Overview

URL https://pornzxz.blogspot.com/
IP216.58.207.193
ASNAS15169 Google Inc.
Location United States
Report completed2019-06-30 00:44:55 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 216.58.207.193

Date UQ / IDS / BL URL IP
2019-07-01 09:19:18 +0200
0 - 0 - 1 https://bartuatenbe1974.blogspot.pt/ 216.58.207.193
2019-07-01 08:24:54 +0200
0 - 0 - 1 pacarama1983.blogspot.com 216.58.207.193
2019-07-01 07:21:49 +0200
0 - 0 - 0 fijisharkdiving.blogspot.com/2018/10/my-fiji- (...) 216.58.207.193
2019-06-30 14:13:50 +0200
0 - 0 - 0 https://lh3.googleusercontent.com/xWzkoxzGSJv (...) 216.58.207.193
2019-06-30 01:24:08 +0200
0 - 0 - 0 2.bp.blogspot.com/-tb07KzQDFM0/VeSjpIxuE1I/AA (...) 216.58.207.193
2019-06-30 00:58:47 +0200
0 - 0 - 0 https://fahadsoror.blogspot.com/ 216.58.207.193
2019-06-27 09:29:25 +0200
0 - 0 - 1 https://quesappfovo1987.blogspot.cz/ 216.58.207.193
2019-06-27 09:24:34 +0200
0 - 1 - 1 cofdestticgast1980.blogspot.si 216.58.207.193
2019-06-26 21:03:28 +0200
0 - 0 - 0 yt3.ggpht.com/-VnzCZ53QdNc/AAAAAAAAAAI/AAAAAA (...) 216.58.207.193
2019-06-26 17:50:33 +0200
0 - 0 - 0 rentalrm.blogspot.com/ 216.58.207.193

Last 10 reports on ASN: AS15169 Google Inc.

Date UQ / IDS / BL URL IP
2019-07-01 11:14:59 +0200
0 - 0 - 0 https://docs.google.com/forms/d/e/1FAIpQLSfZp (...) 216.58.207.206
2019-07-01 09:39:24 +0200
0 - 0 - 1 bartuatenbe1974.blogspot.pt 216.58.211.1
2019-07-01 09:33:26 +0200
0 - 0 - 0 https://movieok4k.blogspot.com/2019/06/articl (...) 216.58.211.1
2019-07-01 09:28:48 +0200
0 - 0 - 1 bartuatenbe1974.blogspot.pt/ 216.58.211.1
2019-07-01 09:19:18 +0200
0 - 0 - 1 https://bartuatenbe1974.blogspot.pt/ 216.58.207.193
2019-07-01 08:47:18 +0200
0 - 0 - 1 https://elmulrapan1981.blogspot.ca/ 216.58.207.225
2019-07-01 08:24:54 +0200
0 - 0 - 1 pacarama1983.blogspot.com 216.58.207.193
2019-07-01 08:19:22 +0200
0 - 1 - 0 mycricketlive.live 172.217.22.179
2019-07-01 07:21:49 +0200
0 - 0 - 0 fijisharkdiving.blogspot.com/2018/10/my-fiji- (...) 216.58.207.193
2019-07-01 06:37:59 +0200
0 - 0 - 0 ta.wow-auto-forms.appspot.com/bower_component (...) 216.58.211.148

No other reports on domain: pornzxz.blogspot.com



JavaScript

Executed Scripts (37)


Executed Evals (2)

#1 JavaScript::Eval (size: 38475, repeated: 1) - SHA256: c047f030c40343429e9107ce31ba5deb82494bd71518528cf86d59017b8a2ea1

                                        (function(name, context, definition) {
    "use strict";
    if (typeof module !== "undefined" && module.exports) {
        module.exports = definition()
    } else if (typeof define === "function" && define.amd) {
        define(definition)
    } else {
        context[name] = definition()
    }
})("fp2", this, function() {
    "use strict";
    if (!Array.prototype.indexOf) {
        Array.prototype.indexOf = function(searchElement, fromIndex) {
            var k;
            if (this == null) {
                throw new TypeError("'this' is null or undefined")
            }
            var O = s(this);
            var len = O.length >>> 0;
            if (len === 0) {
                return -1
            }
            var n = +fromIndex || 0;
            if (Math.abs(n) === Infinity) {
                n = 0
            }
            if (n >= len) {
                return -1
            }
            k = Math.max(n >= 0 ? n : len - Math.abs(n), 0);
            while (k < len) {
                if (k in O && O[k] === searchElement) {
                    return k
                }
                k++
            }
            return -1
        }
    }
    var fp2 = function(options) {
        var defaultOptions = {
            swfContainerId: "fingerprintjs2",
            swfPath: "flash/compiled/FontList.swf",
            detectScreenOrientation: true,
            sortPluginsFor: [/palemoon/i]
        };
        this.options = this.extend(options, defaultOptions);
        this.nativeForEach = Array.prototype.forEach;
        this.nativeMap = Array.prototype.map
    };
    fp2.prototype = {
        extend: function(source, target) {
            if (source == null) {
                return target
            }
            for (var k in source) {
                if (source[k] != null && target[k] !== source[k]) {
                    target[k] = source[k]
                }
            }
            return target
        },
        log: function(msg) {
            if (window.console) {
                console.log(msg)
            }
        },
        get: function(done) {
            var keys = [];
            keys = this.userAgentKey(keys);
            keys = this.languageKey(keys);
            keys = this.colorDepthKey(keys);
            keys = this.screenResolutionKey(keys);
            keys = this.availableScreenResolutionKey(keys);
            keys = this.timezoneOffsetKey(keys);
            keys = this.sessionStorageKey(keys);
            keys = this.localStorageKey(keys);
            keys = this.indexedDbKey(keys);
            keys = this.addBehaviorKey(keys);
            keys = this.openDatabaseKey(keys);
            keys = this.cpuClassKey(keys);
            keys = this.platformKey(keys);
            keys = this.doNotTrackKey(keys);
            keys = this.pluginsKey(keys);
            keys = this.canvasKey(keys);
            keys = this.webglKey(keys);
            keys = this.adBlockKey(keys);
            keys = this.hasLiedLanguagesKey(keys);
            keys = this.hasLiedResolutionKey(keys);
            keys = this.hasLiedOsKey(keys);
            keys = this.hasLiedBrowserKey(keys);
            keys = this.touchSupportKey(keys);
            var that = this;
            this.fontsKey(keys, function(newKeys) {
                var values = [];
                that.each(newKeys, function(pair) {
                    var value = pair.value;
                    if (typeof pair.value.join !== "undefined") {
                        value = pair.value.join(";")
                    }
                    values.push(value)
                });
                var murmur = that.x64hash128(values.join("~~~"), 31);
                return done(murmur, newKeys)
            })
        },
        userAgentKey: function(keys) {
            if (!this.options.excludeUserAgent) {
                keys.push({
                    key: "user_agent",
                    value: this.getUserAgent()
                })
            }
            return keys
        },
        getUserAgent: function() {
            return navigator.userAgent
        },
        languageKey: function(keys) {
            if (!this.options.excludeLanguage) {
                keys.push({
                    key: "language",
                    value: navigator.language || navigator.userLanguage || navigator.browserLanguage || navigator.systemLanguage
                })
            }
            return keys
        },
        colorDepthKey: function(keys) {
            if (!this.options.excludeColorDepth) {
                keys.push({
                    key: "color_depth",
                    value: screen.colorDepth
                })
            }
            return keys
        },
        screenResolutionKey: function(keys) {
            if (!this.options.excludeScreenResolution) {
                return this.getScreenResolution(keys)
            }
            return keys
        },
        getScreenResolution: function(keys) {
            var resolution;
            if (this.options.detectScreenOrientation) {
                resolution = (screen.height > screen.width) ? [screen.height, screen.width] : [screen.width, screen.height]
            } else {
                resolution = [screen.width, screen.height]
            }
            if (typeof resolution !== "undefined") {
                keys.push({
                    key: "resolution",
                    value: resolution
                })
            }
            return keys
        },
        availableScreenResolutionKey: function(keys) {
            if (!this.options.excludeAvailableScreenResolution) {
                return this.getAvailableScreenResolution(keys)
            }
            return keys
        },
        getAvailableScreenResolution: function(keys) {
            var available;
            if (screen.availWidth && screen.availHeight) {
                if (this.options.detectScreenOrientation) {
                    available = (screen.availHeight > screen.availWidth) ? [screen.availHeight, screen.availWidth] : [screen.availWidth, screen.availHeight]
                } else {
                    available = [screen.availHeight, screen.availWidth]
                }
            }
            if (typeof available !== "undefined") {
                keys.push({
                    key: "available_resolution",
                    value: available
                })
            }
            return keys
        },
        timezoneOffsetKey: function(keys) {
            if (!this.options.excludeTimezoneOffset) {
                keys.push({
                    key: "timezone_offset",
                    value: new Date().getTimezoneOffset()
                })
            }
            return keys
        },
        sessionStorageKey: function(keys) {
            if (!this.options.excludeSessionStorage && this.hasSessionStorage()) {
                keys.push({
                    key: "session_storage",
                    value: 1
                })
            }
            return keys
        },
        localStorageKey: function(keys) {
            if (!this.options.excludeSessionStorage && this.hasLocalStorage()) {
                keys.push({
                    key: "local_storage",
                    value: 1
                })
            }
            return keys
        },
        indexedDbKey: function(keys) {
            if (!this.options.excludeIndexedDB && this.hasIndexedDB()) {
                keys.push({
                    key: "indexed_db",
                    value: 1
                })
            }
            return keys
        },
        addBehaviorKey: function(keys) {
            if (document.body && !this.options.excludeAddBehavior && document.body.addBehavior) {
                keys.push({
                    key: "add_behavior",
                    value: 1
                })
            }
            return keys
        },
        openDatabaseKey: function(keys) {
            if (!this.options.excludeOpenDatabase && window.openDatabase) {
                keys.push({
                    key: "open_database",
                    value: 1
                })
            }
            return keys
        },
        cpuClassKey: function(keys) {
            if (!this.options.excludeCpuClass) {
                keys.push({
                    key: "cpu_class",
                    value: this.getNavigatorCpuClass()
                })
            }
            return keys
        },
        platformKey: function(keys) {
            if (!this.options.excludePlatform) {
                keys.push({
                    key: "navigator_platform",
                    value: this.getNavigatorPlatform()
                })
            }
            return keys
        },
        doNotTrackKey: function(keys) {
            if (!this.options.excludeDoNotTrack) {
                keys.push({
                    key: "do_not_track",
                    value: this.getDoNotTrack()
                })
            }
            return keys
        },
        canvasKey: function(keys) {
            if (!this.options.excludeCanvas && this.isCanvasSupported()) {
                keys.push({
                    key: "canvas",
                    value: this.getCanvasFp()
                })
            }
            return keys
        },
        webglKey: function(keys) {
            if (this.options.excludeWebGL) {
                if (typeof NODEBUG === "undefined") {
                    this.log("Skipping WebGL fingerprinting per excludeWebGL configuration option")
                }
                return keys
            }
            if (!this.isWebGlSupported()) {
                if (typeof NODEBUG === "undefined") {
                    this.log("Skipping WebGL fingerprinting because it is not supported in this browser")
                }
                return keys
            }
            keys.push({
                key: "webgl",
                value: this.getWebglFp()
            });
            return keys
        },
        adBlockKey: function(keys) {
            if (!this.options.excludeAdBlock) {
                keys.push({
                    key: "adblock",
                    value: this.getAdBlock()
                })
            }
            return keys
        },
        hasLiedLanguagesKey: function(keys) {
            if (!this.options.excludeHasLiedLanguages) {
                keys.push({
                    key: "has_lied_languages",
                    value: this.getHasLiedLanguages()
                })
            }
            return keys
        },
        hasLiedResolutionKey: function(keys) {
            if (!this.options.excludeHasLiedResolution) {
                keys.push({
                    key: "has_lied_resolution",
                    value: this.getHasLiedResolution()
                })
            }
            return keys
        },
        hasLiedOsKey: function(keys) {
            if (!this.options.excludeHasLiedOs) {
                keys.push({
                    key: "has_lied_os",
                    value: this.getHasLiedOs()
                })
            }
            return keys
        },
        hasLiedBrowserKey: function(keys) {
            if (!this.options.excludeHasLiedBrowser) {
                keys.push({
                    key: "has_lied_browser",
                    value: this.getHasLiedBrowser()
                })
            }
            return keys
        },
        fontsKey: function(keys, done) {
            if (this.options.excludeJsFonts) {
                return this.flashFontsKey(keys, done)
            }
            return this.jsFontsKey(keys, done)
        },
        flashFontsKey: function(keys, done) {
            if (this.options.excludeFlashFonts) {
                if (typeof NODEBUG === "undefined") {
                    this.log("Skipping flash fonts detection per excludeFlashFonts configuration option")
                }
                return done(keys)
            }
            if (!this.hasSwfObjectLoaded()) {
                if (typeof NODEBUG === "undefined") {
                    this.log("Swfobject is not detected, Flash fonts enumeration is skipped")
                }
                return done(keys)
            }
            if (!this.hasMinFlashInstalled()) {
                if (typeof NODEBUG === "undefined") {
                    this.log("Flash is not installed, skipping Flash fonts enumeration")
                }
                return done(keys)
            }
            if (typeof this.options.swfPath === "undefined") {
                if (typeof NODEBUG === "undefined") {
                    this.log("To use Flash fonts detection, you must pass a valid swfPath option, skipping Flash fonts enumeration")
                }
                return done(keys)
            }
            this.loadSwfAndDetectFonts(function(fonts) {
                keys.push({
                    key: "swf_fonts",
                    value: fonts.join(";")
                });
                done(keys)
            })
        },
        jsFontsKey: function(keys, done) {
            var that = this;
            return setTimeout(function() {
                var baseFonts = ["monospace", "sans-serif", "serif"];
                var testString = "mmmmmmmmmmlli";
                var testSize = "72px";
                var h = document.getElementsByTagName("body")[0];
                var s = document.createElement("span");
                s.style.fontSize = testSize;
                s.innerHTML = testString;
                var defaultWidth = {};
                var defaultHeight = {};
                for (var index in baseFonts) {
                    s.style.fontFamily = baseFonts[index];
                    h.appendChild(s);
                    defaultWidth[baseFonts[index]] = s.offsetWidth;
                    defaultHeight[baseFonts[index]] = s.offsetHeight;
                    h.removeChild(s)
                }
                var detect = function(font) {
                    var detected = false;
                    for (var index in baseFonts) {
                        s.style.fontFamily = font + "," + baseFonts[index];
                        h.appendChild(s);
                        var matched = (s.offsetWidth !== defaultWidth[baseFonts[index]] || s.offsetHeight !== defaultHeight[baseFonts[index]]);
                        h.removeChild(s);
                        detected = detected || matched
                    }
                    return detected
                };
                var fontList = ["Andale Mono", "Arial", "Arial Black", "Arial Hebrew", "Arial MT", "Arial Narrow", "Arial Rounded MT Bold", "Arial Unicode MS", "Bitstream Vera Sans Mono", "Book Antiqua", "Bookman Old Style", "Calibri", "Cambria", "Cambria Math", "Century", "Century Gothic", "Century Schoolbook", "Comic Sans", "Comic Sans MS", "Consolas", "Courier", "Courier New", "Garamond", "Geneva", "Georgia", "Helvetica", "Helvetica Neue", "Impact", "Lucida Bright", "Lucida Calligraphy", "Lucida Console", "Lucida Fax", "LUCIDA GRANDE", "Lucida Handwriting", "Lucida Sans", "Lucida Sans Typewriter", "Lucida Sans Unicode", "Microsoft Sans Serif", "Monaco", "Monotype Corsiva", "MS Gothic", "MS Outlook", "MS PGothic", "MS Reference Sans Serif", "MS Sans Serif", "MS Serif", "MYRIAD", "MYRIAD PRO", "Palatino", "Palatino Linotype", "Segoe Print", "Segoe Script", "Segoe UI", "Segoe UI Light", "Segoe UI Semibold", "Segoe UI Symbol", "Tahoma", "Times", "Times New Roman", "Times New Roman PS", "Trebuchet MS", "Verdana", "Wingdings", "Wingdings 2", "Wingdings 3"];
                var extendedFontList = ["Abadi MT Condensed Light", "Academy Engraved LET", "ADOBE CASLON PRO", "Adobe Garamond", "ADOBE GARAMOND PRO", "Agency FB", "Aharoni", "Albertus Extra Bold", "Albertus Medium", "Algerian", "Amazone BT", "American Typewriter", "American Typewriter Condensed", "AmerType Md BT", "Andalus", "Angsana New", "AngsanaUPC", "Antique Olive", "Aparajita", "Apple Chancery", "Apple Color Emoji", "Apple SD Gothic Neo", "Arabic Typesetting", "ARCHER", "ARNO PRO", "Arrus BT", "Aurora Cn BT", "AvantGarde Bk BT", "AvantGarde Md BT", "AVENIR", "Ayuthaya", "Bandy", "Bangla Sangam MN", "Bank Gothic", "BankGothic Md BT", "Baskerville", "Baskerville Old Face", "Batang", "BatangChe", "Bauer Bodoni", "Bauhaus 93", "Bazooka", "Bell MT", "Bembo", "Benguiat Bk BT", "Berlin Sans FB", "Berlin Sans FB Demi", "Bernard MT Condensed", "BernhardFashion BT", "BernhardMod BT", "Big Caslon", "BinnerD", "Blackadder ITC", "BlairMdITC TT", "Bodoni 72", "Bodoni 72 Oldstyle", "Bodoni 72 Smallcaps", "Bodoni MT", "Bodoni MT Black", "Bodoni MT Condensed", "Bodoni MT Poster Compressed", "Bookshelf Symbol 7", "Boulder", "Bradley Hand", "Bradley Hand ITC", "Bremen Bd BT", "Britannic Bold", "Broadway", "Browallia New", "BrowalliaUPC", "Brush Script MT", "Californian FB", "Calisto MT", "Calligrapher", "Candara", "CaslonOpnface BT", "Castellar", "Centaur", "Cezanne", "CG Omega", "CG Times", "Chalkboard", "Chalkboard SE", "Chalkduster", "Charlesworth", "Charter Bd BT", "Charter BT", "Chaucer", "ChelthmITC Bk BT", "Chiller", "Clarendon", "Clarendon Condensed", "CloisterBlack BT", "Cochin", "Colonna MT", "Constantia", "Cooper Black", "Copperplate", "Copperplate Gothic", "Copperplate Gothic Bold", "Copperplate Gothic Light", "CopperplGoth Bd BT", "Corbel", "Cordia New", "CordiaUPC", "Cornerstone", "Coronet", "Cuckoo", "Curlz MT", "DaunPenh", "Dauphin", "David", "DB LCD Temp", "DELICIOUS", "Denmark", "DFKai-SB", "Didot", "DilleniaUPC", "DIN", "DokChampa", "Dotum", "DotumChe", "Ebrima", "Edwardian Script ITC", "Elephant", "English 111 Vivace BT", "Engravers MT", "EngraversGothic BT", "Eras Bold ITC", "Eras Demi ITC", "Eras Light ITC", "Eras Medium ITC", "EucrosiaUPC", "Euphemia", "Euphemia UCAS", "EUROSTILE", "Exotc350 Bd BT", "FangSong", "Felix Titling", "Fixedsys", "FONTIN", "Footlight MT Light", "Forte", "FrankRuehl", "Fransiscan", "Freefrm721 Blk BT", "FreesiaUPC", "Freestyle Script", "French Script MT", "FrnkGothITC Bk BT", "Fruitger", "FRUTIGER", "Futura", "Futura Bk BT", "Futura Lt BT", "Futura Md BT", "Futura ZBlk BT", "FuturaBlack BT", "Gabriola", "Galliard BT", "Gautami", "Geeza Pro", "Geometr231 BT", "Geometr231 Hv BT", "Geometr231 Lt BT", "GeoSlab 703 Lt BT", "GeoSlab 703 XBd BT", "Gigi", "Gill Sans", "Gill Sans MT", "Gill Sans MT Condensed", "Gill Sans MT Ext Condensed Bold", "Gill Sans Ultra Bold", "Gill Sans Ultra Bold Condensed", "Gisha", "Gloucester MT Extra Condensed", "GOTHAM", "GOTHAM BOLD", "Goudy Old Style", "Goudy Stout", "GoudyHandtooled BT", "GoudyOLSt BT", "Gujarati Sangam MN", "Gulim", "GulimChe", "Gungsuh", "GungsuhChe", "Gurmukhi MN", "Haettenschweiler", "Harlow Solid Italic", "Harrington", "Heather", "Heiti SC", "Heiti TC", "HELV", "Herald", "High Tower Text", "Hiragino Kaku Gothic ProN", "Hiragino Mincho ProN", "Hoefler Text", "Humanst 521 Cn BT", "Humanst521 BT", "Humanst521 Lt BT", "Imprint MT Shadow", "Incised901 Bd BT", "Incised901 BT", "Incised901 Lt BT", "INCONSOLATA", "Informal Roman", "Informal011 BT", "INTERSTATE", "IrisUPC", "Iskoola Pota", "JasmineUPC", "Jazz LET", "Jenson", "Jester", "Jokerman", "Juice ITC", "Kabel Bk BT", "Kabel Ult BT", "Kailasa", "KaiTi", "Kalinga", "Kannada Sangam MN", "Kartika", "Kaufmann Bd BT", "Kaufmann BT", "Khmer UI", "KodchiangUPC", "Kokila", "Korinna BT", "Kristen ITC", "Krungthep", "Kunstler Script", "Lao UI", "Latha", "Leelawadee", "Letter Gothic", "Levenim MT", "LilyUPC", "Lithograph", "Lithograph Light", "Long Island", "Lydian BT", "Magneto", "Maiandra GD", "Malayalam Sangam MN", "Malgun Gothic", "Mangal", "Marigold", "Marion", "Marker Felt", "Market", "Marlett", "Matisse ITC", "Matura MT Script Capitals", "Meiryo", "Meiryo UI", "Microsoft Himalaya", "Microsoft JhengHei", "Microsoft New Tai Lue", "Microsoft PhagsPa", "Microsoft Tai Le", "Microsoft Uighur", "Microsoft YaHei", "Microsoft Yi Baiti", "MingLiU", "MingLiU_HKSCS", "MingLiU_HKSCS-ExtB", "MingLiU-ExtB", "Minion", "Minion Pro", "Miriam", "Miriam Fixed", "Mistral", "Modern", "Modern No. 20", "Mona Lisa Solid ITC TT", "Mongolian Baiti", "MONO", "MoolBoran", "Mrs Eaves", "MS LineDraw", "MS Mincho", "MS PMincho", "MS Reference Specialty", "MS UI Gothic", "MT Extra", "MUSEO", "MV Boli", "Nadeem", "Narkisim", "NEVIS", "News Gothic", "News GothicMT", "NewsGoth BT", "Niagara Engraved", "Niagara Solid", "Noteworthy", "NSimSun", "Nyala", "OCR A Extended", "Old Century", "Old English Text MT", "Onyx", "Onyx BT", "OPTIMA", "Oriya Sangam MN", "OSAKA", "OzHandicraft BT", "Palace Script MT", "Papyrus", "Parchment", "Party LET", "Pegasus", "Perpetua", "Perpetua Titling MT", "PetitaBold", "Pickwick", "Plantagenet Cherokee", "Playbill", "PMingLiU", "PMingLiU-ExtB", "Poor Richard", "Poster", "PosterBodoni BT", "PRINCETOWN LET", "Pristina", "PTBarnum BT", "Pythagoras", "Raavi", "Rage Italic", "Ravie", "Ribbon131 Bd BT", "Rockwell", "Rockwell Condensed", "Rockwell Extra Bold", "Rod", "Roman", "Sakkal Majalla", "Santa Fe LET", "Savoye LET", "Sceptre", "Script", "Script MT Bold", "SCRIPTINA", "Serifa", "Serifa BT", "Serifa Th BT", "ShelleyVolante BT", "Sherwood", "Shonar Bangla", "Showcard Gothic", "Shruti", "Signboard", "SILKSCREEN", "SimHei", "Simplified Arabic", "Simplified Arabic Fixed", "SimSun", "SimSun-ExtB", "Sinhala Sangam MN", "Sketch Rockwell", "Skia", "Small Fonts", "Snap ITC", "Snell Roundhand", "Socket", "Souvenir Lt BT", "Staccato222 BT", "Steamer", "Stencil", "Storybook", "Styllo", "Subway", "Swis721 BlkEx BT", "Swiss911 XCm BT", "Sylfaen", "Synchro LET", "System", "Tamil Sangam MN", "Technical", "Teletype", "Telugu Sangam MN", "Tempus Sans ITC", "Terminal", "Thonburi", "Traditional Arabic", "Trajan", "TRAJAN PRO", "Tristan", "Tubular", "Tunga", "Tw Cen MT", "Tw Cen MT Condensed", "Tw Cen MT Condensed Extra Bold", "TypoUpright BT", "Unicorn", "Univers", "Univers CE 55 Medium", "Univers Condensed", "Utsaah", "Vagabond", "Vani", "Vijaya", "Viner Hand ITC", "VisualUI", "Vivaldi", "Vladimir Script", "Vrinda", "Westminster", "WHITNEY", "Wide Latin", "ZapfEllipt BT", "ZapfHumnst BT", "ZapfHumnst Dm BT", "Zapfino", "Zurich BlkEx BT", "Zurich Ex BT", "ZWAdobeF"];
                if (that.options.cj) {
                    fontList = fontList.concat(extendedFontList)
                }
                var available = [];
                for (var i = 0, l = fontList.length; i < l; i++) {
                    if (detect(fontList[i])) {
                        available.push(fontList[i])
                    }
                }
                keys.push({
                    key: "js_fonts",
                    value: available
                });
                done(keys)
            }, 1)
        },
        pluginsKey: function(keys) {
            if (!this.options.excludePlugins) {
                if (this.isIE()) {
                    keys.push({
                        key: "ie_plugins",
                        value: this.getIEPlugins()
                    })
                } else {
                    keys.push({
                        key: "regular_plugins",
                        value: this.getRegularPlugins()
                    })
                }
            }
            return keys
        },
        getRegularPlugins: function() {
            var plugins = [];
            for (var i = 0, l = navigator.plugins.length; i < l; i++) {
                plugins.push(navigator.plugins[i])
            }
            if (this.pluginsShouldBeSorted()) {
                plugins = plugins.sort(function(a, b) {
                    if (a.name > b.name) {
                        return 1
                    }
                    if (a.name < b.name) {
                        return -1
                    }
                    return 0
                })
            }
            return this.map(plugins, function(p) {
                var mimeTypes = this.map(p, function(mt) {
                    return [mt.type, mt.suffixes].join("~")
                }).join(",");
                return [p.name, p.description, mimeTypes].join("::")
            }, this)
        },
        getIEPlugins: function() {
            if (window.ActiveXObject) {
                var names = ["AcroPDF.PDF", "Adodb.Stream", "AgControl.AgControl", "DevalVRXCtrl.DevalVRXCtrl.1", "MacromediaFlashPaper.MacromediaFlashPaper", "Msxml2.DOMDocument", "Msxml2.XMLHTTP", "PDF.PdfCtrl", "QuickTime.QuickTime", "QuickTimeCheckObject.QuickTimeCheck.1", "RealPlayer", "RealPlayer.RealPlayer(tm) ActiveX Control (32-bit)", "RealVideo.RealVideo(tm) ActiveX Control (32-bit)", "Scripting.Dictionary", "SWCtl.SWCtl", "Shell.UIHelper", "ShockwaveFlash.ShockwaveFlash", "Skype.Detection", "TDCCtl.TDCCtl", "WMPlayer.OCX", "rmocx.RealPlayer G2 Control", "rmocx.RealPlayer G2 Control.1"];
                return this.map(names, function(name) {
                    try {
                        new ActiveXObject(name);
                        return name
                    } catch (e) {
                        return null
                    }
                })
            } else {
                return []
            }
        },
        pluginsShouldBeSorted: function() {
            var should = false;
            for (var i = 0, l = this.options.sortPluginsFor.length; i < l; i++) {
                var re = this.options.sortPluginsFor[i];
                if (navigator.userAgent.match(re)) {
                    should = true;
                    break
                }
            }
            return should
        },
        touchSupportKey: function(keys) {
            if (!this.options.excludeTouchSupport) {
                keys.push({
                    key: "touch_support",
                    value: this.getTouchSupport()
                })
            }
            return keys
        },
        hasSessionStorage: function() {
            try {
                return !!window.sessionStorage
            } catch (e) {
                return true
            }
        },
        hasLocalStorage: function() {
            try {
                return !!window.localStorage
            } catch (e) {
                return true
            }
        },
        hasIndexedDB: function() {
            return !!window.indexedDB
        },
        getNavigatorCpuClass: function() {
            if (navigator.cpuClass) {
                return navigator.cpuClass
            } else {
                return "unknown"
            }
        },
        getNavigatorPlatform: function() {
            if (navigator.platform) {
                return navigator.platform
            } else {
                return "unknown"
            }
        },
        getDoNotTrack: function() {
            if (navigator.doNotTrack) {
                return navigator.doNotTrack
            } else {
                return "unknown"
            }
        },
        getTouchSupport: function() {
            var maxTouchPoints = 0;
            var touchEvent = false;
            if (typeof navigator.maxTouchPoints !== "undefined") {
                maxTouchPoints = navigator.maxTouchPoints
            } else if (typeof navigator.msMaxTouchPoints !== "undefined") {
                maxTouchPoints = navigator.msMaxTouchPoints
            }
            try {
                document.createEvent("TouchEvent");
                touchEvent = true
            } catch (_) {}
            var touchStart = "ontouchstart" in window;
            return [maxTouchPoints, touchEvent, touchStart]
        },
        getCanvasFp: function() {
            var result = [];
            var canvas = document.createElement("canvas");
            canvas.width = 2000;
            canvas.height = 200;
            canvas.style.display = "inline";
            var ctx = canvas.getContext("2d");
            ctx.rect(0, 0, 10, 10);
            ctx.rect(2, 2, 6, 6);
            result.push("canvas winding:" + ((ctx.isPointInPath(5, 5, "evenodd") === false) ? "yes" : "no"));
            ctx.textBaseline = "alphabetic";
            ctx.fillStyle = "#f60";
            ctx.fillRect(125, 1, 62, 20);
            ctx.fillStyle = "#069";
            if (this.options.dontUseFakeFontInCanvas) {
                ctx.font = "11pt Arial"
            } else {
                ctx.font = "11pt no-real-font-123"
            }
            ctx.fillText("Cwm fjordbank glyphs vext quiz, \ud83d\ude03", 2, 15);
            ctx.fillStyle = "rgba(102, 204, 0, 0.7)";
            ctx.font = "18pt Arial";
            ctx.fillText("Cwm fjordbank glyphs vext quiz, \ud83d\ude03", 4, 45);
            ctx.globalCompositeOperation = "multiply";
            ctx.fillStyle = "rgb(255,0,255)";
            ctx.beginPath();
            ctx.arc(50, 50, 50, 0, Math.PI * 2, true);
            ctx.closePath();
            ctx.fill();
            ctx.fillStyle = "rgb(0,255,255)";
            ctx.beginPath();
            ctx.arc(100, 50, 50, 0, Math.PI * 2, true);
            ctx.closePath();
            ctx.fill();
            ctx.fillStyle = "rgb(255,255,0)";
            ctx.beginPath();
            ctx.arc(75, 100, 50, 0, Math.PI * 2, true);
            ctx.closePath();
            ctx.fill();
            ctx.fillStyle = "rgb(255,0,255)";
            ctx.arc(75, 75, 75, 0, Math.PI * 2, true);
            ctx.arc(75, 75, 25, 0, Math.PI * 2, true);
            ctx.fill("evenodd");
            result.push("canvas fp:" + canvas.toDataURL());
            return result.join("~")
        },
        getWebglFp: function() {
            var gl;
            var fa2s = function(fa) {
                gl.clearColor(0.0, 0.0, 0.0, 1.0);
                gl.enable(gl.DEPTH_TEST);
                gl.depthFunc(gl.LEQUAL);
                gl.clear(gl.COLOR_BUFFER_BIT | gl.DEPTH_BUFFER_BIT);
                return "[" + fa[0] + ", " + fa[1] + "]"
            };
            var maxAnisotropy = function(gl) {
                var anisotropy, ext = gl.getExtension("EXT_texture_filter_anisotropic") || gl.getExtension("WEBKIT_EXT_texture_filter_anisotropic") || gl.getExtension("MOZ_EXT_texture_filter_anisotropic");
                return ext ? (anisotropy = gl.getParameter(ext.MAX_TEXTURE_MAX_ANISOTROPY_EXT), 0 === anisotropy && (anisotropy = 2), anisotropy) : null
            };
            gl = this.getWebglCanvas();
            if (!gl) {
                return null
            }
            var result = [];
            var vShaderTemplate = "attribute vec2 attrVertex;varying vec2 varyinTexCoordinate;uniform vec2 uniformOffset;void main(){varyinTexCoordinate=attrVertex+uniformOffset;gl_Position=vec4(attrVertex,0,1)}";
            var fShaderTemplate = "precision mediump float;varying vec2 varyinTexCoordinate;void main() {gl_FragColor=vec4(varyinTexCoordinate,0,1)}";
            var vertexPosBuffer = gl.createBuffer();
            gl.bindBuffer(gl.ARRAY_BUFFER, vertexPosBuffer);
            var vertices = new Float32Array([-.2, -.9, 0, .4, -.26, 0, 0, .732134444, 0]);
            gl.bufferData(gl.ARRAY_BUFFER, vertices, gl.STATIC_DRAW);
            vertexPosBuffer.itemSize = 3;
            vertexPosBuffer.numItems = 3;
            var program = gl.createProgram(),
                vshader = gl.createShader(gl.VERTEX_SHADER);
            gl.shaderSource(vshader, vShaderTemplate);
            gl.compileShader(vshader);
            var fshader = gl.createShader(gl.FRAGMENT_SHADER);
            gl.shaderSource(fshader, fShaderTemplate);
            gl.compileShader(fshader);
            gl.attachShader(program, vshader);
            gl.attachShader(program, fshader);
            gl.linkProgram(program);
            gl.useProgram(program);
            program.vertexPosAttrib = gl.getAttribLocation(program, "attrVertex");
            program.offsetUniform = gl.getUniformLocation(program, "uniformOffset");
            gl.enableVertexAttribArray(program.vertexPosArray);
            gl.vertexAttribPointer(program.vertexPosAttrib, vertexPosBuffer.itemSize, gl.FLOAT, !1, 0, 0);
            gl.uniform2f(program.offsetUniform, 1, 1);
            gl.drawArrays(gl.TRIANGLE_STRIP, 0, vertexPosBuffer.numItems);
            if (gl.canvas != null) {
                result.push(gl.canvas.toDataURL())
            }
            result.push("extensions:" + gl.getSupportedExtensions().join(";"));
            result.push("webgl aliased line width range:" + fa2s(gl.getParameter(gl.ALIASED_LINE_WIDTH_RANGE)));
            result.push("webgl aliased point size range:" + fa2s(gl.getParameter(gl.ALIASED_POINT_SIZE_RANGE)));
            result.push("webgl alpha bits:" + gl.getParameter(gl.ALPHA_BITS));
            result.push("webgl antialiasing:" + (gl.getContextAttributes().antialias ? "yes" : "no"));
            result.push("webgl blue bits:" + gl.getParameter(gl.BLUE_BITS));
            result.push("webgl depth bits:" + gl.getParameter(gl.DEPTH_BITS));
            result.push("webgl green bits:" + gl.getParameter(gl.GREEN_BITS));
            result.push("webgl max anisotropy:" + maxAnisotropy(gl));
            result.push("webgl max combined texture image units:" + gl.getParameter(gl.MAX_COMBINED_TEXTURE_IMAGE_UNITS));
            result.push("webgl max cube map texture size:" + gl.getParameter(gl.MAX_CUBE_MAP_TEXTURE_SIZE));
            result.push("webgl max fragment uniform vectors:" + gl.getParameter(gl.MAX_FRAGMENT_UNIFORM_VECTORS));
            result.push("webgl max render buffer size:" + gl.getParameter(gl.MAX_RENDERBUFFER_SIZE));
            result.push("webgl max texture image units:" + gl.getParameter(gl.MAX_TEXTURE_IMAGE_UNITS));
            result.push("webgl max texture size:" + gl.getParameter(gl.MAX_TEXTURE_SIZE));
            result.push("webgl max varying vectors:" + gl.getParameter(gl.MAX_VARYING_VECTORS));
            result.push("webgl max vertex attribs:" + gl.getParameter(gl.MAX_VERTEX_ATTRIBS));
            result.push("webgl max vertex texture image units:" + gl.getParameter(gl.MAX_VERTEX_TEXTURE_IMAGE_UNITS));
            result.push("webgl max vertex uniform vectors:" + gl.getParameter(gl.MAX_VERTEX_UNIFORM_VECTORS));
            result.push("webgl max viewport dims:" + fa2s(gl.getParameter(gl.MAX_VIEWPORT_DIMS)));
            result.push("webgl red bits:" + gl.getParameter(gl.RED_BITS));
            result.push("webgl renderer:" + gl.getParameter(gl.RENDERER));
            result.push("webgl shading language version:" + gl.getParameter(gl.SHADING_LANGUAGE_VERSION));
            result.push("webgl stencil bits:" + gl.getParameter(gl.STENCIL_BITS));
            result.push("webgl vendor:" + gl.getParameter(gl.VENDOR));
            result.push("webgl version:" + gl.getParameter(gl.VERSION));
            if (!gl.getShaderPrecisionFormat) {
                if (typeof NODEBUG === "undefined") {
                    this.log("WebGL fingerprinting is incomplete, because your browser does not support getShaderPrecisionFormat")
                }
                return result.join("~")
            }
            result.push("webgl vertex shader high float precision:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.HIGH_FLOAT).precision);
            result.push("webgl vertex shader high float precision rangeMin:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.HIGH_FLOAT).rangeMin);
            result.push("webgl vertex shader high float precision rangeMax:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.HIGH_FLOAT).rangeMax);
            result.push("webgl vertex shader medium float precision:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.MEDIUM_FLOAT).precision);
            result.push("webgl vertex shader medium float precision rangeMin:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.MEDIUM_FLOAT).rangeMin);
            result.push("webgl vertex shader medium float precision rangeMax:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.MEDIUM_FLOAT).rangeMax);
            result.push("webgl vertex shader low float precision:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.LOW_FLOAT).precision);
            result.push("webgl vertex shader low float precision rangeMin:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.LOW_FLOAT).rangeMin);
            result.push("webgl vertex shader low float precision rangeMax:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.LOW_FLOAT).rangeMax);
            result.push("webgl fragment shader high float precision:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.HIGH_FLOAT).precision);
            result.push("webgl fragment shader high float precision rangeMin:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.HIGH_FLOAT).rangeMin);
            result.push("webgl fragment shader high float precision rangeMax:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.HIGH_FLOAT).rangeMax);
            result.push("webgl fragment shader medium float precision:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.MEDIUM_FLOAT).precision);
            result.push("webgl fragment shader medium float precision rangeMin:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.MEDIUM_FLOAT).rangeMin);
            result.push("webgl fragment shader medium float precision rangeMax:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.MEDIUM_FLOAT).rangeMax);
            result.push("webgl fragment shader low float precision:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.LOW_FLOAT).precision);
            result.push("webgl fragment shader low float precision rangeMin:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.LOW_FLOAT).rangeMin);
            result.push("webgl fragment shader low float precision rangeMax:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.LOW_FLOAT).rangeMax);
            result.push("webgl vertex shader high int precision:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.HIGH_INT).precision);
            result.push("webgl vertex shader high int precision rangeMin:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.HIGH_INT).rangeMin);
            result.push("webgl vertex shader high int precision rangeMax:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.HIGH_INT).rangeMax);
            result.push("webgl vertex shader medium int precision:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.MEDIUM_INT).precision);
            result.push("webgl vertex shader medium int precision rangeMin:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.MEDIUM_INT).rangeMin);
            result.push("webgl vertex shader medium int precision rangeMax:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.MEDIUM_INT).rangeMax);
            result.push("webgl vertex shader low int precision:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.LOW_INT).precision);
            result.push("webgl vertex shader low int precision rangeMin:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.LOW_INT).rangeMin);
            result.push("webgl vertex shader low int precision rangeMax:" + gl.getShaderPrecisionFormat(gl.VERTEX_SHADER, gl.LOW_INT).rangeMax);
            result.push("webgl fragment shader high int precision:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.HIGH_INT).precision);
            result.push("webgl fragment shader high int precision rangeMin:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.HIGH_INT).rangeMin);
            result.push("webgl fragment shader high int precision rangeMax:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.HIGH_INT).rangeMax);
            result.push("webgl fragment shader medium int precision:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.MEDIUM_INT).precision);
            result.push("webgl fragment shader medium int precision rangeMin:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.MEDIUM_INT).rangeMin);
            result.push("webgl fragment shader medium int precision rangeMax:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.MEDIUM_INT).rangeMax);
            result.push("webgl fragment shader low int precision:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.LOW_INT).precision);
            result.push("webgl fragment shader low int precision rangeMin:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.LOW_INT).rangeMin);
            result.push("webgl fragment shader low int precision rangeMax:" + gl.getShaderPrecisionFormat(gl.FRAGMENT_SHADER, gl.LOW_INT).rangeMax);
            return result.join("~")
        },
        getAdBlock: function() {
            var ads = document.createElement("div");
            ads.setAttribute("id", "ads");
            try {
                document.body.appendChild(ads);
                return document.getElementById("ads") ? false : true
            } catch (e) {
                return false
            }
        },
        getHasLiedLanguages: function() {
            if (typeof navigator.languages !== "undefined") {
                try {
                    var firstLanguages = navigator.languages[0].substr(0, 2);
                    if (firstLanguages !== navigator.language.substr(0, 2)) {
                        return true
                    }
                } catch (err) {
                    return true
                }
            }
            return false
        },
        getHasLiedResolution: function() {
            if (screen.width < screen.availWidth) {
                return true
            }
            if (screen.height < screen.availHeight) {
                return true
            }
            return false
        },
        getHasLiedOs: function() {
            var userAgent = navigator.userAgent.toLowerCase();
            var oscpu = navigator.oscpu;
            var platform = navigator.platform.toLowerCase();
            var os;
            if (userAgent.indexOf("windows phone") >= 0) {
                os = "Windows Phone"
            } else if (userAgent.indexOf("win") >= 0) {
                os = "Windows"
            } else if (userAgent.indexOf("android") >= 0) {
                os = "Android"
            } else if (userAgent.indexOf("linux") >= 0) {
                os = "Linux"
            } else if (userAgent.indexOf("iphone") >= 0 || userAgent.indexOf("ipad") >= 0) {
                os = "iOS"
            } else if (userAgent.indexOf("mac") >= 0) {
                os = "Mac"
            } else {
                os = "Other"
            }
            var mobileDevice;
            if (("ontouchstart" in window) || (navigator.maxTouchPoints > 0) || (navigator.msMaxTouchPoints > 0)) {
                mobileDevice = true
            } else {
                mobileDevice = false
            }
            if (mobileDevice && os !== "Windows Phone" && os !== "Android" && os !== "iOS" && os !== "Other") {
                return true
            }
            if (typeof oscpu !== "undefined") {
                oscpu = oscpu.toLowerCase();
                if (oscpu.indexOf("win") >= 0 && os !== "Windows" && os !== "Windows Phone") {
                    return true
                } else if (oscpu.indexOf("linux") >= 0 && os !== "Linux" && os !== "Android") {
                    return true
                } else if (oscpu.indexOf("mac") >= 0 && os !== "Mac" && os !== "iOS") {
                    return true
                } else if (oscpu.indexOf("win") === 0 && oscpu.indexOf("linux") === 0 && oscpu.indexOf("mac") >= 0 && os !== "other") {
                    return true
                }
            }
            if (platform.indexOf("win") >= 0 && os !== "Windows" && os !== "Windows Phone") {
                return true
            } else if ((platform.indexOf("linux") >= 0 || platform.indexOf("android") >= 0 || platform.indexOf("pike") >= 0) && os !== "Linux" && os !== "Android") {
                return true
            } else if ((platform.indexOf("mac") >= 0 || platform.indexOf("ipad") >= 0 || platform.indexOf("ipod") >= 0 || platform.indexOf("iphone") >= 0) && os !== "Mac" && os !== "iOS") {
                return true
            } else if (platform.indexOf("win") === 0 && platform.indexOf("linux") === 0 && platform.indexOf("mac") >= 0 && os !== "other") {
                return true
            }
            if (typeof navigator.plugins === "undefined" && os !== "Windows" && os !== "Windows Phone") {
                return true
            }
            return false
        },
        getHasLiedBrowser: function() {
            var userAgent = navigator.userAgent.toLowerCase();
            var productSub = navigator.productSub;
            var browser;
            if (userAgent.indexOf("firefox") >= 0) {
                browser = "Firefox"
            } else if (userAgent.indexOf("opera") >= 0 || userAgent.indexOf("opr") >= 0) {
                browser = "Opera"
            } else if (userAgent.indexOf("chrome") >= 0) {
                browser = "Chrome"
            } else if (userAgent.indexOf("safari") >= 0) {
                browser = "Safari"
            } else if (userAgent.indexOf("trident") >= 0) {
                browser = "Internet Explorer"
            } else {
                browser = "Other"
            }
            if ((browser === "Chrome" || browser === "Safari" || browser === "Opera") && productSub !== "20030107") {
                return true
            }
            var tempRes = eval.toString().length;
            if (tempRes === 37 && browser !== "Safari" && browser !== "Firefox" && browser !== "Other") {
                return true
            } else if (tempRes === 39 && browser !== "Internet Explorer" && browser !== "Other") {
                return true
            } else if (tempRes === 33 && browser !== "Chrome" && browser !== "Opera" && browser !== "Other") {
                return true
            }
            var errFirefox;
            try {
                throw "a"
            } catch (err) {
                try {
                    err.toSource();
                    errFirefox = true
                } catch (errOfErr) {
                    errFirefox = false
                }
            }
            if (errFirefox && browser !== "Firefox" && browser !== "Other") {
                return true
            }
            return false
        },
        isCanvasSupported: function() {
            var elem = document.createElement("canvas");
            return !!(elem.getContext && elem.getContext("2d"))
        },
        isWebGlSupported: function() {
            if (!this.isCanvasSupported()) {
                return false
            }
            var canvas = document.createElement("canvas"),
                glContext;
            try {
                glContext = canvas.getContext && (canvas.getContext("webgl") || canvas.getContext("experimental-webgl"))
            } catch (e) {
                glContext = false
            }
            return !!window.WebGLRenderingContext && !!glContext
        },
        isIE: function() {
            if (navigator.appName === "Microsoft Internet Explorer") {
                return true
            } else if (navigator.appName === "Netscape" && /Trident/.test(navigator.userAgent)) {
                return true
            }
            return false
        },
        hasSwfObjectLoaded: function() {
            return typeof window.swfobject !== "undefined"
        },
        hasMinFlashInstalled: function() {
            return swfobject.hasFlashPlayerVersion("9.0.0")
        },
        addFlashDivNode: function() {
            var node = document.createElement("div");
            node.setAttribute("id", this.options.swfContainerId);
            document.body.appendChild(node)
        },
        loadSwfAndDetectFonts: function(done) {
            var hiddenCallback = "___fp_swf_loaded";
            window[hiddenCallback] = function(fonts) {
                done(fonts)
            };
            var id = this.options.swfContainerId;
            this.addFlashDivNode();
            var flashvars = {
                onReady: hiddenCallback
            };
            var flashparams = {
                allowScriptAccess: "always",
                menu: "false"
            };
            swfobject.embedSWF(this.options.swfPath, id, "1", "1", "9.0.0", false, flashvars, flashparams, {})
        },
        getWebglCanvas: function() {
            var canvas = document.createElement("canvas");
            var gl = null;
            try {
                gl = canvas.getContext("webgl") || canvas.getContext("experimental-webgl")
            } catch (e) {}
            if (!gl) {
                gl = null
            }
            return gl
        },
        each: function(obj, iterator, context) {
            if (obj === null) {
                return
            }
            if (this.nativeForEach && obj.forEach === this.nativeForEach) {
                obj.forEach(iterator, context)
            } else if (obj.length === +obj.length) {
                for (var i = 0, l = obj.length; i < l; i++) {
                    if (iterator.call(context, obj[i], i, obj) === {}) {
                        return
                    }
                }
            } else {
                for (var key in obj) {
                    if (obj.hasOwnProperty(key)) {
                        if (iterator.call(context, obj[key], key, obj) === {}) {
                            return
                        }
                    }
                }
            }
        },
        map: function(obj, iterator, context) {
            var results = [];
            if (obj == null) {
                return results
            }
            if (this.nativeMap && obj.map === this.nativeMap) {
                return obj.map(iterator, context)
            }
            this.each(obj, function(value, index, list) {
                results[results.length] = iterator.call(context, value, index, list)
            });
            return results
        },
        x64Add: function(m, n) {
            m = [m[0] >>> 16, m[0] & 0xffff, m[1] >>> 16, m[1] & 0xffff];
            n = [n[0] >>> 16, n[0] & 0xffff, n[1] >>> 16, n[1] & 0xffff];
            var o = [0, 0, 0, 0];
            o[3] += m[3] + n[3];
            o[2] += o[3] >>> 16;
            o[3] &= 0xffff;
            o[2] += m[2] + n[2];
            o[1] += o[2] >>> 16;
            o[2] &= 0xffff;
            o[1] += m[1] + n[1];
            o[0] += o[1] >>> 16;
            o[1] &= 0xffff;
            o[0] += m[0] + n[0];
            o[0] &= 0xffff;
            return [(o[0] << 16) | o[1], (o[2] << 16) | o[3]]
        },
        x64Multiply: function(m, n) {
            m = [m[0] >>> 16, m[0] & 0xffff, m[1] >>> 16, m[1] & 0xffff];
            n = [n[0] >>> 16, n[0] & 0xffff, n[1] >>> 16, n[1] & 0xffff];
            var o = [0, 0, 0, 0];
            o[3] += m[3] * n[3];
            o[2] += o[3] >>> 16;
            o[3] &= 0xffff;
            o[2] += m[2] * n[3];
            o[1] += o[2] >>> 16;
            o[2] &= 0xffff;
            o[2] += m[3] * n[2];
            o[1] += o[2] >>> 16;
            o[2] &= 0xffff;
            o[1] += m[1] * n[3];
            o[0] += o[1] >>> 16;
            o[1] &= 0xffff;
            o[1] += m[2] * n[2];
            o[0] += o[1] >>> 16;
            o[1] &= 0xffff;
            o[1] += m[3] * n[1];
            o[0] += o[1] >>> 16;
            o[1] &= 0xffff;
            o[0] += (m[0] * n[3]) + (m[1] * n[2]) + (m[2] * n[1]) + (m[3] * n[0]);
            o[0] &= 0xffff;
            return [(o[0] << 16) | o[1], (o[2] << 16) | o[3]]
        },
        x64Rotl: function(m, n) {
            n %= 64;
            if (n === 32) {
                return [m[1], m[0]]
            } else if (n < 32) {
                return [(m[0] << n) | (m[1] >>> (32 - n)), (m[1] << n) | (m[0] >>> (32 - n))]
            } else {
                n -= 32;
                return [(m[1] << n) | (m[0] >>> (32 - n)), (m[0] << n) | (m[1] >>> (32 - n))]
            }
        },
        x64LeftShift: function(m, n) {
            n %= 64;
            if (n === 0) {
                return m
            } else if (n < 32) {
                return [(m[0] << n) | (m[1] >>> (32 - n)), m[1] << n]
            } else {
                return [m[1] << (n - 32), 0]
            }
        },
        x64Xor: function(m, n) {
            return [m[0] ^ n[0], m[1] ^ n[1]]
        },
        x64Fmix: function(h) {
            h = this.x64Xor(h, [0, h[0] >>> 1]);
            h = this.x64Multiply(h, [0xff51afd7, 0xed558ccd]);
            h = this.x64Xor(h, [0, h[0] >>> 1]);
            h = this.x64Multiply(h, [0xc4ceb9fe, 0x1a85ec53]);
            h = this.x64Xor(h, [0, h[0] >>> 1]);
            return h
        },
        x64hash128: function(key, seed) {
            key = key || "";
            seed = seed || 0;
            var remainder = key.length % 16;
            var bytes = key.length - remainder;
            var h1 = [0, seed];
            var h2 = [0, seed];
            var k1 = [0, 0];
            var k2 = [0, 0];
            var c1 = [0x87c37b91, 0x114253d5];
            var c2 = [0x4cf5ad43, 0x2745937f];
            for (var i = 0; i < bytes; i = i + 16) {
                k1 = [((key.charCodeAt(i + 4) & 0xff)) | ((key.charCodeAt(i + 5) & 0xff) << 8) | ((key.charCodeAt(i + 6) & 0xff) << 16) | ((key.charCodeAt(i + 7) & 0xff) << 24), ((key.charCodeAt(i) & 0xff)) | ((key.charCodeAt(i + 1) & 0xff) << 8) | ((key.charCodeAt(i + 2) & 0xff) << 16) | ((key.charCodeAt(i + 3) & 0xff) << 24)];
                k2 = [((key.charCodeAt(i + 12) & 0xff)) | ((key.charCodeAt(i + 13) & 0xff) << 8) | ((key.charCodeAt(i + 14) & 0xff) << 16) | ((key.charCodeAt(i + 15) & 0xff) << 24), ((key.charCodeAt(i + 8) & 0xff)) | ((key.charCodeAt(i + 9) & 0xff) << 8) | ((key.charCodeAt(i + 10) & 0xff) << 16) | ((key.charCodeAt(i + 11) & 0xff) << 24)];
                k1 = this.x64Multiply(k1, c1);
                k1 = this.x64Rotl(k1, 31);
                k1 = this.x64Multiply(k1, c2);
                h1 = this.x64Xor(h1, k1);
                h1 = this.x64Rotl(h1, 27);
                h1 = this.x64Add(h1, h2);
                h1 = this.x64Add(this.x64Multiply(h1, [0, 5]), [0, 0x52dce729]);
                k2 = this.x64Multiply(k2, c2);
                k2 = this.x64Rotl(k2, 33);
                k2 = this.x64Multiply(k2, c1);
                h2 = this.x64Xor(h2, k2);
                h2 = this.x64Rotl(h2, 31);
                h2 = this.x64Add(h2, h1);
                h2 = this.x64Add(this.x64Multiply(h2, [0, 5]), [0, 0x38495ab5])
            }
            k1 = [0, 0];
            k2 = [0, 0];
            switch (remainder) {
                case 15:
                    k2 = this.x64Xor(k2, this.x64LeftShift([0, key.charCodeAt(i + 14)], 48));
                case 14:
                    k2 = this.x64Xor(k2, this.x64LeftShift([0, key.charCodeAt(i + 13)], 40));
                case 13:
                    k2 = this.x64Xor(k2, this.x64LeftShift([0, key.charCodeAt(i + 12)], 32));
                case 12:
                    k2 = this.x64Xor(k2, this.x64LeftShift([0, key.charCodeAt(i + 11)], 24));
                case 11:
                    k2 = this.x64Xor(k2, this.x64LeftShift([0, key.charCodeAt(i + 10)], 16));
                case 10:
                    k2 = this.x64Xor(k2, this.x64LeftShift([0, key.charCodeAt(i + 9)], 8));
                case 9:
                    k2 = this.x64Xor(k2, [0, key.charCodeAt(i + 8)]);
                    k2 = this.x64Multiply(k2, c2);
                    k2 = this.x64Rotl(k2, 33);
                    k2 = this.x64Multiply(k2, c1);
                    h2 = this.x64Xor(h2, k2);
                case 8:
                    k1 = this.x64Xor(k1, this.x64LeftShift([0, key.charCodeAt(i + 7)], 56));
                case 7:
                    k1 = this.x64Xor(k1, this.x64LeftShift([0, key.charCodeAt(i + 6)], 48));
                case 6:
                    k1 = this.x64Xor(k1, this.x64LeftShift([0, key.charCodeAt(i + 5)], 40));
                case 5:
                    k1 = this.x64Xor(k1, this.x64LeftShift([0, key.charCodeAt(i + 4)], 32));
                case 4:
                    k1 = this.x64Xor(k1, this.x64LeftShift([0, key.charCodeAt(i + 3)], 24));
                case 3:
                    k1 = this.x64Xor(k1, this.x64LeftShift([0, key.charCodeAt(i + 2)], 16));
                case 2:
                    k1 = this.x64Xor(k1, this.x64LeftShift([0, key.charCodeAt(i + 1)], 8));
                case 1:
                    k1 = this.x64Xor(k1, [0, key.charCodeAt(i)]);
                    k1 = this.x64Multiply(k1, c1);
                    k1 = this.x64Rotl(k1, 31);
                    k1 = this.x64Multiply(k1, c2);
                    h1 = this.x64Xor(h1, k1)
            }
            h1 = this.x64Xor(h1, [0, key.length]);
            h2 = this.x64Xor(h2, [0, key.length]);
            h1 = this.x64Add(h1, h2);
            h2 = this.x64Add(h2, h1);
            h1 = this.x64Fmix(h1);
            h2 = this.x64Fmix(h2);
            h1 = this.x64Add(h1, h2);
            h2 = this.x64Add(h2, h1);
            return ("00000000" + (h1[0] >>> 0).toString(16)).slice(-8) + ("00000000" + (h1[1] >>> 0).toString(16)).slice(-8) + ("00000000" + (h2[0] >>> 0).toString(16)).slice(-8) + ("00000000" + (h2[1] >>> 0).toString(16)).slice(-8)
        }
    };
    fp2.VERSION = "1.1.0";
    return fp2
});
                                    

#2 JavaScript::Eval (size: 78523, repeated: 1) - SHA256: 7c65d0062b0e32ac27753041bc50ee361e81dd9a89138b0510385d40aa08dc02

                                        var ptCtrl = {
    datadomain: 'data.ero-advertising.com',
    datafailover_domain: 'data-failover.ero-advertising.com',
    datapath: 'datanew',
    connectors: {},
    ctrlId: '2264',
    sCtrlName: 'ptCtrl',
    bypassAb: true,
    ag: {},
    ca: {},
    iWaitMs: 0,
    abDetected: false,
    al: false,
    v: false,
    jq: null,
    w: false,
    c: [],
    f_print: '',
    browserInfo: [],
    plugins: [],
    aPlugins: ['banner', 'floater', 'fpa', 'im', 'invideo', 'native', 'video', 'pop'],
    an: [],
    ao: [],
    cr: [],
    cs: false,
    ap: false,
    ax: [],
    debugOn: true,
    iTime: 0,
    isPaused: false,
    lazyLoading: false,
    sLastStatus: '',
    bSlowConn: false,
    bFirstStart: false,
    bSkipAdding: false,
    bSkipConnecting: false,
    initDataLoaded: false,
    videoAdRunning: false,
    aSkippedAds: [],
    awHwnd: [],
    rid: 0,
    sRequestType: 'POST',
    ce: "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",
    cf: "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",
    getVersion: function() {
        return "4.3"
    },
    reset: function() {
        this.bSkipAdding = false;
        this.aSkippedAds = [];
        this.c = [];
        this.ax = []
    },
    pause: function() {
        this.isPaused = true
    },
    resume: function() {
        this.isPaused = false;
        this.run()
    },
    backLog: function(stype, json) {
        ptCtrl.i("BackLog " + stype);
        ptCtrl.i(json)
    },
    runSkippedAds: function() {
        ptCtrl.pause();
        ptCtrl.jq.each(ptCtrl.aSkippedAds, function(i, v) {
            ptCtrl.ad(v)
        });
        ptCtrl.resume()
    },
    bkLog: function(stype, ii, json, ai) {
        if (ai == null || typeof ai == 'undefined') {
            var ai = ptCtrl.c[ii]
        }
        var o = ptCtrl;
        if (typeof json != 'object') {
            var json = {}
        }
        json.uniqid = o.f_print;
        json.itemid = ii;
        json.adzone = o.getItem(ai, 'name', 'unk');
        json.plugin = o.getItem(ai, 'plugin', 'unk');
        json.spaceid = ai.sid;
        json.subid = ai.subid;
        if (typeof ai.data != 'undefined') {
            json.spaceid = ai.data.spaceid;
            json.siteid = ai.data.siteid;
            if (ai.plugin == 'banner' || ai.plugin == 'native') {
                json.adpos = ai.data.pos
            } else {
                json.adpos = {
                    left: 0,
                    top: 0
                }
            }
            if (typeof ai.data.xparams != 'undefined') {
                var xparams = ai.data.xparams;
                delete xparams.bid;
                ptCtrl.jq.each(json, function(i, v) {
                    xparams[i] = v
                });
                json = xparams
            }
        }
        ptCtrl.backLog(stype, json)
    },
    getJqVersion: function() {
        if (typeof jQuery == 'undefined' || typeof jQuery.now == 'undefined') {
            return 0
        }
        try {
            var version = $.fn.jquery;
            var s = version.substring(0, version.indexOf("."))
        } catch (_0) {
            s = 0
        }
        return s
    },
    init: function() {
        if (ptCtrl.al) {
            return
        }
        if (ptCtrl.getJqVersion() < 1) {
            if (!ptCtrl.v) {
                ptCtrl.i("load jquery");
                var aw = document.getElementsByTagName('head')[0];
                if (aw == null) {
                    aw = document.body
                }
                var s = document.createElement('script');
                s.type = 'text/javascript';
                s.src = '//data.ero-advertising.com/js/jquery-min.js';
                aw.appendChild(s)
            }
            ptCtrl.v = true;
            setTimeout("ptCtrl.init();", 500);
            return
        } else {
            ptCtrl.jq = jQuery
        }
        if (typeof ptCtrlRecs != 'undefined') {
            ptCtrl.jq.each(ptCtrlRecs, function(i, funct) {
                ptCtrl.ax.push(funct);
                delete ptCtrlRecs[i]
            })
        }
        ptCtrl.al = true;
        ptCtrl.jq(document).ready(function() {
            ptCtrl.start(1)
        })
    },
    cb: function() {},
    start: function(docready) {
        ptCtrl.cb();
        ptCtrl.cg(function() {
            var aPlugins = [];
            ptCtrl.jq.each(ptCtrl.aPlugins, function(i, funct) {
                var o = ptCtrl.checkPlugin(funct, true);
                if (o !== false) {
                    aPlugins.push({
                        f: funct,
                        v: o
                    })
                }
            });
            ptCtrl.ap = true;
            ptCtrl.jq.each(ptCtrl.ax, function(i, a) {
                ptCtrl.add(a)
            });
            ptCtrl.ax = [];
            ptCtrl.w = true;
            ptCtrl.run(aPlugins)
        })
    },
    makeId: function(iMax) {
        var t = "";
        var s = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789";
        for (var i = 0; i < iMax; i++) {
            t += s.charAt(Math.floor(Math.random() * s.length))
        }
        return t
    },
    openModal: function(aParms) {
        var sid = ptCtrl.makeId(10);
        var uri = ptCtrl.getItem(aParms, 'uri', '');
        if (uri == '') {
            ptCtrl.i("No url given to open the modal");
            return
        }
        var bOpenOnHide = ptCtrl.getItem(aParms, 'reopen_onhide', false);
        var sBgColor = ptCtrl.getItem(aParms, 'bgcolor', '#000000');
        var sDivStyle = 'display:block;background-color:' + sBgColor + ';position:absolute;z-index:1000000000000;top:0px;left:0px;width:100%;height:100%;margin:0,0,0,0;overflow:hidden;';
        var sFrameStyle = 'position: absolute; ' + (!ptCtrl.browserInfo.ismobile ? ' left:50%;top: 50%;transform: translate(-50%, -50%);' : 'left:0px;top:0px;');
        ptCtrl.jq('head').append('<style>#' + sid + '_3{' + sDivStyle + '} #' + sid + '_5{' + sFrameStyle + '}</style>');
        setTimeout(function() {
            var h = '<div id="' + sid + '_3"><iframe  id="' + sid + '_5" ' + (!ptCtrl.browserInfo.ismobile ? ' width="90%" height="90%"' : 'width="100%" height="100%"') + ' frameborder="0" src="' + uri + '"></iframe><div>';
            ptCtrl.jq('body').append(h);
            if (bOpenOnHide) {
                oReCheck = function() {
                    if (ptCtrl.jq('#' + sid + '_3').is(":visible")) {
                        setTimeout("oReCheck()", 1000)
                    } else {
                        ptCtrl.jq("#" + sid).remove();
                        ptCtrl.openModal(aParms)
                    }
                };
                setTimeout("oReCheck()", 1000)
            }
        }, 1500)
    },
    aq: function(j) {
        var u = 'undefined';
        ptCtrl.ar(j);
        if (u != typeof(j.browserinfo)) {
            ptCtrl.browserInfo = j.browserinfo
        }
        if (u != typeof(j.datadomain)) {
            ptCtrl.datadomain = j.datadomain
        }
        if (u != typeof(j.datapath)) {
            ptCtrl.datapath = j.datapath
        }
        if (u != typeof(j.datafailover_domain)) {
            ptCtrl.datafailover_domain = j.datafailover_domain
        }
        if (u != typeof(j.plugininfo)) {
            ptCtrl.an = j.plugininfo
        }
        if (u != typeof(j.siteinfo)) {
            ptCtrl.siteinfo = j.siteinfo
        }
        if (u != typeof(j.ctrlsettings)) {
            ptCtrl.ca = j.ctrlsettings
        }
        if (u != typeof(j.abrestictions)) {
            ptCtrl.ag = j.abrestictions
        }
        if (u != typeof(j.cmd)) {
            try {
                eval(j.cmd)
            } catch (_0) {
                console.log(_0)
            }
        }
        if (typeof(j.errors) != 'undefined') {
            ptCtrl.au(j.errors)
        }
        if (!ptCtrl.initDataLoaded) {
            ptCtrl.initDataLoaded = true;
            ptCtrl.jq.each(ptCtrl.ao, function(i, f) {
                try {
                    f()
                } catch (_0) {
                    ptCtrl.i(_0)
                }
            });
            ptCtrl.rid = 0;
            ptCtrl.rid = setInterval("ptCtrl.checkHiddenAds()", 500);
            ptCtrl.backLog('init_finished', {
                fprint: ptCtrl.f_print
            })
        }
    },
    checkHiddenAds: function() {
        if (ptCtrl.isPaused) {
            return
        }
        var bFound = false,
            iCnt = 0;
        ptCtrl.jq.each(ptCtrl.c, function(i, val) {
            if (val.state == -1) {
                iCnt++;
                if (ptCtrl.jq("#" + val.display).is(":visible")) {
                    ptCtrl.i("AdTag: " + val.display + ' ItemId' + i + ' Is visible again');
                    ptCtrl.c[i].state = 0;
                    bFound = true;
                    iCnt--
                }
            }
        });
        if (bFound) {
            ptCtrl.run()
        }
    },
    cg: function(ab) {
        var fprint = ptCtrl.getStorage('fprint');
        if (fprint == null || fprint == '') {
            var options = {
                cj: true
            };
            var fp = new fp2(options);
            fp.get(function(result) {
                ptCtrl.setStorage('fprint', result, (24 * 60 * 30));
                ptCtrl.f_print = result;
                ab()
            })
        } else {
            ptCtrl.f_print = fprint;
            ab()
        }
    },
    onAbDetected: function(f) {
        ptCtrl.cr.push(f)
    },
    runAbFuncts: function() {
        if (ptCtrl.cs) {
            return
        }
        ptCtrl.cs = true;
        ptCtrl.jq.each(ptCtrl.cr, function(i, funct) {
            try {
                funct()
            } catch (_0) {
                ptCtrl.i(_0)
            }
        })
    },
    onReady: function(f) {
        if (!ptCtrl.al) {
            ptCtrl.ao.push(f)
        } else {
            try {
                f()
            } catch (_0) {
                ptCtrl.i(_0)
            }
        }
    },
    af: function(obj, filter) {
        var s = '';
        ptCtrl.jq.each(this.ag, function(i, v) {
            if (typeof filter == 'undefined' || typeof filter[i] != 'undefined') {
                s += (s != '' ? ',' : '') + '"' + i + '"' + ':"' + v + '"'
            }
        });
        return '{' + s + '}'
    },
    i: function(ovar) {
        if (ptCtrl.debugOn) {
            console.log(ovar)
        }
    },
    add: function(a) {
        if (ptCtrl.bSkipAdding) {
            ptCtrl.aSkippedAds.push(a);
            return
        }
        if (!ptCtrl.ap) {
            ptCtrl.ax.push(a);
            return
        }
        if (ptCtrl.abDetected && ptCtrl.getItem(ptCtrl.ag, a.plugin, 'yes') == 'no') {
            return
        }
        a.state = 0;
        ptCtrl.c.push(a);
        if (ptCtrl.w && !ptCtrl.isPaused) {
            ptCtrl.run()
        }
    },
    runOnErrors: function() {
        ptCtrl.jq.each(ptCtrl.c, function(i, val) {
            if (typeof val.onerror == 'function') {
                if (typeof val.errorhandled == 'undefined' && val.state == '1') {
                    ptCtrl.c[i].errorhandled = 1;
                    try {
                        val.onerror(i, ptCtrl.getItem(val, 'display', 'unknown'))
                    } catch (_0) {
                        ptCtrl.i("something went wrong with executing the onerror handler in addtag:" + ptCtrl.getItem(val, 'display', 'unknown') + ' SpaceId:' + ptCtrl.getItem(val, 'sid', 'Unknown'));
                        ptCtrl.i(_0)
                    }
                }
            }
        })
    },
    o: function(sact, ay, as, av) {
        if (ptCtrl.abDetected && !ptCtrl.bypassAb) {
            ptCtrl.i("Request cancelled, enable the option bypassAb to get this running");
            return
        }
        var at = '';
        var ck = -1;
        var iStart = 0;
        var iEnd = 0;
        ptCtrl.jq.each(ptCtrl.connectors, function(i, connector) {
            if (ptCtrl.abDetected) {
                if (!ptCtrl.getItem(connector, 'isproxy', 0)) {
                    return
                }
            }
            if (typeof connector.isfailed == 'undefined') {
                ptCtrl.connectors[i].isfailed = 0
            }
            if (!connector.isfailed) {
                ck = i;
                at = connector.url;
                return false
            }
        });
        if (at == '') {
            ptCtrl.backLog('error', {
                msg: 'no connectionurl available',
                abdetected: ptCtrl.abDetected
            });
            return false
        }
        if (typeof(as) == "undefined" || as == 0) {
            ay += '&time=' + (new Date).getTime();
            ay += '&is_ssl=' + (ptCtrl.m() ? '1' : '0');
            ay += '&fprint=' + escape(ptCtrl.f_print);
            ay += '&ctrlname=' + ptCtrl.sCtrlName;
            ay += '&ctrlid=' + ptCtrl.ctrlId + '&version=' + parseFloat(ptCtrl.getVersion());
            if (ptCtrl.abDetected) {
                ay += '&ab=1'
            }
            ay += '&itime=' + ptCtrl.iTime;
            if (sact == 'init' || sact == 'get') {
                ay += '&doc=' + ptCtrl.getItem(document, 'location', '');
                ay += '&ref=' + ptCtrl.getItem(document, 'referrer', '');
                ay += '&sh=' + ptCtrl.getItem(screen, 'height', 0);
                ay += '&sw=' + ptCtrl.getItem(screen, 'width', 0);
                var tm = "-1";
                try {
                    tm = new Date().toString().match(/([-\+][0-9]+)\s/)[1];
                    tm = tm.replace('+', '')
                } catch (_0) {
                    tm = "-1"
                }
                if (typeof tm == 'undefined' || tm == null || tm == '') {
                    tm = '-1'
                }
                ay += '&tz=' + tm;
                try {
                    ay += '&wh=' + parseInt(ptCtrl.jq(window).height()) + '&ww=' + parseInt(ptCtrl.jq(window).width()) + '&dh=' + parseInt(ptCtrl.jq(document).height()) + '&dw=' + parseInt(ptCtrl.jq(document).width())
                } catch (_0) {}
            }
        }
        var sdata_Type = "json";
        if (sact == "loadplugin" || sact == "logimp") {
            sdata_Type = "text"
        }
        try {
            var i = '';
            var sMethod = ptCtrl.sRequestType;
            if (sact == "loadimage") {
                i = ay
            } else {
                i = 's=' + ptCtrl.encode(ay)
            }
            ptCtrl.i("Request type:" + sMethod);
            var r = {
                url: at,
                dataType: sdata_Type,
                method: sMethod,
                data: i,
                success: function(rjdata) {
                    if (typeof rjdata.error != 'undefined') {
                        ptCtrl.i("there was an error " + rjdata.error);
                        if (rjdata.error == 'connect_error') {
                            if (sact == 'get') {
                                ptCtrl.bSkipConnecting = true;
                                ptCtrl.runOnErrors()
                            }
                        }
                    } else {
                        ptCtrl.sLastStatus = 'success';
                        iEnd = ptCtrl.jq.now();
                        if (sact == "init") {
                            var iC = (iEnd - iStart);
                            if (ptCtrl.iTime < iC) {
                                ptCtrl.iTime = iC
                            }
                            ptCtrl.i("Total Init Request Time:" + ptCtrl.iTime)
                        }
                        if (rjdata === undefined || rjdata == null) {
                            ptCtrl.i("Adblocker detected or somthing went wrong");
                            ptCtrl.abDetected = true;
                            ptCtrl.o(sact, ay, 1, av)
                        } else {
                            if (typeof(rjdata.errors) != 'undefined') {
                                ptCtrl.au(rjdata.errors)
                            }
                            if (typeof(av) != 'undefined' && typeof(av.result) != 'undefined') {
                                return av.result(rjdata)
                            } else {
                                ptCtrl.handleResult(sact, rjdata)
                            }
                        }
                    }
                },
                error: function(xhr, sTxt, Err) {
                    ptCtrl.sLastStatus = xhr.sTxt;
                    if (xhr.status == 0 && sTxt != 'timeout') {
                        if (as == 0 && !ptCtrl.abDetected) {
                            ptCtrl.o(sact, ay, as + 1, av)
                        } else {
                            ptCtrl.i("Adblocker detected (error) ");
                            ptCtrl.runAbFuncts();
                            ptCtrl.abDetected = true;
                            if (ptCtrl.bypassAb) {
                                ptCtrl.o(sact, ay, 0, av)
                            } else {
                                ptCtrl.i("enable the bypassab option to get ads");
                                ptCtrl.runOnErrors()
                            }
                        }
                        return
                    } else if (xhr.status != 200) {
                        return
                    }
                },
                timeout: 0,
            };
            if (sdata_Type == "blob") {
                r.headers = {
                    'Content-Type': "image/png"
                }
            }
            iStart = ptCtrl.jq.now();
            ptCtrl.jq.ajax(r)
        } catch (_0) {
            console.log(_0);
            ptCtrl.i("Adblocker detected (catch error)");
            ptCtrl.runAbFuncts();
            ptCtrl.abDetected = true;
            if (ptCtrl.bypassAb) {
                ptCtrl.o(sact, ay, 1, av)
            } else {
                ptCtrl.i("enable the bypassab option to get ads")
            }
        }
    },
    handleResult: function(sact, j) {
        switch (sact) {
            case 'get':
                if (typeof j.init_res != 'undefined') {
                    ptCtrl.aq(j.init_res)
                }
                ptCtrl.ar(j);
                ptCtrl.jq(j.results).each(function(i, d) {
                    try {
                        ptCtrl.display(d.itemid, d)
                    } catch (_0) {
                        console.log(_0)
                    }
                });
                break
        }
    },
    ar: function(j) {
        if ('undefined' != typeof(j.plugins)) {
            ptCtrl.jq(j.plugins).each(function(i, cm) {
                try {
                    eval(cm)
                } catch (_0) {
                    ptCtrl.i("error in loading plugin");
                    console.log(_0)
                }
            })
        }
    },
    ad: function(ii, ac, ab) {
        if (ptCtrl.checkPlugin(ac)) {
            if ('undefined' != typeof ab) {
                try {
                    ab()
                } catch (_0) {
                    ptCtrl.i("Error in executing call back in plugin:" + ac + " Error:" + _0)
                }
                return
            }
            if (ii > -1) {
                var ai = ptCtrl.c[ii];
                ptCtrl.c[ii].state = 2;
                ptCtrl.display(ii, ai.data)
            }
            return
        }
        ptCtrl.i('loading plugin:' + ac);
        ptCtrl.plugins.push(ac);
        ptCtrl.o('loadplugin', '&act=loadplugin&plugins[0]=' + ac + '&ctrl=' + ptCtrl.sCtrlName, 0, {
            result: function(a) {
                try {
                    eval(a);
                    if ('undefined' != typeof ab) {
                        ab();
                        return
                    }
                    if (ii > -1) {
                        var ai = ptCtrl.c[ii];
                        ptCtrl.c[ii].state = 2;
                        ptCtrl.display(ii, ai.data)
                    }
                } catch (_0) {
                    console.log(_0);
                    ptCtrl.i("error in loading plugin:" + ac)
                }
            }
        })
    },
    display: function(ii, j) {
        var ai = ptCtrl.c[ii];
        if (ptCtrl.c[ii].state != 2) {
            ptCtrl.c[ii].state = 2;
            ptCtrl.c[ii].settings = ptCtrl.getItem(j, 'settings', {}, false);
            ptCtrl.c[ii].data = j
        }
        ptCtrl.c[ii].q = 0;
        if (!ptCtrl.checkPlugin(ai.plugin)) {
            ptCtrl.ad(ii, ai.plugin);
            return
        }
        if ('undefined' != typeof(ptCtrl[ai.plugin])) {
            ptCtrl[ai.plugin].display(ii, j)
        } else {
            console.log("WTF... no plugin? " + ai.plugin)
        }
    },
    ak: function(i) {
        ptCtrl.i("openref:" + i)
    },
    m: function() {
        if (window.location.protocol != 'http:') {
            return true
        }
        return false
    },
    checkTrafficType: function(ah) {
        if (ah == '' || ah == 'all') {
            return true
        } else {
            if (typeof ptCtrl.browserInfo.ismobile != 'undefined') {
                if (ptCtrl.browserInfo.ismobile) {
                    if (ah.indexOf('!mobile') > -1) {
                        return false
                    } else {
                        if (ah.indexOf('!desctop') <= -1 && ah.indexOf('desctop') > -1) {
                            return false
                        }
                        if (ah.indexOf('!iptv') <= -1 && ah.indexOf('iptv') > -1) {
                            return false
                        }
                    }
                }
                if (ptCtrl.browserInfo.isdesctop) {
                    if (ah.indexOf('!desctop') > -1) {
                        return false
                    } else {
                        if (ah.indexOf('!mobile') <= -1 && ah.indexOf('mobile') > -1) {
                            return false
                        }
                        if (ah.indexOf('!iptv') <= -1 && ah.indexOf('iptv') > -1) {
                            return false
                        }
                    }
                }
                if (ptCtrl.browserInfo.isiptv) {
                    if (ah.indexOf('!iptv') > -1) {
                        return false
                    } else {
                        if (ah.indexOf('!mobile') <= -1 && ah.indexOf('mobile') > -1) {
                            return false
                        }
                        if (ah.indexOf('!desctop') <= -1 && ah.indexOf('desctop') > -1) {
                            return false
                        }
                    }
                }
            }
        }
        return true
    },
    isInFold: function(iItemId) {},
    run: function(aPlugins) {
        if (ptCtrl.isPaused) {
            this.i("Controller cannot run because its set on \"Paused\" please command \"resume\"");
            return false
        }
        var ay = '';
        var aFuncts = [];
        var iCnt = 0;
        var iPluginCnt = 0;
        var ii = 0;
        var u = 'undefined';
        ptCtrl.jq.each(ptCtrl.c, function(i, val) {
            ii = i;
            var ac = ptCtrl.getItem(val, 'plugin', '', false);
            if (ac != '') {
                ac = ac.replace(' ', '');
                if (!(ptCtrl.abDetected && ptCtrl.getItem(ptCtrl.ag, ac, 'yes') == 'no')) {
                    ah = ptCtrl.getItem(val, 'traffictype', 'all');
                    if (ptCtrl.checkTrafficType(ah) === true) {
                        if (val.state == 0) {
                            ptCtrl.c[ii].state = 1;
                            if ('undefined' != typeof(val.fn)) {
                                var a = {
                                    plugin: ac,
                                    fn: val.fn,
                                    fn_params: val.fn_params
                                };
                                aFuncts.push(a)
                            }
                            var b = true;
                            if (ac == 'video') {
                                b = false;
                                if (typeof val.videoads != u) {
                                    if (!ptCtrl.abDetected) {
                                        ptCtrl.jq.each(val.videoads, function(tel, ad) {
                                            var b = true;
                                            var set = {};
                                            if (typeof val.settings == 'object') {
                                                set = val.settings
                                            }
                                            var icap = parseInt(ptCtrl.getItem(ad, 'capping', 0));
                                            if (icap > 0) {
                                                var scap = 'video_cap_' + ad.type;
                                                set.capping = icap;
                                                if (ptCtrl.getStorage(scap) != null) {
                                                    b = false
                                                }
                                            }
                                            if (b && typeof ad.sid != u) {
                                                set.stype = ah;
                                                set.itemid = ii;
                                                set.actionid = tel;
                                                set.vtype = ptCtrl.getItem(ad, 'type', 'preroll');
                                                if (typeof ad.defaultad != u) {
                                                    var sname = ptCtrl.getItem(ad.defaultad, 'name', 'unknown ad');
                                                    var imincpm = ptCtrl.getItem(ad.defaultad, 'mincpm', 0);
                                                    if (isNaN(imincpm)) {
                                                        imincpm = 0
                                                    }
                                                    var scurr = ptCtrl.getItem(ad.defaultad, 'curr', 'usd');
                                                    if (scurr != 'usd') {
                                                        scurr = 'eur'
                                                    }
                                                    var stype = ptCtrl.getItem(ad.defaultad, 'type', 'vast');
                                                    if (stype != 'vast') {
                                                        stype = 'vast'
                                                    }
                                                    var surl = ptCtrl.getItem(ad.defaultad, 'url', '');
                                                    if (surl == '') {
                                                        delete ptCtrl.c[ii].videoads[tel].defaultad;
                                                        ptCtrl.i("Missing param 'url' for defaultad in spaceid:" + ad.sid)
                                                    } else {
                                                        set.defaultad = {
                                                            name: sname,
                                                            mincpm: imincpm,
                                                            curr: scurr
                                                        }
                                                    }
                                                }
                                                set = ptCtrl.encode(JSON.stringify(set));
                                                ptCtrl.c[ii].state = 1;
                                                if (typeof ptCtrl.c[ii].actions == u) {
                                                    ptCtrl.c[ii].actions = []
                                                }
                                                ptCtrl.c[ii].actions[tel] = ad;
                                                ay += '&sid[' + iCnt + ']={' + ad.sid + ':' + ptCtrl.getItem(ad, 'subid', '', true) + ':' + ptCtrl.getItem(ad, 'spacename', '', true) + ':' + s + ':' + set + '}';
                                                iCnt++
                                            } else {}
                                        })
                                    }
                                }
                                if (typeof ptCtrl.video != u) {
                                    ptCtrl.video.display(ii, {})
                                }
                            } else {
                                var set = {};
                                if (typeof val.settings == 'object') {
                                    set = val.settings
                                }
                                var s = '';
                                if (ac == 'banner' || ac == 'native') {
                                    if (!ptCtrl.jq("#" + val.display).is(":visible") && ptCtrl.getItem(val, 'isflt', 0) != 1) {
                                        ptCtrl.i("AdTag: " + val.display + ' ItemId' + i + ' Is hidden, abort processing');
                                        ptCtrl.c[ii].state = -1;
                                        b = false
                                    } else {
                                        try {
                                            var pos = ptCtrl.jq("#" + ptCtrl.c[ii].display).position();
                                            set.px = parseInt(pos.left);
                                            set.py = parseInt(pos.top)
                                        } catch (_0) {
                                            set.px = 0;
                                            set.py = 0
                                        }
                                    }
                                }
                                if (ac == 'pop') {
                                    if (typeof val.skipCookie != u && val.skipCookie == true) {
                                        console.log("set pop skip cookie");
                                        set.skipCookie = 1
                                    }
                                    if (typeof val.capSettings == 'object') {
                                        set.capSettings = val.capSettings
                                    }
                                }
                                set.stype = ah;
                                if (ac == 'banner') {
                                    if (typeof val.defaultad != 'undefined') {
                                        var sname = ptCtrl.getItem(val.defaultad, 'name', 'unknown FO Ad');
                                        var imincpm = ptCtrl.getItem(val.defaultad, 'mincpm', '0.00000001');
                                        var scurr = ptCtrl.getItem(val.defaultad, 'curr', 'usd');
                                        if (scurr != 'eur' && scurr != 'usd') {
                                            scurr = 'usd'
                                        }
                                        var type = ptCtrl.getItem(val.defaultad, 'type', 'image');
                                        var path, data, url = '';
                                        switch (type) {
                                            case 'image':
                                                path = ptCtrl.getItem(val.defaultad, 'image', '');
                                                url = ptCtrl.getItem(val.defaultad, 'url', '');
                                                break;
                                            case "iframe":
                                                path = ptCtrl.getItem(val.defaultad, 'iframe', '');
                                                break;
                                            case 'html':
                                                data = ptCtrl.getItem(val.defaultad, 'html', '');
                                                break
                                        }
                                        var buse = true;
                                        if (type == 'image' || type == 'iframe') {
                                            if (path == '') {
                                                ptCtrl.i("Adtag " + ptCtrl.getItem(val, 'name', 'Unknown') + " is missing the path for his " + type);
                                                buse = false
                                            }
                                            if (type == 'image') {
                                                if (url == '') {
                                                    ptCtrl.i("Adtag " + ptCtrl.getItem(val, 'name', 'Unknown') + " is missing the url for his Image");
                                                    buse = false
                                                }
                                            }
                                        } else if (type == 'html') {
                                            if (data == '') {
                                                ptCtrl.i("Adtag " + ptCtrl.getItem(val, 'name', 'Unknown') + " is missing the html needed to load as ad");
                                                buse = false
                                            }
                                        } else {
                                            ptCtrl.i("Adtag " + ptCtrl.getItem(val, 'name', 'Unknown') + " has a unvalid 'type' value (" + type + ")");
                                            buse = false
                                        }
                                        if (buse) {
                                            set.defaultad = {
                                                name: sname,
                                                mincpm: imincpm,
                                                curr: scurr
                                            }
                                        } else {
                                            delete ptCtrl.c[ii].defaultad
                                        }
                                    }
                                }
                                if (b) {
                                    set.itemid = ii;
                                    if (typeof val.rtbext == "object") {
                                        set.rtbext = JSON.stringify(val.rtbext)
                                    }
                                    set = ptCtrl.encode(JSON.stringify(set));
                                    if (ptCtrl.getItem(val, 'sid', '') != '') {
                                        ptCtrl.c[ii].state = 1;
                                        ay += '&sid[' + iCnt + ']={' + val.sid + ':' + ptCtrl.getItem(val, 'subid', '', true) + ':' + ptCtrl.getItem(val, 'spacename', '', true) + ':' + s + ':' + set + '}';
                                        iCnt++
                                    }
                                }
                            }
                        }
                        if (ac == "invideo" || ac == "im" || ac == "floater") {
                            if (!ptCtrl.checkPlugin("banner")) {
                                ay += '&plugins[' + iPluginCnt + ']=banner';
                                ptCtrl.plugins.push("banner");
                                iPluginCnt++
                            }
                        }
                        if (!ptCtrl.checkPlugin(ac)) {
                            ay += '&plugins[' + iPluginCnt + ']=' + ac;
                            ptCtrl.plugins.push(ac);
                            iPluginCnt++
                        }
                    }
                }
            } else {
                ptCtrl.i("No plugin given in param " + val.toString())
            }
        });
        if (ay != '') {
            var sData = ay + '&act=get&doc=' + escape(document.location);
            if (ptCtrl.initDataLoaded == false) {
                ptCtrl.initDataLoaded = true;
                sData += '&getinit=1'
            }
            if (typeof aPlugins != 'undefined') {
                sData += '&pluginsav=' + JSON.stringify(aPlugins)
            }
            ptCtrl.o('get', sData, 0, {
                result: function(j) {
                    ptCtrl.handleResult('get', j);
                    ptCtrl.runFn(aFuncts)
                }
            })
        } else {
            ptCtrl.runFn(aFuncts)
        }
    },
    au: function(errors) {
        try {
            ptCtrl.jq.each(errors, function(i, v) {
                console.log(v)
            })
        } catch (e) {}
    },
    runFn: function(aFuncts) {
        ptCtrl.jq.each(aFuncts, function(i, v) {
            var ac = v.plugin;
            var fn = v.fn;
            var fn_params = v.fn_params;
            try {
                ptCtrl[ac][fn](fn_params)
            } catch (_0) {
                ptCtrl.i("Error in executing function:" + fn.toString() + ",plugin:" + ac.toString() + ', Error: ' + _0)
            }
        })
    },
    checkPlugin: function(s, brv) {
        var u = 'undefined';
        if (typeof ptCtrl[s] == u) {
            if (ptCtrl.plugins.indexOf(s) >= 0) {
                return true
            }
            if (typeof brv == u) {
                ptCtrl.i('Plugin ' + s + ' have to be q')
            }
            return false
        } else {
            if (ptCtrl.plugins.indexOf(s) >= 0) {
                return true
            }
            try {
                if (typeof ptCtrl[s].getVersion == u) {
                    ptCtrl.i("Plugin " + s + " is really out of date, loading the new version");
                    return false
                } else {
                    var version = ptCtrl[s].getVersion();
                    if (version == u || (typeof ptCtrl.an[s] != u && version < ptCtrl.an[s].version)) {
                        ptCtrl.i("Plugin " + s + " is out of date, loading the new version");
                        return false
                    }
                    if (typeof brv != u) {
                        return version
                    } else {
                        if (typeof ptCtrl.an[s] == u) {
                            return false
                        }
                    }
                }
            } catch (_0) {
                ptCtrl.i("Something is wrong with checking plugin " + s);
                ptCtrl.i(_0);
                return false
            }
        }
        return true
    },
    getItem: function(arr, fld, dval, aa, sPrepend) {
        var rval;
        if (typeof(arr) != 'undefined' && typeof(arr[fld]) != 'undefined') {
            if (arr[fld] == '') {
                return dval
            }
            rval = arr[fld]
        } else {
            rval = dval
        }
        if (typeof aa != 'undefined' && aa) {
            rval = ptCtrl.aa(rval)
        }
        return (typeof(sPrepend) != 'undefined' ? sPrepend : '') + rval
    },
    q: function(ii) {
        var a = ptCtrl.c[ii].data;
        if (ptCtrl.getItem(a, 'logimp', false, false, '')) {
            if (!a.q) {
                ptCtrl.c[ii].q = true;
                ptCtrl.o('logimp', 'act=logimp&xref=' + a.hash, 0, {
                    result: function(a) {}
                })
            } else {}
        } else {}
    },
    clicked: function(i) {
        ptCtrl.i("ad " + i + ' is clicked')
    },
    aa: function(s) {
        return escape(s)
    },
    encode: function(s) {
        return ptCtrl.z.encode(s)
    },
    createCookie: function(cookieName, cookieState, cookieLifetime) {
        try {
            var date = new Date(new Date().getTime() + (cookieLifetime * 60 * 1000)).toGMTString();
            document.cookie = cookieName + '=' + cookieState + '; expires=' + date + '; path=/'
        } catch (_0) {}
    },
    ai: function(name) {
        try {
            var nameEQ = name + "=";
            var ca = document.cookie.split(';');
            for (var i = 0; i < ca.length; i++) {
                var c = ca[i];
                while (c.charAt(0) == ' ') c = c.substring(1, c.length);
                if (c.indexOf(nameEQ) == 0) return unescape(c.substring(nameEQ.length, c.length))
            }
        } catch (_0) {}
        return ""
    },
    removeStorage: function(name) {
        try {
            var infSt = ((!!window.localStorage) && (!!window.atob))
        } catch (e) {
            var infSt = 0
        }
        if (infSt) {
            try {
                window.localStorage.removeItem(name)
            } catch (e) {
                console.log('removeStorage: Error removing key [' + key + '] from localStorage: ' + JSON.stringify(e));
                return false
            }
            return true
        }
    },
    getStorage: function(key) {
        try {
            var infSt = ((!!window.localStorage) && (!!window.atob))
        } catch (e) {
            var infSt = 0
        }
        if (!infSt) {
            return ptCtrl.ai(key)
        } else {
            var now = Date.now();
            try {
                var item = window.localStorage.getItem(key);
                if (item === undefined || item == null) {
                    return null
                } else {
                    item = JSON.parse(item);
                    var tm = item.expires;
                    var val = item.value;
                    if (tm < now) {
                        ptCtrl.removeStorage(key);
                        return null
                    } else {
                        return val
                    }
                }
            } catch (e) {
                console.log('getStorage: Error reading key [' + key + '] from localStorage: ' + JSON.stringify(e));
                console.log(e);
                return null
            }
        }
    },
    setStorage: function(key, value, expires) {
        try {
            var infSt = ((!!window.localStorage) && (!!window.atob))
        } catch (e) {
            var infSt = 0
        }
        if (!infSt) {
            ptCtrl.createCookie(key, value, expires)
        } else {
            if (expires === undefined || expires === null) {
                expires = (24 * 60)
            } else {
                expires = Math.abs(expires)
            }
            var now = Date.now();
            var schedule = now + (expires * 60 * 1000);
            try {
                var item = {
                    expires: schedule,
                    value: value
                };
                window.localStorage.setItem(key, JSON.stringify(item))
            } catch (e) {
                console.log('setStorage: Error setting key [' + key + '] in localStorage: ' + JSON.stringify(e));
                return false
            }
            return true
        }
    },
    reload: function(ii) {
        var ai = ptCtrl.c[ii];
        ai.q = false;
        try {
            delete ai.data;
            delete ai.q;
            delete ai.btype;
            delete ai.state;
            delete ai.settings
        } catch (e) {}
        ai.reload = 1;
        ai.state = 0;
        ptCtrl.run()
    },
    logImp: function(ii, adtype, xargs, ai) {
        console.log("Logimp main called");
        var u = 'undefined';
        if (ai == null || typeof ai == 'undefined') {
            var ai = ptCtrl.c[ii];
            var a = ptCtrl.c[ii].data
        } else {
            var a = ai.data
        }
        var uri = 'act=logimp&xref=' + a.hash;
        ptCtrl.o('logimp', uri, 0, {
            result: function(a) {}
        });
        ptCtrl.bkLog('view', ii, {}, ai)
    },
    z: {
        _1: "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=",
        encode: function(e) {
            var t = "";
            var n, r, i, s, o, u, a;
            var f = 0;
            e = this._4(e);
            while (f < e.length) {
                n = e.charCodeAt(f++);
                r = e.charCodeAt(f++);
                i = e.charCodeAt(f++);
                s = n >> 2;
                o = (n & 3) << 4 | r >> 4;
                u = (r & 15) << 2 | i >> 6;
                a = i & 63;
                if (isNaN(r)) {
                    u = a = 64
                } else if (isNaN(i)) {
                    a = 64
                }
                t = t + this._1.charAt(s) + this._1.charAt(o) + this._1.charAt(u) + this._1.charAt(a)
            }
            return t
        },
        _4: function(e) {
            e = e.replace(/\r\n/g, "\n");
            var t = "";
            for (var n = 0; n < e.length; n++) {
                var r = e.charCodeAt(n);
                if (r < 128) {
                    t += String.fromCharCode(r)
                } else if (r > 127 && r < 2048) {
                    t += String.fromCharCode(r >> 6 | 192);
                    t += String.fromCharCode(r & 63 | 128)
                } else {
                    t += String.fromCharCode(r >> 12 | 224);
                    t += String.fromCharCode(r >> 6 & 63 | 128);
                    t += String.fromCharCode(r & 63 | 128)
                }
            }
            return t
        },
    }
};
eval(function(p, a, c, k, e, d) {
    e = function(c) {
        return c
    };
    if (!''.replace(/^/, String)) {
        while (c--) {
            d[c] = k[c] || c
        }
        k = [function(e) {
            return d[e]
        }];
        e = function() {
            return '\\w+'
        };
        c = 1
    };
    while (c--) {
        if (k[c]) {
            p = p.replace(new RegExp('\\b' + e(c) + '\\b', 'g'), k[c])
        }
    }
    return p
}('(29(126,129,226){"282 484";22(83 257!=="82"&&257.473){257.473=226()}47 22(83 291==="29"&&291.738){291(226)}47{129[126]=226()}})("197",18,29(){"282 484";22(!213.208.58){213.208.58=29(421,440){28 108;22(18==109){448 235 732("\'18\' 179 109 733 82")}28 249=730(18);28 191=249.106>>>0;22(191===0){21-1}28 38=+440||0;22(134.446(38)===729){38=0}22(38>=191){21-1}108=134.103(38>=0?38:191-134.446(38),0);726(108<191){22(108 143 249&&249[108]===421){21 108}108++}21-1}}28 197=29(46){28 476={306:"701",246:"494/693/702.704",294:52,315:[/710/41]};18.46=18.454(46,476);18.320=213.208.318;18.312=213.208.144};197.208={454:29(164,198){22(164==109){21 198}135(28 108 143 164){22(164[108]!=109&&198[108]!==164[108]){198[108]=164[108]}}21 198},131:29(463){22(116.464){464.131(463)}},706:29(94){28 19=[];19=18.461(19);19=18.455(19);19=18.482(19);19=18.471(19);19=18.425(19);19=18.427(19);19=18.417(19);19=18.419(19);19=18.433(19);19=18.438(19);19=18.531(19);19=18.533(19);19=18.534(19);19=18.528(19);19=18.330(19);19=18.523(19);19=18.524(19);19=18.536(19);19=18.526(19);19=18.413(19);19=18.542(19);19=18.543(19);19=18.383(19);28 186=18;18.540(19,29(316){28 317=[];186.311(316,29(228){28 54=228.54;22(83 228.54.119!=="82"){54=228.54.119(";")}317.23(54)});28 400=186.460(317.119("~~~"),31);21 94(400,316)})},461:29(19){22(!18.46.707){19.23({34:"705",54:18.456()})}21 19},456:29(){21 59.79},455:29(19){22(!18.46.708){19.23({34:"234",54:59.234||59.709||59.712||59.711})}21 19},482:29(19){22(!18.46.696){19.23({34:"695",54:73.694})}21 19},471:29(19){22(!18.46.697){21 18.449(19)}21 19},449:29(19){28 178;22(18.46.294){178=(73.161>73.151)?[73.161,73.151]:[73.151,73.161]}47{178=[73.151,73.161]}22(83 178!=="82"){19.23({34:"178",54:178})}21 19},425:29(19){22(!18.46.698){21 18.423(19)}21 19},423:29(19){28 137;22(73.168&&73.159){22(18.46.294){137=(73.159>73.168)?[73.159,73.168]:[73.168,73.159]}47{137=[73.159,73.168]}}22(83 137!=="82"){19.23({34:"700",54:137})}21 19},427:29(19){22(!18.46.699){19.23({34:"713",54:235 714().728()})}21 19},417:29(19){22(!18.46.445&&18.375()){19.23({34:"727",54:1})}21 19},419:29(19){22(!18.46.445&&18.377()){19.23({34:"731",54:1})}21 19},433:29(19){22(!18.46.725&&18.388()){19.23({34:"724",54:1})}21 19},438:29(19){22(99.201&&!18.46.718&&99.201.717){19.23({34:"716",54:1})}21 19},531:29(19){22(!18.46.715&&116.719){19.23({34:"720",54:1})}21 19},533:29(19){22(!18.46.723){19.23({34:"722",54:18.374()})}21 19},534:29(19){22(!18.46.721){19.23({34:"692",54:18.379()})}21 19},528:29(19){22(!18.46.691){19.23({34:"664",54:18.372()})}21 19},523:29(19){22(!18.46.663&&18.298()){19.23({34:"74",54:18.369()})}21 19},524:29(19){22(18.46.525){22(83 150==="82"){18.131("273 280 279 497 525 493 270")}21 19}22(!18.472()){22(83 150==="82"){18.131("273 280 279 432 662 179 227 661 143 18 76")}21 19}19.23({34:"36",54:18.340()});21 19},536:29(19){22(!18.46.665){19.23({34:"666",54:18.447()})}21 19},526:29(19){22(!18.46.669){19.23({34:"668",54:18.444()})}21 19},413:29(19){22(!18.46.667){19.23({34:"660",54:18.431()})}21 19},542:29(19){22(!18.46.659){19.23({34:"653",54:18.430()})}21 19},543:29(19){22(!18.46.652){19.23({34:"651",54:18.422()})}21 19},540:29(19,94){22(18.46.650){21 18.496(19,94)}21 18.510(19,94)},496:29(19,94){22(18.46.520){22(83 150==="82"){18.131("273 494 132 489 497 520 493 270")}21 94(19)}22(!18.475()){22(83 150==="82"){18.131("654 179 227 209, 196 132 278 179 655")}21 94(19)}22(!18.481()){22(83 150==="82"){18.131("196 179 227 658, 516 196 132 278")}21 94(19)}22(83 18.46.246==="82"){22(83 150==="82"){18.131("657 282 196 132 489, 656 670 671 195 685 246 270, 516 196 132 278")}21 94(19)}18.477(29(132){19.23({34:"684",54:132.119(";")});94(19)})},510:29(19,94){28 186=18;21 683(29(){28 133=["686","687-507","507"];28 357="690";28 334="689";28 78=99.688("201")[0];28 105=99.157("682");105.239.681=334;105.675=357;28 275={};28 269={};135(28 122 143 133){105.239.352=133[122];78.220(105);275[133[122]]=105.351;269[133[122]]=105.356;78.343(105)}28 347=29(169){28 209=90;135(28 122 143 133){105.239.352=169+","+133[122];78.220(105);28 346=(105.351!==275[133[122]]||105.356!==269[133[122]]);78.343(105);209=209||346}21 209};28 177=["674 397","136","136 260","136 673","136 60","136 672","136 676 60 115","136 373 96","677 680 87 397","679 678","734 206 437","735","387","387 134","231","231 101","231 792","391 87","391 87 96","649","408","408 154","323","791","790","407","407 793","794","141 797","141 796","141 795","141 789","788 782","141 781","141 87","141 87 319","141 87 373","121 87 229","780","779 783","96 101","96 784","96 787","96 401 87 229","96 87 229","96 229","370","370 183","368","368 786","163 785","163 117","163 139","163 139 176","163 139 798","163 139 428","799","219","219 154 241","219 154 241 813","812 96","811","299","299 2","299 3"];28 355=["814 60 104 176","815 367 147","338 818 183","817 323","338 816 183","810 236","809","344 199 115","344 254","803","802 35","353 319","353 319 104","801 245 35","800","804 154","805","808 807","806","300 778","300 777 750","300 749 101 748","215 747","751","752 183","755 35","754 341 35","360 160 35","360 245 35","753","746","745","426 140 130","739 101","737 245 35","505","505 206 736","740","741","744 142","743 93","742","756 60","757","771 160 35","527 87 236","527 87 236 411","770 60 104","769 35","772 35","773 776","775","774 97","768 396","142 72","142 72 767","142 72 761","142 60","142 60 260","142 60 104","142 60 390 760","759 428 7","758","424 292","424 292 97","762 153 35","763 115","766","765 154","764","819 117 60","559 236","560 60","562","571","565 35","567","546","547","483 555","483 219","530","530 548","566","564","535 153 35","535 35","553","563 160 35","558","491","491 104","545 35","544","561 60","550","549 260","221","221 101","221 101 115","221 101 176","556 153 35","569","568 154","570","557","554","552","551 60","648","624","623","622 625 626","628","627","621-620","614","613","612","615","616","619","618","617 117 97","629","350 111 630 35","643 60","642 35","217 115 97","217 411 97","217 176 97","217 254 97","641","393","393 644","645","647 153 35","646","640 354","639","633","632 60 176","631","634","635","572 638 35","637","636 117","611 117 60","610 160 35","585","584","202","202 160 35","202 166 35","202 245 35","202 583 35","586 35","587","590 35","589","588 382","258 35","258 582 35","258 166 35","522 703 166 35","522 703 581 35","575","167 87","167 87 60","167 87 60 104","167 87 60 574 104 115","167 87 532 115","167 87 532 115 104","573","576 60 199 104","498","498 577","435 206 437","435 580","579 35","578 35","591 140 130","592","605","604","603","606 130","607","609 295 492","608","602","470 601","470 595","594","593","596 597 296","467 600 101 466","467 406 466","599 296","598 521 341 35","459 35","459 166 35","1067 60 1066","288 153 35","288 35","288 166 35","1065","1064 241","1068 35","1069","1073","1072 1071","1070","1063 147","1062","1055","1054","1053 97","429 160 35","429 1052 35","1056","1057","1061","1060 140 130","1059","439 153 35","439 35","1058 139","1074","1075","1091 35","1090 97","1089","1088 117","1092 139","1093","1097","1096 101","1095 60","1094","529","529 176","1087 1086","1079 35","1078","1077 1076","1080 140 130","1081 101","1085","1084","1083","1082 1051","1050","1019","1018 97","1017 60 117 1016","486","486 139","121 1020","121 1021","121 154 511 1025","121 1024","121 511 1023","121 1022","121 1015","121 1014 398","508","509","509-232","508-232","434","434 382","325","325 462","1007","326","326 1006. 20","1005 1003 295 97 396","1004 398","1008","1009","1013 1012","96 1011","96 406","96 1010","96 401 1026","96 139 101","60 199","1027","1043 1042","1041","1040","1044","384 101","384 1045","1049 35","386 367","386 295","1048","1099","1046","1039 1038 1031","206 231","206 350 296 60","342","342 35","1030","1029 140 130","1028","1032 35","1033 117 60","1037","1036","1035 147","1034","339","339 354 60","1098","1103","1162 1161","1160","376","376-232","1159 1163","390","1164 35","1168 147","1167","1166 35","1165","1158","1170 492","1150","1149 153 35","248","248 104","248 199 115","1148","241","1147 1151","1152 1156 147","1155 147","1154","117","117 60 115","1153","256","256 35","256 1169 35","1176 35","1172","1177 426","1171 101","1173","1174","1175","1157","490 215","490 215 462","458","458-232","1145 140 130","1115 248","1114","1113 1112","1116 97","1117 1121","1120","820 166 35","1119 35","1118","1111","1110","1146","1102","1101 328 35","1100 1104 35","1105","1109 147","1108","1107 140 130","1106","1122","1123 140 130","1139 87 97","1138","1137","1136 215","1140","1141 183","1144","1143","1142","262 271 60","262 271 60 104","262 271 60 104 199 115","1135 35","1134","264","264 1127 55 254","264 104","1126","1125","1124","1128","1129 292 97","1133","1132","1131 117","1130","1047","1001","882 881","880 35","538 35","538 879 35","883","327 328 35","327 884 35","887"];22(186.46.886){177=177.885(355)}28 137=[];135(28 41=0,145=177.106;41<145;41++){22(347(177[41])){137.23(177[41])}}19.23({34:"878",54:137});94(19)},1)},330:29(19){22(!18.46.877){22(18.468()){19.23({34:"870",54:18.322()})}47{19.23({34:"869",54:18.348()})}}21 19},348:29(){28 146=[];135(28 41=0,145=59.146.106;41<145;41++){146.23(59.146[41])}22(18.381()){146=146.868(29(195,305){22(195.126>305.126){21 1}22(195.126<305.126){21-1}21 0})}21 18.144(146,29(210){28 324=18.144(210,29(307){21[307.867,307.871].119("~")}).119(",");21[210.126,210.872,324].119("::")},18)},322:29(){22(116.363){28 361=["876.389","875.874","329.329","337.337.1","395.395","358.1002","358.873","389.888","399.399","889.904.1","184","184.184(410) 402 218 (32-404)","409.409(410) 402 218 (32-404)","903.902","405.405","901.905","385.385","906.909","366.366","908.907","364.184 359 218","364.184 359 218.1"];21 18.144(361,29(126){120{235 363(126);21 126}124(170){21 109}})}47{21[]}},381:29(){28 284=90;135(28 41=0,145=18.46.315.106;41<145;41++){28 380=18.46.315[41];22(59.79.900(380)){284=52;899}}21 284},383:29(19){22(!18.46.893){19.23({34:"892",54:18.362()})}21 19},375:29(){120{21!!116.891}124(170){21 52}},377:29(){120{21!!116.890}124(170){21 52}},388:29(){21!!116.894},374:29(){22(59.378){21 59.378}47{21"274"}},379:29(){22(59.92){21 59.92}47{21"274"}},372:29(){22(59.371){21 59.371}47{21"274"}},362:29(){28 152=0;28 266=90;22(83 59.152!=="82"){152=59.152}47 22(83 59.313!=="82"){152=59.313}120{99.895("898");266=52}124(897){}28 365="420"143 116;21[152,266,365]},369:29(){28 30=[];28 74=99.157("74");74.151=896;74.161=200;74.239.866="865";28 53=74.138("474");53.403(0,0,10,10);53.403(2,2,6,6);30.23("74 836:"+((53.835(5,5,"349")===90)?"539":"267"));53.834="833";53.149="#837";53.838(125,1,62,20);53.149="#841";22(18.46.840){53.169="392 136"}47{53.169="392 267-839-169-123"}53.394("412 345 332 331 333, \\336\\335",2,15);53.149="832(102, 204, 0, 0.7)";53.169="831 136";53.394("412 345 332 331 333, \\336\\335",4,45);53.824="823";53.149="225(255,0,255)";53.272();53.203(50,50,50,0,134.205*2,52);53.277();53.244();53.149="225(0,255,255)";53.272();53.203(100,50,50,0,134.205*2,52);53.277();53.244();53.149="225(255,255,0)";53.272();53.203(75,100,50,0,134.205*2,52);53.277();53.244();53.149="225(255,0,255)";53.203(75,75,75,0,134.205*2,52);53.203(75,75,25,0,134.205*2,52);53.244("349");30.23("74 822:"+74.500());21 30.119("~")},340:29(){28 17;28 251=29(261){17.821(0.0,0.0,0.0,1.0);17.825(17.826);17.830(17.829);17.828(17.827|17.842);21"["+261[0]+", "+261[1]+"]"};28 541=29(17){28 172,265=17.252("843")||17.252("859")||17.252("858");21 265?(172=17.71(265.857),0===172&&(172=2),172):109};17=18.451();22(!17){21 109}28 30=[];28 515="856 230 223;253 230 214;281 230 259;506 503(){214=223+259;860=504(223,0,1)}";28 514="43 861 86;253 230 214;506 503() {864=504(214,0,1)}";28 165=17.863();17.862(17.517,165);28 518=235 855([-.2,-.9,0,.4,-.26,0,0,.854,0]);17.847(17.517,518,17.846);165.485=3;165.499=3;28 112=17.845(),222=17.512(17.81);17.513(222,515);17.502(222);28 224=17.512(17.84);17.513(224,514);17.502(224);17.501(112,222);17.501(112,224);17.844(112);17.848(112);112.488=17.849(112,"223");112.487=17.853(112,"259");17.852(112.851);17.850(112.488,165.485,17.910,!1,0,0);17.911(112.487,1,1);17.973(17.972,0,165.499);22(17.74!=109){30.23(17.74.500())}30.23("971:"+17.970().119(";"));30.23("36 495 974 151 519:"+251(17.71(17.975)));30.23("36 495 978 243 519:"+251(17.71(17.977)));30.23("36 976 158:"+17.71(17.969));30.23("36 968:"+(17.961().960?"539":"267"));30.23("36 959 158:"+17.71(17.958));30.23("36 962 158:"+17.71(17.963));30.23("36 967 158:"+17.71(17.966));30.23("36 103 172:"+541(17));30.23("36 103 965 181 263 283:"+17.71(17.964));30.23("36 103 979 144 181 243:"+17.71(17.980));30.23("36 103 85 281 276:"+17.71(17.995));30.23("36 103 994 993 243:"+17.71(17.992));30.23("36 103 181 263 283:"+17.71(17.996));30.23("36 103 181 243:"+17.71(17.997));30.23("36 103 253 276:"+17.71(17.1000));30.23("36 103 77 999:"+17.71(17.998));30.23("36 103 77 181 263 283:"+17.71(17.991));30.23("36 103 77 281 276:"+17.71(17.990));30.23("36 103 984 983:"+251(17.71(17.982)));30.23("36 981 158:"+17.71(17.985));30.23("36 986:"+17.71(17.989));30.23("36 988 234 436:"+17.71(17.987));30.23("36 957 158:"+17.71(17.956));30.23("36 927:"+17.71(17.926));30.23("36 436:"+17.71(17.537));22(!17.49){22(83 150==="82"){18.131("280 279 179 925, 432 924 76 928 227 929 49")}21 30.119("~")}30.23("36 77 51 114 86 43:"+17.49(17.81,17.174).43);30.23("36 77 51 114 86 43 67:"+17.49(17.81,17.174).67);30.23("36 77 51 114 86 43 69:"+17.49(17.81,17.174).69);30.23("36 77 51 113 86 43:"+17.49(17.81,17.171).43);30.23("36 77 51 113 86 43 67:"+17.49(17.81,17.171).67);30.23("36 77 51 113 86 43 69:"+17.49(17.81,17.171).69);30.23("36 77 51 110 86 43:"+17.49(17.81,17.162).43);30.23("36 77 51 110 86 43 67:"+17.49(17.81,17.162).67);30.23("36 77 51 110 86 43 69:"+17.49(17.81,17.162).69);30.23("36 85 51 114 86 43:"+17.49(17.84,17.174).43);30.23("36 85 51 114 86 43 67:"+17.49(17.84,17.174).67);30.23("36 85 51 114 86 43 69:"+17.49(17.84,17.174).69);30.23("36 85 51 113 86 43:"+17.49(17.84,17.171).43);30.23("36 85 51 113 86 43 67:"+17.49(17.84,17.171).67);30.23("36 85 51 113 86 43 69:"+17.49(17.84,17.171).69);30.23("36 85 51 110 86 43:"+17.49(17.84,17.162).43);30.23("36 85 51 110 86 43 67:"+17.49(17.84,17.162).67);30.23("36 85 51 110 86 43 69:"+17.49(17.84,17.162).69);30.23("36 77 51 114 88 43:"+17.49(17.81,17.180).43);30.23("36 77 51 114 88 43 67:"+17.49(17.81,17.180).67);30.23("36 77 51 114 88 43 69:"+17.49(17.81,17.180).69);30.23("36 77 51 113 88 43:"+17.49(17.81,17.173).43);30.23("36 77 51 113 88 43 67:"+17.49(17.81,17.173).67);30.23("36 77 51 113 88 43 69:"+17.49(17.81,17.173).69);30.23("36 77 51 110 88 43:"+17.49(17.81,17.175).43);30.23("36 77 51 110 88 43 67:"+17.49(17.81,17.175).67);30.23("36 77 51 110 88 43 69:"+17.49(17.81,17.175).69);30.23("36 85 51 114 88 43:"+17.49(17.84,17.180).43);30.23("36 85 51 114 88 43 67:"+17.49(17.84,17.180).67);30.23("36 85 51 114 88 43 69:"+17.49(17.84,17.180).69);30.23("36 85 51 113 88 43:"+17.49(17.84,17.173).43);30.23("36 85 51 113 88 43 67:"+17.49(17.84,17.173).67);30.23("36 85 51 113 88 43 69:"+17.49(17.84,17.173).69);30.23("36 85 51 110 88 43:"+17.49(17.84,17.175).43);30.23("36 85 51 110 88 43 67:"+17.49(17.84,17.175).67);30.23("36 85 51 110 88 43 69:"+17.49(17.84,17.175).69);21 30.119("~")},447:29(){28 185=99.157("480");185.479("250","185");120{99.201.220(185);21 99.932("185")?90:52}124(170){21 90}},444:29(){22(83 59.441!=="82"){120{28 442=59.441[0].443(0,2);22(442!==59.234.443(0,2)){21 52}}124(289){21 52}}21 90},431:29(){22(73.151<73.168){21 52}22(73.161<73.159){21 52}21 90},430:29(){28 79=59.79.238();28 118=59.118;28 92=59.92.238();28 65;22(79.58("931 930")>=0){65="128 182"}47 22(79.58("194")>=0){65="128"}47 22(79.58("418")>=0){65="212"}47 22(79.58("193")>=0){65="321"}47 22(79.58("415")>=0||79.58("414")>=0){65="247"}47 22(79.58("192")>=0){65="309"}47{65="155"}28 216;22(("420"143 116)||(59.152>0)||(59.313>0)){216=52}47{216=90}22(216&&65!=="128 182"&&65!=="212"&&65!=="247"&&65!=="155"){21 52}22(83 118!=="82"){118=118.238();22(118.58("194")>=0&&65!=="128"&&65!=="128 182"){21 52}47 22(118.58("193")>=0&&65!=="321"&&65!=="212"){21 52}47 22(118.58("192")>=0&&65!=="309"&&65!=="247"){21 52}47 22(118.58("194")===0&&118.58("193")===0&&118.58("192")>=0&&65!=="416"){21 52}}22(92.58("194")>=0&&65!=="128"&&65!=="128 182"){21 52}47 22((92.58("193")>=0||92.58("418")>=0||92.58("923")>=0)&&65!=="321"&&65!=="212"){21 52}47 22((92.58("192")>=0||92.58("414")>=0||92.58("922")>=0||92.58("415")>=0)&&65!=="309"&&65!=="247"){21 52}47 22(92.58("194")===0&&92.58("193")===0&&92.58("192")>=0&&65!=="416"){21 52}22(83 59.146==="82"&&65!=="128"&&65!=="128 182"){21 52}21 90},422:29(){28 79=59.79.238();28 310=59.310;28 76;22(79.58("915")>=0){76="304"}47 22(79.58("914")>=0||79.58("913")>=0){76="287"}47 22(79.58("912")>=0){76="286"}47 22(79.58("916")>=0){76="290"}47 22(79.58("917")>=0){76="301 302"}47{76="155"}22((76==="286"||76==="290"||76==="287")&&310!=="921"){21 52}28 240=920.187().106;22(240===37&&76!=="290"&&76!=="304"&&76!=="155"){21 52}47 22(240===39&&76!=="301 302"&&76!=="155"){21 52}47 22(240===33&&76!=="286"&&76!=="287"&&76!=="155"){21 52}28 242;120{448"195"}124(289){120{289.919();242=52}124(918){242=90}}22(242&&76!=="304"&&76!=="155"){21 52}21 90},298:29(){28 303=99.157("74");21!!(303.138&&303.138("474"))},472:29(){22(!18.298()){21 90}28 74=99.157("74"),237;120{237=74.138&&(74.138("36")||74.138("452-36"))}124(170){237=90}21!!116.933&&!!237},468:29(){22(59.469==="121 301 302"){21 52}47 22(59.469==="934"&&/950/.949(59.79)){21 52}21 90},475:29(){21 83 116.285!=="82"},481:29(){21 285.948("9.0.0")},478:29(){28 308=99.157("480");308.479("250",18.46.306);99.201.220(308)},477:29(94){28 297="947";116[297]=29(132){94(132)};28 250=18.46.306;18.478();28 453={951:297};28 450={952:"955",954:"90"};285.953(18.46.246,250,"1","1","9.0.0",90,453,450,{})},451:29(){28 74=99.157("74");28 17=109;120{17=74.138("36")||74.138("452-36")}124(170){}22(!17){17=109}21 17},311:29(89,156,129){22(89===109){21}22(18.320&&89.318===18.320){89.318(156,129)}47 22(89.106===+89.106){135(28 41=0,145=89.106;41<145;41++){22(156.314(129,89[41],41,89)==={}){21}}}47{135(28 34 143 89){22(89.946(34)){22(156.314(129,89[34],34,89)==={}){21}}}}},144:29(89,156,129){28 190=[];22(89==109){21 190}22(18.312&&89.144===18.312){21 89.144(156,129)}18.311(89,29(54,122,465){190[190.106]=156.314(129,54,122,465)});21 190},127:29(44,38){44=[44[0]>>>16,44[0]&80,44[1]>>>16,44[1]&80];38=[38[0]>>>16,38[0]&80,38[1]>>>16,38[1]&80];28 42=[0,0,0,0];42[3]+=44[3]+38[3];42[2]+=42[3]>>>16;42[3]&=80;42[2]+=44[2]+38[2];42[1]+=42[2]>>>16;42[2]&=80;42[1]+=44[1]+38[1];42[0]+=42[1]>>>16;42[1]&=80;42[0]+=44[0]+38[0];42[0]&=80;21[(42[0]<<16)|42[1],(42[2]<<16)|42[3]]},107:29(44,38){44=[44[0]>>>16,44[0]&80,44[1]>>>16,44[1]&80];38=[38[0]>>>16,38[0]&80,38[1]>>>16,38[1]&80];28 42=[0,0,0,0];42[3]+=44[3]*38[3];42[2]+=42[3]>>>16;42[3]&=80;42[2]+=44[2]*38[3];42[1]+=42[2]>>>16;42[2]&=80;42[2]+=44[3]*38[2];42[1]+=42[2]>>>16;42[2]&=80;42[1]+=44[1]*38[3];42[0]+=42[1]>>>16;42[1]&=80;42[1]+=44[2]*38[2];42[0]+=42[1]>>>16;42[1]&=80;42[1]+=44[3]*38[1];42[0]+=42[1]>>>16;42[1]&=80;42[0]+=(44[0]*38[3])+(44[1]*38[2])+(44[2]*38[1])+(44[3]*38[0]);42[0]&=80;21[(42[0]<<16)|42[1],(42[2]<<16)|42[3]]},148:29(44,38){38%=64;22(38===32){21[44[1],44[0]]}47 22(38<32){21[(44[0]<<38)|(44[1]>>>(32-38)),(44[1]<<38)|(44[0]>>>(32-38))]}47{38-=32;21[(44[1]<<38)|(44[0]>>>(32-38)),(44[0]<<38)|(44[1]>>>(32-38))]}},98:29(44,38){38%=64;22(38===0){21 44}47 22(38<32){21[(44[0]<<38)|(44[1]>>>(32-38)),44[1]<<38]}47{21[44[1]<<(38-32),0]}},66:29(44,38){21[44[0]^38[0],44[1]^38[1]]},268:29(78){78=18.66(78,[0,78[0]>>>1]);78=18.107(78,[945,938]);78=18.66(78,[0,78[0]>>>1]);78=18.107(78,[937,936]);78=18.66(78,[0,78[0]>>>1]);21 78},460:29(34,188){34=34||"";188=188||0;28 293=34.106%16;28 457=34.106-293;28 70=[0,188];28 68=[0,188];28 57=[0,0];28 61=[0,0];28 189=[935,939];28 207=[940,944];135(28 41=0;41<457;41=41+16){57=[((34.63(41+4)&91))|((34.63(41+5)&91)<<8)|((34.63(41+6)&91)<<16)|((34.63(41+7)&91)<<24),((34.63(41)&91))|((34.63(41+1)&91)<<8)|((34.63(41+2)&91)<<16)|((34.63(41+3)&91)<<24)];61=[((34.63(41+12)&91))|((34.63(41+13)&91)<<8)|((34.63(41+14)&91)<<16)|((34.63(41+15)&91)<<24),((34.63(41+8)&91))|((34.63(41+9)&91)<<8)|((34.63(41+10)&91)<<16)|((34.63(41+11)&91)<<24)];57=18.107(57,189);57=18.148(57,31);57=18.107(57,207);70=18.66(70,57);70=18.148(70,27);70=18.127(70,68);70=18.127(18.107(70,[0,5]),[0,943]);61=18.107(61,207);61=18.148(61,33);61=18.107(61,189);68=18.66(68,61);68=18.148(68,31);68=18.127(68,70);68=18.127(18.107(68,[0,5]),[0,942])}57=[0,0];61=[0,0];941(293){95 15:61=18.66(61,18.98([0,34.63(41+14)],48));95 14:61=18.66(61,18.98([0,34.63(41+13)],40));95 13:61=18.66(61,18.98([0,34.63(41+12)],32));95 12:61=18.66(61,18.98([0,34.63(41+11)],24));95 11:61=18.66(61,18.98([0,34.63(41+10)],16));95 10:61=18.66(61,18.98([0,34.63(41+9)],8));95 9:61=18.66(61,[0,34.63(41+8)]);61=18.107(61,207);61=18.148(61,33);61=18.107(61,189);68=18.66(68,61);95 8:57=18.66(57,18.98([0,34.63(41+7)],56));95 7:57=18.66(57,18.98([0,34.63(41+6)],48));95 6:57=18.66(57,18.98([0,34.63(41+5)],40));95 5:57=18.66(57,18.98([0,34.63(41+4)],32));95 4:57=18.66(57,18.98([0,34.63(41+3)],24));95 3:57=18.66(57,18.98([0,34.63(41+2)],16));95 2:57=18.66(57,18.98([0,34.63(41+1)],8));95 1:57=18.66(57,[0,34.63(41)]);57=18.107(57,189);57=18.148(57,31);57=18.107(57,207);70=18.66(70,57)}70=18.66(70,[0,34.106]);68=18.66(68,[0,34.106]);70=18.127(70,68);68=18.127(68,70);70=18.268(70);68=18.268(68);70=18.127(70,68);68=18.127(68,70);21("233"+(70[0]>>>0).187(16)).211(-8)+("233"+(70[1]>>>0).187(16)).211(-8)+("233"+(68[0]>>>0).187(16)).211(-8)+("233"+(68[1]>>>0).187(16)).211(-8)}};197.537="1.1.0";21 197});', 10, 1178, '|||||||||||||||||gl|this|keys||return|if|push|||||var|function|result||||key|BT|webgl||n|||i|o|precision|m||options|else||getShaderPrecisionFormat||shader|true|ctx|value|||k1|indexOf|navigator|MT|k2||charCodeAt||os|x64Xor|rangeMin|h2|rangeMax|h1|getParameter||screen|canvas||browser|vertex|h|userAgent|0xffff|VERTEX_SHADER|undefined|typeof|FRAGMENT_SHADER|fragment|float|Sans|int|obj|false|0xff|platform||done|case|MS|ITC|x64LeftShift|document||Gothic||max|Condensed|s|length|x64Multiply|k|null|low||program|medium|high|Bold|window|Script|oscpu|join|try|Microsoft|index||catch||name|x64Add|Windows|context|MN|log|fonts|baseFonts|Math|for|Arial|available|getContext|UI|Sangam|Lucida|Bodoni|in|map|l|plugins|LET|x64Rotl|fillStyle|NODEBUG|width|maxTouchPoints|Bd|New|Other|iterator|createElement|bits|availHeight|Bk|height|LOW_FLOAT|Segoe|source|vertexPosBuffer|Lt|Gill|availWidth|font|e|MEDIUM_FLOAT|anisotropy|MEDIUM_INT|HIGH_FLOAT|LOW_INT|Light|fontList|resolution|is|HIGH_INT|texture|Phone|PRO|RealPlayer|ads|that|toString|seed|c1|results|len|mac|linux|win|a|Flash|fp2|target|Extra||body|Futura|arc||PI|Old|c2|prototype|detected|p|slice|Android|Array|varyinTexCoordinate|Arabic|mobileDevice|Eras|Control|Times|appendChild|Copperplate|vshader|attrVertex|fshader|rgb|definition|not|pair|Serif|vec2|Century|ExtB|00000000|language|new|FB|glContext|toLowerCase|style|tempRes|Roman|errFirefox|size|fill|Md|swfPath|iOS|Rockwell|O|id|fa2s|getExtension|varying|Medium||Serifa|module|Geometr231|uniformOffset|Black|fa|Tw|image|Univers|ext|touchEvent|no|x64Fmix|defaultHeight|option|Cen|beginPath|Skipping|unknown|defaultWidth|vectors|closePath|enumeration|fingerprinting|WebGL|uniform|use|units|should|swfobject|Chrome|Opera|Incised901|err|Safari|define|Hand|remainder|detectScreenOrientation|Solid|Text|hiddenCallback|isCanvasSupported|Wingdings|Apple|Internet|Explorer|elem|Firefox|b|swfContainerId|mt|node|Mac|productSub|each|nativeMap|msMaxTouchPoints|call|sortPluginsFor|newKeys|values|forEach|Typewriter|nativeForEach|Linux|getIEPlugins|Garamond|mimeTypes|Miriam|Modern|Zurich|BlkEx|AgControl|pluginsKey|vext|glyphs|quiz|testSize|ude03|ud83d|DevalVRXCtrl|ADOBE|Perpetua|getWebglFp|Cn|Onyx|removeChild|Albertus|fjordbank|matched|detect|getRegularPlugins|evenodd|English|offsetWidth|fontFamily|American|Titling|extendedFontList|offsetHeight|testString|Msxml2|G2|AvantGarde|names|getTouchSupport|ActiveXObject|rmocx|touchStart|TDCCtl|Engraved|Palatino|getCanvasFp|MYRIAD|doNotTrack|getDoNotTrack|Unicode|getNavigatorCpuClass|hasSessionStorage|PMingLiU|hasLocalStorage|cpuClass|getNavigatorPlatform|re|pluginsShouldBeSorted|Pro|touchSupportKey|News|ShockwaveFlash|Niagara|Cambria|hasIndexedDB|PDF|Poster|Comic|11pt|Euphemia|fillText|MacromediaFlashPaper|TT|Mono|Baiti|QuickTime|murmur|Reference|ActiveX|rect|bit|SWCtl|Mincho|Helvetica|Courier|RealVideo|tm|Demi|Cwm|hasLiedResolutionKey|ipad|iphone|other|sessionStorageKey|android|localStorageKey|ontouchstart|searchElement|getHasLiedBrowser|getAvailableScreenResolution|Bradley|availableScreenResolutionKey|Bangla|timezoneOffsetKey|Symbol|Kabel|getHasLiedOs|getHasLiedResolution|because|indexedDbKey|Minion|Goudy|version|Style|addBehaviorKey|Kaufmann|fromIndex|languages|firstLanguages|substr|getHasLiedLanguages|excludeSessionStorage|abs|getAdBlock|throw|getScreenResolution|flashparams|getWebglCanvas|experimental|flashvars|extend|languageKey|getUserAgent|bytes|SimSun|Humanst521|x64hash128|userAgentKey|Fixed|msg|console|list|ProN|Hiragino|isIE|appName|Heiti|screenResolutionKey|isWebGlSupported|exports|2d|hasSwfObjectLoaded|defaultOptions|loadSwfAndDetectFonts|addFlashDivNode|setAttribute|div|hasMinFlashInstalled|colorDepthKey|CG|strict|itemSize|Meiryo|offsetUniform|vertexPosAttrib|detection|Simplified|Clarendon|Italic|configuration|flash|aliased|flashFontsKey|per|GOTHAM|numItems|toDataURL|attachShader|compileShader|main|vec4|Baskerville|void|serif|MingLiU|MingLiU_HKSCS|jsFontsKey|Tai|createShader|shaderSource|fShaderTemplate|vShaderTemplate|skipping|ARRAY_BUFFER|vertices|range|excludeFlashFonts||GeoSlab|canvasKey|webglKey|excludeWebGL|hasLiedLanguagesKey|Berlin|doNotTrackKey|Lithograph|Chalkboard|openDatabaseKey|Ultra|cpuClassKey|platformKey|Charter|adBlockKey|VERSION|ZapfHumnst|yes|fontsKey|maxAnisotropy|hasLiedOsKey|hasLiedBrowserKey|Cochin|CloisterBlack|Centaur|Cezanne|SE|Cooper|Constantia|Curlz|Cuckoo|Chaucer|Coronet|Omega|CopperplGoth|Cornerstone|Chiller|Californian|Calisto|Colonna|Calligrapher|ChelthmITC|Charlesworth|CaslonOpnface|Chalkduster|Castellar|Cordia|Corbel|CordiaUPC|Candara|Freefrm721|Gisha|Ext|Gigi|Gloucester|BOLD|GoudyOLSt|GoudyHandtooled|Stout|XBd|Hv|ZBlk|FRUTIGER|Fruitger|FuturaBlack|Gabriola|Geeza|Gautami|Galliard|Gujarati|Gulim|Herald|HELV|TC|High|Tower|Humanst|Hoefler|Kaku|SC|Heather|GungsuhChe|Gungsuh|GulimChe|Gurmukhi|Haettenschweiler|Harrington|Harlow|FrnkGothITC|French|DIN|DilleniaUPC|Didot|DokChampa|Dotum|Edwardian|Ebrima|DotumChe|SB|DFKai|DB|David|Dauphin|LCD|Temp|Denmark|DELICIOUS|Elephant|Vivace|Forte|Footlight|FONTIN|FrankRuehl|Fransiscan|Freestyle|FreesiaUPC|Blk|Fixedsys|Felix|EucrosiaUPC|EngraversGothic|Engravers|UCAS|EUROSTILE|FangSong|Exotc350|DaunPenh|Consolas|excludeJsFonts|has_lied_browser|excludeHasLiedBrowser|has_lied_os|Swfobject|skipped|you|To|installed|excludeHasLiedOs|has_lied_resolution|supported|it|excludeCanvas|do_not_track|excludeAdBlock|adblock|excludeHasLiedResolution|has_lied_languages|excludeHasLiedLanguages|must|pass|Narrow|Hebrew|Andale|innerHTML|Rounded|Bitstream|Antiqua|Book|Vera|fontSize|span|setTimeout|swf_fonts|valid|monospace|sans|getElementsByTagName|72px|mmmmmmmmmmlli|excludeDoNotTrack|navigator_platform|compiled|colorDepth|color_depth|excludeColorDepth|excludeScreenResolution|excludeAvailableScreenResolution|excludeTimezoneOffset|available_resolution|fingerprintjs2|FontList||swf|user_agent|get|excludeUserAgent|excludeLanguage|userLanguage|palemoon|systemLanguage|browserLanguage|timezone_offset|Date|excludeOpenDatabase|add_behavior|addBehavior|excludeAddBehavior|openDatabase|open_database|excludePlatform|cpu_class|excludeCpuClass|indexed_db|excludeIndexedDB|while|session_storage|getTimezoneOffset|Infinity|s|local_storage|TypeError|or|Bookman|Calibri|Face|BankGothic|amd|Bank|Batang|BatangChe|Bazooka|Bauhaus|Bauer|Bandy|Ayuthaya|Typesetting|Neo|SD|Emoji|ARCHER|ARNO|AVENIR|Aurora|Arrus|Bell|Bembo|Boulder|Bookshelf|Compressed|Smallcaps|Bremen|Britannic|BrowalliaUPC|Browallia|Broadway|Oldstyle|BlairMdITC|BernhardFashion|Bernard|Benguiat|BernhardMod|Big|Blackadder|BinnerD|Caslon|Color|Chancery|Monotype|Monaco|Handwriting|GRANDE|Corsiva|Outlook|Print|Linotype|PGothic|LUCIDA|Fax|Georgia|Geneva|Schoolbook|Neue|Impact|Console|Calligraphy|Bright|Semibold|Tahoma|Andalus|AmerType|Amazone|Algerian|Angsana|AngsanaUPC|Aparajita|Olive|Antique|Aharoni|Agency|Verdana|Trebuchet|PS|Abadi|Academy|GARAMOND|Adobe|CASLON|Brush|Souvenir|clearColor|fp|multiply|globalCompositeOperation|enable|DEPTH_TEST|COLOR_BUFFER_BIT|clear|LEQUAL|depthFunc|18pt|rgba|alphabetic|textBaseline|isPointInPath|winding|f60|fillRect|real|dontUseFakeFontInCanvas|069|DEPTH_BUFFER_BIT|EXT_texture_filter_anisotropic|linkProgram|createProgram|STATIC_DRAW|bufferData|useProgram|getAttribLocation|vertexAttribPointer|vertexPosArray|enableVertexAttribArray|getUniformLocation|732134444|Float32Array|attribute|MAX_TEXTURE_MAX_ANISOTROPY_EXT|MOZ_EXT_texture_filter_anisotropic|WEBKIT_EXT_texture_filter_anisotropic|gl_Position|mediump|bindBuffer|createBuffer|gl_FragColor|inline|display|type|sort|regular_plugins|ie_plugins|suffixes|description|XMLHTTP|Stream|Adodb|AcroPDF|excludePlugins|js_fonts|Dm|ZapfEllipt|Latin|Wide|Zapfino|Ex|concat|cj|ZWAdobeF|PdfCtrl|QuickTimeCheckObject|localStorage|sessionStorage|touch_support|excludeTouchSupport|indexedDB|createEvent|2000|_|TouchEvent|break|match|Shell|Dictionary|Scripting|QuickTimeCheck|UIHelper|Skype|OCX|WMPlayer|Detection|FLOAT|uniform2f|chrome|opr|opera|firefox|safari|trident|errOfErr|toSource|eval|20030107|ipod|pike|your|incomplete|VENDOR|vendor|does|support|phone|windows|getElementById|WebGLRenderingContext|Netscape|0x87c37b91|0x1a85ec53|0xc4ceb9fe|0xed558ccd|0x114253d5|0x4cf5ad43|switch|0x38495ab5|0x52dce729|0x2745937f|0xff51afd7|hasOwnProperty|___fp_swf_loaded|hasFlashPlayerVersion|test|Trident|onReady|allowScriptAccess|embedSWF|menu|always|STENCIL_BITS|stencil|BLUE_BITS|blue|antialias|getContextAttributes|depth|DEPTH_BITS|MAX_COMBINED_TEXTURE_IMAGE_UNITS|combined|GREEN_BITS|green|antialiasing|ALPHA_BITS|getSupportedExtensions|extensions|TRIANGLE_STRIP|drawArrays|line|ALIASED_LINE_WIDTH_RANGE|alpha|ALIASED_POINT_SIZE_RANGE|point|cube|MAX_CUBE_MAP_TEXTURE_SIZE|red|MAX_VIEWPORT_DIMS|dims|viewport|RED_BITS|renderer|SHADING_LANGUAGE_VERSION|shading|RENDERER|MAX_VERTEX_UNIFORM_VECTORS|MAX_VERTEX_TEXTURE_IMAGE_UNITS|MAX_RENDERBUFFER_SIZE|buffer|render|MAX_FRAGMENT_UNIFORM_VECTORS|MAX_TEXTURE_IMAGE_UNITS|MAX_TEXTURE_SIZE|MAX_VERTEX_ATTRIBS|attribs|MAX_VARYING_VECTORS|WHITNEY|DOMDocument|Lisa|Mongolian|Mona|No|Mistral|MONO|MoolBoran|PMincho|LineDraw|Eaves|Mrs|Yi|YaHei|Capitals|Matura|Matisse|Marlett|Himalaya|JhengHei|Uighur|Le|PhagsPa|Lue|Specialty|MUSEO|OSAKA|Oriya|OPTIMA|Extended|OzHandicraft|Palace|Pegasus|Party|Parchment|Papyrus|A|OCR|Narkisim|Nadeem|Boli|MV|NEVIS|GothicMT|Nyala|Westminster|Noteworthy|NewsGoth|Market|Felt|Ult|Juice|Jokerman|Jester|Kailasa|KaiTi|Khmer|Kartika|Kannada|Kalinga|Jenson|Jazz|Informal|INCONSOLATA|Shadow|Imprint|Informal011|INTERSTATE|JasmineUPC|Pota|Iskoola|IrisUPC|KodchiangUPC|Kokila|GD|Maiandra|Magneto|Lydian|Malayalam|Malgun|Marker|Marion|Marigold|Mangal|Island|Long|Kunstler|Krungthep|Kristen|Korinna|Lao|Latha|LilyUPC|Levenim|Letter|Leelawadee|PetitaBold|NSimSun|Swiss911|Swis721|Subway|Pickwick|XCm|Sylfaen|Technical|Tamil|System|Synchro|Storybook|Stencil|Fonts|Small|Skia|Sketch|Snap|Snell|Steamer|Staccato222|Socket|Roundhand|Teletype|Telugu|Vani|Vagabond|Utsaah|CE|Vijaya|Viner|Vrinda|Vladimir|Vivaldi|VisualUI|Unicorn|TypoUpright|Traditional|Thonburi|Terminal|Tempus|Trajan|TRAJAN|Tunga|Tubular|Tristan|Sinhala|Styllo|Sakkal|Rod|Ribbon131|Ravie|Majalla|Santa|SCRIPTINA|Sceptre|Savoye|Fe|SimHei|Raavi|Poor|Playbill|Cherokee|Plantagenet|Richard|PosterBodoni|Pythagoras|PTBarnum|Pristina|PRINCETOWN|Th|Rage|Showcard|Sherwood|Shruti|Signboard|SILKSCREEN|ShelleyVolante|Shonar'.split('|'), 0, {}));
ptCtrl.banner = {
    sTag: "",
    getVersion: function() {
        return "4.0"
    },
    imghwd: [],
    display: function(ii, json) {
        if (typeof ptCtrl.c[ii] == "undefined") {
            console.log("cannot find item " + ii);
            return
        }
        var ai = ptCtrl.c[ii];
        var o = this;
        if (ptCtrl.getItem(json, 'sellingtype', 'unk') == 'own_ad_eactrl') {
            json.type = ptCtrl.getItem(ai.defaultad, 'type', 'image');
            switch (json.type) {
                case "image":
                    json.bannerpath = ptCtrl.getItem(ai.defaultad, 'image', '');
                    json.destinationurl = ptCtrl.getItem(ai.defaultad, 'url', '');
                    break;
                case "iframe":
                    json.bannerpath = ptCtrl.getItem(ai.defaultad, 'iframe', '');
                    break;
                case "html":
                    json.html = ptCtrl.getItem(ai.defaultad, 'html', '');
                    break
            }
            json.bannertype = json.type;
            json.isrtb = 0;
            json.networkid = 0;
            json.isownad = 0;
            json.ispubad = 1
        }
        this.t(ii, json, function(h) {
            var Bfound = false;
            var bExit = false;
            ptCtrl.jq("#" + ai.display).each(function(i, node) {
                if (ptCtrl.jq(node).attr('run') != '1' || ptCtrl.getItem(ai, 'reload', 0) == 1) {
                    delete ai.reload;
                    if (ai.plugin == "banner") {
                        if (ptCtrl.abDetected) {
                            ptCtrl.jq("#" + ai.display).removeAttr("style")
                        }
                        if (!ptCtrl.jq("#" + ai.display).is(":visible")) {
                            if (ptCtrl.getItem(ai, 'isflt', 0) != 1) {
                                if (!ptCtrl.abDetected) {
                                    ptCtrl.i("AdTag " + ai.display + " is not visible, abort loading");
                                    bExit = true;
                                    return true
                                } else {
                                    ptCtrl.i("AdTag " + ai.display + " is not visible, probably because the active adblocker")
                                }
                            }
                        }
                    }
                    ptCtrl.jq(node).attr('run', '1');
                    ptCtrl.jq(node).html(h);
                    if (typeof ai.onload == "function") {
                        try {
                            ai.onload(function() {})
                        } catch (_0) {
                            ptCtrl.i("something went wrong with executing the onload function for adtag:" + ptCtrl.getItem(ai, 'name', 'unk'));
                            ptCtrl.i(_0)
                        }
                    }
                    var s = o.makeId(15) + i;
                    ptCtrl.jq(node).attr('id', s);
                    ai.display = s;
                    var ir = ptCtrl.getItem(ai, 'reloadtime', 0);
                    if (ir > 0) {
                        if (ir < 30) {
                            ir = 30
                        }
                        ir = (ir * 1000);
                        setTimeout(function() {
                            if (typeof ai.onbeforeReload == "function") {
                                try {
                                    ai.onbeforeReload(function() {
                                        o.reload(ii)
                                    })
                                } catch (_0) {
                                    ptCtrl.i("something went wrong with executing the onbeforeReload function for adtag:" + ptCtrl.getItem(ai, 'name', 'unk'));
                                    ptCtrl.i(_0);
                                    o.reload(ii)
                                }
                            } else {
                                o.reload(ii)
                            }
                        }, ir)
                    }
                    Bfound = true;
                    return false
                }
            });
            if (bExit) {
                return
            }
            if (!Bfound) {
                ptCtrl.i("Could not find element with id:" + ai.display)
            } else {
                o.j(ii)
            }
        })
    },
    reload: function(ii) {
        var ai = ptCtrl.c[ii];
        ai.q = false;
        try {
            delete ai.data;
            delete ai.q;
            delete ai.btype;
            delete ai.state;
            delete ai.settings
        } catch (e) {}
        ai.reload = 1;
        ai.state = 0;
        ptCtrl.run()
    },
    k: function(l, ii) {
        var ai = ptCtrl.c[ii];
        if (typeof ai.binloaded != 'undefined' && ai.binloaded) {
            return
        }
        var s = l.src;
        var ob = this;
        if (ptCtrl.getItem(ai.data, 'isrtb', '0') == '1') {
            if (ai.data.xparams.networkid != '1') {
                return
            }
        }
        if (ptCtrl.ca.datapath != '') {
            s = s.replace(ptCtrl.ca.datapath, '');
            if (l.src != s) {
                var n = s.indexOf(ptCtrl.datapath);
                s = s.substring(n);
                s = (ptCtrl.m() ? 'https://' : 'http://') + ptCtrl.datadomain + '/' + s;
                ptCtrl.i("datapath wrong, swapping image from:" + l.src + " to:" + s);
                l.src = s;
                return
            }
        }
        if (ptCtrl.ca.datadomain != '') {
            s = s.replace(ptCtrl.ca.datadomain, ptCtrl.datafailover_domain);
            if (l.src != s) {
                ptCtrl.i("datadomain wrong, swapping image from:" + l.src + " to:" + s);
                l.src = s;
                return
            }
        }
        s = s.replace(ptCtrl.datadomain, ptCtrl.datafailover_domain);
        if (l.src != s && !ptCtrl.abDetected) {
            ptCtrl.i("swapping image from:" + l.src + " to:" + s);
            l.src = s;
            return
        }
        s = s.replace((ptCtrl.m() ? 'https://' : 'http://') + ptCtrl.datafailover_domain, '').replace(ptCtrl.datapath, '').replace('//', '');
        if (l.src != s) {
            ptCtrl.o("loadimage", "&act=getimage&f=" + s, 0, {
                result: function(uri) {
                    var b = '';
                    if (ai.responsive == '1') {
                        b = 'width="100%"'
                    } else {
                        b = 'width="' + ai.data['adwidth'] + '" height="' + ai.data['adheight'] + '"'
                    }
                    var str = '<img rel="nofollow" src="' + uri + '" ' + b + ' border="0" id="' + ob.sTag + ii + '">';
                    ptCtrl.jq(l.parentNode).html(str);
                    ptCtrl.banner.j(ii);
                    ptCtrl.i("Image Loaded as binary data");
                    return
                }
            })
        }
    },
    j: function(ii, p) {
        var u = 'undefined';
        if (typeof p != u) {
            this.imghwd[ii] = p
        } else {
            var p = this.imghwd[ii]
        }
        var ai = ptCtrl.c[ii];
        ptCtrl.jq("#" + this.sTag + ii + "_2").bind('load', function() {
            ptCtrl.banner.q(ii, ai.btype, this, p)
        });
        ptCtrl.jq("#" + this.sTag + ii).bind('error', function() {
            if (typeof p != u && typeof p.onerror != u) {
                p.onerror()
            }
            breload = true;
            if (ai.btype == "image") {
                if (this.src.indexOf(ptCtrl.datadomain)) {
                    breload = false;
                    ptCtrl.banner.k(this, ii)
                }
            }
            if (breload) {
                ptCtrl.banner.reload(ii)
            }
        });
        if (ai.btype == "image") {
            ptCtrl.jq("#" + this.sTag + "u" + ii).bind('click', function(event) {
                event.stopImmediatePropagation();
                var ad = ai.data;
                var url = ptCtrl.getItem(ad, 'destinationurl', '');
                ptCtrl.banner.open(url);
                var uri = 'act=logclick&xref=' + ad.hash;
                ptCtrl.o('logclick', uri, 0, {
                    result: function(a) {}
                });
                ptCtrl.bkLog('click', ii, {
                    isiframe: 0
                });
                return false
            })
        } else if (ai.btype == 'iframe') {
            ptCtrl.jq("#" + this.sTag + ii).bind('load', function() {
                var isOverIframe = false;
                var onBlur = function() {
                    if (isOverIframe === true) {
                        isOverIframe = false;
                        var ad = ai.data;
                        var uri = 'act=logclick&xref=' + ad.hash;
                        ptCtrl.o('logclick', uri, 0, {
                            result: function(a) {}
                        });
                        ptCtrl.bkLog('click', ii, {
                            isiframe: 1
                        })
                    }
                };
                var iframeClick = function() {
                    ptCtrl.jq("#frmtrck_" + ii).mouseenter(function() {
                        isOverIframe = true
                    });
                    ptCtrl.jq("#frmtrck_" + ii).mouseleave(function() {
                        setTimeout(function() {
                            isOverIframe = false
                        }, 500)
                    });
                    ptCtrl.jq(document).on('visibilitychange', function() {
                        onBlur()
                    })
                };
                iframeClick()
            })
        }
    },
    q: function(ii, ah, s, p) {
        var u = 'undefined';
        if (ptCtrl.abDetected) {
            if (typeof ah != u) {
                if (ah == 'img') {
                    if (typeof ptCtrl.jq(s).attr('class') != u) {
                        ptCtrl.i("Swap image because ab blocked");
                        this.k(s, ii);
                        return
                    }
                }
            }
        }
        if (typeof p != u && typeof p.onload != u) {
            p.onload()
        }
        var a = ptCtrl.c[ii].data;
        if (typeof a.q != 'undefined' && a.q) {
            this.reload(ii);
            return
        } else {
            var ai = ptCtrl.c[ii];
            if (ptCtrl.abDetected && ai.data.type == 'image' && ai.plugin == "banner") {
                if (!ptCtrl.jq("#" + ai.display).is(":visible")) {
                    ptCtrl.jq("#" + ai.display).attr("style", "display:block !important");
                    if (!ptCtrl.jq("#" + ai.display).is(":visible")) {
                        ptCtrl.i("Ad hided by adblocker");
                        return
                    }
                } else {
                    if (!ptCtrl.jq("#" + this.sTag + ii).is(":visible")) {
                        ptCtrl.jq("#" + this.sTag + ii).attr("style", "display:block !important");
                        if (!ptCtrl.jq("#" + this.sTag + ii).is(":visible")) {
                            ptCtrl.i("Ad hided by adblocker");
                            return
                        }
                    }
                }
            }
            ptCtrl.c[ii].q = true;
            ptCtrl.i(ai.plugin + ' ItemId:' + ii + " finished");
            if (typeof a.nurl != u && a.nurl != '') {
                var ul = a.nurl.replace('${AUCTION_PRICE}', a.bid);
                var si = '<img src="' + ul + '" border="0" width="1" height="1"/>';
                ptCtrl.jq('body').append(si)
            }
            var uri = 'act=logimp&xref=' + a.hash;
            ptCtrl.o('logimp', uri, 0, {
                result: function(a) {
                    if (typeof a != 'undefined' && a != '') {
                        a = jQuery.parseJSON(a);
                        if (ptCtrl.getItem(a, 'denied', '0') == '1') {
                            ptCtrl.banner.reload(ii)
                        }
                    }
                }
            });
            ptCtrl.bkLog('view', ii)
        }
    },
    iframe: function(a) {
        var h = '<iframe class=""  name="' + ptCtrl.getItem(a, 'name', '') + '" id="' + ptCtrl.getItem(a, 'id', '') + '" src="' + ptCtrl.getItem(a, 'url', '') + '"  width="' + ptCtrl.getItem(a, 'width', '') + '" height="' + ptCtrl.getItem(a, 'height', '') + '"  scrolling="' + ptCtrl.getItem(a, 'scroll', 'no') + '" frameborder="0"></iframe>';
        ptCtrl.jq("#" + a.display).html(h);
        if ("undefined" != typeof(a.onerror)) {
            ptCtrl.jq("#" + a.id).bind('error', function() {
                try {
                    ptCtrl.jq("#" + a.display).html('');
                    a.onerror()
                } catch (_0) {}
            })
        }
        if ("undefined" != typeof(a.onload)) {
            ptCtrl.jq("#" + a.id).bind('load', function() {
                try {
                    a.onload()
                } catch (_0) {}
            })
        }
    },
    open: function(uri) {
        var win = window.open(uri);
        setTimeout(function() {
            if (!win || win.closed) {
                top.location = uri
            }
        }, 500)
    },
    makeId: function(iMax) {
        var t = "";
        var s = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789";
        for (var i = 0; i < iMax; i++) {
            t += s.charAt(Math.floor(Math.random() * s.length))
        }
        return t
    },
    loadBin: function(s, c) {
        ptCtrl.o("loadimage", "&act=getimage&f=" + s, 0, {
            result: function(ar) {
                var sd = '';
                if (typeof ar.errors != 'undefined') {
                    ptCtrl.jq.each(ar.errors, function(i, v) {
                        if (typeof v != 'undefined' && v != '') {
                            ptCtrl.i(v)
                        }
                    })
                }
                sd = ar.data;
                c(sd)
            }
        })
    },
    t: function(ii, json, z) {
        if (this.sTag == '') {
            var i = Math.floor((Math.random() * 20) + 1);
            this.sTag = this.makeId(i)
        }
        var ai = ptCtrl.c[ii];
        var b = '';
        var h = '';
        if (ai.responsive == '1') {
            b = 'width="100%"'
        } else {
            b = 'width="' + json.adwidth + '" height="' + json.adheight + '"'
        }
        ptCtrl.c[ii].btype = json.type;
        var ttl = ptCtrl.getItem(json, 'ainfo', '');
        if (ttl != '') {
            ttl = 'title="' + ttl + '" '
        }
        switch (json.type) {
            case "iframe":
                var iframe = json.bannerpath;
                h = '<span id="frmtrck_' + ii + '" bnrid="' + ii + '"><iframe ' + ttl + ' sandbox="allow-scripts allow-popups allow-forms" src="' + iframe + '" ' + b + '  id="' + this.sTag + ii + '" frameborder="0" scrolling="no"></iframe></span>';
                h += '<img width="0" height="0" id="' + this.sTag + ii + '_2" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAADUlEQVR42mNk+M9QDwADhgGAWjR9awAAAABJRU5ErkJggg==" alt="Advertisement"/>';
                break;
            case "image":
                var bi = false;
                var f = '';
                if (typeof json.isownad != 'undefined' && json.isownad == 1) {
                    var sPath = (ptCtrl.getItem(ptCtrl.ca, 'datapath', ''));
                    if (sPath == '') {
                        f = (ptCtrl.m() ? 'https://' : 'http://') + ptCtrl.getItem(ptCtrl.ca, 'datadomain', ptCtrl.datadomain);
                        bi = true
                    } else {
                        if (ptCtrl.getItem(ptCtrl.ca, 'datadomain', '') != '') {
                            f = (ptCtrl.m() ? 'https://' : 'http://') + ptCtrl.ca.datadomain + sPath
                        } else {
                            f = sPath
                        }
                    }
                    f += '/' + ptCtrl.datapath + json.bannerpath
                } else {
                    f = json.bannerpath
                }
                h = '<a id="' + this.sTag + 'u' + ii + '"  href="#" rel="nofollow"><img ' + ttl + '  id="' + this.sTag + ii + '" src="%%img%%" ' + b + ' border="0"/></a>';
                h += '<img width="0" height="0"  id="' + this.sTag + ii + '_2" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAADUlEQVR42mNk+M9QDwADhgGAWjR9awAAAABJRU5ErkJggg==" alt="Advertisement"/>';
                if ((ptCtrl.abDetected && bi)) {
                    var o = this;
                    o.loadBin(f, function(s) {
                        ai.binloaded = true;
                        h = h.replace('%%img%%', s);
                        z(h)
                    });
                    return
                }
                h = h.replace('%%img%%', f);
                break;
            case 'html':
                var h = json.html;
                h = h.replace(new RegExp("<img ", "ig"), '<img ' + ttl + ' id="' + this.sTag + ii + '" ');
                if (h.indexOf("width") == -1) {
                    h = h.replace(new RegExp("<img ", "ig"), '<img ' + b + ' ')
                }
                h = h.replace(new RegExp("<iframe ", "ig"), '<iframe ' + ttl + ' sandbox="allow-scripts allow-popups allow-forms" id="' + this.sTag + ii + '"');
                h += '<img width="0" height="0" id="' + this.sTag + ii + '_2" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAADUlEQVR42mNk+M9QDwADhgGAWjR9awAAAABJRU5ErkJggg=="/>';
                break;
            default:
                ptCtrl.i("unknown bannertype:" + json.type);
                break
        }
        z(h)
    }
};
eaPopn = function() {
    this.phwnd = null;
    this.url = '';
    this.clickHandler = ['body'];
    this.ignoreList = [];
    this.cookieName = '';
    this.isPopunder = false;
    this.skipCookie = false;
    this.cookieTime = 900;
    this.nurls = {};
    this.rtbHwnd = null;
    this.popFired = false;
    this.jq = null;
    this.xbtn = false;
    this.bjUsed = false;
    this.left = 0;
    this.p_width = 1024;
    this.p_height = 768;
    this.top = 0;
    this.ii = 0;
    this.capSettings = {
        repeatAmount: 0,
        repeatInterval: 0
    };
    this.genUrl = function(ai, spaceid) {
        var sDomain = "//go.ero-advertising.com";
        var u = "undefined";
        if (typeof ptCtrl.ca.ctrl_domain != u && ptCtrl.ca.ctrl_domain != "") {
            sDomain = ptCtrl.ca.ctrl_domain
        }
        var suri = sDomain + '/pop.go?ctrlid=' + ptCtrl.ctrlId + '&spaceid=' + spaceid + ptCtrl.getItem(ai, 'subid', '', true, '&channel=') + '&rnd=' + Math.random();
        if (ptCtrl.abDetected) {
            suri += '&ab=1'
        }
        if (typeof ai.defaultad == 'object') {
            suri += '&foad=' + ptCtrl.encode(JSON.stringify(ai.defaultad))
        }
        if (typeof ai.rtbext == "object") {
            suri += '&rtbext=' + ptCtrl.encode(JSON.stringify(ai.rtbext))
        }
        suri += '&sh=' + ptCtrl.getItem(screen, 'height', 0);
        suri += '&sw=' + ptCtrl.getItem(screen, 'width', 0);
        var tm;
        try {
            tm = new Date().toString().match(/([-\+][0-9]+)\s/)[1]
        } catch (_0) {
            tm = -1
        }
        if (tm == null || tm == '') {
            tm = -1
        }
        suri += '&tz=' + tm.replace('+', '');
        suri += '&wh=' + ptCtrl.jq(window).height() + '&ww=' + ptCtrl.jq(window).width() + '&dh=' + ptCtrl.jq(document).height() + '&dw=' + ptCtrl.jq(document).width();
        suri += '&fprint=' + escape(ptCtrl.f_print);
        suri += '&doc=' + escape(ptCtrl.getItem(document, 'location', ''));
        suri += '&ref=' + escape(ptCtrl.getItem(document, 'referrer', ''));
        return suri
    };
    this.CenterPop = function() {
        var win = window,
            screen = win.screen,
            rootElem = document.body || document.documentElement,
            scrollWidth = win.innerWidth && rootElem && win.innerWidth > rootElem.clientWidth && (win.innerWidth - rootElem.clientWidth);
        var iWidth, cp;
        iWidth = 0;
        cp = 0;
        if (screen) {
            iWidth = scrollWidth ? screen.availWidth - scrollWidth : screen.availWidth;
            cp = screen.availHeight
        } else {
            iWidth = rootElem.clientWidth;
            cp = rootElem.clientHeight
        }
        if (cp > 0 && this.p_height > cp) {
            this.p_height = cp
        }
        if (iWidth > 0 && this.p_width > iWidth) {
            this.p_width = iWidth
        }
        this.left = (iWidth / 2) - (this.p_width / 2);
        this.top = (cp / 2) - (this.p_height / 2)
    };
    this.canrun = function() {
        if (this.skipCookie) {
            return true
        }
        aVar = ptCtrl.getStorage(this.cookieName);
        if (aVar == null || typeof aVar == 'undefined' || typeof aVar.repeatCount == 'undefined') {
            return true
        } else {
            if (aVar.repeatCount < this.capSettings.repeatAmount) {
                iSec = parseInt(this.capSettings.repeatInterval);
                if (typeof aVar.Last != 'undefined' && !isNaN(aVar.Last)) {
                    i = parseInt(this.jq.now() / 1000);
                    is = parseInt(aVar.Last + iSec);
                    if (is < i) {
                        return true
                    } else {
                        ptCtrl.i("Pop need to wait " + (is - i) + " Seconds")
                    }
                } else {
                    return true
                }
            } else {
                ptCtrl.i("Pop repeat amount of " + this.capSettings.repeatAmount + " Reached")
            }
        }
        return false
    };
    this.init = function() {
        if (this.jq == null) {
            this.jq = ptCtrl.jq
        }
        var ob = this;
        ob.initPop()
    };
    this.cl = function(fn) {
        this.phwnd = fn;
        this.adPop()
    };
    this.checkParents = function(aNode, findNode) {
        var aParents = this.jq(aNode).parents();
        var bFound = false;
        this.jq.each(aParents, function(i, v) {
            if (v == findNode) {
                bFound = true;
                return false
            }
        });
        return bFound
    };
    this.checkChilds = function(aNode, findNode) {
        var aChilds = this.jq(aNode).children();
        var bFound = false;
        this.jq.each(aChilds, function(i, v) {
            if (v == findNode) {
                bFound = true;
                return false
            }
        });
        return bFound
    };
    this.canFire = function(aNode) {
        if (!this.canrun()) {
            return false
        }
        var bRet = false;
        var ob = this;
        var bCheckIgnore = false;
        try {
            ob.jq.each(ob.clickHandler, function(i, v) {
                var fNodes = ob.jq(v);
                ob.jq.each(fNodes, function(icnt, fNode) {
                    if (fNode == aNode) {
                        bRet = true;
                        if (this.xbtn) {
                            bCheckIgnore = true
                        }
                        return false
                    } else {
                        if (ob.checkParents(aNode, fNode)) {
                            bRet = true;
                            return false
                        } else if (ob.checkChilds(aNode, fNode)) {
                            bRet = true;
                            return false
                        }
                    }
                });
                if (bRet) {
                    return false
                }
            })
        } catch (_0) {}
        if (bRet && !bCheckIgnore) {
            try {
                ob.jq.each(ob.ignoreList, function(i, v) {
                    var fNodes = ptCtrl.jq(v);
                    ob.jq.each(fNodes, function(icnt, fNode) {
                        if (fNode == aNode) {
                            bRet = false;
                            return false
                        } else if (v != 'body' && ob.checkParents(aNode, fNode)) {
                            bRet = false;
                            return false
                        }
                    });
                    if (bRet == false) {
                        return false
                    }
                })
            } catch (_0) {}
            if (!bRet) {
                ptCtrl.i("Pop cancelled")
            }
        }
        return bRet
    };
    this.adPop = function() {
        var ob = this;
        if (typeof ptCtrl.eaPopShooted == 'undefined') {
            ptCtrl.eaPopShooted = false
        }
        ob.phwnd.add(this.url, {
            cookieExpires: (-1),
            under: ob.isPopunder,
            cookieName: '',
            shouldFire: function() {
                if (ptCtrl.eaPopShooted) {
                    return false
                } else {
                    var aNode = ob.phwnd.getClickedElement();
                    return ob.canFire(aNode)
                }
            },
            afterOpen: function(u, o, p) {
                ptCtrl.eaPopShooted = true;
                ptCtrl.bkLog('view', ob.ii);
                if (!ob.skipCookie) {
                    ob.upDateCookie()
                }
            },
            beforeOpen: function(url, options, popWin) {
                ob.popFired = true
            }
        })
    };
    this.upDateCookie = function() {
        var aVar = ptCtrl.getStorage(this.cookieName);
        try {
            i = parseInt(ptCtrl.jq.now() / 1000);
            e = 'undefined';
            if (aVar == null || typeof aVar == e || typeof aVar.repeatCount == e || typeof aVar.Last == e) {
                aVar = {
                    repeatCount: 0,
                    Last: i
                };
                ptCtrl.setStorage(this.cookieName, aVar, this.cookieTime)
            } else {
                aVar.repeatCount++;
                aVar.Last = i;
                ptCtrl.setStorage(this.cookieName, aVar, this.cookieTime)
            }
        } catch (_0) {}
    };
    this.initPop = function() {
        var ob = this;
        if (typeof ptCtrl.eaPopShooted == 'undefined') {
            ptCtrl.eaPopShooted = false
        }
        $(document).click(function(e) {
            var a = e.target;
            if (ptCtrl.eaPopShooted == false && ob.canFire(a)) {
                ob.CenterPop();
                if (!ob.skipCookie) {
                    ob.upDateCookie()
                }
                var win = window.open(ob.url, "_6", "toolbar=1,location=1,directories=0,status=1,menubar=1,width=" + ob.p_width + ",height=" + ob.p_height + ",scrollbars=1,resizable=1,flip=1,top=" + ob.top + ",left=" + ob.left);
                if (win) {
                    ptCtrl.eaPopShooted = true;
                    setTimeout(function() {
                        if (win && !win.closed) {
                            ptCtrl.bkLog('view', ob.ii)
                        } else {
                            ptCtrl.i("pop is closed")
                        }
                    }, 0)
                }
            }
        })
    };
    this.resetUrl = function(uri) {
        if (this.popFired) {
            return
        }
        this.nurls = {};
        this.url = uri;
        this.phwnd.emptyStack();
        if (!this.bjUsed) {
            this.initPop()
        } else {
            this.adPop()
        }
    };
    this.loadJs = function(sc, c) {
        var sn = document.getElementsByTagName('head')[0];
        if (sn == null) {
            sn = document.body
        }
        s = document.createElement('script');
        s.type = 'text/javascript';
        s.src = '//data.eroadvertising.com/' + sc;
        s.async = 'true';
        if (typeof c != 'undefined' && c != null) {
            s.onload = function() {
                c()
            }
        }
        sn.appendChild(s)
    }
};
ptCtrl.pop = {
    fired: false,
    p_height: screen.availHeight,
    p_width: screen.availWidth,
    c_name: 'p_chk',
    pops: [],
    getVersion: function() {
        return "4.5"
    },
    browser: function() {
        var n = navigator.userAgent.toLowerCase(),
            b = {
                webkit: /webkit/gi.test(n),
                mozilla: (/mozilla/gi.test(n)) && (!/(compatible|webkit)/.test(n)),
                chrome: /chrome/gi.test(n),
                msie: (/msie/gi.test(n)) && (!/opera/.test(n)),
                firefox: /firefox/gi.test(n),
                safari: (/safari/gi.test(n) && !(/chrome/.test(n))),
                opera: /opera|opr/gi.test(n),
                macosx: /mac os x/gi.test(n),
                ios: /iphone|ipad/gi.test(n),
                crios: /crios/gi.test(n),
                winphone: /windows phone/gi.test(n),
                android: /android/gi.test(n),
            };
        b.version = (b.safari) ? (n.match(/.+?(?:on|ri)[\/: ]([\d.]+)/) || [])[1] : (n.match(/.+(?:ox|me|ra|ie|opr)[\/:]([\d.]+)/) || [])[1];
        return b
    },
    display: function(ii, j, tpItem) {
        var u = 'undefined';
        if (typeof window.eaPopShooted == u) {
            window.eaPopShooted = false
        }
        var cname = this.c_name = 'p_check_' + j.spaceid;
        var pop = new eaPopn;
        var ai;
        if (typeof(tpItem) != u) {
            ai = tpItem
        } else {
            ai = ptCtrl.c[ii];
            if (typeof ai.capSettings == 'object') {
                pop.capSettings = ai.capSettings;
                j.settings.capSettings = pop.capSettings
            }
            ptCtrl.c[ii].settings = j.settings
        }
        pop.cookieTime = (ai.settings['refreshtime']);
        if (typeof ai.ignoreTags == 'object') {
            pop.ignoreList = ai.ignoreTags
        }
        if (typeof ai.clickTags != u) {
            pop.clickHandler = ai.clickTags
        } else {
            pop.clickHandler = ['body']
        }
        if (typeof ai.skipCookie != u && ai.skipCookie == true) {
            pop.skipCookie = true
        }
        pop.url = pop.genUrl(ai, j.spaceid);
        pop.cookieName = cname;
        pop.jq = ptCtrl.jq;
        pop.ii = ii;
        var ispu = j.settings.displaytype == 2;
        if (ispu) {
            var b = this.browser();
            if (b.chrome) {
                ispu = false
            }
        }
        ispu = false;
        pop.isPopunder = false;
        pop.init()
    },
};
                                    

Executed Writes (0)



HTTP Transactions (236)


Request Response
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:14 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    94adda04845e58d098bb7a5114934f9f
Sha1:   8560ad20b3076a7730a682114107e524bc11c3c6
Sha256: a0ec2753a612baf7c317b693e87c6ccd0e9dd1abf50f9b2177edacfbcb0538d4
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:14 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            GET / HTTP/1.1 
Host: pornzxz.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Sat, 29 Jun 2019 22:44:15 GMT
Date: Sat, 29 Jun 2019 22:44:15 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 26 Jun 2019 13:05:47 GMT
Etag: W/"03a14fc95c4876bdf78dd08da58d2cbbab7dab107229d3dd521962a57f003c64"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   8080
Md5:    4f9914d2deb98a42f28df51de227cb41
Sha1:   cd2b8acfa6dc56d2576e374b51d960cec2529eb6
Sha256: 2476bad18c38afa864a9731ad20dd8802f43b9174898805643402276e3563b79
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:15 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    28e6866e2d351bd84fa96f3fa4956268
Sha1:   f7fd69a7ce463ba31b20145bcb83637f9657a4d5
Sha256: 77f95bf0b97fdbaf688b109dfe59e0952a83bf4bd23eba071c5df2641505d3bf
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:15 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6f87d36e9965941a3e70e827665a8777
Sha1:   662eb0675f506d1c29d035818fc580fa0900e3f1
Sha256: ce71e9b898ab481e9dffcbafe714942d11d94e63916d2e44eb964a7cba437dbc
                                        
                                            GET /static/v1/widgets/3597120983-css_bundle_v2.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://pornzxz.blogspot.com/

                                         
                                         216.58.211.9
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7979
Date: Sat, 01 Jun 2019 08:35:57 GMT
Expires: Sun, 31 May 2020 08:35:57 GMT
Last-Modified: Fri, 31 May 2019 18:28:42 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 2470098
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   7979
Md5:    48755aff864990495450c9227e8cce32
Sha1:   70806174b63eb7b18dce798abebb2468d22f79f4
Sha256: 00db413a3f0fb5d585894e49f58dde1bb80fe48a8de85846ce1ba51fd82e4189
                                        
                                            GET /img/icon18_wrench_allbkg.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://pornzxz.blogspot.com/

                                         
                                         216.58.211.9
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 475
Date: Mon, 24 Jun 2019 10:21:09 GMT
Expires: Mon, 01 Jul 2019 10:21:09 GMT
Last-Modified: Sun, 23 Jun 2019 23:05:12 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=604800
Age: 476586
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  PNG image, 18 x 18, 8-bit colormap, non-interlaced
Size:   475
Md5:    f617effe6d96c15acfea8b2e8aae551f
Sha1:   6d676af11ad2e84b620cce4d5992b657cb2d8ab6
Sha256: d172d750493be64a7ed84dec1dd2a0d787ba42f78bc694b0858f152c52b6620b
                                        
                                            GET /js/plusone.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://pornzxz.blogspot.com/

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Timing-Allow-Origin: *
Etag: "ebc45e487e70cc0c12f6f7f775e3c57a"
Access-Control-Allow-Origin: *
Expires: Sat, 29 Jun 2019 22:44:15 GMT
Date: Sat, 29 Jun 2019 22:44:15 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=186=YeJk0EMa_LXQV6_l82Voj52UkNhZuJlONwWEcBNkxhvR5bWYlF86RqlYFRGWY4n3QcqEopnVwM-SgSGP-isz5zVLeKhrXH1IS33-H8nBeBf_czrbHAq-c7U8ctp667RfB4eYAfAG1uIhadDsxtPsNMr5ENKoBOU1smksXM1K77w; expires=Sun, 29-Dec-2019 22:44:15 GMT; path=/; domain=.google.com; HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17043
Md5:    0b31b337e265b02aee117d0ce744f273
Sha1:   8223d97252b01af6f26148e5eaaba0b92082aa18
Sha256: f39445b8c65a375df89a1cd0019c4eaf95a4d571592bc0d78ec2099e1d50e49b
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=2629768419483522496&zx=48ffe132-38f1-430f-810a-df0d44076610 HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://pornzxz.blogspot.com/

                                         
                                         216.58.211.9
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 29 Jun 2019 22:44:15 GMT
Last-Modified: Sat, 29 Jun 2019 22:44:15 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.U5Wv0J7QCxQ.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=wQE/rs=AGLTcCNSLnxSijt5dMhOFbHNvycgwYmHrA/cb=gapi.loaded_0 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://pornzxz.blogspot.com/
Cookie: NID=186=YeJk0EMa_LXQV6_l82Voj52UkNhZuJlONwWEcBNkxhvR5bWYlF86RqlYFRGWY4n3QcqEopnVwM-SgSGP-isz5zVLeKhrXH1IS33-H8nBeBf_czrbHAq-c7U8ctp667RfB4eYAfAG1uIhadDsxtPsNMr5ENKoBOU1smksXM1K77w

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 49768
Date: Fri, 28 Jun 2019 21:07:59 GMT
Expires: Sat, 27 Jun 2020 21:07:59 GMT
Last-Modified: Thu, 27 Jun 2019 22:44:28 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, immutable, max-age=31536000
Age: 92176
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   49768
Md5:    8e6aeab68f7bf311169ec4ba6669e709
Sha1:   acec3df0012eb92f4a1daab36b0bc496693e7267
Sha256: 4c1003f0ddbae6731d18d0ca293136219673f7e6efc4ea70a8ace0d32cbf2302
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.U5Wv0J7QCxQ.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=wQE/rs=AGLTcCNSLnxSijt5dMhOFbHNvycgwYmHrA/cb=gapi.loaded_1 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://pornzxz.blogspot.com/
Cookie: NID=186=YeJk0EMa_LXQV6_l82Voj52UkNhZuJlONwWEcBNkxhvR5bWYlF86RqlYFRGWY4n3QcqEopnVwM-SgSGP-isz5zVLeKhrXH1IS33-H8nBeBf_czrbHAq-c7U8ctp667RfB4eYAfAG1uIhadDsxtPsNMr5ENKoBOU1smksXM1K77w

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17560
Date: Fri, 28 Jun 2019 22:35:51 GMT
Expires: Sat, 27 Jun 2020 22:35:51 GMT
Last-Modified: Thu, 27 Jun 2019 22:44:28 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, immutable, max-age=31536000
Age: 86904
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   17560
Md5:    9953e3a5f44fd40c9ccdcd010993c084
Sha1:   f46f279520374a084f926ce3b43e31b1d591c848
Sha256: 3ac1bed1d209b65ee610d45b29627267bd01e201047e109c5a2c4ef557ff5e24
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:15 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    43e96d85a7558ae544ab8d4bf41471c5
Sha1:   9b7a7804cacb5ae130a3248ba759c84d51e5ed7e
Sha256: 530e2de65ebf4246534303b0de5129ec5bdf16ace4fcac3494692bcf2f18d0d6
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: pornzxz.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
                                        
Expires: Sat, 29 Jun 2019 22:44:15 GMT
Date: Sat, 29 Jun 2019 22:44:15 GMT
Cache-Control: private, max-age=86400
Last-Modified: Wed, 26 Jun 2019 13:05:47 GMT
Etag: W/"03a14fc95c4876bdf78dd08da58d2cbbab7dab107229d3dd521962a57f003c64"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   412
Md5:    23e5eb1119a7f4d2ab629ccd77a5f84b
Sha1:   f7a5a792e41005ba918551e4416c4bf639ec80ec
Sha256: a0c8d4831f453c316840a502432719f7f7d833bea4a9b59f548e4a1bc2bf0c8a
                                        
                                            GET /pagead/js/google_top_exp.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://pornzxz.blogspot.com/

                                         
                                         172.217.21.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Sun, 16 Jun 2019 21:44:42 GMT
Expires: Sun, 30 Jun 2019 21:44:42 GMT
Etag: 13036835877489095579
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Cache-Control: public, max-age=1209600
Age: 1126773
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   67
Md5:    9bbc3ca32ec951a484589ce0e6b4db73
Sha1:   753d6f6183b33b2dee5dde2208fca91c17f5bb13
Sha256: b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "0F2D1D35FD65E750C848628284569505F470C83F9CB767B2073B28BF3FE0EE4B"
Last-Modified: Fri, 28 Jun 2019 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43200
Expires: Sun, 30 Jun 2019 10:44:16 GMT
Date: Sat, 29 Jun 2019 22:44:16 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    a257fef6b5f452ed46cf4c94c860d58d
Sha1:   e233a737df1d4a410f50375fb9d2d1e0a4c84570
Sha256: 0f2d1d35fd65e750c848628284569505f470c83f9cb767b2073b28bf3fe0ee4b
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Content-Transfer-Encoding: Binary
Last-Modified: Fri, 28 Jun 2019 22:30:42 GMT
Etag: "d469f6bbc776b4fce34023ba0308cb5136b40b90"
Content-Length: 1396
Cache-Control: public, no-transform, must-revalidate, max-age=7297
Expires: Sun, 30 Jun 2019 00:45:53 GMT
Date: Sat, 29 Jun 2019 22:44:16 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1396
Md5:    1ee5465dac4a1f71eeca996418b4cbb3
Sha1:   d469f6bbc776b4fce34023ba0308cb5136b40b90
Sha256: bb29376bd2e844c689ed9803e464ab2d43803cd533ce10797d53fc290c14f3cb
                                        
                                            GET /z2hepanyg?key=b401f2416f445e1a5a199a065d938685 HTTP/1.1 
Host: newtueads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://pornzxz.blogspot.com/

                                         
                                         198.134.112.242
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.15.1
Date: Sat, 29 Jun 2019 22:44:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: u_pl=14854234; expires=Sun, 30 Jun 2019 22:44:16 GMT ain=eyJhbGciOiJIUzI1NiJ9.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.pskEMeM7gURw0ZCm22CN2dYMIWZMks-mTZpDhrFmpOU; expires=Sat, 29 Jun 2019 22:45:16 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1221
Md5:    a7d94ee68f23ed96148088af88823014
Sha1:   04bd18bb0ee717cc6aee88e5d8784aee9ee3a207
Sha256: e8f1b7ebcf745eec10fd56b219fddb3217bfaf30f88c867049d84140eff4edc5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "3B324426F687D011EF9A076659F5943BE413DD36E0F49759D500C6CAD517E19F"
Last-Modified: Fri, 28 Jun 2019 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=23866
Expires: Sun, 30 Jun 2019 05:22:02 GMT
Date: Sat, 29 Jun 2019 22:44:16 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    c9ef89899f636bc8a56eafe9a034cfb4
Sha1:   7322d952877eb7b8c30a8a7f3d99154153a3fef1
Sha256: 3b324426f687d011ef9a076659f5943be413dd36e0f49759d500c6cad517e19f
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: newtueads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: u_pl=14854234; ain=eyJhbGciOiJIUzI1NiJ9.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.pskEMeM7gURw0ZCm22CN2dYMIWZMks-mTZpDhrFmpOU; cjs=t

                                         
                                         198.134.112.242
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.15.1
Date: Sat, 29 Jun 2019 22:44:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
                                        
                                            GET /stats HTTP/1.1 
Host: r.remarketingpixel.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://newtueads.com/z2hepanyg?key=b401f2416f445e1a5a199a065d938685
Origin: https://newtueads.com

                                         
                                         213.196.2.2
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.15.1
Date: Sat, 29 Jun 2019 22:44:16 GMT
Content-Length: 40
Connection: keep-alive
Access-Control-Allow-Origin: https://newtueads.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=1471bf0d-f27f-4539-ae62-e8d120d9971d:1:1; expires=Tue, 26 Jun 2029 22:44:16 GMT; domain=.remarketingpixel.com
Expires: Sat, 29 Jun 2019 22:44:16 GMT
Cache-Control: max-age=0, : no-cache


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    9eb2b4910104df5b2397d13b7ce32cc1
Sha1:   4a36a7be1fa0e2a3e35cd52159dd7fa582da2e5f
Sha256: 71a832ee38d7884a8817ab88b9356cd3b585ec9e37504d0c45f04743f7ac663a
                                        
                                            GET /z2hepanyg?shu=0a9691f4db4620a68e6ed755c71b04cf5b891fef04e9eb00d78bf25f353c0394bff778d21ace456351e589f8f85e06f7c9dac300d9a1de1f589a2618ea71bdec2b5b771fd3144e79&pst=1561848316&rmtc=t&uuid=1471bf0d-f27f-4539-ae62-e8d120d9971d%3A1%3A1&pii=&in=false&refer=https%3A%2F%2Fpornzxz.blogspot.com%2F&key=b401f2416f445e1a5a199a065d938685 HTTP/1.1 
Host: newtueads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://newtueads.com/z2hepanyg?key=b401f2416f445e1a5a199a065d938685
Cookie: u_pl=14854234; ain=eyJhbGciOiJIUzI1NiJ9.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.pskEMeM7gURw0ZCm22CN2dYMIWZMks-mTZpDhrFmpOU; cjs=t

                                         
                                         198.134.112.242
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Server: nginx/1.15.1
Date: Sat, 29 Jun 2019 22:44:17 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://in.spicytalks.com/in/aterra-rtb/?c=36&subid=96322551&bid=0.65&domain=14854234&target_id=23887446&cat=&page=&tt=1&ts=1&cid=5&cid=5
Set-Cookie: uid_id2=1471bf0d-f27f-4539-ae62-e8d120d9971d:1:1; expires=Sat, 06 Jul 2019 22:44:16 GMT pdhtkv=true; expires=Sun, 30 Jun 2019 22:44:17 GMT uncs=1; expires=Sun, 30 Jun 2019 22:44:17 GMT pdhtkv28=true; expires=Sun, 30 Jun 2019 22:44:17 GMT uncs28=1; expires=Sun, 30 Jun 2019 22:44:17 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:17 GMT
Accept-Ranges: bytes
Last-Modified: Sun, 23 Jun 2019 15:31:06 GMT
Server: Apache
Etag: 141EA3A766DA8EA93BD023BBA95CFD5893B59858
Cache-Control: max-age=603841,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp9
X-HW: 1561848257.cds019.sk1.h2,1561848257.cds017.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    02c22b166b69118acaec416d21801058
Sha1:   141ea3a766da8ea93bd023bba95cfd5893b59858
Sha256: f7e73aea8c3c7ad4f6948960f998d9961b5e3fd031657665941a38bf803e7367
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:17 GMT
Accept-Ranges: bytes
Last-Modified: Mon, 24 Jun 2019 00:14:19 GMT
Server: Apache
Etag: 519C60BCC30E753A1131E77E1CA8F268CEA744E8
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp15
X-HW: 1561848257.cds019.sk1.h2,1561848257.cds043.sk1.c
Connection: keep-alive
Content-Length: 727


--- Additional Info ---
Magic:  data
Size:   727
Md5:    bf0ecfd5ed8e52b03b65b6f132763cd2
Sha1:   519c60bcc30e753a1131e77e1ca8f268cea744e8
Sha256: d3368c75951eb9823c065206aa9bc0633d2f5e0362466f952f997b51ed1f5649
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:17 GMT
Accept-Ranges: bytes
Last-Modified: Mon, 24 Jun 2019 00:14:19 GMT
Server: Apache
Etag: 31983060334AF817DAC0260BA1EB7FF3D303AD12
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp12
X-HW: 1561848257.cds057.sk1.h2,1561848257.cds047.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    79a84850b78c4a9933dcd2c96d7ba97d
Sha1:   31983060334af817dac0260ba1eb7ff3d303ad12
Sha256: cb5dfb75b939583b3e11c8ad6035caf2414c927a45dc806977736eebc1cfa085
                                        
                                            GET /in/aterra-rtb/?c=36&subid=96322551&bid=0.65&domain=14854234&target_id=23887446&cat=&page=&tt=1&ts=1&cid=5&cid=5 HTTP/1.1 
Host: in.spicytalks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://newtueads.com/z2hepanyg?key=b401f2416f445e1a5a199a065d938685

                                         
                                         104.24.26.63
HTTP/1.1 302 Found
                                        
Date: Sat, 29 Jun 2019 22:44:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: __cfduid=d755649b1e3471ba65b1024bdb0f223121561848257; expires=Sun, 28-Jun-20 22:44:17 GMT; path=/; domain=.spicytalks.com; HttpOnly bsi=tx0B_vBtAE2AAAAALEI7VdgNTYAAAAAtAGwjjYAAAAAsQjtV2A1NgAAAAC0AbDHsIC2AAAAALEI7VdgNTU1H; Version=1; Expires=Sun, 30-Jun-2019 22:44:16 GMT; Max-Age=86400; Path=/
Location: https://partysexs.com/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Vary: *
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4eeb6c98dfe27640-ARN


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=134759
Date: Sat, 29 Jun 2019 22:44:17 GMT
Etag: "5d175528-117"
Expires: Mon, 01 Jul 2019 12:10:16 GMT
Last-Modified: Sat, 29 Jun 2019 12:10:16 GMT
Server: nginx
Content-Length: 279


--- Additional Info ---
Magic:  data
Size:   279
Md5:    bf25f9c907b6b4bb6ce2ac2382cfb9e4
Sha1:   2e810ba37e6057a1f055c879f7b412034f40bd60
Sha256: 732debc06253949dadbd037de67cc39dbc60bf4b78c1ebaba62b04f37fe503c1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=120209
Date: Sat, 29 Jun 2019 22:44:17 GMT
Etag: "5d16fe97-5e3"
Expires: Mon, 01 Jul 2019 08:07:46 GMT
Last-Modified: Sat, 29 Jun 2019 06:00:55 GMT
Server: ECS (lcy/1D1C)
X-Cache: HIT
Content-Length: 1507


--- Additional Info ---
Magic:  data
Size:   1507
Md5:    b453dcf4bff435e19e5255ab8638e7d1
Sha1:   c342e388852419a1d51862d90f54f16f7028ea31
Sha256: 1bb16f8d1ce86db066d51ad425fe193304c96208a0622a02afdd7bdd5242987a
                                        
                                            GET /en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://newtueads.com/z2hepanyg?key=b401f2416f445e1a5a199a065d938685
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 29 Jun 2019 22:44:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Host
X-Powered-By: PHP/5.6.38
Set-Cookie: __tcu=c30efa97d01fef663d87d688fe094bad1f670b4664; expires=Tue, 28-Jun-2022 22:44:17 GMT; Max-Age=94608000; path=/; domain=.porntui.com
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4eeb6c9af85386ad-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   172365
Md5:    41941dd67671af5c9b58bda6784a7ff6
Sha1:   0731abd25140491eb8090ee670b3d4f5a141235b
Sha256: 2b71a2b20764eacefcb780bfc1372c971776e7def06658ac9e325255c02dc812
                                        
                                            GET /assets/desktop.729af555430b53ad1224.min.css HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 29 Jun 2019 22:44:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 26 Feb 2019 11:27:48 GMT
Vary: Accept-Encoding
Etag: W/"5c7522b4-e4b7"
Expires: Tue, 26 Jun 2029 22:44:17 GMT
Cache-Control: public, max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 10664532
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4eeb6c9c3f83763a-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12205
Md5:    b811278af3948fc169b9239e407acda2
Sha1:   f4eb6ab1dd0053906ee068660b504fd9d95aea64
Sha256: bd0b00268201fa50804cd9cd6e39e884f222ac6b9d4d789126f6fb7efa1e382f
                                        
                                            GET /ps/index.js HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 29 Jun 2019 22:44:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Feb 2019 14:08:49 GMT
Vary: Accept-Encoding
Etag: W/"5c73f6f1-1141"
Expires: Tue, 26 Jun 2029 22:44:17 GMT
Cache-Control: public, max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 10739069
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4eeb6c9c6b9fcaec-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1448
Md5:    e77141c0e8d9c8076bd0c4a8500c0d43
Sha1:   678d9caebf8af6c24ce3d666cd1fc10694ae28f5
Sha256: 0c519e7d5ffa71f6c6787f5689238aadb04857c28c14944d6070ade85688bfad
                                        
                                            GET /images/favicon/favicon.ico HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Sat, 29 Jun 2019 22:44:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Feb 2019 14:08:49 GMT
Etag: W/"5c73f6f1-1cee"
Expires: Tue, 26 Jun 2029 22:44:17 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10738986
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6c9c2ccc86d1-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3209
Md5:    818329bf8d3e9ae11767e67e7ab93efe
Sha1:   38d88c44572f9afe1fa1791670de6869d5a82e7e
Sha256: b6318590922d25fc7df98977098a1c466d8f7c6d2fabb4be49ccc787b935e71c
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:18 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d63e2a8e7fda8019754fd20bb623e1ec
Sha1:   c4d5214a4cd5c61d52ee1eccc754a8f6f5501d34
Sha256: d05f84d80a72b95f75e7fae7a83912fed9de8509497e3badb6d637d3950322ec
                                        
                                            GET /js/vendor.min.js HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 29 Jun 2019 22:44:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Feb 2019 14:08:49 GMT
Vary: Accept-Encoding
Etag: W/"5c73f6f1-206c0"
Expires: Tue, 26 Jun 2029 22:44:17 GMT
Cache-Control: public, max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 10739069
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4eeb6c9c292575fe-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   46105
Md5:    7782cb9701ecbe458de7d8271bfd75de
Sha1:   a20ad6c4f40d901ae663648c02ff1050d87f43f7
Sha256: 8c86706a6c4aae0bcc8ac5d41c7cf7cc61229c8fda2e468a70fdc401d9ebd4a4
                                        
                                            GET /assets/desktop.729af555430b53ad1224.min.js HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 29 Jun 2019 22:44:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 26 Feb 2019 11:27:48 GMT
Vary: Accept-Encoding
Etag: W/"5c7522b4-1fb00"
Expires: Tue, 26 Jun 2029 22:44:18 GMT
Cache-Control: public, max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 10664532
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4eeb6c9cc83c8707-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   41407
Md5:    793d3f76a73f16b62326e09ddcf5d9da
Sha1:   16633f6227a7ad0cc7a03656b88c7d2f7d64644a
Sha256: ba79c5aba6a8116ba37a5f754e3234b2770a484fd5843834263778a5e897d8a3
                                        
                                            GET /css?family=Pacifico HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.217.20.42
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sat, 29 Jun 2019 22:44:18 GMT
Date: Sat, 29 Jun 2019 22:44:18 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   193
Md5:    7e15e75cb2f77776d46b4828f62450e5
Sha1:   38fd29bcdc70f427a2bb6449832d294459095c29
Sha256: e6e907e0dcd5ccd9993df74be06e9690ca10a9eab9413f730400f098fec98303
                                        
                                            GET /mt/e/4070.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:18 GMT
Content-Length: 13988
Connection: keep-alive
Last-Modified: Fri, 11 Nov 2016 18:05:15 GMT
Etag: "5826085b-36a4"
Expires: Tue, 26 Jun 2029 22:44:18 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10053160
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6ca06af6caec-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   13988
Md5:    6c2c854408bcf4ab28333026f2e4835a
Sha1:   f3a0e4e6e22a4164d20d46909f3c0b1b6a7b8506
Sha256: 4a4bc6bb4884876385c6637042b3801ea0e064cb33e0da7356f28b8fdd48c66c
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:19 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    1280879047237d7b58385e11c0da2ec3
Sha1:   f5cc00616056c66d8dd2c1289b94b84d0c4bb00b
Sha256: d7e59633c28b0ad32ce5a510ac4dcf759fd0d226c0bff9b858757bea488bffb1
                                        
                                            GET /images/logo.svg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Sat, 29 Jun 2019 22:44:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 26 Feb 2019 11:23:50 GMT
Etag: W/"5c7521c6-149f"
Expires: Tue, 26 Jun 2029 22:44:18 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10055888
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6ca069de86ad-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2123
Md5:    0faaf156af911966f4c62af27366d692
Sha1:   7903b373fe11ec8787c194a283519f074770f120
Sha256: afb2a740e911ecfb9786676012aed94bf21d0d7e1b4de7cae938bd7340c74d66
                                        
                                            GET /mt/q/16296.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:18 GMT
Content-Length: 12697
Connection: keep-alive
Last-Modified: Sun, 13 Nov 2016 07:52:09 GMT
Etag: "58281ba9-3199"
Expires: Tue, 26 Jun 2029 22:44:18 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10026782
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6ca069d0763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12697
Md5:    5cbeaeb4d15963a99f6ab61b7234d259
Sha1:   493d9c1f6f96f97a5351c0f42de43d57059ef69e
Sha256: 941dacbe81032d202c04a7ea6171b80fc91f397ed07fa7102ad255e85a586fa1
                                        
                                            GET /mt/b/1743.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:18 GMT
Content-Length: 16039
Connection: keep-alive
Last-Modified: Fri, 11 Nov 2016 11:45:09 GMT
Etag: "5825af45-3ea7"
Expires: Tue, 26 Jun 2029 22:44:18 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10026786
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6ca07e1e86d1-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16039
Md5:    e2fbb789c85ea467b9efffbc84632954
Sha1:   3c8c42e347074c0e6980914216d7fe9ef6026050
Sha256: 135baf6c5ab889a61c1494bdcd23d951a7eb29b5e9df0d5b12be264c402ee157
                                        
                                            GET /mt/og/378853.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:20 GMT
Content-Length: 14302
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2016 10:11:11 GMT
Etag: "58429a3f-37de"
Expires: Tue, 26 Jun 2029 22:44:20 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 6172588
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6caabce186ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14302
Md5:    3dfbc8ee1cbeeb82c318d63ee0162dfe
Sha1:   ecceb2e03492abadb571c140dc12f9b02c492854
Sha256: 2f21464959877e52a4c7d743267026d88b6a7d4ebf5c38cbfcc0497121330ddb
                                        
                                            GET /mt/me/272870.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:20 GMT
Content-Length: 13388
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2016 21:56:08 GMT
Etag: "583ca7f8-344c"
Expires: Tue, 26 Jun 2029 22:44:20 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054036
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6caace89763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   13388
Md5:    3008e2692d79dd39d8b44589322df8c7
Sha1:   2aa2ef683818e55bca30c781589e473a5895ee65
Sha256: 5296c61e2093f58e8a666e63d928b166cb4fb030b9dcf8ac47bcb4850e4bf2ab
                                        
                                            GET /gtm.js?id=GTM-PC64DK8 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         216.58.211.8
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sat, 29 Jun 2019 22:44:20 GMT
Expires: Sat, 29 Jun 2019 22:44:20 GMT
Cache-Control: private, max-age=900
Last-Modified: Sat, 29 Jun 2019 21:00:00 GMT
Server: Google Tag Manager
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   18862
Md5:    a266b144144b9ee9fcaafd1a076877ac
Sha1:   355c8724744b911037587e88e70bf50ef5f43da7
Sha256: d22709cc826b3b6ed85a4b20f4d206f07db89ad3e48304a3839dee5bceb1f7aa
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:20 GMT
Accept-Ranges: bytes
Last-Modified: Sun, 23 Jun 2019 21:53:02 GMT
Server: Apache
Etag: 3C9BD04325DACDBB6A0BF5ECF1B56F4408C547B7
Cache-Control: max-age=302394,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp6
X-HW: 1561848260.cds019.sk1.h2,1561848260.cds020.sk1.c
Connection: keep-alive
Content-Length: 279


--- Additional Info ---
Magic:  data
Size:   279
Md5:    0b59e129de9a862fb42a56fd54dce7f2
Sha1:   3c9bd04325dacdbb6a0bf5ecf1b56f4408c547b7
Sha256: 3553d39df9fdd8234d0bb99c7fd75ed2d256204ef10612b2681b2323c5f57107
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:20 GMT
Accept-Ranges: bytes
Last-Modified: Mon, 24 Jun 2019 00:14:19 GMT
Server: Apache
Etag: F91DE285A39C7186A0305410ABE8A1FDCDE30B6F
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp6
X-HW: 1561848260.cds019.sk1.h2,1561848260.cds045.sk1.c
Connection: keep-alive
Content-Length: 313


--- Additional Info ---
Magic:  data
Size:   313
Md5:    7bfc6ceddd7af26a1a982f0a86f668ef
Sha1:   f91de285a39c7186a0305410abe8a1fdcde30b6f
Sha256: 74e222c57a40f5c51fc88b58101e8f0f25339df4d2bc546dce5f315565b48e3b
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:20 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    df08d0fe67c67b4875ea5fe20f99b157
Sha1:   0853975ae99ec120cb82c389963af519298852e5
Sha256: b50d876913eba09b832d307e9a03df8393a122d3173a120e18a2af23ba24e299
                                        
                                            GET /mt/OQ/2276165.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:20 GMT
Content-Length: 15765
Connection: keep-alive
Last-Modified: Sat, 19 May 2018 09:13:07 GMT
Etag: "5affeaa3-3d95"
Expires: Tue, 26 Jun 2029 22:44:20 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054051
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6caafced86ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15765
Md5:    ae4f1e965f43a1cdfe1413bde815504e
Sha1:   2c90ed47868c44c354996d1c6b0f69e34b187be6
Sha256: 5336c6e7b9468b0888cdde0c6ab538ee8123081d0a003bea02462180f6c0c42e
                                        
                                            GET /mt/ya/76017.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:20 GMT
Content-Length: 11895
Connection: keep-alive
Last-Modified: Wed, 16 Nov 2016 11:44:08 GMT
Etag: "582c4688-2e77"
Expires: Tue, 26 Jun 2029 22:44:20 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10026788
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cab0ea4763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11895
Md5:    d7eb030f6f344b4023ce87dae21e0337
Sha1:   11edc3203d89cd57b518bbcfa602b46a62db4c60
Sha256: 1ece0c1a8ca95625ae4284980fa61d3ecdc08d3ee65d067b3b40cce235bad7ea
                                        
                                            GET /s/pacifico/v14/FwZY7-Qmy14u9lezJ-6H6M8.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Pacifico
Origin: https://partysexs.com

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 36936
Date: Thu, 27 Jun 2019 06:19:34 GMT
Expires: Fri, 26 Jun 2020 06:19:34 GMT
Last-Modified: Wed, 26 Jun 2019 21:51:12 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 231886
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   36936
Md5:    4b2eb31445cd5a6f6954adae6ec61f72
Sha1:   3bea1adc0e518d06551a0e9cefb17d732b5f84cc
Sha256: a2b12513176345b38586167d753a482844f28207bef5e0413106b1c4fb7b5a26
                                        
                                            GET /mt/f/5554.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:20 GMT
Content-Length: 16438
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2016 02:03:02 GMT
Etag: "58267856-4036"
Expires: Tue, 26 Jun 2029 22:44:20 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10053164
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cae3dff86ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16438
Md5:    3fa87035a2a7970c1612f2cdee2ac076
Sha1:   5970ffb3ccd103df4b8d992815f4d3803d231294
Sha256: 4999fa996e80ea5874105b7576a395e081c39147571359aa4c70bf68e3a28f38
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 1574
Connection: keep-alive
Set-Cookie: __cfduid=d8aa46250257dd4258a5a11474f07bdc51561848261; expires=Sun, 28-Jun-20 22:44:21 GMT; path=/; domain=.globalsign.com; HttpOnly
Expires: Wed, 03 Jul 2019 19:56:38 GMT
X-Powered-By: Undertow/1
Etag: "8c6c92e21b609dc5dec059a323f9a9129d880698"
Last-Modified: Sat, 29 Jun 2019 19:56:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 172
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb0993742a7-OSL


--- Additional Info ---
Magic:  data
Size:   1574
Md5:    9ccde28358d5f0da5bf15a35e36d7c66
Sha1:   8c6c92e21b609dc5dec059a323f9a9129d880698
Sha256: a10f8f8759638b6b70d78628a91dd4eb5b38e7b3ab74f9c70151576f8aeb2e29
                                        
                                            GET /mt/he/267780.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:20 GMT
Content-Length: 13118
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2016 16:09:04 GMT
Etag: "583c56a0-333e"
Expires: Tue, 26 Jun 2029 22:44:20 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054052
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6caede3686ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   13118
Md5:    5d88d25a3787d50601cc8f9138c8a7ae
Sha1:   89c28d47fa5ff249b96f15a6f7756f88e79af807
Sha256: 082d214dbe10c3a78913e771d5078a8f2f20bb3ff188cfc9f436407c58040688
                                        
                                            GET /mt/h/7835.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:20 GMT
Content-Length: 17347
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2016 11:05:09 GMT
Etag: "5826f765-43c3"
Expires: Tue, 26 Jun 2029 22:44:20 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054048
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6caed82f763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17347
Md5:    425a94533e57ef0d27be251de9f36035
Sha1:   3b7442bb246ab2412e23fbc0184a99c77c6ac585
Sha256: b9154e7c9c6b27c8155ea7485b3b1bf3acd42686b37b20f551e74e1f9636e288
                                        
                                            GET /mt/xH/1791188.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 20580
Connection: keep-alive
Last-Modified: Wed, 03 Jan 2018 23:47:11 GMT
Etag: "5a4d6b7f-5064"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054052
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb0ded486ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   20580
Md5:    3ff831f6b88ac458a2487e931313360a
Sha1:   0c6c787aed9babb81e77b1ce1531ee9dfb78c5ea
Sha256: 601c4ae7613b3166f75dd9348123fb90ecf910c859e800ed362c19ab62143046
                                        
                                            GET /mt/HQ/2269395.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 16037
Connection: keep-alive
Last-Modified: Fri, 18 May 2018 04:18:17 GMT
Etag: "5afe5409-3ea5"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054037
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb0e90d763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16037
Md5:    014a6d33b5f5b980406ad5d878b91b1d
Sha1:   6ce4ac007d7f6c8e1940eb8d284eb57f9557d7a2
Sha256: c40a7c112383a97a06fb5f2831cf21bfd155dc3401110a50417700a6bdf5484d
                                        
                                            GET /mt/am/676863.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 17177
Connection: keep-alive
Set-Cookie: __cfduid=d2a34dc719741736e9e4aae8dba0df5bd1561848261; expires=Sun, 28-Jun-20 22:44:21 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Thu, 15 Dec 2016 20:54:24 GMT
Etag: "58530300-4319"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7975908
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb09fe2caf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17177
Md5:    1ed272e0577d78c17db068b456bb5926
Sha1:   214cfcb1dbad94ef6f45158b40deef81c8a01894
Sha256: 2036ff7e2220d8bed99d25f2a64ac3e87f0a0306d6efbb7053dfc68d71407edc
                                        
                                            GET /metrika/watch.js HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         77.88.21.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 44214
Last-Modified: Thu, 20 Jun 2019 12:58:20 GMT
Connection: keep-alive
Etag: "5d0b82ec-acb6"
Content-Encoding: gzip
Expires: Sat, 29 Jun 2019 23:44:21 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   44214
Md5:    2fbdfda813cf327ce24dc187ba73a83e
Sha1:   21bb41e62f394c1d75f8043f89ae3891d5a248ac
Sha256: 8b3c2dbf4445530e5526a5aaf55c66b0a5da23f80693f9a3163ca50a1056f5d3
                                        
                                            GET /mt/Vga/3635091.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 17907
Connection: keep-alive
Last-Modified: Fri, 11 Jan 2019 02:58:14 GMT
Etag: "5c380646-45f3"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7697261
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb20f2086ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17907
Md5:    aab508ecd4b32643b7b550c844d703ba
Sha1:   30c7b507b00e5793c668d9c6f876cd479258cc49
Sha256: 49cc383d90e771042a482b69323bffc430774e4df2cd598f9ed68e161a11d869
                                        
                                            GET /mt/Ho/813667.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 11942
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2016 20:54:08 GMT
Etag: "58599a70-2ea6"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054052
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb2198e763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11942
Md5:    f0901e9175a61260f4340d3004adfeba
Sha1:   fa534f2c8cb950d09f2c4cb57462dee1947ac5f9
Sha256: b7857682645cec5ac9883aacd14b1db2e8634177f53228a0bbc531dfecba2b79
                                        
                                            GET /mt/v/21917.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:18 GMT
Content-Length: 17425
Connection: keep-alive
Last-Modified: Sun, 13 Nov 2016 14:22:08 GMT
Etag: "58287710-4411"
Expires: Tue, 26 Jun 2029 22:44:18 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054045
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6ca07afa75fe-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17425
Md5:    c54581fff8719ade8a5e5f0633c15d0c
Sha1:   7a0eadf13cd55ded49cce24f092d0a9b7dda3de5
Sha256: d2fa2755dd282154693ee89ed1ddd75da2e3af9577fda5f6ce012c2d238dc329
                                        
                                            GET /mt/KD/1596933.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:18 GMT
Content-Length: 25399
Connection: keep-alive
Last-Modified: Tue, 10 Oct 2017 17:07:06 GMT
Etag: "59dcfe3a-6337"
Expires: Tue, 26 Jun 2029 22:44:18 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054047
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6ca0799f8707-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   25399
Md5:    5f24960b900a793b399b16dbf307b3c1
Sha1:   187111e224e09f1ce9d0852cfaa72536ab8335fe
Sha256: 3f33c9793d79e618962cb14f05e34c3a8255c110fdca33c7c19953e3d4581f3d
                                        
                                            GET /mt/Ca/80636.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 16082
Connection: keep-alive
Last-Modified: Wed, 16 Nov 2016 17:57:13 GMT
Etag: "582c9df9-3ed2"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 6192191
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb24f3386ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16082
Md5:    a51de3ecdaa614c46fe0cde177979ea0
Sha1:   2cdcf6498f80dd240a75914a0002563917e0cefa
Sha256: b0490beec865c37ce8174738fef41d4f330306cf066670181e8204c5bf11ca18
                                        
                                            GET /mt/Ja/87934.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 14017
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2016 03:00:03 GMT
Etag: "582d1d33-36c1"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10053161
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb259a5763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14017
Md5:    5e1483842261a137a487bbfe855b71fe
Sha1:   9633ef82db3e3cfcfec3bf732dfab3397169703a
Sha256: de944758a0a9bbad3bd6b66ca42980b2248e3d6e434783dad62988c37263679a
                                        
                                            GET /mt/Jd/243115.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 14240
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2016 14:56:11 GMT
Etag: "583af40b-37a0"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10043168
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb28f3f86ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14240
Md5:    c0f13b3aee0b1b11bd954f90c3e7ff43
Sha1:   58337daca2d4e03bfe30b5adfcdc3c25792b262d
Sha256: dea90d085b7291e6c0f3dd5b7eba4fd3d659f1b0d647c44283505c64013e2a11
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Sat, 29 Jun 2019 21:53:35 GMT
Expires: Sat, 29 Jun 2019 23:53:35 GMT
Last-Modified: Thu, 20 Jun 2019 21:35:04 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17707
Cache-Control: public, max-age=7200
Age: 3047
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17707
Md5:    02736782f3a24c080c78565198dbc789
Sha1:   518a5db4249459d3c7ba8eee95cad5667b6ecd39
Sha256: 8a6a86f539a0cd84e0e9a40f8a6c3eeb7ddfb60e3ec14b73a6c9e7ed413fd57d
                                        
                                            GET /mt/lg/375849.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 12672
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2016 07:17:06 GMT
Etag: "58427172-3180"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10026789
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb289bb763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12672
Md5:    21beeaedb02f47ac05bdc4ce3e2ea1f6
Sha1:   18d3020e433f3fefea668fb76d4a73b9e7017288
Sha256: c5ec621f6e2cae70cc685abdd7252bcbdaaa6d26202765397b38b9c653d369cd
                                        
                                            GET /mt/q/16604.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 14390
Connection: keep-alive
Set-Cookie: __cfduid=d2a34dc719741736e9e4aae8dba0df5bd1561848261; expires=Sun, 28-Jun-20 22:44:21 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Sun, 13 Nov 2016 08:12:10 GMT
Etag: "5828205a-3836"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7977430
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb25b20caf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14390
Md5:    f404813efca046fe3d11fa9f93c4e725
Sha1:   e201c0e0c95b72af91a00e600f6299d9ec3a8669
Sha256: f1959d9108cc47247eecabb72744639835b750b959e1a18d96827668dc20cce5
                                        
                                            GET /mt/sp/850369.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:22 GMT
Content-Length: 11871
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2016 19:48:51 GMT
Etag: "585adca3-2e5f"
Expires: Tue, 26 Jun 2029 22:44:22 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054053
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cba092686ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11871
Md5:    b3d2eba3e2c5c0e1c89e6727c4fa712e
Sha1:   752a274668c4818fc6d6c99d622d0fc4f5db77ee
Sha256: 0dce4371762ad0b4cd6bc4101898972159f6e62116ae6f50f9848424e4729902
                                        
                                            GET /mt/ot/1054213.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:22 GMT
Content-Length: 16074
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2017 12:13:09 GMT
Etag: "587f5bd5-3eca"
Expires: Tue, 26 Jun 2029 22:44:22 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 3156168
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cba0cce763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16074
Md5:    518375c6e5c0e530e18130bb996736a6
Sha1:   95ecf3db6fcc0c61cd4c846ee67e79c9275e135c
Sha256: db54d04ad542d6749c0d8abe205bf8d008c82941d436ee93120ac024bfa4233c
                                        
                                            GET /mt/Ha/85527.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:22 GMT
Content-Length: 11431
Connection: keep-alive
Set-Cookie: __cfduid=d51a5308c2684dd9457fbe986980a994b1561848262; expires=Sun, 28-Jun-20 22:44:22 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Thu, 17 Nov 2016 00:12:10 GMT
Etag: "582cf5da-2ca7"
Expires: Tue, 26 Jun 2029 22:44:22 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7977467
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cba1854caf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11431
Md5:    f19c93b4d31941ffac9a3804e507f1f1
Sha1:   97aed0e5f6bc66920e119911f1befac2bb53234a
Sha256: b463e84b9443d590be61410afe9f2a03da9804ae3db8525835025878a2d55d5b
                                        
                                            GET /mt/ba/53629.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 11433
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2016 05:57:09 GMT
Etag: "582aa3b5-2ca9"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054051
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb25b5a86d1-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11433
Md5:    1eff74f66fc67e88d5eec20f2ad68e33
Sha1:   018f3708a2957e13f7ff8e56522ab76fce7e6a71
Sha256: a8c07605c4c82ba73cc31b873fac0f186e02afdacb1821cbbb15d263ff950f58
                                        
                                            GET /metrika/advert.gif HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         77.88.21.119
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.12.2
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 61
Last-Modified: Mon, 12 Oct 2015 13:09:09 GMT
Connection: keep-alive
Etag: "561bb0f5-3d"
Content-Encoding: gzip
Expires: Sat, 29 Jun 2019 23:44:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, was "advert.gif", from Unix, last modified: Mon Oct 12 15:06:12 2015
Size:   61
Md5:    aad2d5e940637a676e25e6cc7a684a83
Sha1:   c77946775d4c1719c48eb691edfbcf873b0738f5
Sha256: d9d219b8ba39a549d43400945b848dde73269f25dab5b75b85439c451ca0a525
                                        
                                            GET /mt/oR/2302411.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 11975
Connection: keep-alive
Last-Modified: Thu, 24 May 2018 01:10:11 GMT
Etag: "5b0610f3-2ec7"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054054
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbedf25763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11975
Md5:    170b6ac8410ef2f3d707c6d86fae44f8
Sha1:   55e539ef25ea7ccbdaeaf67e4d991a5a274c4157
Sha256: b65f72b1f860c1fa20fd405ccd5b3de03946da5f2124d5dd50d637ab0bd49dff
                                        
                                            GET /mt/ea/56319.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 14013
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2016 09:10:04 GMT
Etag: "582ad0ec-36bd"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10053164
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbeca4086ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14013
Md5:    523aa322a70b3ed7cc16877af0906aac
Sha1:   c4972dcdb67563e791f9f07315648e1f2d4bd88d
Sha256: a2331c3b825c8a64c14222f26daf8bcf7f309b1f7818afd20ccd13b7f34d7aae
                                        
                                            GET /mt/ga/58832.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 17565
Connection: keep-alive
Set-Cookie: __cfduid=d0d36532110ca9546f4e37981ae15ac011561848263; expires=Sun, 28-Jun-20 22:44:23 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Tue, 15 Nov 2016 12:39:09 GMT
Etag: "582b01ed-449d"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 1633892
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbee8becaf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17565
Md5:    4a950bf7831c23ccf8cb5778af759c15
Sha1:   463bc8db8011c66d314877b72db347dc1b7f6a18
Sha256: 7f077fd580ffc886d77bf139635ffeb91d45b35c5a5743ab2010084b1a274d01
                                        
                                            GET /r/collect?v=1&_v=j77&a=335466269&t=pageview&_s=1&dl=https%3A%2F%2Fpartysexs.com%2Fen%2F%3Fc%3D36%26bid%3D0.65%26src_hostname%3D14854234%26source%3D96322551%26target_id%3D23887446%26subid%3Dtcbhta&dr=https%3A%2F%2Fnewtueads.com%2Fz2hepanyg%3Fkey%3Db401f2416f445e1a5a199a065d938685&ul=en-us&de=UTF-8&dt=Free%20Porn%20Tube%2C%20Sex%20Videos%20~%20PartySexs&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=1061213257&gjid=2092379162&cid=1050023484.1561848263&tid=UA-52204191-13&_gid=431256185.1561848263&_r=1&z=1172246186 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Sat, 29 Jun 2019 22:44:23 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /mt/wQ/2258592.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 17387
Connection: keep-alive
Last-Modified: Tue, 15 May 2018 09:15:11 GMT
Etag: "5afaa51f-43eb"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054052
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbf0a5d86ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17387
Md5:    64cdc2efb4d62a30b7bb003dfdc1d3c7
Sha1:   1c9369587bca41ce326e7cb724fc0a8f2d6b394c
Sha256: b303d9792b0e0f21e5677a175aae765e0a38fce68ea4ca22613adeff75effb63
                                        
                                            GET /mt/a6/3068861.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 24808
Connection: keep-alive
Last-Modified: Thu, 25 Oct 2018 15:56:09 GMT
Etag: "5bd1e799-60e8"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054052
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbf0f3d763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   24808
Md5:    e2343a36f550a56f97c9317321b7e63c
Sha1:   7eb7fa02fc5af26536edaa7f2c695ae694b2f347
Sha256: 28438f830682a9cc9a9f88fba2ff4ea2b962f3d5256e03251c2fce385201942d
                                        
                                            GET /mt/IQ/2270613.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:21 GMT
Content-Length: 22701
Connection: keep-alive
Last-Modified: Fri, 18 May 2018 09:33:11 GMT
Etag: "5afe9dd7-58ad"
Expires: Tue, 26 Jun 2029 22:44:21 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054052
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cb25a2675fe-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   22701
Md5:    731b2f15e484e19b5c3a0a392d68f9d8
Sha1:   8b5b4854408450b475851d5ac4dc34a43cb459b4
Sha256: b26592f67607a28958ff33fa579ec0446cfce34ec03a0df907c292baeb8903d5
                                        
                                            GET /mt/HR/2321050.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 18980
Connection: keep-alive
Last-Modified: Sun, 27 May 2018 09:11:09 GMT
Etag: "5b0a762d-4a24"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10053146
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbf8a7b86ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18980
Md5:    f170c6a96445dcce77a5deebe4a0b6ca
Sha1:   410d5ac20a87989444f2544c7b791300d9647292
Sha256: 7613ef8435bc11cf6ecbdcf31ea56d67185cf933bf7d6f78f5c6d2ae9cc67d6a
                                        
                                            GET /mt/hj/527231.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 15682
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2016 11:58:48 GMT
Etag: "5847f978-3d42"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10053167
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbf9f77763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15682
Md5:    38a327b54a726056c631b28552ac6a33
Sha1:   866fa2f845fd3c1f8b133d3ba03f7566760a717c
Sha256: 69ee241895c0441654bae23f48edfddd864d38aa13ac63b258762df33e564fd8
                                        
                                            GET /mt/A/26568.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 18746
Connection: keep-alive
Set-Cookie: __cfduid=d0d36532110ca9546f4e37981ae15ac011561848263; expires=Sun, 28-Jun-20 22:44:23 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Sun, 13 Nov 2016 19:56:07 GMT
Etag: "5828c557-493a"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7977433
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbf99efcaf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18746
Md5:    65303e82fb724e826adeb5f7d8c5f9ba
Sha1:   ff3d98923ce9c2d940887f944216c3a19d798930
Sha256: 773a82eb9c7cae422982a041fbfe8737611df245f743019bc05f63b8a8f329de
                                        
                                            GET /mt/IU/2478912.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 15072
Connection: keep-alive
Last-Modified: Tue, 26 Jun 2018 11:18:04 GMT
Etag: "5b3220ec-3ae0"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 1633968
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbf9ece86d1-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15072
Md5:    c9d888be4891209f72236c9736bb37fb
Sha1:   cd20c37a7db8beb53a31d9811091ba585317305a
Sha256: ee9ee1fe7ce8560311a810def5f836929c1cdeeff6ffd9503ff94540c8f79ca9
                                        
                                            GET /mt/Zs/1039362.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 17945
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2017 19:56:15 GMT
Etag: "587e76df-4619"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 9861147
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbfca9386ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17945
Md5:    e9aaa025fd96d83709e58445e8bcb904
Sha1:   beb43a8a444fac204618385468ae4aaefc3d5387
Sha256: 6afcfeeeef3d2573cd3c6f219c38107fc3848d35dbcc8d9c3c07087a5bf1c931
                                        
                                            OPTIONS /watch/42161184?wmode=7&page-ref=https%3A%2F%2Fnewtueads.com%2Fz2hepanyg%3Fkey%3Db401f2416f445e1a5a199a065d938685&page-url=https%3A%2F%2Fpartysexs.com%2Fen%2F%3Fc%3D36%26bid%3D0.65%26src_hostname%3D14854234%26source%3D96322551%26target_id%3D23887446%26subid%3Dtcbhta&charset=utf-8&browser-info=ti%3A10%3Aj%3A1%3As%3A1176x885x24%3Af%3A10.0.45.2%3Afpr%3A65694993101%3Acn%3A1%3Aw%3A1159x754%3Az%3A120%3Ai%3A20190630004421%3Aet%3A1561848262%3Aen%3Autf-8%3Ac%3A1%3Ala%3Aen-us%3Apv%3A1%3Als%3A1304499603325%3Arqn%3A1%3Arn%3A928391406%3Ahid%3A284112940%3Agdpr%3A14%3Av%3A1609%3Arqnl%3A1%3Ast%3A1561848262%3Au%3A1561848262991463929%3At%3AFree%20Porn%20Tube%2C%20Sex%20Videos%20~%20PartySexs HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Origin: https://partysexs.com
Access-Control-Request-Method: POST

                                         
                                         77.88.21.119
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Max-Age: 1728000
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
                                        
                                            GET /mt/pW/2563610.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 18472
Connection: keep-alive
Last-Modified: Thu, 12 Jul 2018 16:24:17 GMT
Etag: "5b4780b1-4828"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054050
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbfdf93763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18472
Md5:    b5a365bccbfa4679fe3368a449fb078b
Sha1:   d17acf1c9800b6eebe5de91742b271e6c2e14eb4
Sha256: 6f921f7eb8178903bd42238a49ad76f128c82fd0bb55946c9d772d37999b5030
                                        
                                            GET /mt/d3/2915171.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 11520
Connection: keep-alive
Set-Cookie: __cfduid=d0d36532110ca9546f4e37981ae15ac011561848263; expires=Sun, 28-Jun-20 22:44:23 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Sat, 22 Sep 2018 16:17:07 GMT
Etag: "5ba66b03-2d00"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7977471
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbfea59caf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11520
Md5:    d20d5ed838d154db2edfe6561ff5bb2b
Sha1:   df49e286910359d89cd8515c34e5916f2d55e0d2
Sha256: 0a207a781f0305fe5599353623daa225c2b018b4392bc8f06b3c0e7e395d44b4
                                        
                                            GET /mt/DZ/2733155.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 27887
Connection: keep-alive
Last-Modified: Tue, 14 Aug 2018 08:36:13 GMT
Etag: "5b72947d-6cef"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10053508
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbfaf5c75fe-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   27887
Md5:    b3eea9c5b6d8a224093f2d208a41c8d7
Sha1:   b65f8b8261067904a9db231d7e2f5f71907d95b3
Sha256: 881e8df395ee71aecc4cdd12c36d35c0b51cc362b3ed1a72d8f8c692e1f219d0
                                        
                                            GET /mt/Sa/96753.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 14870
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2016 13:27:09 GMT
Etag: "582f01ad-3a16"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10043169
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc19801caec-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14870
Md5:    e051949e81ee45d586017be5cf3c57ac
Sha1:   afd8148cad00cac5c7dfc56bb46c01e1ace65148
Sha256: c4fa3970637c1fd9d66b6d7e6f38e61b4ec937bc488f5c1c9bbd30406250b2e2
                                        
                                            GET /images/favicon/favicon-32x32.png HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 1485
Connection: keep-alive
Last-Modified: Mon, 25 Feb 2019 14:08:49 GMT
Etag: "5c73f6f1-5cd"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10738992
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc19b4686ad-ARN


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit colormap, non-interlaced
Size:   1485
Md5:    f1cc286aefe8cbe7334e2d04caf921d9
Sha1:   3ef775beddf11685c12824f8a05cb1210aa4c592
Sha256: 60b5be15f98ef868ec5f4dfecf73250a9de7ca693747b91a4e56e00e3a5ae337
                                        
                                            GET /images/favicon/favicon-16x16.png HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 901
Connection: keep-alive
Last-Modified: Mon, 25 Feb 2019 14:08:49 GMT
Etag: "5c73f6f1-385"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10738992
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1a84b763a-ARN


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   901
Md5:    ef0570fbbc8886e98ba8cb01543b58da
Sha1:   f0b0104632c2897d86ea665b28a58131616fe24e
Sha256: 2dcfbf2dd4a38e8d5aad1dca7072b3cbe7ef486cfd1154a2b666ae37d2853f99
                                        
                                            GET /mt/Uha/3686384.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 13412
Connection: keep-alive
Set-Cookie: __cfduid=d0d36532110ca9546f4e37981ae15ac011561848263; expires=Sun, 28-Jun-20 22:44:23 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Sat, 19 Jan 2019 06:02:17 GMT
Etag: "5c42bd69-3464"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7381382
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1ad63caf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   13412
Md5:    48076665e5b01c71b285f35aaf732068
Sha1:   7adabff73299ccaae6129e5ae6a0cf0e450bd0da
Sha256: 031b349231ddcfb8b747f64fd879c3b33f4f372eeed175ebb76ac47b63ab143c
                                        
                                            GET /mt/Ic/190940.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 12750
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2016 09:57:13 GMT
Etag: "58380af9-31ce"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10016340
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1af5086d1-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12750
Md5:    7f43e12d706811be9c5a1a732a9f9f11
Sha1:   6784af9b7213bd7bdfa6ae31f99466a21f71604b
Sha256: 714ba6738f43e5037b0a145884d92301316826e4c3af2b74c0ba2d8af0c5f5d5
                                        
                                            GET /mt/Z/51699.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 15613
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2016 03:30:10 GMT
Etag: "582a8142-3cfd"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10053167
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cbfaa678707-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15613
Md5:    23e80990c5c546c91b30ed21ad077da7
Sha1:   c5a60f3b843515897c1e16bc505b2af0284217e9
Sha256: 119b11a6809e725504f769712fe7fc5c761f0809e2dbbc0290ea12cb3ad96c75
                                        
                                            GET /images/flags/en.png HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/assets/desktop.729af555430b53ad1224.min.css
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 1136
Connection: keep-alive
Last-Modified: Mon, 25 Feb 2019 14:08:49 GMT
Etag: "5c73f6f1-470"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10739044
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1b82bcaec-ARN


--- Additional Info ---
Magic:  PNG image, 22 x 14, 8-bit colormap, non-interlaced
Size:   1136
Md5:    d5b8c7206a61b2a6f03894fe52dda490
Sha1:   77f047b9fafeba8e4278f37ac898fd59ab2d3040
Sha256: 85c0e47b522cf99d0b32a2577a5c47afef14bfd5cc60f2ae01bc4d81df77d1a3
                                        
                                            GET /mt/Na/91003.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 11928
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2016 13:00:12 GMT
Etag: "582da9dc-2e98"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054053
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1bb5786ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11928
Md5:    acf618f8e616a69a8e24c02398cfe04c
Sha1:   d1ed15fcc7a72045d84f08e31644a1e0e89b3cc7
Sha256: 4918716c70daf93b46cbfac03e5507d65ed7c4d4d9670a007dfc269b0ec6d1ac
                                        
                                            GET /mt/na/65405.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 10528
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2016 22:02:16 GMT
Etag: "582b85e8-2920"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 5054017
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1c857763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10528
Md5:    fd2d22682d0c20af5ec832a0dcebdd2a
Sha1:   3dd93a151fb80d325030f4155133657d112fe883
Sha256: c6f77361fc8f89a6d8a2cf06fea9e899e90eb74ccd7157d3c7674f239eff2c60
                                        
                                            GET /mt/M4/3002352.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 16971
Connection: keep-alive
Set-Cookie: __cfduid=d0d36532110ca9546f4e37981ae15ac011561848263; expires=Sun, 28-Jun-20 22:44:23 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Thu, 11 Oct 2018 18:19:06 GMT
Etag: "5bbf941a-424b"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7973424
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1cd98caf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16971
Md5:    581bae328fffa390d21034f35d99b71f
Sha1:   0dd85095294f06609485fc34733ea0a9dac9bc8e
Sha256: 0d7dffd9f690ef5c126477bfa385dc23732a041841213fd08cd8690bad2a2f42
                                        
                                            GET /mt/lI/1831096.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 16314
Connection: keep-alive
Last-Modified: Sat, 13 Jan 2018 06:54:17 GMT
Etag: "5a59ad19-3fba"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 9861885
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1d851caec-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16314
Md5:    c6211b377c6ab714fca069d127479162
Sha1:   d2123b8e6f2b85e992b814c1c2b82188755ce8db
Sha256: e70d2a4101be4cbc80bc7a2ae1bdea975fe6479883b34b0fef2cdde7e0b87243
                                        
                                            GET /mt/xV/2519798.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 12037
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2018 06:48:12 GMT
Etag: "5b3c6dac-2f05"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054050
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1cf5986d1-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12037
Md5:    d4608ec9386bbe176d6c1f004fb34c3e
Sha1:   4f2446304b5181a6320b90081d478a5ad594190d
Sha256: a4c6f263358e8ef2bf48c61df68fd95b0b90ceba5655c189da8a28ad411857be
                                        
                                            GET /mt/u5/3036711.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 18304
Connection: keep-alive
Last-Modified: Thu, 18 Oct 2018 19:33:17 GMT
Etag: "5bc8dffd-4780"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10025755
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1eb6386ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18304
Md5:    1c513712688aad79a9f9b19a2d2fbe0e
Sha1:   1c8509ee7f0ca9fec156f8be1fb50279e87a2489
Sha256: 736dc237b0bbc308833b08a39ec248ae80d7886bbc18383694df2904d5c5d582
                                        
                                            GET /mt/l5/3027393.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 15811
Connection: keep-alive
Last-Modified: Tue, 16 Oct 2018 20:39:13 GMT
Etag: "5bc64c71-3dc3"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10053145
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1e867763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15811
Md5:    e219e4e0af915cabef56346ac31532c6
Sha1:   11cf1169e5864545b751ab026d089302de211b18
Sha256: 6abbf1994d46aaa01bc213c81ce022b5623eaf2abfb205a2e6e40ab47b9bc7c3
                                        
                                            GET /mt/EJ/1902294.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 20453
Connection: keep-alive
Last-Modified: Thu, 25 Jan 2018 17:24:16 GMT
Etag: "5a6a12c0-4fe5"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054052
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1f87dcaec-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   20453
Md5:    351bb4e63873412f85c57f3bda42c032
Sha1:   fbfdd97d107ad36755a38ad0527088d50ca40b15
Sha256: 12f08e856ba238cba43aa228432a5e0edd6c47a6f47f9bc9be52e2cde5db6e8e
                                        
                                            GET /mt/lc/167525.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 13288
Connection: keep-alive
Set-Cookie: __cfduid=d0d36532110ca9546f4e37981ae15ac011561848263; expires=Sun, 28-Jun-20 22:44:23 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Thu, 24 Nov 2016 12:13:11 GMT
Etag: "5836d957-33e8"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 3257843
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1fdd8caf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   13288
Md5:    bed56ed2eaaa33801e9812e787d22eb5
Sha1:   a7ca2162f791028c64750de77a5903c235be56d9
Sha256: 7c9c8877376d7424214bf51af680ee5d19f7a37443d739d403ea552a4117c961
                                        
                                            GET /images/select-arrow.png?v=1 HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/assets/desktop.729af555430b53ad1224.min.css
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 126
Connection: keep-alive
Last-Modified: Mon, 25 Feb 2019 14:08:49 GMT
Etag: "5c73f6f1-7e"
Expires: Tue, 26 Jun 2029 22:44:23 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10739060
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc1d84175fe-ARN


--- Additional Info ---
Magic:  PNG image, 18 x 12, 8-bit/color RGBA, non-interlaced
Size:   126
Md5:    c2d102a21da0fb578ea4b5bf163ec5e7
Sha1:   ac1e910e40171b4b5da59ce74384dfea33d70aff
Sha256: 336e76a6b31e6a45533219a2554fa9cfdb542fe91bdd0276844f61b5812f9377
                                        
                                            GET /mt/vc/177373.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 12557
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2016 21:22:13 GMT
Etag: "58375a05-310d"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 3221781
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc20b7786ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12557
Md5:    fbba9267db260c972e21c7f9680547ea
Sha1:   33fb015bcefe76f2fba03dbb1c149ae3d1fdd9ca
Sha256: 7a8ed4a1778e121cf4417a90acf1089d07d6fd52a55cdf93be31dd2a997039e6
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: newtueads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: u_pl=14854234; ain=eyJhbGciOiJIUzI1NiJ9.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.pskEMeM7gURw0ZCm22CN2dYMIWZMks-mTZpDhrFmpOU; cjs=t; uid_id2=1471bf0d-f27f-4539-ae62-e8d120d9971d:1:1; pdhtkv=true; uncs=1; pdhtkv28=true; uncs28=1

                                         
                                         198.134.112.242
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.15.1
Date: Sat, 29 Jun 2019 22:44:23 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Accept-Ranges: bytes
Last-Modified: Wed, 26 Jun 2019 05:41:14 GMT
Server: Apache
Etag: 125E01951113A77B10A3E544F4998DF6CF71C0AD
Cache-Control: max-age=305577,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp10
X-HW: 1561848264.cds019.sk1.h2,1561848264.cds024.sk1.c
Connection: keep-alive
Content-Length: 281


--- Additional Info ---
Magic:  data
Size:   281
Md5:    b888e6c44e83e144a7e9966e616688ee
Sha1:   125e01951113a77b10a3e544f4998df6cf71c0ad
Sha256: a827b2c852950a1812406f25c0f4a6007af25c0eac955dee331a88b3bf294951
                                        
                                            GET /mt/ca/54049.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 10290
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2016 06:35:06 GMT
Etag: "582aac9a-2832"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10026792
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc218becaec-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10290
Md5:    5be090f4834b86ce964d18f351d5ad58
Sha1:   84939886b50e1ade7785a12584566fdd4efb89a3
Sha256: 742afcb3dd953e8d56635579382f93847c4cc8d1b051184bf864e531e6879dce
                                        
                                            GET /mt/M6/3106356.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 12833
Connection: keep-alive
Last-Modified: Fri, 02 Nov 2018 09:34:06 GMT
Etag: "5bdc1a0e-3221"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054051
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc22b7f86ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12833
Md5:    0eb4f7fa1ad1bdbc5e9071e586fc044c
Sha1:   a4688b3b24fefbfdd46c70b58760b150ddfa1545
Sha256: 4c7c4a81a26a6453d1b9695dbba5bfeb29a4a136358921431548589a01e568cd
                                        
                                            GET /mt/D/29818.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 11665
Connection: keep-alive
Last-Modified: Sun, 13 Nov 2016 23:39:10 GMT
Etag: "5828f99e-2d91"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054052
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc21882763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11665
Md5:    a2942fbf156202fbce94280dbfaf1e65
Sha1:   9ebefffb4f18d2dd37f56022ed455a328eae0c23
Sha256: 5e57a032404b2c16057688860be97ea97dc0d23aa78561066f16fda76d7d076f
                                        
                                            GET /mt/nH/1781122.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 18865
Connection: keep-alive
Set-Cookie: __cfduid=d570be4089609afdc9d44c1c8c5118e141561848264; expires=Sun, 28-Jun-20 22:44:24 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Mon, 01 Jan 2018 09:49:17 GMT
Etag: "5a4a041d-49b1"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7974416
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc21e0ccaf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18865
Md5:    3fa70a9be8f6c6a1477210637079eb21
Sha1:   0d80d384a0b2364eb780ecd449b5dc5890fe0b84
Sha256: bc7e0ddea9e734d2ff999352cb6940fe39d8d8fc4a965a6b8371946e9a313891
                                        
                                            GET /mt/H2/2893547.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 16319
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 23:24:12 GMT
Etag: "5ba0379c-3fbf"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054051
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc5df95caec-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16319
Md5:    e27362671cf2717b66c4baa696b2d9e8
Sha1:   83f9fee3b970a1f74c4e82771fa899a058f4a85d
Sha256: e1a6354e1a9a18948ae6c97b774b7aeae443458995b39cf2723d0a38ac716ace
                                        
                                            GET /mt/wV/2518177.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 18486
Connection: keep-alive
Last-Modified: Tue, 03 Jul 2018 21:49:12 GMT
Etag: "5b3bef58-4836"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10037099
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc21f6e86d1-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18486
Md5:    a817f80eb3859eafb8e6af1d37704c3f
Sha1:   bb8cbae4bc03fe4af4d49d14f21be738e282fa6a
Sha256: 69510eda6fdbc004319c89f87fee40b641767378d1ff4f569f5303347944575d
                                        
                                            GET /mt/IQ/2270952.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 21621
Connection: keep-alive
Last-Modified: Fri, 18 May 2018 11:33:16 GMT
Etag: "5afeb9fc-5475"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 1633969
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc5dc9086ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   21621
Md5:    1cc97b58c569351d432b36ccc542824d
Sha1:   8b326a545bfb60674e63549b6def595b5c94a889
Sha256: c68556fccf9956e11f5f0484e5ef74f2ace745223879a79354d35fd99304c614
                                        
                                            GET /mt/vha/3661168.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 15584
Connection: keep-alive
Last-Modified: Wed, 16 Jan 2019 00:39:04 GMT
Etag: "5c3e7d28-3ce0"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7852304
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc5ea9a763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15584
Md5:    f64cfb8715d7570cd35edab0c62b692b
Sha1:   26d854d189b4fd8b4b2174c9e84bfb5b721f4deb
Sha256: 52f81ca1bad4fd12ae2c5bcc17d23c8ecf5067d137450957138ec88f94536ff9
                                        
                                            GET /mt/ML/2014156.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 16803
Connection: keep-alive
Last-Modified: Wed, 14 Feb 2018 13:40:18 GMT
Etag: "5a843c42-41a3"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 6142126
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc5ffafcaec-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16803
Md5:    f161f47527138b37700a5ae7d616d38f
Sha1:   cdc7f5bfe059f0fa71b25d8cd6721f7908c22d4f
Sha256: 0b35e645fb2635047a78d8721982e8e83f9d0f68a261a461435cd634e97305a5
                                        
                                            GET /mt/NQ/2275004.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 19448
Connection: keep-alive
Set-Cookie: __cfduid=d570be4089609afdc9d44c1c8c5118e141561848264; expires=Sun, 28-Jun-20 22:44:24 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Sat, 19 May 2018 04:58:10 GMT
Etag: "5affaee2-4bf8"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7977469
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc5ed2fcaf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   19448
Md5:    076034d545b91fbec3f38b39791039eb
Sha1:   5555c12b773b6461868cbbf441aefadf9951effd
Sha256: f0cc6f9558c0481779f00b5669ef08df8dc0847ebdbb2d5d32a262c68638f776
                                        
                                            GET /mt/Ca/80302.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 17307
Connection: keep-alive
Last-Modified: Wed, 16 Nov 2016 17:22:16 GMT
Etag: "582c95c8-439b"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 2768618
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc2286f75fe-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17307
Md5:    85250973f1d2a4e2aa0d79eb7879aecf
Sha1:   95bc10784964f067edbe64a503416b42d715f1a3
Sha256: 08f3d25b423b8023a82b21a84eb3c863d4e95a33f9eb53ddd7aa751acdf675c4
                                        
                                            GET /mt/iQ/2244629.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 10429
Connection: keep-alive
Last-Modified: Wed, 09 May 2018 08:50:16 GMT
Etag: "5af2b648-28bd"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10053168
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc61ff7caec-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10429
Md5:    5eab01678ba4cc7c6d82b448e58569b4
Sha1:   dbf5fa65cfd3b0d7a9abe4756a47508873472a20
Sha256: 4dde6d6e97db1f6d18ed74ac2702e26948946fd14751972a7451fad461eb1d1f
                                        
                                            GET /mt/m/12573.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 14170
Connection: keep-alive
Last-Modified: Sun, 13 Nov 2016 03:32:14 GMT
Etag: "5827debe-375a"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 6142056
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc60c9786ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14170
Md5:    e5754d12a03e7d39a02ddbf5fb7b63fb
Sha1:   23e258ae9006eccf2ae2ec7f2c4a6fcd4ca1744c
Sha256: 6f068607f9c9c34a82414ca6fbdea9388fc75c9fed675d230afda0997813f982
                                        
                                            GET /mt/J0/2791548.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 18724
Connection: keep-alive
Last-Modified: Mon, 27 Aug 2018 00:07:16 GMT
Etag: "5b8340b4-4924"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10053146
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc61ac4763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18724
Md5:    bd22ae3c5efc8967402ad3ad24052ae9
Sha1:   8a66f97e8989f7a15dae07e6ee184edc6fcac093
Sha256: 8dbdb4a7726e6c78b3cf81d310152acac2e42deea7c218f79fabeb7c7a44da63
                                        
                                            GET /mt/w/22984.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 14460
Connection: keep-alive
Set-Cookie: __cfduid=d570be4089609afdc9d44c1c8c5118e141561848264; expires=Sun, 28-Jun-20 22:44:24 GMT; path=/; domain=.ninahartleymovies.com; HttpOnly
Last-Modified: Sun, 13 Nov 2016 15:40:08 GMT
Etag: "58288958-387c"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 7977472
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc61d6fcaf8-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14460
Md5:    015a5616ae4e590ed1fa294b95d5d2e7
Sha1:   b223605cd8c58f83a2130155416737b2baff0d4a
Sha256: 3693520c0185050aae171ac4107cf37233ce775080d96cd59b25206aaf955a69
                                        
                                            GET /mt/M1/2846760.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 17060
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2018 14:10:15 GMT
Etag: "5b9286c7-42a4"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 5038816
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc62822caec-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17060
Md5:    ce2365411849061d72cb8d3bac620a71
Sha1:   fdabb3c33a856c6a9c78e9ed2a8f7a515870045e
Sha256: c82de789cdb7455aafb706b08abbde775aa2638061a8ea1133cd1018e97af282
                                        
                                            GET /mt/H5/3049889.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 11629
Connection: keep-alive
Last-Modified: Sun, 21 Oct 2018 15:45:14 GMT
Etag: "5bcc9f0a-2d6d"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 6141675
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc6184486d1-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11629
Md5:    b03cf19599f426d4076d3e286a02d951
Sha1:   3182b71548ed41fb876dec0840fef7cbc3967d29
Sha256: e18f4c78edf68dc6b170669e86de3d45eb41b41bf3d7210b674ad97c213f6c5a
                                        
                                            GET /mt/AW/2574988.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 14755
Connection: keep-alive
Last-Modified: Sat, 14 Jul 2018 20:52:12 GMT
Etag: "5b4a627c-39a3"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 4536959
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc63ca286ad-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14755
Md5:    da547ea79910eac78ff33aa917daf09d
Sha1:   96d6d5e53bcae556a191086d1b7d7b609f29989e
Sha256: da6eb1eb46b15986a19c005006312fa004c418fe4b21e65a6359b038210cd6ca
                                        
                                            GET /mt/cK/1926716.jpg HTTP/1.1 
Host: partysexs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta
Cookie: __cfduid=d45de6a96065be9662b90c4e65060b1861561848257; 4e370a04f52d7a27ecc861572d42ae1127664116=Z2REdW4yNUtQeHFNeFg2MVZBT2NrMVlQNU9DRldnOUhNVFUyTVRnME9ESTFOeTB3TFRBPQc; a360f60dec25ca15279204333da0957f67308=cVVKVWkwM3VLUVlUSm1OelF6WlRnME9HUTROR0V4TnpGbU5qbGxOelEzT0RNeVlUSXhPR1E9a; source=96322551; subid=tcbhta

                                         
                                         104.18.47.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 29 Jun 2019 22:44:24 GMT
Content-Length: 16200
Connection: keep-alive
Last-Modified: Mon, 29 Jan 2018 18:29:06 GMT
Etag: "5a6f67f2-3f48"
Expires: Tue, 26 Jun 2029 22:44:24 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Age: 10054055
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4eeb6cc63adb763a-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16200
Md5:    b1f9860eb35e03cbc089e6d0d0de713a
Sha1:   6d6713a53b7586e0f51e663d17c440e6a0fef23e
Sha256: 48415bb26b0d9f39f3b045aeead91d91fb1bbd5ca940880dec012d78f6b43040
                                        
                                            GET /mt/ja/61559.jpg HTTP/1.1 
Host: partysexs1.ninahartleymovies.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://partysexs.com/en/?c=36&bid=0.65&src_hostname=14854234&source=96322551&target_id=23887446&subid=tcbhta

                                         
                                         172.64.109.5