR0G1uqUZ5eFrT6iAczWk_PzfLglsyEOEkY_MKXX8rO8Gs02zrDIJRkeJPsbMQxjvxC9NfG5132qutX8tZqFaPpWxB_YiDzhoBDSaa5Ms0YoTJwL1gN_TvTHV9atXaykcgARCvS_URa6_lIUymsOMIA0AXk.TlE5xbMUpEf0J7JV5SdGyKrH86J2hzYvJV_QQJCY1zehquGb1lsFPCdXF5ndrWe1HNGr4PBY56FTPIV1X34fDjm7CHPxmwNGXVWiYcGVZ9YdC2G6wfNpRM5zph8Vg__EmYp6Hu2QCJBza0fIayKFnZoOxa9OBqXOzT0.VYMMPbkw; Path=/; Expires=Wed, 08-Oct-25 13:05:55 GMT; Domain=.rentry.co; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yqd9vyId2ky9Kf389%2FffIehhpqyd07FO4lwzS0b%2B1qM19yLMyhITs9TvxTbmOoYVd%2BXFvL%2FqPJI6K9Y00zCBEdHXOi0IuZKzHjv0Ag8DZyO41Y7bFjtF4zJxSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf6585fccacb4ff-OSL
X-Firefox-Spdy: h2
200 OK 10 kB URL User Request GET HTTP/2 IP
Certificate IssuerGoogle Trust Services
Subjectrentry.co
Fingerprint0E:D2:55:73:5A:E5:74:1E:21:00:4C:3C:2C:EF:69:9F:0B:BB:42:98
ValidityFri, 16 Aug 2024 19:49:55 GMT - Thu, 14 Nov 2024 19:49:54 GMT
File type HTML document, ASCII text, with very long lines (945)
Hash 0685725f9f44580a811772dcdae93203
78cba7ea6c600e157573d0ca7bda2efb43a9782c
92a103ac66e6e3452b9de985e30bfa44d0a229d32c09c326d82005e98fca8e60
GET /v5dwfbvq HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:54 GMT
content-type: text/html; charset=utf-8
vary: Origin, Cookie
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: Vary
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QzdEnjS%2F1cNzYsnzSszQUS46m1BSUhl0ucluUGotEO2VS7klNiv5zLipSdHMkQEgHychK8oFzV0gbu1%2BQGR7JfZiJGnbAxmmYnBltLEApcvg2O3XSQowrLRxBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf6585a4c50b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET rentry.co/static/css/bootstrap.min.css?v=22
200 OK 187 kB URL GET HTTP/2 rentry.co/static/css/bootstrap.min.css?v=22
IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectrentry.co
Fingerprint0E:D2:55:73:5A:E5:74:1E:21:00:4C:3C:2C:EF:69:9F:0B:BB:42:98
ValidityFri, 16 Aug 2024 19:49:55 GMT - Thu, 14 Nov 2024 19:49:54 GMT
File type ASCII text, with very long lines (65324)
Size 187 kB (187439 bytes)
Hash 7e886f055c565347877eb8a59f9313fd
83cc0906cd406e37d27559104dccb2aa161436fa
b9919f6ccf0b6890862b269838378a11c1b2ca5990b8a07ba93785427a7f2c02
GET /static/css/bootstrap.min.css?v=22 HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/v5dwfbvq
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:54 GMT
content-type: text/css
last-modified: Tue, 17 Sep 2024 18:32:20 GMT
etag: W/"66e9cb34-2dc2f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, vary
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 1794745
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3i4DcB%2BFpvH58jjbLaaW%2FkpLoJ%2FRxktBXknArfW7B%2Bg9akegMZPYr184Od5tSdpK0bf9PY21u4VmpRF7inMhcIav3wdTZAz5sZ2HD4H3knrvQt%2B2quULa7CPgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf6585c7f5bb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET rentry.co/favicon.ico
200 OK 15 kB IP
Requested by https://rentry.co/v5dwfbvq
Certificate IssuerGoogle Trust Services
Subjectrentry.co
Fingerprint0E:D2:55:73:5A:E5:74:1E:21:00:4C:3C:2C:EF:69:9F:0B:BB:42:98
ValidityFri, 16 Aug 2024 19:49:55 GMT - Thu, 14 Nov 2024 19:49:54 GMT
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Hash b102d58bb28a83de9b59fedcd08d17ea
8b6edee7f5d96b69c6e4f0c4e8376c640a34aa63
93eab1e1c50b4ff5b4aa5eefa6e85ce7bae235b52886914529c8b8aa4319f26c
GET /favicon.ico HTTP/1.1
Host: rentry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentry.co/v5dwfbvq
DNT: 1
Connection: keep-alive
Cookie: _ga_LLFSDKZXET=GS1.1.1728392754.1.0.1728392754.0.0.0; _ga=GA1.1.783621487.1728392755
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 08 Oct 2024 13:05:55 GMT
content-type: image/x-icon
last-modified: Tue, 17 Sep 2024 18:33:22 GMT
etag: W/"66e9cb72-3aee"
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400, vary
cf-cache-status: HIT
age: 2650
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RHmAIqDR48o8%2F20nO%2BHPlhQwG8HcAsRMQGiiIOFG447DjeYhHjeToDy6L8dTN9j7F6KQjeFHz13NLcgKX3MO6abykNbbzbyWr7RB2csvUEnWhAdPI6NFFN4mWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf6585f6c04b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
104.26.2.16
172.67.41.60
23.36.76.226
185.89.210.46
188.166.203.175
54.73.55.99
51.89.9.251
0.0.0.0