datawav.club/school-exam-undressing/
173.208.199.194301 Moved Permanently 178 B URL HTTP/1.1 datawav.club/school-exam-undressing/
IP 173.208.199.194:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /school-exam-undressing/ HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 26 Jan 2023 09:39:40 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://datawav.club/school-exam-undressing/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5967
Expires: Thu, 26 Jan 2023 11:19:08 GMT
Date: Thu, 26 Jan 2023 09:39:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e46725831d8d722872bf68d752f4c5
cf37793a1b73e3f84fe6c37fb27382c83b49dbc0
0582b6180687dd95c7fd728f1b9db4495b807151e309b608ad203d69708f9da6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0582B6180687DD95C7FD728F1B9DB4495B807151E309B608AD203D69708F9DA6"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15333
Expires: Thu, 26 Jan 2023 13:55:14 GMT
Date: Thu, 26 Jan 2023 09:39:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 08:42:53 GMT
content-type: application/json
age: 3408
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2293
Expires: Thu, 26 Jan 2023 10:17:54 GMT
Date: Thu, 26 Jan 2023 09:39:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Se7t3yeitnbCKJEuXrylS3O9BmIaNg4fr1Z3TjSykpFmllKPA4exg4lE+hFbAAuahu4P5oXsk3Nuu+etMmmnwA==
x-amz-request-id: 4HE1XMQ49TC4ZBJM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 08:48:54 GMT
age: 3047
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:41 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9c01eaf38a8ccbf6ceeccc204457d63a
14ba5c5c1aceb20c2cc5a69006f5ed42b0dd507e
f10053e834a78a33feb0551092e3f14878a6604bb607d5eb978ebb64734cbb18
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F10053E834A78A33FEB0551092E3F14878A6604BB607D5EB978EBB64734CBB18"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3596
Expires: Thu, 26 Jan 2023 10:39:37 GMT
Date: Thu, 26 Jan 2023 09:39:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 08:41:40 GMT
age: 3481
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
datawav.club/school-exam-undressing/
173.208.199.194200 OK 13 kB URL HTTP/1.1 datawav.club/school-exam-undressing/
IP 173.208.199.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 64ac681eede3ade4ed94b08eb46dd201
fb02d02d44d2d0ce8cb7bd999df737329540d502
0c01ffe98229a0e33fcd38e7bf70eb4fa846558578d222c277670c1f967491a1
GET /school-exam-undressing/ HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://datawav.club/wp-json/>; rel="https://api.w.org/", <https://datawav.club/wp-json/wp/v2/posts/293684>; rel="alternate"; type="application/json", <https://datawav.club/?p=293684>; rel=shortlink
X-ElasticPress-Query: true
Content-Encoding: gzip
X-Cache-Status: HIT
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5168
Expires: Thu, 26 Jan 2023 11:05:49 GMT
Date: Thu, 26 Jan 2023 09:39:41 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:39:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
datawav.club/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
173.208.199.194200 OK 12 kB URL HTTP/1.1 datawav.club/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 173.208.199.194:0
File type ASCII text, with very long lines (43771)
Hash 88f413500303dc21250157a6aa913a32
ca138ec102d96e6d7b30bf83b7dab60a16f0b5d6
65e072ca8d53bf38d5dde355a039a61f6c7204206a9a58ded75d2d2730cc0999
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 28 Aug 2022 06:31:23 GMT
Vary: Accept-Encoding
ETag: W/"630b0bbb-15b64"
Expires: Sat, 06 Jan 2024 06:11:25 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 715f2a2c57230b2e1aedef83c76e0cbc
df5a219b8564a6c8fbe802e574ba625be7f204ca
ca239808557d30d1df2527ae94987866734b640bfd631282414a39eac87b872c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:39:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
datawav.club/wp-content/plugins/elasticpress/dist/css/related-posts-block-styles.min.css?ver=3.3
173.208.199.194200 OK 585 B URL HTTP/1.1 datawav.club/wp-content/plugins/elasticpress/dist/css/related-posts-block-styles.min.css?ver=3.3
IP 173.208.199.194:0
File type ASCII text, with very long lines (698)
Hash 4a29f243de4db57d16a28456bf19954a
894346c1a950364903cca4273974e0153dfa3b2d
861c2ef18073d68121f761bcf826617adf97a2d54629efb8b9ef7670a3f7d09c
GET /wp-content/plugins/elasticpress/dist/css/related-posts-block-styles.min.css?ver=3.3 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Oct 2022 05:16:11 GMT
Vary: Accept-Encoding
ETag: W/"635f5a1b-399"
Expires: Sat, 06 Jan 2024 06:11:25 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
push.services.mozilla.com/
34.218.168.248101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.168.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BZCnEocqEClH64cfnJirkw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sBO2oX0Fxw3Fe/dnwJPmFIChMOQ=
datawav.club/wp-content/themes/wellington/js/navigation.js?ver=20160719
173.208.199.194200 OK 1.6 kB URL HTTP/1.1 datawav.club/wp-content/themes/wellington/js/navigation.js?ver=20160719
IP 173.208.199.194:0
File type ASCII text, with CRLF line terminators
Hash a73417e3fe8baa2f33f152e3bbc14097
622a93a734e15fc786f8f6887554c2c253028aad
8cb4ff8750d3f21e630c95a3c3ed5fc046e232b8c66c94c4580119bf4ae30c94
GET /wp-content/themes/wellington/js/navigation.js?ver=20160719 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Apr 2017 08:17:29 GMT
Vary: Accept-Encoding
ETag: W/"58f47a19-1538"
Expires: Sat, 06 Jan 2024 06:11:23 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-content/themes/wellington/style.css?ver=1.0.6
173.208.199.194200 OK 9.1 kB URL HTTP/1.1 datawav.club/wp-content/themes/wellington/style.css?ver=1.0.6
IP 173.208.199.194:0
File type ASCII text, with very long lines (355), with CRLF line terminators
Hash dea6095724497c9701e5e96321ea6bd0
a4bd04afdf2ede1b155b87872a34d1c97e443fe2
7ba56aa8ba7a9708aa49cc91cdd1db8a177af6505a735e68fa2f85a7e51b3d4c
GET /wp-content/themes/wellington/style.css?ver=1.0.6 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Apr 2017 08:17:29 GMT
Vary: Accept-Encoding
ETag: W/"58f47a19-c499"
Expires: Sat, 06 Jan 2024 06:11:25 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-content/themes/wellington/css/themezee-related-posts.css?ver=20160421
173.208.199.194200 OK 931 B URL HTTP/1.1 datawav.club/wp-content/themes/wellington/css/themezee-related-posts.css?ver=20160421
IP 173.208.199.194:0
File type ASCII text, with CRLF line terminators
Hash 99fddbd49303e57f150b016c8714159d
ed798b602726b08ea1e331d61469aab3138a558c
c2345b323c0571f8d9c95256a1d44ceefd33a0791e786afe4a4a534060e3275f
GET /wp-content/themes/wellington/css/themezee-related-posts.css?ver=20160421 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Apr 2017 08:17:29 GMT
Vary: Accept-Encoding
ETag: W/"58f47a19-1514"
Expires: Sat, 06 Jan 2024 06:11:23 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
173.208.199.194200 OK 4.2 kB URL HTTP/1.1 datawav.club/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 173.208.199.194:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 28 Aug 2022 06:31:23 GMT
Vary: Accept-Encoding
ETag: W/"630b0bbb-2bd8"
Expires: Sat, 06 Jan 2024 06:11:25 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/uomdacwoqbvxwxj.php
173.208.199.194200 OK 11 kB URL HTTP/1.1 datawav.club/uomdacwoqbvxwxj.php
IP 173.208.199.194:0
File type ASCII text, with very long lines (10335)
Hash 4af732778a4b8506aaf1f583ea84d069
fca343d463d97a76b757089ab5c251cae79ed076
0f52b907a035b6216a4d9d10eb7ca30164efb6911546e7721e6c6ad5787e8958
GET /uomdacwoqbvxwxj.php HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
173.208.199.194200 OK 5.0 kB URL HTTP/1.1 datawav.club/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 173.208.199.194:0
File type ASCII text, with very long lines (15660)
Hash 1b982d290af16dac5885f21a198aaa66
f847ca85d23c2f240938bbde0135f3de97925759
0b6e238cc0728a0bace390dfff472ff8bb5a5fd4714bcfcdac7c28621d67b8dc
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 28 Aug 2022 06:31:23 GMT
Vary: Accept-Encoding
ETag: W/"630b0bbb-48b9"
Expires: Sat, 06 Jan 2024 06:11:26 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-content/themes/wellington/css/genericons/genericons.css?ver=3.4.1
173.208.199.194200 OK 16 kB URL HTTP/1.1 datawav.club/wp-content/themes/wellington/css/genericons/genericons.css?ver=3.4.1
IP 173.208.199.194:0
File type ASCII text, with very long lines (18732), with CRLF line terminators
Hash f9330a5b1ff4bb3d35693982b212e4bd
c2c837ab1e60cfec1d60eaf6a1e2ecfcf8c7b884
3019eb8fd0dc294ad6c3cce11f5b7ae2f1bf72fe259dc2b54b625e74af4e33ee
GET /wp-content/themes/wellington/css/genericons/genericons.css?ver=3.4.1 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Apr 2017 08:17:29 GMT
Vary: Accept-Encoding
ETag: W/"58f47a19-6f71"
Expires: Sat, 06 Jan 2024 06:11:25 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
173.208.199.194200 OK 31 kB URL HTTP/1.1 datawav.club/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 173.208.199.194:0
File type ASCII text, with very long lines (65447)
Hash 7a6e4a1e4a67fac0cd39ca1dd1982f47
a8bf880e5db17a703293d5a3c92623a97d5a1df1
daf4bcb15594deb268cc05f030ccaf8dfe4acab417758dd16a6f3b2d86d2908f
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 28 Aug 2022 06:31:23 GMT
Vary: Accept-Encoding
ETag: W/"630b0bbb-15db1"
Expires: Sat, 06 Jan 2024 06:11:25 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
i0.wp.com/s.smutty.com/media_smutty/f/u/c/k/b/fuckinginsalem-s9uvy-d47f91.jpg
192.0.77.2200 OK 48 kB URL HTTP/2 i0.wp.com/s.smutty.com/media_smutty/f/u/c/k/b/fuckinginsalem-s9uvy-d47f91.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 620x486, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cc9aaefa4805a373717c99570a1b0d6b
696b97bf0e5b0f47760a39ab9e7e3cca975a0c9b
f60e51b4188069be75b6a6a65efa70d9a22901ff85f954405fe0fdbe752e13e0
GET /s.smutty.com/media_smutty/f/u/c/k/b/fuckinginsalem-s9uvy-d47f91.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: image/webp
content-length: 47992
last-modified: Thu, 19 Jan 2023 19:00:30 GMT
expires: Sun, 19 Jan 2025 07:00:30 GMT
cache-control: public, max-age=63115200
link: <http://s.smutty.com/media_smutty/f/u/c/k/b/fuckinginsalem-s9uvy-d47f91.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4dc9b5890f1ea17e"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/albums193.zbporn.com/main/9998x9998/267000/267123/6338600.jpg
192.0.77.2200 OK 41 kB URL HTTP/2 i1.wp.com/albums193.zbporn.com/main/9998x9998/267000/267123/6338600.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x667, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8a73094b4b2787cb8872e1712ef44c74
61d8c6555261a904413b2bbb9b1b401113113bb5
3f94308de17eac9de62d3d74fb13709bbd91516ca648e6b4211000e44ce2f214
GET /albums193.zbporn.com/main/9998x9998/267000/267123/6338600.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: image/webp
content-length: 40842
last-modified: Fri, 20 Jan 2023 12:47:42 GMT
expires: Mon, 20 Jan 2025 00:47:42 GMT
cache-control: public, max-age=63115200
link: <http://albums193.zbporn.com/main/9998x9998/267000/267123/6338600.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "abb17e45cc680e99"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/2.bp.blogspot.com/-_6XfWv8vKSk/UU6fnczZFWI/AAAAAAAAXSs/mu14Le5TXcA/s1600/008.jpg
192.0.77.2302 Found 138 B URL HTTP/2 i0.wp.com/2.bp.blogspot.com/-_6XfWv8vKSk/UU6fnczZFWI/AAAAAAAAXSs/mu14Le5TXcA/s1600/008.jpg
IP 192.0.77.2:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /2.bp.blogspot.com/-_6XfWv8vKSk/UU6fnczZFWI/AAAAAAAAXSs/mu14Le5TXcA/s1600/008.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: text/html
content-length: 138
location: https://2.bp.blogspot.com/-_6XfWv8vKSk/UU6fnczZFWI/AAAAAAAAXSs/mu14Le5TXcA/s1600/008.jpg
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.nudesportsblog.com/digest/20110522/catherine_01b_dig.jpg
192.0.77.2200 OK 27 kB URL HTTP/2 i0.wp.com/www.nudesportsblog.com/digest/20110522/catherine_01b_dig.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x680, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8a99c7d884f09eeed124e395f5d0b0ea
4af5a697cbe12e31a57139bffa15e96f679055cc
773543f65bc64cf2932796b5c2e973f2ab3aff0c9ed27e08860fee6d5f42f2a4
GET /www.nudesportsblog.com/digest/20110522/catherine_01b_dig.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: image/webp
content-length: 26746
last-modified: Fri, 09 Dec 2022 14:25:30 GMT
expires: Mon, 09 Dec 2024 02:25:30 GMT
cache-control: public, max-age=63115200
link: <http://www.nudesportsblog.com/digest/20110522/catherine_01b_dig.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4a3c82734d1de877"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/40.media.tumblr.com/59587cd41ade5b7ad067b9f12b95cdf9/tumblr_n9y1ukSXZQ1rcar8oo1_1280.jpg
192.0.77.2200 OK 55 kB URL HTTP/2 i0.wp.com/40.media.tumblr.com/59587cd41ade5b7ad067b9f12b95cdf9/tumblr_n9y1ukSXZQ1rcar8oo1_1280.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x1334, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 03e555013fcf45ed8a141b2291c80ce3
1f4f85ad5cf41083170bf75c81102055cbedf01d
9ef43ad8bafec985054df0d21c1a573fdb924654ca11daa46bb35413aeb5421c
GET /40.media.tumblr.com/59587cd41ade5b7ad067b9f12b95cdf9/tumblr_n9y1ukSXZQ1rcar8oo1_1280.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: image/webp
content-length: 54722
last-modified: Thu, 03 Nov 2022 15:13:56 GMT
expires: Sun, 03 Nov 2024 03:13:56 GMT
cache-control: public, max-age=63115200
link: <http://40.media.tumblr.com/59587cd41ade5b7ad067b9f12b95cdf9/tumblr_n9y1ukSXZQ1rcar8oo1_1280.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4e1584d700c6c134"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
qgxbluhsgad.com/solid.gif?z=1830123&abvar=0
62.122.171.6200 OK 43 B URL HTTP/2 qgxbluhsgad.com/solid.gif?z=1830123&abvar=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
Analyzer Verdict Alert quad9 Sinkholed
POST /solid.gif?z=1830123&abvar=0 HTTP/1.1
Host: qgxbluhsgad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
i2.wp.com/www.amateurscrush.com/wp-content/uploads/2017/08/graduated-college-girl-dressed-undressed-pics.jpg
192.0.77.2200 OK 34 kB URL HTTP/2 i2.wp.com/www.amateurscrush.com/wp-content/uploads/2017/08/graduated-college-girl-dressed-undressed-pics.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 552x574, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9e56e62156659141a7ff91766356ceef
b514f76b87bce662c516f09f8f9a87d1a8e83322
18a7e5e6e95576b9cbf229287478d8403229f70574c7f627e56322548655b89b
GET /www.amateurscrush.com/wp-content/uploads/2017/08/graduated-college-girl-dressed-undressed-pics.jpg HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: image/webp
content-length: 34262
last-modified: Thu, 28 Apr 2022 14:32:57 GMT
expires: Sun, 28 Apr 2024 02:32:57 GMT
cache-control: public, max-age=63115200
link: <http://www.amateurscrush.com/wp-content/uploads/2017/08/graduated-college-girl-dressed-undressed-pics.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f72174b5400561c1"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/media.breitbart.com/media/2015/11/Man-in-Womans-Lockeroom-YouTube-Screencap-640x480.jpg
192.0.77.2200 OK 16 kB URL HTTP/2 i0.wp.com/media.breitbart.com/media/2015/11/Man-in-Womans-Lockeroom-YouTube-Screencap-640x480.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 398ec6c0091f7f8b49dea57a43be8f8b
ac8c0450a68b01a753152da7ac0769544ad7ef48
f4ac1de115e06b0af067ed13d657805ba7666d9ad369b42e7cc6c6b6f101ca51
GET /media.breitbart.com/media/2015/11/Man-in-Womans-Lockeroom-YouTube-Screencap-640x480.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: image/webp
content-length: 16400
last-modified: Fri, 09 Dec 2022 14:25:29 GMT
expires: Mon, 09 Dec 2024 02:25:29 GMT
cache-control: public, max-age=63115200
link: <http://media.breitbart.com/media/2015/11/Man-in-Womans-Lockeroom-YouTube-Screencap-640x480.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "9504f1bfa4785d48"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i2.wp.com/www.porn-o-rama.com/specialexamination/321/011.jpg
192.0.77.2200 OK 57 kB URL HTTP/2 i2.wp.com/www.porn-o-rama.com/specialexamination/321/011.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 850x1280, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 304f06e763b16a1eec5a5984bade9fcc
9bcc65d9290d19eab6b8efc8ed233f074aaff102
aa2626b516c5bf50d86f564e52581b0b44425a2603066f8de09c86521b5126d7
GET /www.porn-o-rama.com/specialexamination/321/011.jpg HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: image/webp
content-length: 56684
last-modified: Fri, 02 Dec 2022 09:38:12 GMT
expires: Sun, 01 Dec 2024 21:38:12 GMT
cache-control: public, max-age=63115200
link: <http://www.porn-o-rama.com/specialexamination/321/011.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3aa8dc55ea93e22e"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i2.wp.com/4.bp.blogspot.com/-EF_TLbLVtqo/UU6fnB1f30I/AAAAAAAAXSo/xr1MYjOnojI/s1600/007.jpg
192.0.77.2302 Found 138 B URL HTTP/2 i2.wp.com/4.bp.blogspot.com/-EF_TLbLVtqo/UU6fnB1f30I/AAAAAAAAXSo/xr1MYjOnojI/s1600/007.jpg
IP 192.0.77.2:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /4.bp.blogspot.com/-EF_TLbLVtqo/UU6fnB1f30I/AAAAAAAAXSo/xr1MYjOnojI/s1600/007.jpg HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: text/html
content-length: 138
location: https://4.bp.blogspot.com/-EF_TLbLVtqo/UU6fnB1f30I/AAAAAAAAXSo/xr1MYjOnojI/s1600/007.jpg
x-nc: EXPIRED arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.femdomdestiny.com/wp-content/gallery/cfnmtv-exam/cfnm-medical-exam-6.jpg
192.0.77.2200 OK 39 kB URL HTTP/2 i0.wp.com/www.femdomdestiny.com/wp-content/gallery/cfnmtv-exam/cfnm-medical-exam-6.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 930x567, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1f999d58471106541684be1df0f7d5bb
c80f74fa7b3c0c874e0657e0cc0e0b0f83394367
9ee08a277503a764ec50437d2a89393fabd469455a96b9e7e98ea939941f7fcd
GET /www.femdomdestiny.com/wp-content/gallery/cfnmtv-exam/cfnm-medical-exam-6.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: image/webp
content-length: 38808
last-modified: Fri, 09 Dec 2022 14:25:30 GMT
expires: Mon, 09 Dec 2024 02:25:30 GMT
cache-control: public, max-age=63115200
link: <http://www.femdomdestiny.com/wp-content/gallery/cfnmtv-exam/cfnm-medical-exam-6.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "6c11a991e3232bac"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i2.wp.com/s.smutty.com/media_smutty/f/e/t/i/b/fetisjist-62jfr-2903be.jpg
192.0.77.2200 OK 67 kB URL HTTP/2 i2.wp.com/s.smutty.com/media_smutty/f/e/t/i/b/fetisjist-62jfr-2903be.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 609x987, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e2593b1ae3d8e1c91480cd654ea048e2
9cd8286f7f1f52ef33692c7bad712051dda4bb93
25705f83ac7d6b8f8f3a16acced60067d5dc7c09732e18a07cfd9ca45f06518d
GET /s.smutty.com/media_smutty/f/e/t/i/b/fetisjist-62jfr-2903be.jpg HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: image/webp
content-length: 67224
last-modified: Tue, 17 Jan 2023 12:29:14 GMT
expires: Fri, 17 Jan 2025 00:29:14 GMT
cache-control: public, max-age=63115200
link: <http://s.smutty.com/media_smutty/f/e/t/i/b/fetisjist-62jfr-2903be.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ee2d9af602ce541c"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:39:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3dc680bcb44349df6358a2d71483230d
f4ea1707dfb41d083f309964b919c92718fb6a3e
91142bf7dc5c9348aa10d0b9ab29837baa422df993c34a5b15872e03e0935ff8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:39:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:39:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:39:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 39d20550c8d8a8ec6ee2db5232bf3e24
6fa4ad88b667d81da4813c70a1dfdb8acc8e3cfc
24e6b9d0d6db1bfcc5b13b0d03afa1d9570803536a19e0b7bc43395d68a1f611
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3828
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:39:42 GMT
Last-Modified: Thu, 26 Jan 2023 08:35:54 GMT
Server: ECS (amb/6BA1)
X-Cache: HIT
Content-Length: 280
fonts.gstatic.com/s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2
216.58.207.227200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7920, version 1.0\012- data
Hash 797ad5f8d84a297ab16f9a9c983adfc2
af074543e3bbd78e086cefa983867e0936515c41
e0037277509761be84d1c44b520649c2363df89e00568561ebf015cb3cedc91a
GET /s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datawav.club
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 10:42:07 GMT
expires: Mon, 22 Jan 2024 10:42:07 GMT
cache-control: public, max-age=31536000
age: 341855
last-modified: Thu, 21 Apr 2022 16:51:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2
216.58.207.227200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7908, version 1.0\012- data
Hash 15d9bbcfbc1d668a43c85d156d23262b
c436963710c58453c4ae27e66c051e85c084cd49
6db83475c4b6e3bcd2df60ca7afcedabc5140c3b55c9a6bb0ca636c5b6438e5f
GET /s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datawav.club
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 10:42:07 GMT
expires: Mon, 22 Jan 2024 10:42:07 GMT
cache-control: public, max-age=31536000
age: 341855
last-modified: Thu, 21 Apr 2022 16:47:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/magra/v14/uK_w4ruaZus72nbNDycQGvo.woff2
216.58.207.227200 OK 9.4 kB URL HTTP/2 fonts.gstatic.com/s/magra/v14/uK_w4ruaZus72nbNDycQGvo.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9436, version 1.0\012- data
Hash 267ecd80d0d89a255f676a8b3cce0db0
215515b0a5be67a4d9c980e8926231225b036ef6
c4920b39f85de27baf31e69b334cdf828ec2875ac4ec3a4a2d7a2e52773f7e79
GET /s/magra/v14/uK_w4ruaZus72nbNDycQGvo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datawav.club
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:09:12 GMT
expires: Tue, 23 Jan 2024 18:09:12 GMT
cache-control: public, max-age=31536000
age: 228630
last-modified: Tue, 26 Apr 2022 15:28:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:39:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blockadsnot.com/native.history.min.js
185.76.9.25200 OK 9.7 kB URL HTTP/2 www.blockadsnot.com/native.history.min.js
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
Hash 64f26ed7cc4088a0358a62927eec161e
dbb2c8cae43266f959cde34ddcec8cb1affbcf11
5586ca11190d894b8a3140e7235ad98e8d8e980d9423a25ce20096708224ef8b
GET /native.history.min.js HTTP/1.1
Host: www.blockadsnot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
expires: Fri, 27 Jan 2023 21:32:09 GMT
access-control-allow-origin: *
link: <https://blockadsnot.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-accel-expires: @1674855129
server: CDN77-Turbo
x-77-nzt: AblMCRQPqcX/BUIHAA
x-77-nzt-ray: af585630d95375c65e4ad2638170bd2f
x-cache: HIT
x-age: 475653
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
limurol.com/ssp/req/1830123/?pb=8c71c0e386ee243a1c75bdd19c4f0df51674733182&psp=MjiDs07L5HWUCAxvOhiNAmbG2UO-xZ-jXjhRR14QzXnt6Eew2O3aSKIC_D6BckqutqwS7nAn1uASzVjhoZjaix0Dmz4JJvUdC9nM-acMjrW4vwt-f-sKLAisnu2aUKC-6dZh2GSfB49I0e8YDvhEXQwBduWEnj_0vPY44Jx87hKtQpAP9JsSy1XWulrs4O0kTdxQCtFiwHic_k0MgDoytt7VhfhGha6Y2SHty6UYNPU2xMPDqVnnC6rKg6bv0ID59NP6s8i8AR6DjS1KOf3ZBI3rJFyogG1BJgRd0-XoCMh-WjCSptrkzaFJOBMs5TPFye0yKVSq5jcFawsHd0I3gWeXV6zCLi2J-TYR6the9Agfjt-4lnrzV8pYJZR8fFwrGyi7xpEGmasp_USKDF4IvYO1oaNq1emLAHywzC01FdHKQHYxBLLf2LXk9fuWBH0-sU_v6pbqu43nYTHwcVRleUpY14rcV9Ci_aOScYfmqEWO9V914cHSArc3_RwOHvYvxiwUR2YG3Z-MDk-fKPw9yt0l5O2rOVjLI50S8UiJRVCA4YGTfGEI4_OzL8RO8QtSEkX31IfasBdX5n45jV9bKKOwSs7r64UxxHeDxfvxqWYnG4c9mNyLA7dpjKekL54lwhGHmbCzOdcIPsSGUWTVupvd_JZHWp_tD0biaaBo82oBpIYo4jnEa4GtlulG0EDMeJEYQX1UJekt-DCclqLZi5pOaRXtGo25RUQR54uAvBop5dd0GRJuJN0IEEkvpLV6VW8OhZhhHNH3qyPG5p038jYcb3U2nzR3g8TPyslPlqSkrKjponlQPIn71RlVe1vVDATfF3LZoDbZj1Tvzt7ezrTtKh6L6ZV_PIXrr0ARctpy4zNx2dO5&cb=_cltx5eoeewfdnvbtfhncwm&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1830123/?pb=8c71c0e386ee243a1c75bdd19c4f0df51674733182&psp=MjiDs07L5HWUCAxvOhiNAmbG2UO-xZ-jXjhRR14QzXnt6Eew2O3aSKIC_D6BckqutqwS7nAn1uASzVjhoZjaix0Dmz4JJvUdC9nM-acMjrW4vwt-f-sKLAisnu2aUKC-6dZh2GSfB49I0e8YDvhEXQwBduWEnj_0vPY44Jx87hKtQpAP9JsSy1XWulrs4O0kTdxQCtFiwHic_k0MgDoytt7VhfhGha6Y2SHty6UYNPU2xMPDqVnnC6rKg6bv0ID59NP6s8i8AR6DjS1KOf3ZBI3rJFyogG1BJgRd0-XoCMh-WjCSptrkzaFJOBMs5TPFye0yKVSq5jcFawsHd0I3gWeXV6zCLi2J-TYR6the9Agfjt-4lnrzV8pYJZR8fFwrGyi7xpEGmasp_USKDF4IvYO1oaNq1emLAHywzC01FdHKQHYxBLLf2LXk9fuWBH0-sU_v6pbqu43nYTHwcVRleUpY14rcV9Ci_aOScYfmqEWO9V914cHSArc3_RwOHvYvxiwUR2YG3Z-MDk-fKPw9yt0l5O2rOVjLI50S8UiJRVCA4YGTfGEI4_OzL8RO8QtSEkX31IfasBdX5n45jV9bKKOwSs7r64UxxHeDxfvxqWYnG4c9mNyLA7dpjKekL54lwhGHmbCzOdcIPsSGUWTVupvd_JZHWp_tD0biaaBo82oBpIYo4jnEa4GtlulG0EDMeJEYQX1UJekt-DCclqLZi5pOaRXtGo25RUQR54uAvBop5dd0GRJuJN0IEEkvpLV6VW8OhZhhHNH3qyPG5p038jYcb3U2nzR3g8TPyslPlqSkrKjponlQPIn71RlVe1vVDATfF3LZoDbZj1Tvzt7ezrTtKh6L6ZV_PIXrr0ARctpy4zNx2dO5&cb=_cltx5eoeewfdnvbtfhncwm&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1830123/?pb=8c71c0e386ee243a1c75bdd19c4f0df51674733182&psp=MjiDs07L5HWUCAxvOhiNAmbG2UO-xZ-jXjhRR14QzXnt6Eew2O3aSKIC_D6BckqutqwS7nAn1uASzVjhoZjaix0Dmz4JJvUdC9nM-acMjrW4vwt-f-sKLAisnu2aUKC-6dZh2GSfB49I0e8YDvhEXQwBduWEnj_0vPY44Jx87hKtQpAP9JsSy1XWulrs4O0kTdxQCtFiwHic_k0MgDoytt7VhfhGha6Y2SHty6UYNPU2xMPDqVnnC6rKg6bv0ID59NP6s8i8AR6DjS1KOf3ZBI3rJFyogG1BJgRd0-XoCMh-WjCSptrkzaFJOBMs5TPFye0yKVSq5jcFawsHd0I3gWeXV6zCLi2J-TYR6the9Agfjt-4lnrzV8pYJZR8fFwrGyi7xpEGmasp_USKDF4IvYO1oaNq1emLAHywzC01FdHKQHYxBLLf2LXk9fuWBH0-sU_v6pbqu43nYTHwcVRleUpY14rcV9Ci_aOScYfmqEWO9V914cHSArc3_RwOHvYvxiwUR2YG3Z-MDk-fKPw9yt0l5O2rOVjLI50S8UiJRVCA4YGTfGEI4_OzL8RO8QtSEkX31IfasBdX5n45jV9bKKOwSs7r64UxxHeDxfvxqWYnG4c9mNyLA7dpjKekL54lwhGHmbCzOdcIPsSGUWTVupvd_JZHWp_tD0biaaBo82oBpIYo4jnEa4GtlulG0EDMeJEYQX1UJekt-DCclqLZi5pOaRXtGo25RUQR54uAvBop5dd0GRJuJN0IEEkvpLV6VW8OhZhhHNH3qyPG5p038jYcb3U2nzR3g8TPyslPlqSkrKjponlQPIn71RlVe1vVDATfF3LZoDbZj1Tvzt7ezrTtKh6L6ZV_PIXrr0ARctpy4zNx2dO5&cb=_cltx5eoeewfdnvbtfhncwm&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=2301260439daaa9b3d8efe49f6b9e9c40329; Path=/; Expires=Fri, 26 Jan 2024 09:39:42 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
limurol.com/ssp/req/1830123/?pb=8c71c0e386ee243a1c75bdd19c4f0df51674733182&psp=MjiDs07L5HWUCAxvOhiNAmbG2UO-xZ-jXjhRR14QzXnt6Eew2O3aSKIC_D6BckqutqwS7nAn1uASzVjhoZjaix0Dmz4JJvUdC9nM-acMjrW4vwt-f-sKLAisnu2aUKC-6dZh2GSfB49I0e8YDvhEXQwBduWEnj_0vPY44Jx87hKtQpAP9JsSy1XWulrs4O0kTdxQCtFiwHic_k0MgDoytt7VhfhGha6Y2SHty6UYNPU2xMPDqVnnC6rKg6bv0ID59NP6s8i8AR6DjS1KOf3ZBI3rJFyogG1BJgRd0-XoCMh-WjCSptrkzaFJOBMs5TPFye0yKVSq5jcFawsHd0I3gWeXV6zCLi2J-TYR6the9Agfjt-4lnrzV8pYJZR8fFwrGyi7xpEGmasp_USKDF4IvYO1oaNq1emLAHywzC01FdHKQHYxBLLf2LXk9fuWBH0-sU_v6pbqu43nYTHwcVRleUpY14rcV9Ci_aOScYfmqEWO9V914cHSArc3_RwOHvYvxiwUR2YG3Z-MDk-fKPw9yt0l5O2rOVjLI50S8UiJRVCA4YGTfGEI4_OzL8RO8QtSEkX31IfasBdX5n45jV9bKKOwSs7r64UxxHeDxfvxqWYnG4c9mNyLA7dpjKekL54lwhGHmbCzOdcIPsSGUWTVupvd_JZHWp_tD0biaaBo82oBpIYo4jnEa4GtlulG0EDMeJEYQX1UJekt-DCclqLZi5pOaRXtGo25RUQR54uAvBop5dd0GRJuJN0IEEkvpLV6VW8OhZhhHNH3qyPG5p038jYcb3U2nzR3g8TPyslPlqSkrKjponlQPIn71RlVe1vVDATfF3LZoDbZj1Tvzt7ezrTtKh6L6ZV_PIXrr0ARctpy4zNx2dO5&cb=_cltx5eoeewfdnvbtfhncwm&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1830123/?pb=8c71c0e386ee243a1c75bdd19c4f0df51674733182&psp=MjiDs07L5HWUCAxvOhiNAmbG2UO-xZ-jXjhRR14QzXnt6Eew2O3aSKIC_D6BckqutqwS7nAn1uASzVjhoZjaix0Dmz4JJvUdC9nM-acMjrW4vwt-f-sKLAisnu2aUKC-6dZh2GSfB49I0e8YDvhEXQwBduWEnj_0vPY44Jx87hKtQpAP9JsSy1XWulrs4O0kTdxQCtFiwHic_k0MgDoytt7VhfhGha6Y2SHty6UYNPU2xMPDqVnnC6rKg6bv0ID59NP6s8i8AR6DjS1KOf3ZBI3rJFyogG1BJgRd0-XoCMh-WjCSptrkzaFJOBMs5TPFye0yKVSq5jcFawsHd0I3gWeXV6zCLi2J-TYR6the9Agfjt-4lnrzV8pYJZR8fFwrGyi7xpEGmasp_USKDF4IvYO1oaNq1emLAHywzC01FdHKQHYxBLLf2LXk9fuWBH0-sU_v6pbqu43nYTHwcVRleUpY14rcV9Ci_aOScYfmqEWO9V914cHSArc3_RwOHvYvxiwUR2YG3Z-MDk-fKPw9yt0l5O2rOVjLI50S8UiJRVCA4YGTfGEI4_OzL8RO8QtSEkX31IfasBdX5n45jV9bKKOwSs7r64UxxHeDxfvxqWYnG4c9mNyLA7dpjKekL54lwhGHmbCzOdcIPsSGUWTVupvd_JZHWp_tD0biaaBo82oBpIYo4jnEa4GtlulG0EDMeJEYQX1UJekt-DCclqLZi5pOaRXtGo25RUQR54uAvBop5dd0GRJuJN0IEEkvpLV6VW8OhZhhHNH3qyPG5p038jYcb3U2nzR3g8TPyslPlqSkrKjponlQPIn71RlVe1vVDATfF3LZoDbZj1Tvzt7ezrTtKh6L6ZV_PIXrr0ARctpy4zNx2dO5&cb=_cltx5eoeewfdnvbtfhncwm&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1830123/?pb=8c71c0e386ee243a1c75bdd19c4f0df51674733182&psp=MjiDs07L5HWUCAxvOhiNAmbG2UO-xZ-jXjhRR14QzXnt6Eew2O3aSKIC_D6BckqutqwS7nAn1uASzVjhoZjaix0Dmz4JJvUdC9nM-acMjrW4vwt-f-sKLAisnu2aUKC-6dZh2GSfB49I0e8YDvhEXQwBduWEnj_0vPY44Jx87hKtQpAP9JsSy1XWulrs4O0kTdxQCtFiwHic_k0MgDoytt7VhfhGha6Y2SHty6UYNPU2xMPDqVnnC6rKg6bv0ID59NP6s8i8AR6DjS1KOf3ZBI3rJFyogG1BJgRd0-XoCMh-WjCSptrkzaFJOBMs5TPFye0yKVSq5jcFawsHd0I3gWeXV6zCLi2J-TYR6the9Agfjt-4lnrzV8pYJZR8fFwrGyi7xpEGmasp_USKDF4IvYO1oaNq1emLAHywzC01FdHKQHYxBLLf2LXk9fuWBH0-sU_v6pbqu43nYTHwcVRleUpY14rcV9Ci_aOScYfmqEWO9V914cHSArc3_RwOHvYvxiwUR2YG3Z-MDk-fKPw9yt0l5O2rOVjLI50S8UiJRVCA4YGTfGEI4_OzL8RO8QtSEkX31IfasBdX5n45jV9bKKOwSs7r64UxxHeDxfvxqWYnG4c9mNyLA7dpjKekL54lwhGHmbCzOdcIPsSGUWTVupvd_JZHWp_tD0biaaBo82oBpIYo4jnEa4GtlulG0EDMeJEYQX1UJekt-DCclqLZi5pOaRXtGo25RUQR54uAvBop5dd0GRJuJN0IEEkvpLV6VW8OhZhhHNH3qyPG5p038jYcb3U2nzR3g8TPyslPlqSkrKjponlQPIn71RlVe1vVDATfF3LZoDbZj1Tvzt7ezrTtKh6L6ZV_PIXrr0ARctpy4zNx2dO5&cb=_cltx5eoeewfdnvbtfhncwm&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Cookie: UID=2301260439daaa9b3d8efe49f6b9e9c40329
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
4.bp.blogspot.com/-EF_TLbLVtqo/UU6fnB1f30I/AAAAAAAAXSo/xr1MYjOnojI/s1600/007.jpg
142.250.74.161200 OK 157 kB URL HTTP/2 4.bp.blogspot.com/-EF_TLbLVtqo/UU6fnB1f30I/AAAAAAAAXSo/xr1MYjOnojI/s1600/007.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1280x850, components 3\012- data
Size 157 kB (157333 bytes)
Hash 11bbd90d8dc81523a7eef9a881428f1a
f0faba2b7c57c6e97539541a21063ebb70b1e716
a394f525e990938248da0c3acc6ce2888dda5b5ab90e68d17ca9e8e345b8796a
GET /-EF_TLbLVtqo/UU6fnB1f30I/AAAAAAAAXSo/xr1MYjOnojI/s1600/007.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datawav.club/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v5d2c"
expires: Fri, 27 Jan 2023 09:39:43 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="007.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 26 Jan 2023 09:39:43 GMT
server: fife
content-length: 157333
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 39d20550c8d8a8ec6ee2db5232bf3e24
6fa4ad88b667d81da4813c70a1dfdb8acc8e3cfc
24e6b9d0d6db1bfcc5b13b0d03afa1d9570803536a19e0b7bc43395d68a1f611
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3829
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:39:43 GMT
Last-Modified: Thu, 26 Jan 2023 08:35:54 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:43 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://datawav.club
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f84872cf94b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 52d5f57c6743ac9e4f0703e44e653bf2
cd3577e7ce28baed9fc2dcd0c707c25deaa74389
31003504156e6fbb39c0880f835afc8a190d1639f533f0b3275dc429d72e5df4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:39:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 175510e096d45d02e7b8e2e1c0c6c7f4
9136d97970a3640c45717fa966a5e0e72a17f704
a13cf49b474c6c84e7d07a0e69ab920c689972dd1a953647493c399eff4dcdd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A13CF49B474C6C84E7D07A0E69AB920C689972DD1A953647493C399EFF4DCDD1"
Last-Modified: Tue, 24 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2730
Expires: Thu, 26 Jan 2023 10:25:13 GMT
Date: Thu, 26 Jan 2023 09:39:43 GMT
Connection: keep-alive
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 09:39:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://datawav.club
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
2.bp.blogspot.com/-_6XfWv8vKSk/UU6fnczZFWI/AAAAAAAAXSs/mu14Le5TXcA/s1600/008.jpg
142.250.74.161200 OK 162 kB URL HTTP/2 2.bp.blogspot.com/-_6XfWv8vKSk/UU6fnczZFWI/AAAAAAAAXSs/mu14Le5TXcA/s1600/008.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 850x1280, components 3\012- data
Size 162 kB (162546 bytes)
Hash b4884faccf4c12af14dc491447bea09e
1901427c435ed20a7ace0486f2b1a706e060b159
af04a097d41f7054dde9295420ab98f473ab748cba88b2ef68363206829b0fb9
GET /-_6XfWv8vKSk/UU6fnczZFWI/AAAAAAAAXSs/mu14Le5TXcA/s1600/008.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datawav.club/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v5d2d"
expires: Fri, 27 Jan 2023 09:39:43 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="008.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 26 Jan 2023 09:39:43 GMT
server: fife
content-length: 162546
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1utza9iin188.l4.adsco.re/
185.200.118.90200 OK 0 B URL HTTP/1.1 1utza9iin188.l4.adsco.re/
IP 185.200.118.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 1utza9iin188.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 09:39:43 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7cd96ccfe4dc44afc2d44fd000556820
4ec95cdb153ef2aadd20db225e0636ee74630a89
b333f1090ded2993463fc97e4b3b9aa713554c7588a1e83d2905e3ee58987f3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B333F1090DED2993463FC97E4B3B9AA713554C7588A1E83D2905E3EE58987F3E"
Last-Modified: Tue, 24 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3020
Expires: Thu, 26 Jan 2023 10:30:03 GMT
Date: Thu, 26 Jan 2023 09:39:43 GMT
Connection: keep-alive
1utza9iin188.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 1utza9iin188.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 1utza9iin188.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 09:39:43 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14093
Expires: Thu, 26 Jan 2023 13:34:36 GMT
Date: Thu, 26 Jan 2023 09:39:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14093
Expires: Thu, 26 Jan 2023 13:34:36 GMT
Date: Thu, 26 Jan 2023 09:39:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14093
Expires: Thu, 26 Jan 2023 13:34:36 GMT
Date: Thu, 26 Jan 2023 09:39:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14093
Expires: Thu, 26 Jan 2023 13:34:36 GMT
Date: Thu, 26 Jan 2023 09:39:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47770e9d-2bfd-4b8d-8653-017d569d133f.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47770e9d-2bfd-4b8d-8653-017d569d133f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8dcb846958865d2b14b540f26c963847
90c1569a936c7922880a04a5882683b1ac85b86f
253e15cc191946fe8c499b0633e95523689bdee6c06579c2953c640168abd7a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47770e9d-2bfd-4b8d-8653-017d569d133f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8897
x-amzn-requestid: ce231e55-4131-43b5-bec6-f4861a952163
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSY_DF03oAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d52c-611bceff093006444f7955cb;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7nDjP6udEKuZ9WC-XUCtTWcnO_G1uIfv-4cPlO2fzxa6wz2DDO0faQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:37:31 GMT
age: 7332
etag: "90c1569a936c7922880a04a5882683b1ac85b86f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b242645f0cc22e3b12c132e6d03722ac
dec70f83182de58e03bfcb95fc240b7c33f20674
59a2d8c972d27598dfe38637197f90053186c4f68b80a5a90283cb11ddaf8a31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6609
x-amzn-requestid: 129067f4-c79b-493d-8863-2eb6c1565ee6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSZABF4IIAMFsig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d533-4908ab6e5c751213084de3c6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hUp-Y119Uly8FlGe1Wr8b-_pNoyg_iV-KaNaC7Fo44iN_sDU3BnCbA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:35:29 GMT
age: 7454
etag: "dec70f83182de58e03bfcb95fc240b7c33f20674"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c331b0423afe4c6888533296b5f275bc
766aba1f8bb596a068f4e611161fa54616f506ed
0551882e8ba5962ca2c3a8634574e75f11321d46f9c901430614a9c73eaeae12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7426
x-amzn-requestid: 1c0f08ae-9b11-4c41-a6e9-819343332f34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF-fElWIAMFg8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf838f-6cf92e9d28ec0c9727e7419a;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A9cyJReV84QegjGfuOcBlZ-T6uefiGXXKnIBXIcn3a1x0kRYQ6XI3A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:13:57 GMT
age: 8746
etag: "766aba1f8bb596a068f4e611161fa54616f506ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
adsco.re/p
162.252.214.5200 OK 409 B IP 162.252.214.5:0
File type ASCII text, with very long lines (487), with no line terminators
Hash c74929c8dc163732c636244ca3f78435
37328f9b01e19ab3c3240f375204f24d60e7df9a
60da292452675b9fde29339b546f950ef8388b89885e3fba003b6b6ca5935628
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1894
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 09:39:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: https://datawav.club
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: df7df0ae-d70e-4b80-9483-2ecd5c8ee4a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqvPEXMoAMF5Aw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57fa-04193e0514c1c1e85d9d023b;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fznabMNG3n9Uo4L1jrrewtL_hJnQv8oR2qggeZtruvOLVzpUpcs7Tw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 17:10:40 GMT
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
age: 59343
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
i0.wp.com/exgfxxx.info/pics/images/1/asian%20wife%20exhibition%20nude/asian-schoolgirl-med-exam-tags-specialexamination-313929_700_0.jpg
192.0.77.2404 Not Found 15 kB URL HTTP/2 i0.wp.com/exgfxxx.info/pics/images/1/asian%20wife%20exhibition%20nude/asian-schoolgirl-med-exam-tags-specialexamination-313929_700_0.jpg
IP 192.0.77.2:0
Hash cf5c01f49b64229e8833d65f0f8acd82
815176e0e1212ddb54d1b05b92eb0c948ac9ceaa
424c29bcb8281ba1981cf19dc9b518ca2477f48c7f322c5eeaad6d80de9def38
GET /exgfxxx.info/pics/images/1/asian%20wife%20exhibition%20nude/asian-schoolgirl-med-exam-tags-specialexamination-313929_700_0.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx
date: Thu, 26 Jan 2023 09:39:43 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 4
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VATQ0SjZfM_btXwR4M5keLmd-EE6717EHEiXrF2zpHNrli93EhN6Rw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:48:42 GMT
age: 42661
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 15d6e91387db7fd83c844ca5f776154d
faa79b2a7ff1a52570bd84a07f88c1ad8598e836
9b318cf4a0d61245eb2f5e54ca0b85e408efa297edb644d5d045218acd9b143a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B318CF4A0D61245EB2F5E54CA0B85E408EFA297EDB644D5D045218ACD9B143A"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4095
Expires: Thu, 26 Jan 2023 10:47:58 GMT
Date: Thu, 26 Jan 2023 09:39:43 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 4d8ae67c17f92f8e0fb6fe982d69623f
067e277315ebc47b31dd05ce7847f6739b203370
da22d2bf1e23875d05d738253b47072de88255910321c889ccd5d6c0c9aeb268
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 09:39:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 01:12:44 GMT
Expires: Wed, 01 Feb 2023 01:12:43 GMT
Etag: "067e277315ebc47b31dd05ce7847f6739b203370"
Cache-Control: max-age=487378,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78f848780dbeb52d-OSL
blockadsnot.com/VWR.aspx?_=BQFiAAAAAAAACZUAAhPfwiK0f2QOZLfghUxC7qoiyq4QU42LrFX5irplBak_5B8GT_4H1fXCtWqZZp2PAnmaXA2Y7cTZo0AllJrTvOXtU3HM_k-ioymPd9dvauyXQO-AxIXcQyNspzkjo6L_ZZW-k7Ncy-aOs-INiBl0QDOVl8QncKPec5U433CEyGBhvTYkgfsaCAYAMh2Xx9GqQRxQ-yWxCi8U0lWC795Frn0r-tEB5LBZMKciciZ4ArBjCN8RhZ_-mOrIm69Nvx8Qfe_lXsUr0mnsnBg1M8fuRyxiNnZyj5u-g_1_rsNE3zN8_XRWmX5N4igxZSm4agK7ez50Zxxb5JQdykJpMhMGGC2epd95h02mtuiOdqdmpD4VtjVwFV1avnCAg_sypyWKCjdPBy42EoOZgzkSuO4a3mRs4aoxgK83XKeavq7Ld3Q-B1YVSUHQI6BPB61zh5K3U-1P0eEr-MFX_vdTL2H4h_Q&v=4&JnVERsWU=1955226&minBid=&vaIqnsgL=0,0&iczGhWoA=&HKTrgQOU=&s=1280,1024,1,1280,1024,0
208.95.112.254200 OK 44 B URL HTTP/2 blockadsnot.com/VWR.aspx?_=BQFiAAAAAAAACZUAAhPfwiK0f2QOZLfghUxC7qoiyq4QU42LrFX5irplBak_5B8GT_4H1fXCtWqZZp2PAnmaXA2Y7cTZo0AllJrTvOXtU3HM_k-ioymPd9dvauyXQO-AxIXcQyNspzkjo6L_ZZW-k7Ncy-aOs-INiBl0QDOVl8QncKPec5U433CEyGBhvTYkgfsaCAYAMh2Xx9GqQRxQ-yWxCi8U0lWC795Frn0r-tEB5LBZMKciciZ4ArBjCN8RhZ_-mOrIm69Nvx8Qfe_lXsUr0mnsnBg1M8fuRyxiNnZyj5u-g_1_rsNE3zN8_XRWmX5N4igxZSm4agK7ez50Zxxb5JQdykJpMhMGGC2epd95h02mtuiOdqdmpD4VtjVwFV1avnCAg_sypyWKCjdPBy42EoOZgzkSuO4a3mRs4aoxgK83XKeavq7Ld3Q-B1YVSUHQI6BPB61zh5K3U-1P0eEr-MFX_vdTL2H4h_Q&v=4&JnVERsWU=1955226&minBid=&vaIqnsgL=0,0&iczGhWoA=&HKTrgQOU=&s=1280,1024,1,1280,1024,0
IP 208.95.112.254:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /VWR.aspx?_=BQFiAAAAAAAACZUAAhPfwiK0f2QOZLfghUxC7qoiyq4QU42LrFX5irplBak_5B8GT_4H1fXCtWqZZp2PAnmaXA2Y7cTZo0AllJrTvOXtU3HM_k-ioymPd9dvauyXQO-AxIXcQyNspzkjo6L_ZZW-k7Ncy-aOs-INiBl0QDOVl8QncKPec5U433CEyGBhvTYkgfsaCAYAMh2Xx9GqQRxQ-yWxCi8U0lWC795Frn0r-tEB5LBZMKciciZ4ArBjCN8RhZ_-mOrIm69Nvx8Qfe_lXsUr0mnsnBg1M8fuRyxiNnZyj5u-g_1_rsNE3zN8_XRWmX5N4igxZSm4agK7ez50Zxxb5JQdykJpMhMGGC2epd95h02mtuiOdqdmpD4VtjVwFV1avnCAg_sypyWKCjdPBy42EoOZgzkSuO4a3mRs4aoxgK83XKeavq7Ld3Q-B1YVSUHQI6BPB61zh5K3U-1P0eEr-MFX_vdTL2H4h_Q&v=4&JnVERsWU=1955226&minBid=&vaIqnsgL=0,0&iczGhWoA=&HKTrgQOU=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: blockadsnot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Thu, 26 Jan 2023 09:39:44 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 92883be66cd7785ebde7f1922e719351
8beea21f0f2952848886e7bbdec544f8d734fa43
13dc6320b728da4134e7a0b03250116600dc8260ba1254b7dfb792727858ca6e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "13DC6320B728DA4134E7A0B03250116600DC8260BA1254B7DFB792727858CA6E"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9051
Expires: Thu, 26 Jan 2023 12:10:35 GMT
Date: Thu, 26 Jan 2023 09:39:44 GMT
Connection: keep-alive
1utza9iin188.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 1utza9iin188.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 1utza9iin188.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 09:39:44 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
adserver.juicyads.com/js/jads.js
185.94.236.244200 OK 1.7 kB URL HTTP/1.1 adserver.juicyads.com/js/jads.js
IP 185.94.236.244:0
File type ASCII text, with very long lines (3769), with no line terminators
Hash 65b1efdf55163b144c5018b8772765ad
509de5f40450f3cf05e0d8d1b939fed2bbb11cbe
cf23ab637d84de0eb1c1e67764e05ca0aa140e6ee932a60700fc35661644ee48
GET /js/jads.js HTTP/1.1
Host: adserver.juicyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:44 GMT
Content-Type: application/x-javascript
Last-Modified: Mon, 21 Nov 2022 05:24:20 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"637b0b84-eb9"
Content-Encoding: gzip
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:32:39 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 375981978
content-type: text/javascript
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
datawav.club/favicon.ico
173.208.199.194404 Not Found 184 B IP 173.208.199.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 8ea8556770bd53150ab76b23f87936a6
6c615fdc6839c5ed11a30ebc227646ac6aef493b
c4f8c99f5287623d6325502365d07eb6dc33d0c58c1c2def811f9b06ff7d68f0
GET /favicon.ico HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Cookie: a=hQMP0AqAdp4Vw0e0cbemW5eCVlCJR0fk; token_QpUJAAAAAAAAGu98Hdz1l_lcSZ2rY60Ajjk9U1c=BQFiAAAAAAAACZUAAhPfwiK0f2QOZLfghUxC7qoiyq4QU42LrFX5irplBak_5B8GT_4H1fXCtWqZZp2PAnmaXA2Y7cTZo0AllJrTvOXtU3HM_k-ioymPd9dvauyXQO-AxIXcQyNspzkjo6L_ZZW-k7Ncy-aOs-INiBl0QDOVl8QncKPec5U433CEyGBhvTYkgfsaCAYAMh2Xx9GqQRxQ-yWxCi8U0lWC795Frn0r-tEB5LBZMKciciZ4ArBjCN8RhZ_-mOrIm69Nvx8Qfe_lXsUr0mnsnBg1M8fuRyxiNnZyj5u-g_1_rsNE3zN8_XRWmX5N4igxZSm4agK7ez50Zxxb5JQdykJpMhMGGC2epd95h02mtuiOdqdmpD4VtjVwFV1avnCAg_sypyWKCjdPBy42EoOZgzkSuO4a3mRs4aoxgK83XKeavq7Ld3Q-B1YVSUHQI6BPB61zh5K3U-1P0eEr-MFX_vdTL2H4h_Q; _popprepop=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 26 Jan 2023 09:39:44 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5f77c832-f7"
Content-Encoding: gzip
s4.histats.com/stats/0.php?3916601&@f16&@g1&@h1&@i1&@j1674725982293&@k0&@l1&@mSchool%20Exam%20Undressing&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:2176231&@b3:1674725982&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fdatawav.club%2Fschool-exam-undressing%2F&@w
149.56.240.131200 OK 52 B URL HTTP/1.1 s4.histats.com/stats/0.php?3916601&@f16&@g1&@h1&@i1&@j1674725982293&@k0&@l1&@mSchool%20Exam%20Undressing&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:2176231&@b3:1674725982&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fdatawav.club%2Fschool-exam-undressing%2F&@w
IP 149.56.240.131:0
File type ASCII text, with no line terminators
Hash 28cedf5fedd686fcef54c0c89a750bdd
0e719dab5f482533d47112ff6933061119885e80
9e646db2cdc8c836055527c17a33bf3361b67ea1dd213409973eee7df88c0686
GET /stats/0.php?3916601&@f16&@g1&@h1&@i1&@j1674725982293&@k0&@l1&@mSchool%20Exam%20Undressing&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:2176231&@b3:1674725982&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fdatawav.club%2Fschool-exam-undressing%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 09:39:44 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 52
Connection: close
adserver.juicyads.com/adshow.php?adzone=593091
185.94.236.244200 OK 1.5 kB URL HTTP/1.1 adserver.juicyads.com/adshow.php?adzone=593091
IP 185.94.236.244:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (415), with CRLF, LF line terminators
Hash 34ac107b0b5d43a78a9d9e453f794977
94713c23c4eae987cae59099ac8e0177a123515b
550ad53bd4107e404d34f0275e6a646f7cef3b7ccf67ecf87f987b21d1277a4c
GET /adshow.php?adzone=593091 HTTP/1.1
Host: adserver.juicyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=0a5d9feb35f08d598dccba7b4f7e3782; expires=Fri, 26-Jan-2024 09:39:44 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.juicyads.com
imps53761=1; expires=Fri, 27-Jan-2023 09:39:44 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.juicyads.com
juicy_data_1=YToxOntpOjE1MDg2OTM7aToxNjc0OTg1MTg0O30%3D; expires=Sun, 29-Jan-2023 09:39:44 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=juicyads.com
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 29-Jan-2023 09:39:44 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=juicyads.com
Content-Encoding: gzip
ads.juicyads.me/network/user179029/53761-1668593612-0579920001668593612.gif
69.16.175.10200 OK 224 kB URL HTTP/2 ads.juicyads.me/network/user179029/53761-1668593612-0579920001668593612.gif
IP 69.16.175.10:0
File type GIF image data, version 89a, 300 x 250\012- data
Size 224 kB (224323 bytes)
Hash 7b494b5aaf84a333cb6b6ea39d9c6ae5
64ee159352ac8e86ba96f487f12c55e4adcccc3a
203d1d747bd2e070fd9d04410ac1ffd34e76ab38bfb3c2bd97db2dfc3d48bc92
GET /network/user179029/53761-1668593612-0579920001668593612.gif HTTP/1.1
Host: ads.juicyads.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adserver.juicyads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:45 GMT
etag: "1668593612"
cache-control: max-age=26818486
content-length: 224323
content-type: image/gif
last-modified: Wed, 16 Nov 2022 10:13:32 GMT
accept-ranges: bytes
x-sp-metadata: HS256.CPGwyZ4GEocBCiQ2NzQyZjM2OC0wNDA5LTQ2M2EtOTg0NC04ZmUzODAwYmI0YmUQ8LqN8Z697wIaBgjhlMmeBiIMOTEuOTAuNDIuMTU0KPb+AzADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GiwIARIkNTA2NjJmMTgtN2I1Yy00N2E5LTkzOGUtZDkzMDc4ZGQ4ZGQ1GMPYDSIYCAISFGNkczI2MC5zazEuaHdjZG4ubmV0.bv0wzmSm5uyXEueb5t7ZI3Z801qQn6fKtn1eZayOQiE=
x-hw: 1674725985.dop069.sk1.t,1674725985.cds002.sk1.hn,1674725985.cds260.sk1.c
X-Firefox-Spdy: h2
adserver.juicyads.com/adshow.php?adzone=770180
185.94.236.244200 OK 1.5 kB URL HTTP/1.1 adserver.juicyads.com/adshow.php?adzone=770180
IP 185.94.236.244:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (415), with CRLF, LF line terminators
Hash 039d6bb608760c5964d066e62c197540
83ec5cc9467ff9e320c65b12d0faa370b83bfb0c
8531986e48b29ec67c8db10aa00c4ba6f7c0afa7b340e6871cc98347cb37a6bc
GET /adshow.php?adzone=770180 HTTP/1.1
Host: adserver.juicyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=0a5d9feb35f08d598dccba7b4f7e3782; expires=Fri, 26-Jan-2024 09:39:44 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.juicyads.com
imps53761=1; expires=Fri, 27-Jan-2023 09:39:45 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.juicyads.com
juicy_data_1=YToxOntpOjE1MDg2OTI7aToxNjc0OTg1MTg0O30%3D; expires=Sun, 29-Jan-2023 09:39:44 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=juicyads.com
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 29-Jan-2023 09:39:44 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=juicyads.com
Content-Encoding: gzip
ads.juicyads.me/network/user179029/53761-1668593610-0617621001668593610.gif
69.16.175.10200 OK 329 kB URL HTTP/2 ads.juicyads.me/network/user179029/53761-1668593610-0617621001668593610.gif
IP 69.16.175.10:0
File type GIF image data, version 89a, 300 x 250\012- data
Size 329 kB (329444 bytes)
Hash e5a4afb7013708e1b078aeea88e965de
f5edfe0bb0a11246e5a0f1fb8dcf1835fd41659d
4d1635abdc9dddfa5c3130fd3710d0ec3d096df381a8f1e29413463f24464b22
GET /network/user179029/53761-1668593610-0617621001668593610.gif HTTP/1.1
Host: ads.juicyads.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adserver.juicyads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:45 GMT
etag: "1668593610"
cache-control: max-age=25464214
content-length: 329444
content-type: image/gif
last-modified: Wed, 16 Nov 2022 10:13:30 GMT
accept-ranges: bytes
x-sp-metadata: HS256.CPGwyZ4GEocBCiQ2NDk1NGE3Zi1hMTY0LTRiMGYtYjdmZS0xZDc2Y2E1NmIyZjcQ8LqN8Z697wIaBgjhlMmeBiIMOTEuOTAuNDIuMTU0KPb+AzADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GiwIARIkYTMwMmZjMjAtYzVhZi00ZTQ4LTkwODAtNWE0YjRlNTA3OTU4GOSNFCIYCAISFGNkczI2MS5zazEuaHdjZG4ubmV0.dxwkZZQD0FCtSGrGZ4ivfxQAdyGREtM7MAvTVFkyans=
x-hw: 1674725985.dop069.sk1.t,1674725985.cds002.sk1.hn,1674725985.cds261.sk1.c
X-Firefox-Spdy: h2
adserver.juicyads.com/adshow.php?adzone=593090
185.94.236.244200 OK 1.5 kB URL HTTP/1.1 adserver.juicyads.com/adshow.php?adzone=593090
IP 185.94.236.244:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (414), with CRLF, LF line terminators
Hash 6575f25532176bbc891959c1e2c3055a
5324ecf6fd6094931cfcb048f326555bf7d64a6a
666fbc7e345ab32123d9c7a3b6c8d0bbb6dcf0186383130f1b909627711ff42d
GET /adshow.php?adzone=593090 HTTP/1.1
Host: adserver.juicyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=0a5d9feb35f08d598dccba7b4f7e3782; expires=Fri, 26-Jan-2024 09:39:44 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.juicyads.com
imps53761=1; expires=Fri, 27-Jan-2023 09:39:45 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.juicyads.com
juicy_data_1=YToxOntpOjE1MDg2ODE7aToxNjc0OTg1MTg0O30%3D; expires=Sun, 29-Jan-2023 09:39:44 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=juicyads.com
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 29-Jan-2023 09:39:44 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=juicyads.com
Content-Encoding: gzip
ads.juicyads.me/network/user179029/53761-1668593375-0402450001668593375.jpg
69.16.175.10200 OK 33 kB URL HTTP/2 ads.juicyads.me/network/user179029/53761-1668593375-0402450001668593375.jpg
IP 69.16.175.10:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 728x90, components 3\012- data
Hash 388757daa2019252e6c46d80e80a75bf
d9be8ef357f448452752c3ddad61dd4b561991cf
1826b7e2dabb74f350d0295a3475d621f8825bb97183abd29fa1ca821d623633
GET /network/user179029/53761-1668593375-0402450001668593375.jpg HTTP/1.1
Host: ads.juicyads.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adserver.juicyads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:45 GMT
etag: "1668593375"
cache-control: max-age=25464210
content-length: 32740
content-type: image/jpeg
last-modified: Wed, 16 Nov 2022 10:09:35 GMT
accept-ranges: bytes
x-sp-metadata: HS256.CPGwyZ4GEocBCiRlYjE3MjVjNy02MjZhLTRlNmItYWVhNS1mMjljZGNkMzRjYjYQ8LqN8Z697wIaBgjhlMmeBiIMOTEuOTAuNDIuMTU0KPb+AzADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GiwIARIkN2FlOTlkMmYtMDBiZS00OTgzLTllMmYtNjY3ZDc0MjU0ZWIxGOT/ASIYCAISFGNkczIwOS5zazEuaHdjZG4ubmV0.63HjoDoUo1TftSHpaA6VpTEemDW0wSrp+cbTRJVCFVs=
x-hw: 1674725985.dop069.sk1.t,1674725985.cds002.sk1.hn,1674725985.cds209.sk1.c
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e7196cbb378213ae1410d51d2c18d620
43b7a777d9ca753bd02ff455a10a674aad023aa2
d4f36b111b4fd0b158da928d742e444cf6f409adebae422cb732056c122b4dbd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D4F36B111B4FD0B158DA928D742E444CF6F409ADEBAE422CB732056C122B4DBD"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11501
Expires: Thu, 26 Jan 2023 12:51:28 GMT
Date: Thu, 26 Jan 2023 09:39:47 GMT
Connection: keep-alive
d.pssy.xyz/d/?resource=bundler&nada=1&widgets=1499332:4,1499333:2,1243820:1,1499368:1&isct=1674701812&rfrr=https://datawav.club/galleries/Men+Licking+Balls+Tumblr/&iscs=YjkwMDQwZmZmZjFkNGM1MDk0NzM3NDhhYjFhM2RmZTUzMTEyNjAzZDUwYmNjMDQyOTgwMDMzOWE2NDc4YmEwMXwwfDV8MTkyLjE4Ny4xMjcuNjZ8TW96aWxsYS81LjAgKE1hY2ludG9zaDsgSW50ZWwgTWFjIE9TIFggMTBfMTVfNykgQXBwbGVXZWJLaXQvNjA1LjEuMTUgKEtIVE1MLCBsaWtlIEdlY2tvKSBWZXJzaW9uLzE2LjIgU2FmYXJpLzYwNS40LjE2fDI4ODE4NXwxNjc0NzAxODEyfGliYUhSMGNITTZMeTlrWVhSaGQyRjJMbU5zZFdJdloyRnNiR1Z5YVdWekwwMWxiaXRNYVdOcmFXNW5LMEpoYkd4eksxUjFiV0pzY2k4PQ==&width=784&reqc=1&ver=b32a87f01cccbab9.1674701812717&page=aHR0cHM6Ly9kYXRhd2F2LmNsdWIvc2Nob29sLWV4YW0tdW5kcmVzc2luZy8=
131.153.42.224200 OK 7.1 kB URL HTTP/1.1 d.pssy.xyz/d/?resource=bundler&nada=1&widgets=1499332:4,1499333:2,1243820:1,1499368:1&isct=1674701812&rfrr=https://datawav.club/galleries/Men+Licking+Balls+Tumblr/&iscs=YjkwMDQwZmZmZjFkNGM1MDk0NzM3NDhhYjFhM2RmZTUzMTEyNjAzZDUwYmNjMDQyOTgwMDMzOWE2NDc4YmEwMXwwfDV8MTkyLjE4Ny4xMjcuNjZ8TW96aWxsYS81LjAgKE1hY2ludG9zaDsgSW50ZWwgTWFjIE9TIFggMTBfMTVfNykgQXBwbGVXZWJLaXQvNjA1LjEuMTUgKEtIVE1MLCBsaWtlIEdlY2tvKSBWZXJzaW9uLzE2LjIgU2FmYXJpLzYwNS40LjE2fDI4ODE4NXwxNjc0NzAxODEyfGliYUhSMGNITTZMeTlrWVhSaGQyRjJMbU5zZFdJdloyRnNiR1Z5YVdWekwwMWxiaXRNYVdOcmFXNW5LMEpoYkd4eksxUjFiV0pzY2k4PQ==&width=784&reqc=1&ver=b32a87f01cccbab9.1674701812717&page=aHR0cHM6Ly9kYXRhd2F2LmNsdWIvc2Nob29sLWV4YW0tdW5kcmVzc2luZy8=
IP 131.153.42.224:0
File type JSON data\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (31244), with no line terminators
Hash 3b4e666ec00c6aa88eeb9ccdb16a6825
7d4ff7cf8a9a26fc3a6e5aa278223cba1b76c371
fded8fce44badde511aeadfa07d9826fc1d2bd888b1fcbda6a64a55b379a6b05
GET /d/?resource=bundler&nada=1&widgets=1499332:4,1499333:2,1243820:1,1499368:1&isct=1674701812&rfrr=https://datawav.club/galleries/Men+Licking+Balls+Tumblr/&iscs=YjkwMDQwZmZmZjFkNGM1MDk0NzM3NDhhYjFhM2RmZTUzMTEyNjAzZDUwYmNjMDQyOTgwMDMzOWE2NDc4YmEwMXwwfDV8MTkyLjE4Ny4xMjcuNjZ8TW96aWxsYS81LjAgKE1hY2ludG9zaDsgSW50ZWwgTWFjIE9TIFggMTBfMTVfNykgQXBwbGVXZWJLaXQvNjA1LjEuMTUgKEtIVE1MLCBsaWtlIEdlY2tvKSBWZXJzaW9uLzE2LjIgU2FmYXJpLzYwNS40LjE2fDI4ODE4NXwxNjc0NzAxODEyfGliYUhSMGNITTZMeTlrWVhSaGQyRjJMbU5zZFdJdloyRnNiR1Z5YVdWekwwMWxiaXRNYVdOcmFXNW5LMEpoYkd4eksxUjFiV0pzY2k4PQ==&width=784&reqc=1&ver=b32a87f01cccbab9.1674701812717&page=aHR0cHM6Ly9kYXRhd2F2LmNsdWIvc2Nob29sLWV4YW0tdW5kcmVzc2luZy8= HTTP/1.1
Host: d.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:47 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
ETag: W/"7a0f-WDu8g/LgIVIvOct3QRuaf/vbWu0"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://datawav.club
Content-Encoding: gzip
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ad40bdf34132e3eb7ad8e6b98ae26c54
7b4ba2989adb25436481e932356b8ea8717f0283
cd933c4d055f1b5d02df421d90aa2e05fc138581a0518e137a048d7545145432
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CD933C4D055F1B5D02DF421D90AA2E05FC138581A0518E137A048D7545145432"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8639
Expires: Thu, 26 Jan 2023 12:03:46 GMT
Date: Thu, 26 Jan 2023 09:39:47 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ad40bdf34132e3eb7ad8e6b98ae26c54
7b4ba2989adb25436481e932356b8ea8717f0283
cd933c4d055f1b5d02df421d90aa2e05fc138581a0518e137a048d7545145432
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CD933C4D055F1B5D02DF421D90AA2E05FC138581A0518E137A048D7545145432"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8639
Expires: Thu, 26 Jan 2023 12:03:46 GMT
Date: Thu, 26 Jan 2023 09:39:47 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ad40bdf34132e3eb7ad8e6b98ae26c54
7b4ba2989adb25436481e932356b8ea8717f0283
cd933c4d055f1b5d02df421d90aa2e05fc138581a0518e137a048d7545145432
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CD933C4D055F1B5D02DF421D90AA2E05FC138581A0518E137A048D7545145432"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8639
Expires: Thu, 26 Jan 2023 12:03:46 GMT
Date: Thu, 26 Jan 2023 09:39:47 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ad40bdf34132e3eb7ad8e6b98ae26c54
7b4ba2989adb25436481e932356b8ea8717f0283
cd933c4d055f1b5d02df421d90aa2e05fc138581a0518e137a048d7545145432
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CD933C4D055F1B5D02DF421D90AA2E05FC138581A0518E137A048D7545145432"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8639
Expires: Thu, 26 Jan 2023 12:03:46 GMT
Date: Thu, 26 Jan 2023 09:39:47 GMT
Connection: keep-alive
s.pssy.xyz/prplugs/0/1237360/240x180.jpg
104.21.69.85200 OK 16 kB URL HTTP/2 s.pssy.xyz/prplugs/0/1237360/240x180.jpg
IP 104.21.69.85:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 240x180, components 3\012- data
Hash 4fed30c272211f22b20d214a6fce6714
848b5ca953e36462670aab80d4a5bf13c85288d4
680b3993998a3a1d23e32cc53e4f87893daf45afa504dc1feed2c8c6a3aeafdb
GET /prplugs/0/1237360/240x180.jpg HTTP/1.1
Host: s.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:47 GMT
content-type: image/jpeg
content-length: 15505
last-modified: Wed, 25 Jan 2023 22:37:17 GMT
etag: "63d1af1d-3c91"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 6176
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3X4u7WXfYSR%2Bg0rITZ0NMa5c6fIIMr3BzdSpahWUzROKLyV6KfxZ0g6vHkqn9kWhQlU4N7CDeL%2B4o4X%2FI1gUJdejw%2Fy%2BRSdhHCdBgswgaVa%2FwjWOJnoAxjwS1ZHm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f84890bdf5b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.pssy.xyz/prplugs/0/1237323/240x180.jpg
104.21.69.85200 OK 14 kB URL HTTP/2 s.pssy.xyz/prplugs/0/1237323/240x180.jpg
IP 104.21.69.85:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 240x180, components 3\012- data
Hash 125a4f0ed580dfc041b092b8cae0f9a6
c68c49374ab5a98c43921924bfd1c9ca5d6c8274
9c9b497dc4d2e4d50c907355f9abbb542fc4999eab9e0ed8c51c457e2b2f605a
GET /prplugs/0/1237323/240x180.jpg HTTP/1.1
Host: s.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:47 GMT
content-type: image/jpeg
content-length: 13959
last-modified: Wed, 25 Jan 2023 22:35:06 GMT
etag: "63d1ae9a-3687"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 4385
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IRayxSe8Ck6Sx8QEf5Z8jYdzvdpH33Mox7KmlFM5KP04nCyP8KtgrJ%2BodvJKeqcAHi73RI7xOIPCWSaPv3ebISK1RqoFlrq67PrPbAweF0BzPpMMsOrdrdbDLfPp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f84890bdfcb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.pssy.xyz/prplugs/0/1237428/240x180.jpg
104.21.69.85200 OK 17 kB URL HTTP/2 s.pssy.xyz/prplugs/0/1237428/240x180.jpg
IP 104.21.69.85:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 240x180, components 3\012- data
Hash 1d423a1ee54f9d5dc9594be16ade1066
9e01e5d83fd42227d5f18e53f6b4236741a66d74
a8f4f65fafd85fdc921d901565f81d5a61f75394a6c51c6293e745009c437f4b
GET /prplugs/0/1237428/240x180.jpg HTTP/1.1
Host: s.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:47 GMT
content-type: image/jpeg
content-length: 17295
last-modified: Wed, 25 Jan 2023 22:40:14 GMT
etag: "63d1afce-438f"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1379
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mAc6krESJXONrcOoudemE9e1AL4HAZ8JyaqG0kkyDEojkr%2Bv3rfhGYaDwMn6987RIaj2Q%2F2jykgvHmj285xaCbxh%2Bfeg59%2BsYqkLkm%2BvFH3uBE%2BNEZF2ubreHnAL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f84890de24b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.pssy.xyz/prplugs/0/1144995/240x180.jpg
104.21.69.85200 OK 17 kB URL HTTP/2 s.pssy.xyz/prplugs/0/1144995/240x180.jpg
IP 104.21.69.85:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 240x180, components 3\012- data
Hash a1aa410843a28e7914a130617de3426e
5c4af4c8fc666a29e5b824b9946c3e1ac8fa0df8
75009adc08f8e54aa012cf62ae380a0bcec4af0631c7744bab8566a4d6eea7f1
GET /prplugs/0/1144995/240x180.jpg HTTP/1.1
Host: s.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:47 GMT
content-type: image/jpeg
content-length: 16677
last-modified: Wed, 04 Nov 2020 14:45:53 GMT
etag: "5fa2bea1-4125"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 3469
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HUPpZhRw517dw0U%2FIT9kC1x4MwDl3u5YYq6aKCJ2W%2F0CxBYx4n0%2F70V6R%2Bi6%2BkmIFq2KiZ7q9Jnu0icT0cSsH3rZj5kG5L%2Ff30lvnqWOepbyUZIEEdq277tMOPlj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f84890ee27b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f514.svg
192.0.77.48200 OK 314 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f514.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (314), with no line terminators
Hash 6201ff6add4821014e02cfc1bc82fc95
afd344621ef88b39f6e7013b7ce4765d67892315
5f70fb8150f0a1f184b40f86d012db040d229056b9b0d8c681f08987cb124e5f
GET /images/core/emoji/14.0.0/svg/1f514.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:47 GMT
content-type: image/svg+xml
content-length: 314
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ad40bdf34132e3eb7ad8e6b98ae26c54
7b4ba2989adb25436481e932356b8ea8717f0283
cd933c4d055f1b5d02df421d90aa2e05fc138581a0518e137a048d7545145432
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CD933C4D055F1B5D02DF421D90AA2E05FC138581A0518E137A048D7545145432"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8638
Expires: Thu, 26 Jan 2023 12:03:46 GMT
Date: Thu, 26 Jan 2023 09:39:48 GMT
Connection: keep-alive
d.pssy.xyz/d/n/iframe?domain=datawav.club&id=1499368
131.153.42.224200 OK 1.7 kB URL HTTP/1.1 d.pssy.xyz/d/n/iframe?domain=datawav.club&id=1499368
IP 131.153.42.224:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 1a14b3685888a1f5b24d1110e6def993
80d6dadf690a536abc2b6d6bad8f41bf72d44a1b
0692061ebc025ab05e3ca738ca97b166636c6b2e3d3e25a83fc6a28967f6ba49
GET /d/n/iframe?domain=datawav.club&id=1499368 HTTP/1.1
Host: d.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:47 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
ETag: W/"147f-VB2ygA8yDFZ9sZcl65XuNxRxj5I"
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
d.pssy.xyz/t.php
131.153.42.224200 OK 20 B IP 131.153.42.224:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /t.php HTTP/1.1
Host: d.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: guid=651b6df8-ba1a-4563-9734-61101bd7e885; expires=Fri, 26-Jan-2024 09:39:48 GMT; Max-Age=31536000; path=/; domain=pssy.xyz; secure; SameSite=None
Access-Control-Allow-Origin: *
Content-Encoding: gzip
datawav.club/uomdacwoqbvxwxj.php?sw
173.208.199.194200 OK 11 kB URL HTTP/1.1 datawav.club/uomdacwoqbvxwxj.php?sw
IP 173.208.199.194:0
File type ASCII text, with very long lines (10335)
Hash 6938c50b87db8b2ff323fd09f74ef807
b02430f0fb0347ce7a4b4d817d6eacdb5d7fbe72
131f5303f636a4a7d2162fca1798f4adef28af534dafeac3844cff16bb783597
GET /uomdacwoqbvxwxj.php?sw HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/school-exam-undressing/
Cookie: a=hQMP0AqAdp4Vw0e0cbemW5eCVlCJR0fk; token_QpUJAAAAAAAAGu98Hdz1l_lcSZ2rY60Ajjk9U1c=BQFiAAAAAAAACZUAAhPfwiK0f2QOZLfghUxC7qoiyq4QU42LrFX5irplBak_5B8GT_4H1fXCtWqZZp2PAnmaXA2Y7cTZo0AllJrTvOXtU3HM_k-ioymPd9dvauyXQO-AxIXcQyNspzkjo6L_ZZW-k7Ncy-aOs-INiBl0QDOVl8QncKPec5U433CEyGBhvTYkgfsaCAYAMh2Xx9GqQRxQ-yWxCi8U0lWC795Frn0r-tEB5LBZMKciciZ4ArBjCN8RhZ_-mOrIm69Nvx8Qfe_lXsUr0mnsnBg1M8fuRyxiNnZyj5u-g_1_rsNE3zN8_XRWmX5N4igxZSm4agK7ez50Zxxb5JQdykJpMhMGGC2epd95h02mtuiOdqdmpD4VtjVwFV1avnCAg_sypyWKCjdPBy42EoOZgzkSuO4a3mRs4aoxgK83XKeavq7Ld3Q-B1YVSUHQI6BPB61zh5K3U-1P0eEr-MFX_vdTL2H4h_Q; _popprepop=1; HstCfa3916601=1674725982293; HstCla3916601=1674725982293; HstCmu3916601=1674725982293; HstPn3916601=1; HstPt3916601=1; HstCnv3916601=1; HstCns3916601=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:39:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
X-Cache-Status: HIT
s.pssy.xyz/prplugs/0/1237102/240x180.jpg
104.21.69.85200 OK 18 kB URL HTTP/2 s.pssy.xyz/prplugs/0/1237102/240x180.jpg
IP 104.21.69.85:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 240x180, components 3\012- data
Hash 728006aade12a3110b74fed6404b3bda
1d64ff79643fd24368dda0d85237f35d50b648ea
0a37d6d0f8167d6bf4ff1584c238cef2521b9a1a6ff16a23dc49c7dbcbeeb023
GET /prplugs/0/1237102/240x180.jpg HTTP/1.1
Host: s.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:48 GMT
content-type: image/jpeg
content-length: 17589
last-modified: Mon, 23 Jan 2023 23:46:51 GMT
etag: "63cf1c6b-44b5"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uOkuk9tJTvZ68hIENnjg2JfMTeoEK371Tuo8aeKImxqFNc%2FQE0a7EiBn9fIhT%2BKp3mv1C2VLy3Yy5yKay3yyy3jppKmTvsoWZ9D1aKawKjmDmuq8YyAmg9ZvF9QW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f84890cdfdb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Sun, 26 Feb 2023 09:39:42 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 2115943
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f84871afa1b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wankgod.com/links-en.php?&jl=12
172.67.154.252200 OK 0 B URL HTTP/2 wankgod.com/links-en.php?&jl=12
IP 172.67.154.252:0
GET /links-en.php?&jl=12 HTTP/1.1
Host: wankgod.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 09:39:43 GMT
content-type: application/javascript
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y62bROGZ%2BVLBczp8ZpLZlRWZBbP5OJIMv%2BlSHJiDRiGCHhX8cgxyZBYn6rB%2FV6l4JbYNqBRdyg5WzRUoX%2BfvL%2B7Bm%2BHbHg95l4Epgw2%2BQrhApcBVoszRAFRb8ozCbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78f84870ddc51c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i2.wp.com/pornstockpile.com/hot-hospital-cfnm/images/hot-hospital-cfnm-15.jpg
192.0.77.2404 Not Found 0 B URL HTTP/2 i2.wp.com/pornstockpile.com/hot-hospital-cfnm/images/hot-hospital-cfnm-15.jpg
IP 192.0.77.2:0
GET /pornstockpile.com/hot-hospital-cfnm/images/hot-hospital-cfnm-15.jpg HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx
date: Thu, 26 Jan 2023 09:39:44 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 3
X-Firefox-Spdy: h2
i0.wp.com/www.nudesportsblog.com/updates/specialexamination/alla_01a.jpg
192.0.77.2400 Bad Request 0 B URL HTTP/2 i0.wp.com/www.nudesportsblog.com/updates/specialexamination/alla_01a.jpg
IP 192.0.77.2:0
GET /www.nudesportsblog.com/updates/specialexamination/alla_01a.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
server: nginx
date: Thu, 26 Jan 2023 09:39:46 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 8
X-Firefox-Spdy: h2
qgxbluhsgad.com/get/1830123?zoneid=1830123&jp=_cla1aaob61asortxf4n1kd&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&sp=0&cid=2643029632255061
62.122.171.6200 OK 0 B URL HTTP/2 qgxbluhsgad.com/get/1830123?zoneid=1830123&jp=_cla1aaob61asortxf4n1kd&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&sp=0&cid=2643029632255061
IP 62.122.171.6:0
Analyzer Verdict Alert quad9 Sinkholed
GET /get/1830123?zoneid=1830123&jp=_cla1aaob61asortxf4n1kd&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&sp=0&cid=2643029632255061 HTTP/1.1
Host: qgxbluhsgad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=2301260439793d079abb1343048d24d4c0a0; Path=/; Expires=Fri, 26 Jan 2024 09:39:42 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
i2.wp.com/www.freecfnmfemdom.com/CFNM/images_19/15.jpg
192.0.77.2403 Forbidden 0 B URL HTTP/2 i2.wp.com/www.freecfnmfemdom.com/CFNM/images_19/15.jpg
IP 192.0.77.2:0
GET /www.freecfnmfemdom.com/CFNM/images_19/15.jpg HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 7
X-Firefox-Spdy: h2
i2.wp.com/www.freecfnmfemdom.com/CFNM/images_118/06.jpg
192.0.77.2403 Forbidden 0 B URL HTTP/2 i2.wp.com/www.freecfnmfemdom.com/CFNM/images_118/06.jpg
IP 192.0.77.2:0
GET /www.freecfnmfemdom.com/CFNM/images_118/06.jpg HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 5
X-Firefox-Spdy: h2
js.juicyads.com/jp.php?c=446433y2r256r2x2t2f46384&u=https%3A%2F%2Ftorrsexvid.com%2Fgallery.php%23datawav
54.230.111.84200 OK 0 B URL HTTP/2 js.juicyads.com/jp.php?c=446433y2r256r2x2t2f46384&u=https%3A%2F%2Ftorrsexvid.com%2Fgallery.php%23datawav
IP 54.230.111.84:0
GET /jp.php?c=446433y2r256r2x2t2f46384&u=https%3A%2F%2Ftorrsexvid.com%2Fgallery.php%23datawav HTTP/1.1
Host: js.juicyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
cache-control: max-age=900
date: Thu, 26 Jan 2023 09:30:10 GMT
expires: Thu, 26 Jan 2023 09:45:10 GMT
pragma: cache
server: nginx
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E-_9Xz-CxP9iJApZi4dtUupmDjXrKp39m4soy4rSA1sYZAVjAm4CPQ==
age: 572
X-Firefox-Spdy: h2
qgxbluhsgad.com/t/9/fret/meow4/1830123/brt.js
62.122.171.6200 OK 0 B URL HTTP/2 qgxbluhsgad.com/t/9/fret/meow4/1830123/brt.js
IP 62.122.171.6:0
Analyzer Verdict Alert quad9 Sinkholed
GET /t/9/fret/meow4/1830123/brt.js HTTP/1.1
Host: qgxbluhsgad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: application/javascript
last-modified: Mon, 23 Jan 2023 16:18:46 GMT
vary: Accept-Encoding
etag: W/"63ceb366-10d78"
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Gudea%3A400%2C400italic%2C700%2C700italic%7CMagra%3A400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Gudea%3A400%2C400italic%2C700%2C700italic%7CMagra%3A400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext
IP 142.250.74.74:0
GET /css?family=Gudea%3A400%2C400italic%2C700%2C700italic%7CMagra%3A400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 26 Jan 2023 09:39:42 GMT
date: Thu, 26 Jan 2023 09:39:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i1.wp.com/www.freecfnmfemdom.com/CFNM/images_81/07.jpg
192.0.77.2403 Forbidden 0 B URL HTTP/2 i1.wp.com/www.freecfnmfemdom.com/CFNM/images_81/07.jpg
IP 192.0.77.2:0
GET /www.freecfnmfemdom.com/CFNM/images_81/07.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: nginx
date: Thu, 26 Jan 2023 09:39:42 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 1
X-Firefox-Spdy: h2