GET /videos/197379/b00bee6c97cea38906f6b51e7e1a81af/?sid=12320 HTTP/1.1
Host: www.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
 104.21.83.6
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Thu, 23 Mar 2023 10:41:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=lv2a7qv9a8nmmelic2kphf4drj; path=/; domain=.xxxfiles.tv; SameSite=Lax
second_643539=true; expires=Thu, 23-Mar-2023 10:40:59 GMT; Max-Age=0; path=/
kt_qparams=id%3D197379%26dir%3Db00bee6c97cea38906f6b51e7e1a81af%26sid%3D12320; expires=Fri, 24-Mar-2023 10:41:00 GMT; Max-Age=86400; path=/; domain=.xxxfiles.tv; SameSite=Lax
kt_ips=91.90.42.154; expires=Fri, 24-Mar-2023 10:41:00 GMT; Max-Age=86400; path=/; domain=.xxxfiles.tv; SameSite=Lax
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fu34muef%2BjiSSUqYpL%2FzRY0dyuQ0YvTb9E5%2BeyvND%2B%2FD3YfqsqIOQs1RsS4NGmKPtCSzDKM8W9TI43O7fkanOxkVAxhpeFwPp1DmN8%2BuiXdJwICMPSxdNJywwDgFxbuLUD8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac60f3bee151c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16992
Expires: Thu, 23 Mar 2023 15:24:13 GMT
Date: Thu, 23 Mar 2023 10:41:01 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5100
Expires: Thu, 23 Mar 2023 12:06:01 GMT
Date: Thu, 23 Mar 2023 10:41:01 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "EA7838393D83805A7B8A2B01BD09E4423617C4DA285B983A11E9BA36266810D5"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3420
Expires: Thu, 23 Mar 2023 11:38:01 GMT
Date: Thu, 23 Mar 2023 10:41:01 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
 35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Mar 2023 10:15:05 GMT
age: 1556
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: D4WNh7VrQNesZTSvVR27Hk0ZINKfKXn0sb2IpK0IP5ciFsS85TDEwem/c+I3KfrZQRIMHGu3OpcIKpJZAc22aA==
x-amz-request-id: 4ZP16SV0B6TWGWDW
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Mar 2023 09:59:54 GMT
age: 2467
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /vpaid/videojs_5.vast.vpaid.min.js?v=1679568060 HTTP/1.1
Host: www.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/videos/197379/b00bee6c97cea38906f6b51e7e1a81af/?sid=12320
Cookie: PHPSESSID=lv2a7qv9a8nmmelic2kphf4drj; kt_qparams=id%3D197379%26dir%3Db00bee6c97cea38906f6b51e7e1a81af%26sid%3D12320; kt_ips=91.90.42.154
|
104.21.83.6
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Thu, 23 Mar 2023 10:41:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 20 Nov 2019 11:59:07 GMT
Vary: Accept-Encoding
ETag: W/"5dd52a8b-19ebe"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xjN5aKR%2FyWNPokhtJfXQtsgMXpV9C8q9tlpOobIL%2BledY4sxGxBKUw2mWv%2BxqcWWU%2BkAdDYkF2V9uv%2FkjT%2FoZeBBt7yEf9wQHaOHy2q8W3jduz21sPaoaMEtiDKnhOENk%2B4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac60f3f194c1c16-OSL
alt-svc: h2=":443"; ma=60
|
GET /341000/341235/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 56628
last-modified: Tue, 18 Jun 2019 21:49:38 GMT
etag: "5d095c72-dd34"
expires: Thu, 23 Mar 2023 10:50:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oxfkmr16No%2B%2F%2BmZ3ce%2FN97dTQxb7t%2BcZcVHJtduY7Ll5MlFSBlArxEHY0Ipz0nf2q7lbtUzIIyoLxmx8YLRVdgW0pflIcbD97AnTId2h9x4Gxz1NDt%2BHmNQTICy%2Fm9ehS54%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f98f8fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /vpaid/videojs.vast.vpaid.min.css HTTP/1.1
Host: www.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/videos/197379/b00bee6c97cea38906f6b51e7e1a81af/?sid=12320
Cookie: PHPSESSID=lv2a7qv9a8nmmelic2kphf4drj; kt_qparams=id%3D197379%26dir%3Db00bee6c97cea38906f6b51e7e1a81af%26sid%3D12320; kt_ips=91.90.42.154
|
172.67.210.53
HTTP/1.1 200 OK
Content-Type: text/css
Date: Thu, 23 Mar 2023 10:41:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 20 Nov 2019 10:54:23 GMT
Vary: Accept-Encoding
ETag: W/"5dd51b5f-7c7"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 3891670
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5sPMofnpYlE%2BQiBKykriAuU8p0uJCPK5z3cxNKMsltAxQukak%2FaIF%2BtuNy5Krt6KlOYZYjJk0YV4N8RXPH2nIzIae9pu%2B6PC7Vd36u49QRZbBZM2A7HphkUpKAIDztGPTjg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac60f3f985ab4f4-OSL
alt-svc: h2=":443"; ma=60
|
GET /234000/234940/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 47579
last-modified: Sat, 08 Feb 2020 18:01:40 GMT
etag: "5e3ef784-b9db"
expires: Thu, 23 Mar 2023 11:06:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2077
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JeIZmbgyPZRuDKtQMzUMAvQutcAdDvwA2%2FO83e4wbeknzdi%2FuuKEDRqSY7X%2BplXVIplzjlbhVVEVGutBuv8a2f6pwjfhbgI8H%2FmFqbzgnk%2BUaKhMihuLoxDV%2BdgQyu3o3QY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f98fffab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /190000/190635/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 28550
last-modified: Sat, 18 Jan 2020 13:28:11 GMT
etag: "5e2307eb-6f86"
expires: Thu, 23 Mar 2023 11:06:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2077
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HTChxOLxTAob1%2F4mASz1YkhpQr%2FHQw7OrDdcuw3yV9UBxSrdGr6rQih2RDCLFLeX57TWf68UM%2F1H4dkh5305dldyzpiVrzMKhiM%2BwEXGYkpgqVgm8jJWR7vbOlRxxuVg89E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f9900fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 1675
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04020-18dd"
last-modified: Mon, 04 May 2020 16:17:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 18204600
expires: Tue, 12 Mar 2024 10:41:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZJuyzJ9LlqIuGJTb7j3h9Hx5rKylUWbAefLdj%2FTxi9bpBfyqVRtTQJKalojI9cCWNubNhyyMEsZq8BAhy1XzJxKm5vF%2FYemQyxVPfS3%2F6Ln8RMGJPd6l2EAXxJJadgNCkS8RVK0C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7ac60f3fbeb30b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /233000/233811/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 34885
last-modified: Fri, 07 Feb 2020 22:43:17 GMT
etag: "5e3de805-8845"
expires: Thu, 23 Mar 2023 11:30:55 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 606
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vNqKax8E7r4uBWppF7kcJUbAgViJuZOFxNVCmZMLVAXOeKumxE074x8qr4AQtX3N5Ti2ijeco%2Bu0w7VOQkf2MaA%2F0ipzpw7Ei%2F3Lymww6WV%2FPUvQ69WnTzT9kloO2fd4WEo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f9902fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /340000/340709/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 44312
last-modified: Thu, 06 Jun 2019 04:02:31 GMT
etag: "5cf89057-ad18"
expires: Thu, 23 Mar 2023 11:40:53 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 8
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Beo9LwAcMHfsgIVoZPAhW5XCVxYKJeHyKbvu5QdG1JfRQ6xJ7mRm3wcFpvJG3384wujvJOTco%2FV7Y7Z2p3T5JdorQOmisXzF09yiZH%2FBIEYAYiLgd%2BJjfKTvxl6wTbWVEP8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f98f9fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /340000/340431/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 23913
last-modified: Sat, 25 May 2019 20:41:53 GMT
etag: "5ce9a891-5d69"
expires: Thu, 23 Mar 2023 10:42:38 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3503
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NF1ec1ZBWRFSqbSPfIEl7SkTBqgYGYERcoa14kot5QOXntLBzSJeZjCcoAc6FZlqnlIwhGMujULtXcJZ0fQVPf5hok0%2FNiI7TWVOcRrv%2BWbm8RQlTDm3m9qzZo%2FA6Hx83wU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3fa91efab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /141000/141149/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 35866
last-modified: Mon, 18 Nov 2019 19:27:08 GMT
etag: "5dd2f08c-8c1a"
expires: Thu, 23 Mar 2023 10:41:04 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3597
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DwqC1%2F1nwN3U1l%2B%2BKo6dc%2BOOJL9Vd4uPXMLqjJ%2F2baulLh83%2BDbaCP2xrYY%2FSIjjVxofM9rDliywrKNAjC%2BKf3XE%2Fcp5kEpWrceMX5eBgYIu5bJ7kdnwxwF2ysjitwQhTw0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f9907fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /341000/341793/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 45107
last-modified: Sat, 22 Jun 2019 23:09:18 GMT
etag: "5d0eb51e-b033"
expires: Thu, 23 Mar 2023 10:43:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3479
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hf2GvUG1o5kdd3jpAVu3Le6nDEpFDb%2Fncp8ShuZ6iSzQgXvEqugWxZdaHPJBealzOiXAMvPLIQDr73FZDNqA9E1Z93I5TtB39Pr4IwdDTr6Ce%2BLPjvJ19XID0LPgStO9gF4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f98fefab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /341000/341806/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 46960
last-modified: Sun, 23 Jun 2019 00:37:59 GMT
etag: "5d0ec9e7-b770"
expires: Thu, 23 Mar 2023 11:32:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 505
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pKpHB6vpuGXnvbb6OZZ4bBOSZg0z2VOyyi0lyYzpqZAPrIKAJv0offOScGKt7xGYHUAGa68q5TQfbki14FNYbwAr9TlLVCJmv9RQdHxoRzZN0RDV64j2nmBBrhSDw%2BwRINA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f9901fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /139000/139160/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 37346
last-modified: Sat, 09 Nov 2019 10:52:42 GMT
etag: "5dc69a7a-91e2"
expires: Thu, 23 Mar 2023 10:57:38 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2603
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DUFRL4vz1zsbA00oyWK5f2CBWcYxQ69odl93whZd3drpLqh5SwydHNKGLyrvSLArxcODzjghXy6lLWYho1VdPpoxH8acopL1tj2Nuw3qHHwvkxLE3q2fn9Ou5IlQE5HrSgo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f990bfab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /145000/145463/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 38370
last-modified: Thu, 28 Nov 2019 17:55:27 GMT
etag: "5de00a0f-95e2"
expires: Thu, 23 Mar 2023 10:53:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2875
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PAC5%2B3gvTU%2FrIjWFZDKONwiY%2F%2FZXzmOzkuZfSljjyXOv0PmLo%2Bg810Haq0kEQ6ljLiQHQ17gT9zEdbypDLz03Mhe7RW5hAP7CO465mAhE1Izto%2BpmjkcqD860YgmuZEXpks%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f9904fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /486000/486581/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 39840
last-modified: Thu, 11 Jun 2020 19:47:04 GMT
etag: "5ee28a38-9ba0"
expires: Thu, 23 Mar 2023 11:06:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2077
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GOp2RVzzpzInh5ydqPhPcXt3oOfHPLn6OLG6ws4A4REE80OpJS1rTcyyF7ztwZnlftbKhUNZjpGrC9wd76UktxHsPjjSJU3XGXgFR1V3RElGpxeQEa6%2BTEhgiiSQh73dzwU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f9906fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
104.17.24.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 256
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04020-36a"
last-modified: Mon, 04 May 2020 16:17:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4794312
expires: Tue, 12 Mar 2024 10:41:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eMjrNX5w2KHMKCiUw8%2BFRojJT6qNQCmJ%2FsAgIoIvme2%2B4USDMSXcTuw0lhMOoLVg7bJkTkWKZDCeLu7kDbPHxsh99oHa7gducycaXQU%2FBmEleCaX%2BEghBJL%2F%2FVzArrCilz6B9Eys"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7ac60f3ffefb0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /341000/341095/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 35119
last-modified: Tue, 28 May 2019 11:11:18 GMT
etag: "5ced1756-892f"
expires: Thu, 23 Mar 2023 11:06:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2077
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4M87UuffkToxkDlx%2Bcq%2FkNQLdbQrKE47hd7P4h75zlZTtVSwLH4qkmUWXLlolSqCcwdkhUYMoteUIKLsG%2BPU6rbjVGKRFPielLBPMhB%2BtIR2qpA1fX5ZidK9KLR024lUVes%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3fb91ffab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /XEXvawa.js HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
|
 135.181.208.216
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Thu, 23 Mar 2023 10:41:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 10 Mar 2023 13:42:03 GMT
ETag: W/"640b33ab-48b80"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Vary: Accept-Encoding, Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b56f9b741cabfa29551ca2899d93a1e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: HEL50-C1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: l9BH16U92kRFy8TFMKcd78pVbyLihKqGUUGEOPk3gcQcElo2BYZ7Gw==
Age: 223
Content-Encoding: gzip
|
GET /8sq5gA5.js HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Thu, 23 Mar 2023 10:41:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 10 Mar 2023 13:42:03 GMT
ETag: W/"640b33ab-2af50"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Vary: Accept-Encoding, Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 990cfd108795128378d881c92b299b66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: HEL50-C1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: dbGB7pUpPanx_dXTslzRIaw2rwX8LboRMf5BACpQ6-lr96Eow5r-Zw==
Age: 266
Content-Encoding: gzip
|
GET /Ka0q1Ad.js HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Thu, 23 Mar 2023 10:41:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 10 Mar 2023 13:42:03 GMT
ETag: W/"640b33ab-48b80"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Vary: Accept-Encoding, Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b56f9b741cabfa29551ca2899d93a1e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: HEL50-C1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: l9BH16U92kRFy8TFMKcd78pVbyLihKqGUUGEOPk3gcQcElo2BYZ7Gw==
Age: 223
Content-Encoding: gzip
|
GET /npm/silvermine-videojs-quality-selector@1.1.2/dist/css/quality-selector.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
151.101.193.229
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.1.2
x-jsd-version-type: version
etag: W/"299-rLWKZXMtTX2vbGY6rnhXUEYaKx8"
content-encoding: br
accept-ranges: bytes
date: Thu, 23 Mar 2023 10:41:02 GMT
age: 682877
x-served-by: cache-fra-eddf8230075-FRA, cache-bma1682-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 375
X-Firefox-Spdy: h2
|
GET /339000/339870/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 35829
last-modified: Sat, 25 May 2019 21:40:45 GMT
etag: "5ce9b65d-8bf5"
expires: Thu, 23 Mar 2023 11:41:01 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zjEfW%2BRUOIHh71VT1O4021jywdRWT20i0%2Be9Z0RVpE6trt%2F%2FhtUxQVMNieuIGWoYQbsaSiWumMX4NhgRRe7NEAOGTUanUxGafVJtwvaVakdC4cOxz4UzsvdUV%2Bmk6cbZQFw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f9908fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /193000/193692/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 67716
last-modified: Sun, 19 Jan 2020 19:34:33 GMT
etag: "5e24af49-10884"
expires: Thu, 23 Mar 2023 11:32:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 505
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wmcdvyrT2rJ3u3b1%2F%2FD72BWNGgAysniOmm0PqTzyGxC64QZlEsci3F8t4GoYbWwzxLTp0QF0kJ8g77Ow88SfyleGCeJ6m8z6AoOJq2dkqwAzkzS5h6WDvmc%2F6MEgTjZ%2Fmt0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f40396bfab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /197000/197379/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 51584
last-modified: Wed, 22 Jan 2020 14:20:31 GMT
etag: "5e285a2f-c980"
expires: Thu, 23 Mar 2023 11:41:01 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tuDM%2Bjceh7VKBQXGPgni8drYszJ1ur%2BLTMH8KYjZTXjp34AGEuDRejBCLhemwH7F0GNBwd2hRKjW74Q%2B0ISK0J4UQFdjN%2FZVZkdLEYhgJujfObprmL%2FFxjQThm0v2PrKQWA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f3f990afab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /196000/196362/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 46167
last-modified: Mon, 20 Jan 2020 19:54:43 GMT
etag: "5e260583-b457"
expires: Thu, 23 Mar 2023 11:06:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2077
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4U%2FXLWTHxxt%2FE4e5EcOjgiF8G9jF3vfIDiSJHxC6q1KzmKpsCsli7W2pM4DZk9fw7HreRDcPRVLiZXoFmBekwi036ECozNOKlHOJuKFqBIr1yt2ttKIb2VLUwiGRxK9PbzM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f403968fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /npm/js-cookie@2/src/js.cookie.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
151.101.193.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.2.1
x-jsd-version-type: version
etag: W/"79f-7pVBzxqV0qiF+LFDoQXKqgjKnJ0"
accept-ranges: bytes
date: Thu, 23 Mar 2023 10:41:02 GMT
age: 34876
x-served-by: cache-fra-eddf8230099-FRA, cache-bma1682-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1951
X-Firefox-Spdy: h2
|
GET /225000/225571/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 39294
last-modified: Sun, 02 Feb 2020 12:08:28 GMT
etag: "5e36bbbc-997e"
expires: Thu, 23 Mar 2023 11:01:05 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2396
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mH3HGXnXFwYVTf6T7ERyiCS9vNClwqUwEblPH%2FyIgNfz3wu%2FdgNGl9U37aL4w5xxCuzlwMp2z%2BxqmgheSl8ELvtRSwl%2FyuliDdnTcqrAK8UtVm1ic%2Fgl6fcWWgX2poRz2vE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f404975fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /7.5.5/video-js.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
151.101.130.217
HTTP/2 200 OK
content-type: text/css; charset=utf-8
last-modified: Thu, 13 Jun 2019 18:18:21 GMT
etag: "29daa9b197765c0111b16939ce1264a9"
cache-control: public, max-age=31536000
content-encoding: gzip
date: Thu, 23 Mar 2023 10:41:02 GMT
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 122
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 10533
X-Firefox-Spdy: h2
|
GET /318000/318404/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 43474
last-modified: Sun, 22 Dec 2019 18:40:31 GMT
etag: "5dffb89f-a9d2"
expires: Thu, 23 Mar 2023 11:02:04 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2337
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KuX1c9LOW5tZ5udNzKHZmq55rryVilBdgl8tzIag3aF2ddAXcZfWR8bB%2FSxWc%2Bjcm6xhve2b9mD4AlA5bwdUksOUZtXJo1aza%2Bg%2FDboRzhLXpGepItxx0287xKciJv4ecVM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f40597cfab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /186000/186921/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 61454
last-modified: Thu, 16 Jan 2020 21:35:59 GMT
etag: "5e20d73f-f00e"
expires: Thu, 23 Mar 2023 11:41:01 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QVTgEmYld0fDr5WEfwiTDt68jjvJeN6yhzdBn43EV5Vc1JYg7rVbTYglQDyen0FCMfVIU2Ep4%2BGFIHlYjj43ninxizMQR5X2bzv4D7wM0anSpwAKmy3SacNCWjz0SRTvUrc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f403969fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /197000/197323/medium@2x/1.jpg HTTP/1.1
Host: img.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:01 GMT
content-length: 44889
last-modified: Wed, 22 Jan 2020 14:08:45 GMT
etag: "5e28576d-af59"
expires: Thu, 23 Mar 2023 11:41:01 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gnYPdCX8iIEVeTc4SgwSfaD7hFXPrdH7%2Fgl9wkNJUesrAJ4IFW3ILyjctxMlrOIlhZbAWl1Sq88sPfm2Sgpg3Hgfq4i1ZWS4qiNgExdlOWNio37snGj7hDoPnKJnXFT%2FJb0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f404974fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 10:41:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "EAF3015C71DD81E9886E2F38E7EDF89AD5DB72AB"
Expires: Thu, 23 Mar 2023 21:00:00 GMT
Last-Modified: Thu, 23 Mar 2023 09:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1497
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ac60f47bf29b505-OSL
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 23 Mar 2023 10:14:33 GMT
age: 1589
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 10:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 10:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /silvermine-videojs-quality-selector@1.1.2/dist/js/silvermine-videojs-quality-selector.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.xxxfiles.tv/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.16.125.175
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 23 Mar 2023 10:41:02 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Wed, 10 Jan 2018 00:56:00 GMT
etag: W/"5329-e6FW82qZOTCVRh707R8p5aJnMuY"
via: 1.1 fly.io
fly-request-id: 01G7549ZE3WWN11S6HGDRQ6KSN-fra
cf-cache-status: HIT
age: 22612084
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac60f46ecf1b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
GET /api/spots/329584?p=1&s1=%subid1%&kw= HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Upgrade-Insecure-Requests: 1
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Thu, 23 Mar 2023 10:41:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: nauid=6yGq6n3jkmrgWmILYo96; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; SameSite=None
Cache-Control: private
Content-Encoding: gzip
|
GET /api/spots/329585?p=1&s1=%subid1%&kw= HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Upgrade-Insecure-Requests: 1
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Thu, 23 Mar 2023 10:41:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: nauid=wjUiZzbG11zLEOuHy5tv; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; SameSite=None
Cache-Control: private
Content-Encoding: gzip
|
GET /css?family=Roboto:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xxxfiles.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.74
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 10:41:02 GMT
date: Thu, 23 Mar 2023 10:41:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /f1/55/8e/f1558eeca431d45f5f8240bae243d8b1.js HTTP/1.1
Host: badgegirdle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
|
192.243.59.12
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx/1.17.6
Date: Thu, 23 Mar 2023 10:41:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6a2a7e7131e73eeafb30a1a28ce380f9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
GET /api/spots/329586?p=1&s1=%subid1%&kw= HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Upgrade-Insecure-Requests: 1
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Thu, 23 Mar 2023 10:41:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: nauid=nilKH36tMTwJlVkjnalb; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; SameSite=None
Cache-Control: private
Content-Encoding: gzip
|
GET /e5/a3/67/e5a3678a1d1bb8a6b0d93a9a41a239f8.js HTTP/1.1
Host: badgegirdle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
|
192.243.59.12
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx/1.17.6
Date: Thu, 23 Mar 2023 10:41:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c48997169d59ff4ee8e8951f0a925edf
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "B6129B9D1848F75265DCA4446C5399927BDAF15C7B49C083765847B0FE276EAF"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18788
Expires: Thu, 23 Mar 2023 15:54:10 GMT
Date: Thu, 23 Mar 2023 10:41:02 GMT
Connection: keep-alive
|
GET /api/spots/377391?v2=1&fill=0&kw=Masturbation%2Cyoung%2CSquirt%2Csquirting%2CSolo%2CFisting%2Cpublic%20nudity%2Cdancing%20scenes%2Cextreme%20closeups%2Cmasturbation%20to%20orgasm%2Cother%20stuffing%2Cupskirt%20in%20public%2Cftvgirls.com%2Cvagina%20gaping%20closeups%2Clong%20labia%20and%20stretching%2CEllie&s1=%25subid1%25&s2=%25subid2%25&i=1 HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/xml
Server: nginx
Date: Thu, 23 Mar 2023 10:41:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Access-Control-Expose-Headers: X-Asg-Config, X-t
Set-Cookie: nauid=oooNewL9X1MbBFClwBgX; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; SameSite=None
X-T: 0
Cache-Control: private
Content-Encoding: gzip
|
GET /api/spots/329591?p=1&s1=%subid1%&kw= HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Upgrade-Insecure-Requests: 1
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Thu, 23 Mar 2023 10:41:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: nauid=RUyHfk99L1O4nKvEejV4; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; SameSite=None
Cache-Control: private
Content-Encoding: gzip
|
GET /63/d4/5b/63d45b685911cef3b8cc3d1d1550bf85.js HTTP/1.1
Host: badgegirdle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
|
192.243.59.12
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx/1.17.6
Date: Thu, 23 Mar 2023 10:41:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9efca72c95ce33659231205b29d4d7b4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 10:41:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 10:41:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 10:41:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 14:12:20 GMT
expires: Tue, 19 Mar 2024 14:12:20 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
age: 246523
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:11 GMT
expires: Thu, 21 Mar 2024 18:05:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
age: 59752
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:11 GMT
expires: Thu, 21 Mar 2024 18:05:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
age: 59752
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 10:41:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /api/spots/320559?v2=1&fill=0&kw=Masturbation%2Cyoung%2CSquirt%2Csquirting%2CSolo%2CFisting%2Cpublic%20nudity%2Cdancing%20scenes%2Cextreme%20closeups%2Cmasturbation%20to%20orgasm%2Cother%20stuffing%2Cupskirt%20in%20public%2Cftvgirls.com%2Cvagina%20gaping%20closeups%2Clong%20labia%20and%20stretching%2CEllie&s1=%25subid1%25&s2=%25subid2%25&i=1 HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/xml
Server: nginx
Date: Thu, 23 Mar 2023 10:41:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Access-Control-Expose-Headers: X-Asg-Config, X-t
Set-Cookie: nauid=CsJFIZpdqQcCIw7Nr6K2; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; SameSite=None
X-T: 0
Cache-Control: private
Content-Encoding: gzip
|
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
54.230.80.227
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113986
Date: Thu, 23 Mar 2023 10:41:03 GMT
Etag: "641b2d57-1d7"
Expires: Fri, 24 Mar 2023 18:20:49 GMT
Last-Modified: Wed, 22 Mar 2023 16:31:19 GMT
Server: ECAcc (nya/79CE)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KD4vSbQmEzWzea7KKbMRYvV34G336VuZr5TXu-xRYjbi6Xm1ymtUKw==
Age: 6570
|
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
54.230.80.227
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 23 Mar 2023 10:41:03 GMT
Last-Modified: Thu, 23 Mar 2023 09:30:43 GMT
Server: ECAcc (bsa/EACA)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rnit73-bWnLJFJ-PSbeASU4iHUiQNLZoMxS9HRRW2euGgRYXa73vwg==
Age: 4220
|
GET /videos/197379/b00bee6c97cea38906f6b51e7e1a81af/?sid=12320&video_id=197379&mode=async&action=js_stats&rand=1679568070988 HTTP/1.1
Host: www.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/videos/197379/b00bee6c97cea38906f6b51e7e1a81af/?sid=12320
Cookie: PHPSESSID=lv2a7qv9a8nmmelic2kphf4drj; kt_qparams=id%3D197379%26dir%3Db00bee6c97cea38906f6b51e7e1a81af%26sid%3D12320; kt_ips=91.90.42.154; show_pops2=true2; show_pops1=true1; ppu_show_on_63d45b685911cef3b8cc3d1d1550bf85=1; kt_tcookie=1
|
172.67.210.53
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Thu, 23 Mar 2023 10:41:03 GMT
Content-Length: 43
Connection: keep-alive
Set-Cookie: kt_is_visited=1; expires=Fri, 24-Mar-2023 10:41:03 GMT; Max-Age=86400; path=/; domain=.xxxfiles.tv; SameSite=Lax
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=46N04SDyQHp38PKjddzZTr4vDZ6rG%2BPUVp5KBNT%2B6iycyekHENj4YaLcafLjV28E94NKyFAxUjjKCcdFltJoDgOzroSlyDqkfZRonU6gnfh%2BA1XOvUOAQQkgQldiMJKLvGk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac60f4b0990b4f4-OSL
alt-svc: h2=":443"; ma=60
|
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
 18.195.128.32
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 23 Mar 2023 10:41:03 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: http://www.xxxfiles.tv
access-control-allow-credentials: true
set-cookie: uid_id2=8544be09-b076-42f9-9e84-23ce2c35be5a:1:1; expires=Sun, 20 Mar 2033 10:41:03 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
18.195.128.32
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 23 Mar 2023 10:41:03 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: http://www.xxxfiles.tv
access-control-allow-credentials: true
set-cookie: uid_id2=921c37b7-0ac6-4d10-9836-9f2e7943eb77:2:1; expires=Sun, 20 Mar 2033 10:41:03 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
54.230.80.227
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=111373
Date: Thu, 23 Mar 2023 10:41:03 GMT
Etag: "641b2d57-1d7"
Expires: Fri, 24 Mar 2023 17:37:16 GMT
Last-Modified: Wed, 22 Mar 2023 16:31:19 GMT
Server: ECAcc (nya/1C5E)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: I3XR2cnVfOtAlB8aZprwngHJn6PJCc3aW2NOb7VsfIjZaGqGflHpYg==
Age: 3957
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Z7x8lXUqUCK+X+QBdW25QA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
44.236.143.193
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l00OZoJJxwTLbm6mfXzTGB5avfg=
|
GET /api/click/8249925479340608095?c=90 HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://umtpopxcsedc.cdnvideo3.com/api/spots/329586?p=1&s1=%subid1%&kw=
|
135.181.208.216
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 Mar 2023 10:41:03 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Cache-Control: private
|
GET /api/click/11372259722972771095?c=90 HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://umtpopxcsedc.cdnvideo3.com/api/spots/329585?p=1&s1=%subid1%&kw=
|
135.181.208.216
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 Mar 2023 10:41:03 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Cache-Control: private
|
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
18.195.128.32
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 23 Mar 2023 10:41:03 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: http://www.xxxfiles.tv
access-control-allow-credentials: true
set-cookie: uid_id2=042b4a7f-853d-4f05-bada-bdd7ab307950:3:1; expires=Sun, 20 Mar 2033 10:41:03 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://umtpopxcsedc.cdnvideo3.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
 185.76.9.19
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 10:41:03 GMT
vary: Accept-Encoding
etag: W/"4a7886b0595c8711a5aae6eac4a"
expires: Wed, 22 Mar 2023 12:53:31 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ2/AST/2goAAA
x-77-nzt-ray: c0a4cc28c1d63db5bf2c1c64723ef911
x-accel-expires: @1679576085
x-cache: HIT
x-age: 2778
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
|
GET /ajax/libs/jquery/1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://umtpopxcsedc.cdnvideo3.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.170
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:11 GMT
expires: Thu, 21 Mar 2024 18:05:11 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
vary: Accept-Encoding
age: 59752
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17506
Expires: Thu, 23 Mar 2023 15:32:49 GMT
Date: Thu, 23 Mar 2023 10:41:03 GMT
Connection: keep-alive
|
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
|
104.21.234.92
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Date: Thu, 23 Mar 2023 10:41:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: 38977aa5d09853f84b0a88bb314cae60
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Thu, 23 Mar 2023 10:41:03 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7zxjiwL1cWfetLVVMLM%2B009Jr5TppojddV2NcdCYNCJ8eF6Z4dIPdSZXGTYHbTaoIYnHXodQV%2F%2FTDypRKFAPGvKfmTNLnaieYbuHGVYXtz6l644E9XW90ZeBFmngjUO7jZfWiu0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ac60f4ab9ec24dd-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17506
Expires: Thu, 23 Mar 2023 15:32:49 GMT
Date: Thu, 23 Mar 2023 10:41:03 GMT
Connection: keep-alive
|
GET /js/kvs/main.min.js?v=1679568060 HTTP/1.1
Host: www.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
104.21.83.6
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 10:41:01 GMT
last-modified: Wed, 20 Nov 2019 11:57:15 GMT
vary: Accept-Encoding
etag: W/"5dd52a1b-412c8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VGZk5jh8SZ%2F8Po5d361XD6k9S%2BPrO%2BMt55qJb5Hc1VC0TzOr%2BPcomOVTGNgFq%2BoKklMk1OR%2BV%2F0UHQJXwGp3gvtBgtelyt3rjlR7wV2bByP3Fbx2QDZCL6aE5rNwGPdhaJA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac60f3f78d1fab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /pixel/purst?dl=0&th=0&sc=0&rs=2282&rd=2282&fd=1860&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: improviseprofane.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
|
173.233.137.36
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 23 Mar 2023 10:41:03 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain
Content-Length: 334
Origin: http://umtpopxcsedc.cdnvideo3.com
Connection: keep-alive
Referer: http://umtpopxcsedc.cdnvideo3.com/
|
 95.211.229.248
HTTP/1.1 200 OK
Content-Type: application/json
Server: nginx
Date: Thu, 23 Mar 2023 10:41:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://umtpopxcsedc.cdnvideo3.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22641c2cbf5eb639.651624511640328453%22%3B%7D; expires=Sat, 22-Mar-2025 10:41:03 GMT; Max-Age=63072000; path=/; domain=realsrv.com
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: k6VaCG5oTQnKOvKJnleVqxIIc9yOgdOL0oPcL0ZSVw7DZQ8_GzFoZQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:47:43 GMT
age: 46400
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /js/videojs.persistvolume.js?v=1679568060 HTTP/1.1
Host: www.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.21.83.6
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 10:41:01 GMT
last-modified: Wed, 20 Nov 2019 11:00:42 GMT
vary: Accept-Encoding
etag: W/"5dd51cda-e5f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iKUYdKD1DsYg0duAnmB%2BWAWOMiGsLwlNeIz%2Bw4zGz6jRQhe%2BJghyPGqRDqa0FjhCLqsno6qIuff3ooMV2ocK3xSmJLbN7T%2Buj9UUZPQuROejZy5WVYlwiVVki5NlAn6VYHw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac60f3f58adfab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6692
x-amzn-requestid: 3a0f6a8d-89b1-43f4-8a15-8749bdbc047b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM9d9FcOoAMFaFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b75f2-3540256d6be3d4f85bba65ea;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:41:06 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Jj5lAwItWYm45j5kLqQnd3fhsiGsiuSiSVtrBUOolyHvPAmCc0S71A==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 07:54:24 GMT
age: 9999
etag: "156ef59e53564a4f2b27002b2695fafecd578d82"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea5d4e17-e42c-49fb-a54b-d7d97ad50ba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7083
x-amzn-requestid: 52c38747-4a30-4831-87ca-7e72e5602ed0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CHY_gFu8IAMFh9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64193b96-49c53b7c2e5ed4fc0217e357;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 05:07:34 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: XUrSSF8TgZSClR4MqJ0kuXGO-8KIguNmGe5lmVwzKXZO6CN0F9mimg==
via: 1.1 f3802d173009698413044360f84de06c.cloudfront.net (CloudFront), 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:51:03 GMT
age: 46200
etag: "76213c7d5c759471ed3823888860f918ac7e8f13"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a7546f8-3d34-4fb4-b63f-8e8098b48c30.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7419
x-amzn-requestid: bc02abbe-706d-42af-b963-0163b07b87c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B9xbnE7OIAMFW2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641562b0-247606a3713a20d25cf83763;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 07:05:20 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: W_FZ-TYlfmS1JSvZVG4v_4Iag3ssm5J2oYgk0LBdKqv-Q0KST6FkDQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 618052a0d9c86c1a3bf663f82d041d1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 20:21:35 GMT
age: 51568
etag: "3518e8a18807209e94011806a96492e0d86ee9c9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain
Content-Length: 334
Origin: http://umtpopxcsedc.cdnvideo3.com
Connection: keep-alive
Referer: http://umtpopxcsedc.cdnvideo3.com/
|
95.211.229.248
HTTP/1.1 200 OK
Content-Type: application/json
Server: nginx
Date: Thu, 23 Mar 2023 10:41:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://umtpopxcsedc.cdnvideo3.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22641c2cbf61e694.761688404106737332%22%3B%7D; expires=Sat, 22-Mar-2025 10:41:03 GMT; Max-Age=63072000; path=/; domain=realsrv.com
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
GET /cc/48/f4/cc48f4cc72bd1ab0cd76dca8048a896c.js HTTP/1.1
Host: improviseprofane.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
|
173.233.137.36
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx/1.19.5
Date: Thu, 23 Mar 2023 10:41:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2f8eaf34c9351454f06e4db3c2c55d85
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Cookie: uid_id2=042b4a7f-853d-4f05-bada-bdd7ab307950:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
18.195.128.32
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 23 Mar 2023 10:41:03 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: http://www.xxxfiles.tv
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
GET /pixel/purst?dl=0&th=0&sc=0&rs=2253&rd=2253&fd=1832&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: lighthousemissingdisavow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
|
173.233.139.164
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 23 Mar 2023 10:41:03 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
GET /api/spots/5349649835655704095/1636039?fill=0&kw=Masturbation,young,Squirt,squirting,Solo,Fisting,public%20nudity,dancing%20scenes,extreme%20closeups,masturbation%20to%20orgasm,other%20stuffing,upskirt%20in%20public,ftvgirls.com,vagina%20gaping%20closeups,long%20labia%20and%20stretching,Ellie HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/xml
Server: nginx
Date: Thu, 23 Mar 2023 10:41:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Cache-Control: private
Content-Encoding: gzip
|
GET /api/spots/5349649835655704095/1636027?fill=0&kw=Masturbation,young,Squirt,squirting,Solo,Fisting,public%20nudity,dancing%20scenes,extreme%20closeups,masturbation%20to%20orgasm,other%20stuffing,upskirt%20in%20public,ftvgirls.com,vagina%20gaping%20closeups,long%20labia%20and%20stretching,Ellie HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/xml
Server: nginx
Date: Thu, 23 Mar 2023 10:41:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Cache-Control: private
Content-Encoding: gzip
|
GET /api/spots/5349649835655704095/1635934?fill=0&kw=Masturbation,young,Squirt,squirting,Solo,Fisting,public%20nudity,dancing%20scenes,extreme%20closeups,masturbation%20to%20orgasm,other%20stuffing,upskirt%20in%20public,ftvgirls.com,vagina%20gaping%20closeups,long%20labia%20and%20stretching,Ellie HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/xml
Server: nginx
Date: Thu, 23 Mar 2023 10:41:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Cache-Control: private
Content-Encoding: gzip
|
GET /api/spots/834248539023184095/997762?fill=0&kw=Masturbation,young,Squirt,squirting,Solo,Fisting,public%20nudity,dancing%20scenes,extreme%20closeups,masturbation%20to%20orgasm,other%20stuffing,upskirt%20in%20public,ftvgirls.com,vagina%20gaping%20closeups,long%20labia%20and%20stretching,Ellie HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/xml
Server: nginx
Date: Thu, 23 Mar 2023 10:41:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Cache-Control: private
Content-Encoding: gzip
|
GET /api/spots/834248539023184095/997745?fill=0&kw=Masturbation,young,Squirt,squirting,Solo,Fisting,public%20nudity,dancing%20scenes,extreme%20closeups,masturbation%20to%20orgasm,other%20stuffing,upskirt%20in%20public,ftvgirls.com,vagina%20gaping%20closeups,long%20labia%20and%20stretching,Ellie HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/xml
Server: nginx
Date: Thu, 23 Mar 2023 10:41:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Cache-Control: private
Content-Encoding: gzip
|
GET /api/spots/834248539023184095/997869?fill=0&kw=Masturbation,young,Squirt,squirting,Solo,Fisting,public%20nudity,dancing%20scenes,extreme%20closeups,masturbation%20to%20orgasm,other%20stuffing,upskirt%20in%20public,ftvgirls.com,vagina%20gaping%20closeups,long%20labia%20and%20stretching,Ellie HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
|
135.181.208.216
HTTP/1.1 200 OK
Content-Type: text/xml
Server: nginx
Date: Thu, 23 Mar 2023 10:41:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Cache-Control: private
Content-Encoding: gzip
|
GET /js/main.js?v=1679568060 HTTP/1.1
Host: www.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
104.21.83.6
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 10:41:01 GMT
last-modified: Tue, 04 May 2021 10:44:25 GMT
vary: Accept-Encoding
etag: W/"60912589-511f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wje%2FuinzcbXsReyCSWlkpJZTAp51701zmiXVmXCoVl%2BLB97v90Bsp1vZhF9GLpFV%2FMxu%2FTNsDWUx4J5ywf2HbGhIwT%2BYDNSUPgVOAz146coEYDYiUFxUplTbVwVEGrVZ%2FxM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac60f3f88ecfab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
|
173.233.137.36
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx/1.19.5
Date: Thu, 23 Mar 2023 10:41:03 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0fbae688b2d9f3a062f5878ae24b6ea4
Strict-Transport-Security: max-age=0; includeSubdomains
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "FA253E946A274BA37F999BCD3968377E2AF01BE28EBC305C42DE6167A30E5A4E"
Last-Modified: Mon, 20 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1068
Expires: Thu, 23 Mar 2023 10:58:52 GMT
Date: Thu, 23 Mar 2023 10:41:04 GMT
Connection: keep-alive
|
GET /Redirect.eng?MediaSegmentId=31311&dcid=3_ctx_962331de-d66c-41b2-b76c-f601e5d9e394&vmId=00000000-0000-0000-0000-000000000000&abr=false&timeZoneOffset=&v=Zw8gyxOjMs9xkppHwggJs9DB69B5xeyk-IUP6MXV0cZTAIEChuwCqtr6aLrwFV8vLndJju3Yj8aOUujuLp3n8jTAYhXkL2DMAUpP5LYssV6JPN_1Ph2EYaKWpCYFOua2ygnvTRl0MAVh-tYAdGVcwtDogSLbNvBf8ZPzCfi0ZyDxbSvuT7yot8Och1krcpRzio1ew_-o4KuKk1979kWtWefulphMz0Kv_-anADxpOGq2mSaPRDbl7QKHBOIFnUVrraaOmE6M-YNDjNynUUDRwdE0iw71KhmInNp2i94AozjIEjzTnGXLmU7PrRstPYY5kf2sxMjtYZiu2s8fcTGKhQnpQBf5T_w9OLkG7QNV5yEX733QwVwOSUDWrCQdiP2kMpyXQm9aam3qQsyMPcoUH8ZsksLWXj_HtlrSxrx2PNRxTXrEsgQpxp4bNcDUF60F_iZqp2XLevtP8qJIl3WG-FhcrEqmHKYYwA0LGZulSNh_gAL3_Mk7LSfv1XZ6BJ-7ynNQCHKtsxVGXZf45ZuiuY6izCAaks_xooa1hLMEBLb3hDN9rdcuaqep0ULzFmjUbSsClvr8VNmSLgme1LolTI_ZZhy7neKNQiZZrrHd-pCaU0HbytC_YRy_53C3aDTwgKNnyHmOxFQ1gt3ENFcq8k0v2Z0Lug4UZnmOFj6oUoNkk9206k8Bxh1-NDQotnAjCE0233Z8uvURdWh27kpCHYsQyzVNYZuIZeqMR3tP_L4eB0CsCaQlEKRojgdU5BLNrTpzCM86daBsAXP5LLOiZa8WUB6TkT8ANTyUtpju3yE9zFj8eDaTUMC-IK1n4ziOWc20s4Fsc13QeoSIhhkgTDkjqUgG4YJzNfHGnqFOxEEX9lzqEYGeEVl2jIrTWXV1qKq2OEqD7ZwYP6ACupjFJINdM7dl2pJemSqYeLce-e7QXnEunQb5yVgphwax567s93ypI5aTv0xgxWO5AP4epW4oBaqp8FCPObE94zEADpo1&kw=&mw=300&mh=250&cu= HTTP/1.1
Host: twinrdsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://umtpopxcsedc.cdnvideo3.com/
Cookie: IKSR={}; INF_DFL8=false; IUID=85a66338-72f2-4895-a9c3-f9b6c98aa3bc; ISSH=6A1BFD; VMI=; IPLH=#{}; IPLH_Q=#[]; CHN=#[]; MSSH=#{}; MSRH=#{}; ILP=null; ILPLU=#1/1/0001 12:00:00 AM; ILEALC=#1/1/0001 12:00:00 AM; ILMPF=#False; IPMPLU=#; IPMUID=#; BSWUID=#; IBL=#[]; IPLSH=#{}; IPLSH_Q=#[]; IZH=#{}; IZH_Q=#[]; IMCH=#{}; IMCH_Q=#[]; IMH=#{}; IMH_Q=#[]; ISH=#{}; ISH_Q=#[]; ISPH=#{}; ISPH_Q=#[]; ICH=#{}; ICH_Q=#[]
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
|
172.66.40.197
HTTP/2 302 Found
content-type: text/html; charset=utf-8
date: Thu, 23 Mar 2023 10:41:04 GMT
content-length: 418
location: https://twinrdsrv.com/mediahosting.engine?MediaId=54280&AId=6827&CId=27887&PId=49657&SiteId=7003&ZoneId=41938&VolumeMetricId=8750b36b-3ebc-44fb-8cfa-6a38f7fa0417&PassBackUrl=&res=&dcid=3_ctx_962331de-d66c-41b2-b76c-f601e5d9e394&cu=&kw=&mw=300&mh=250
cache-control: private, no-transform
access-control-allow-origin: *
set-cookie: IKSR={}; path=/; SameSite=None; secure
INF_DFL8=false; path=/; SameSite=None; secure
IUID=85a66338-72f2-4895-a9c3-f9b6c98aa3bc; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure
ISSH=6A1BFD; path=/; SameSite=None; secure
VMI=8750b36b-3ebc-44fb-8cfa-6a38f7fa0417; path=/; SameSite=None; secure
IPLH=#{"49657":[{"SId":"6A1BFD","D":"23/3/23T3:41:3"}]}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IPLH_Q=#[49657]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
CHN=#[]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
MSSH=#{}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
MSRH=#{}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ILP=null; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure
ILPLU=#1/1/0001 12:00:00 AM; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ILEALC=#1/1/0001 12:00:00 AM; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ILMPF=#False; expires=Thu, 23-Mar-2023 14:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IPMPLU=#; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IPMUID=#; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
BSWUID=#; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IKSR={}; path=/; SameSite=None; secure
IBL=#[]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IPLSH=#{}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IPLSH_Q=#[]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IZH=#{"41938":[{"SId":"6A1BFD","D":"23/3/23T3:41:3"}]}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IZH_Q=#[41938]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IMCH=#{}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IMCH_Q=#[]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IMH=#{"54280":[{"SId":"6A1BFD","D":"23/3/23T3:41:3"}]}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IMH_Q=#[54280]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ISH=#{}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ISH_Q=#[]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ISPH=#{"7003":[{"SId":"6A1BFD","D":"23/3/23T3:41:3"}]}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ISPH_Q=#[7003]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ICH=#{"27887":[{"SId":"6A1BFD","D":"23/3/23T3:41:3"}]}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ICH_Q=#[27887]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cdf0%2FqA1KIlSG9rhb%2BmaXWD%2BSmkoKxr4jARqxtSNYS5xSH2U3ohc0bTBVekA6htsm5XJv5qc2R99eWHiuS83GLMreYBXWaRUZOy8Dr0C%2BQ9KztQvEnBIG8SIiZB%2BAF8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac60f4eef09b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /Redirect.eng?MediaSegmentId=31311&dcid=3_ctx_a1e90c59-89dd-491c-9be5-a1b405fffefd&vmId=00000000-0000-0000-0000-000000000000&abr=false&timeZoneOffset=&v=Zw8gyxOjMs9xkppHwggJs9DB69B5xeyk-IUP6MXV0cZTAIEChuwCqtr6aLrwFV8vLndJju3Yj8aOUujuLp3n8jTAYhXkL2DMAUpP5LYssV6JPN_1Ph2EYaKWpCYFOua2oJIz3zk18922fMm87lRvylQSw2aisWRfq4ffg-vmP6f4MZjsnWEYjVNPQLUDLixxuq13a2k-gUqH_hOVaRopimdFDDp3lIfegATolZ9MkTgGwb7vEsl6NEdiBHDB1GlQCChGGpRcuJTOkpYYhUGXVIrmjKA30o1puu6-tpezad42BDMNdIbbCG23PI5oMqMjuH04OmV6BCHR-Wk_UZni63yRkFxz9GQqi6_HHYYwnKw0O54GX5oSYejT3CGO0T6xp6lxJ4LfZ640_LKqwTppYpVnCFmPxGvxTIKC_5EF82au2haA_NGPwTR_FBuUWgL0UgewCyswEFVtiQg64indZDakg5fMKDWqr4vScENbsizB85dE0Hzq0ZZCYmLoB5dZmIl2XjHGaJQqkTLGciO7szdj34p6CmHVoufqcOirjYBEN7fZWLWptWYtgwNFDQEt3XkeCufw12g_g2iLMnCz-9wa0rfC9ogna4qqWrAX-IHLW9ke7zA3t6j4cBGh4SnnRxL2az8et9zuLMVn7DOhXuyds-0gVvljKAIBRgg5-pJlFN1jHMIpaFhSM30Ls3--IZflE5XsESe_p-_ZQrfOSWL_1tQo6nl-ACyWLDNOsGkCuLLPNfDZ3xU5PGZkf6U5g6UxXJBh1HAY3be4Yy50ErewA-DE0iir6GI7NJLe4CExMzScE2dOq0LVmXbt0wL2mLNl3p2EwbgcMMseA1s2yndowhT4uofsueiCOlYyQhTooH4SnsONxNTMYgglLQPhXioHzv-TCyDmTgZIAzzv1giyW7XSHuUUe2j7DRpZo6QkDWE_fmgyrrYgEzcyD03N4f6FaDWhFXRnMlv46HmPTMnKR9VEukz4XpaYo_Ac8xU1&kw=&mw=300&mh=250&cu= HTTP/1.1
Host: twinrdsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://umtpopxcsedc.cdnvideo3.com/
Cookie: IKSR={}; INF_DFL8=false; IUID=85a66338-72f2-4895-a9c3-f9b6c98aa3bc; ISSH=6A1BFD; VMI=; IPLH=#{}; IPLH_Q=#[]; CHN=#[]; MSSH=#{}; MSRH=#{}; ILP=null; ILPLU=#1/1/0001 12:00:00 AM; ILEALC=#1/1/0001 12:00:00 AM; ILMPF=#False; IPMPLU=#; IPMUID=#; BSWUID=#; IBL=#[]; IPLSH=#{}; IPLSH_Q=#[]; IZH=#{}; IZH_Q=#[]; IMCH=#{}; IMCH_Q=#[]; IMH=#{}; IMH_Q=#[]; ISH=#{}; ISH_Q=#[]; ISPH=#{}; ISPH_Q=#[]; ICH=#{}; ICH_Q=#[]
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
|
172.66.40.197
HTTP/2 302 Found
content-type: text/html; charset=utf-8
date: Thu, 23 Mar 2023 10:41:04 GMT
content-length: 418
location: https://twinrdsrv.com/mediahosting.engine?MediaId=54280&AId=6827&CId=27887&PId=49657&SiteId=7003&ZoneId=41951&VolumeMetricId=557a6802-8ab9-4b68-bca0-524c0123dc2c&PassBackUrl=&res=&dcid=3_ctx_a1e90c59-89dd-491c-9be5-a1b405fffefd&cu=&kw=&mw=300&mh=250
cache-control: private, no-transform
access-control-allow-origin: *
set-cookie: IKSR={}; path=/; SameSite=None; secure
INF_DFL8=false; path=/; SameSite=None; secure
IUID=85a66338-72f2-4895-a9c3-f9b6c98aa3bc; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure
ISSH=6A1BFD; path=/; SameSite=None; secure
VMI=557a6802-8ab9-4b68-bca0-524c0123dc2c; path=/; SameSite=None; secure
IPLH=#{"49657":[{"SId":"6A1BFD","D":"23/3/23T3:41:3"}]}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IPLH_Q=#[49657]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
CHN=#[]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
MSSH=#{}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
MSRH=#{}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ILP=null; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure
ILPLU=#1/1/0001 12:00:00 AM; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ILEALC=#1/1/0001 12:00:00 AM; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ILMPF=#False; expires=Thu, 23-Mar-2023 14:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IPMPLU=#; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IPMUID=#; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
BSWUID=#; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IKSR={}; path=/; SameSite=None; secure
IBL=#[]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IPLSH=#{}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IPLSH_Q=#[]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IZH=#{"41951":[{"SId":"6A1BFD","D":"23/3/23T3:41:3"}]}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IZH_Q=#[41951]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IMCH=#{}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IMCH_Q=#[]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IMH=#{"54280":[{"SId":"6A1BFD","D":"23/3/23T3:41:3"}]}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
IMH_Q=#[54280]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ISH=#{}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ISH_Q=#[]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ISPH=#{"7003":[{"SId":"6A1BFD","D":"23/3/23T3:41:3"}]}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ISPH_Q=#[7003]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ICH=#{"27887":[{"SId":"6A1BFD","D":"23/3/23T3:41:3"}]}; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
ICH_Q=#[27887]; expires=Wed, 23-Mar-2033 10:41:03 GMT; path=/; SameSite=None; secure; HttpOnly
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UIohfy8ROq6IWjfvEB%2B%2BfsIP6zhGZtP%2FvIdAnASkAymwT%2BW%2BSz4goL410VYpmmU%2FmTXJd%2FTH7fsKggrq9ppWosKUAEDDgq%2BXbomFhNatx8dicJGcAeCk7ZLiJ5xgJ9w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac60f4eff0cb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /apple-touch-icon.png HTTP/1.1
Host: www.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/videos/197379/b00bee6c97cea38906f6b51e7e1a81af/?sid=12320
Cookie: PHPSESSID=lv2a7qv9a8nmmelic2kphf4drj; kt_qparams=id%3D197379%26dir%3Db00bee6c97cea38906f6b51e7e1a81af%26sid%3D12320; kt_ips=91.90.42.154; show_pops2=true2; show_pops1=true1; ppu_show_on_63d45b685911cef3b8cc3d1d1550bf85=1; kt_tcookie=1; kt_is_visited=1; ppu_main_e5a3678a1d1bb8a6b0d93a9a41a239f8=1; sb_main_f1558eeca431d45f5f8240bae243d8b1=1; sb_count_f1558eeca431d45f5f8240bae243d8b1=1; ppu_main_63d45b685911cef3b8cc3d1d1550bf85=1; ppu_exp_63d45b685911cef3b8cc3d1d1550bf85=1679571671417
|
172.67.210.53
HTTP/1.1 200 OK
Content-Type: image/png
Date: Thu, 23 Mar 2023 10:41:04 GMT
Content-Length: 13713
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 12:46:44 GMT
ETag: "6380b934-3591"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 3891232
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4mZBT%2Bls1UPujxLza1jEWNGdWnKtg85af0zwzBn5VUz6F8ijVnNW7vhXddHcu33DcdlfIg%2BoE2RTHLuNOp4y63nlt07GDGLMtTv%2B75FJQRK8B%2BzJ3UCa%2FVqJEe71d7ZRElo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ac60f50495fb4f4-OSL
alt-svc: h2=":443"; ma=60
|
GET /favicon-16x16.png HTTP/1.1
Host: www.xxxfiles.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.xxxfiles.tv/videos/197379/b00bee6c97cea38906f6b51e7e1a81af/?sid=12320
Cookie: PHPSESSID=lv2a7qv9a8nmmelic2kphf4drj; kt_qparams=id%3D197379%26dir%3Db00bee6c97cea38906f6b51e7e1a81af%26sid%3D12320; kt_ips=91.90.42.154; show_pops2=true2; show_pops1=true1; ppu_show_on_63d45b685911cef3b8cc3d1d1550bf85=1; kt_tcookie=1; kt_is_visited=1; ppu_main_e5a3678a1d1bb8a6b0d93a9a41a239f8=1; sb_main_f1558eeca431d45f5f8240bae243d8b1=1; sb_count_f1558eeca431d45f5f8240bae243d8b1=1; ppu_main_63d45b685911cef3b8cc3d1d1550bf85=1; ppu_exp_63d45b685911cef3b8cc3d1d1550bf85=1679571671417
|
104.21.83.6
HTTP/1.1 200 OK
Content-Type: image/png
Date: Thu, 23 Mar 2023 10:41:04 GMT
Content-Length: 1489
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 12:46:44 GMT
ETag: "6380b934-5d1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 3891667
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ReWu5z2O4q7E0JWS02pr%2BpBpa1qBSPu6%2F00jSC6DhbmwE0VHtYXNqyzd%2Bwkpp1P%2FIoIgcpc30QQdtWRZkKRI2KgRzBxKS5IaQtAojX5DA784s3PEVLLf3GADn%2FjdOwZs950%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ac60f50489d1c16-OSL
alt-svc: h2=":443"; ma=60
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 10:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /cimp.php?t=api&data=H4sIAAAAAAAAA0VQS04DMQy9ChfoyL8kdtewBamoB+hkIsSinYoCKtI7PMksIJbjF8efZwuJ7kh3og+U98Z7UgRPQZPJxMnw/HKAMa7rx+Vtnep6Ri65RECUSxE4hXuBKXOQIJF3lZLdUTi8q8AICuoiSc0GmohYUBxPxwOOr4/dE9qrMYTQ79F1wC34PlI9N5nZpHKNJNFmLk2sqSzucZprTyJ8nT+v6/Veb22pU10u3+9LW3VjTUiSlcBEeXCYWNRHv43YEGVTMcGO/x6Gfgjb9+n2c6nAf7hvJm0VOnPrUzJQSuqozVbEQsL6trIlqinmviHXXyooZNdxAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://umtpopxcsedc.cdnvideo3.com
Connection: keep-alive
Referer: http://umtpopxcsedc.cdnvideo3.com/
|
95.211.229.248
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Thu, 23 Mar 2023 10:41:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://umtpopxcsedc.cdnvideo3.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Sat, 22 Mar 2025 10:41:04 GMT; path=/; domain=.realsrv.com;
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
216.58.207.206
HTTP/2 200 OK
content-type: text/javascript
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 23 Mar 2023 10:05:11 GMT
expires: Thu, 23 Mar 2023 12:05:11 GMT
cache-control: public, max-age=7200
age: 2153
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 10:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /library/676799/60f4adb1968b8111d2fc461886cfd9820c7dba6f.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://umtpopxcsedc.cdnvideo3.com/
|
185.76.9.25
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 23 Mar 2023 10:41:04 GMT
Content-Length: 22930
Connection: keep-alive
Last-Modified: Fri, 27 Aug 2021 14:16:32 GMT
ETag: "6128f3c0-5992"
Expires: Fri, 30 Jun 2023 11:18:47 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
X-Cache-OP: HIT
Server: CDN77-Turbo
X-Robots-Tag: noindex, follow
X-77-NZT: AblMCRTi+83/jI9dAQ
X-77-NZT-Ray: af585630056705f1c02c1c6460d7110c
X-Accel-Expires: @1688195252
X-Cache: HIT
X-Age: 22908812
X-77-POP: stockholmSE
X-77-Cache: HIT
Accept-Ranges: bytes
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Size: 22930
Md5: a84c6a25873a8ddb405b6adff075bff0
Sha1: 60f4adb1968b8111d2fc461886cfd9820c7dba6f
Sha256: e733ca4ba0d4664b6be9ad7f0619ff6b4af406a0e2456858c611793e6d09eb96
|
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz2PS04DMQyGr8IFGvmVh7uGLUhFPcA0k0Es2qkooCL9hyeZRWMldhL792ch0R3pTvSJ0t54Twrn4BRMAkfD69sBxriuX5ePNdT1jJRTdoco5ywo5KVkmLKZF0QaW3IqBZm9JNcCIyiom0Q1G1EgYkEueDkecHx/7i+uXY0hhH6OriPcku+jlKVOcXGdF2uRJS41NRZui5QldteLCD/n7+t6vddbm2uo8+X3c26rbtSEKEm7DlEaDIGV4+i3gQ3rE6iYYMePi6EvwvY93f4uFXikW9pc3BQ6ufUpubOTsZXEtVWvdFrU24CeYjpNOTr9A3kkBctxAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://umtpopxcsedc.cdnvideo3.com
Connection: keep-alive
Referer: http://umtpopxcsedc.cdnvideo3.com/
|
95.211.229.248
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Thu, 23 Mar 2023 10:41:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://umtpopxcsedc.cdnvideo3.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Sat, 22 Mar 2025 10:41:04 GMT; path=/; domain=.realsrv.com;
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
GET /smartpop/ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4?userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&memberId=21b55573-35fa-49d8-b9de-0d85a3c7defd&sourceId=xxxfiles.com&p1=Promo_Banners_Straight_T1_Desk&p2=49657&trackOff=1 HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twinrdsrv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.51.106
HTTP/2 302 Found
date: Thu, 23 Mar 2023 10:41:04 GMT
content-length: 0
location: https://creative.xlivrdr.com/widgets/v4/Universal?campaignId=ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4&campaignType=smartpop&creativeId=ca6624202b11763d71416a8ead72efb72b6393c2d3c8dd0c6eab3c1996806e05&iterationId=402449&masterSmartpopId=1914&memberId=21b55573-35fa-49d8-b9de-0d85a3c7defd&p1=Promo_Banners_Straight_T1_Desk&p2=49657&quality=optimal&ruleId=17&smartpopId=1807&sourceId=xxxfiles.com&tag=-girls%2Findian&trackOff=1&userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&variationId=30282
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: DYNAMIC
set-cookie: _var=893328.30282; Path=/; HttpOnly; SameSite=Strict
__cflb=02DiuDfsBaY2bRYJiCfFHYpfgnRfzoh6KnTjY23ws6i84; SameSite=None; Secure; path=/; expires=Fri, 24-Mar-23 09:41:04 GMT; HttpOnly
server: cloudflare
cf-ray: 7ac60f52299c0b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /smartpop/ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4?userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&memberId=41d72742-51c6-4217-8e52-36cad911761d&sourceId=xxxfiles.com&p1=Promo_Banners_Straight_T1_Desk&p2=49657&trackOff=1 HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twinrdsrv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
104.18.51.106
HTTP/2 302 Found
date: Thu, 23 Mar 2023 10:41:04 GMT
content-length: 0
location: https://creative.xlivrdr.com/widgets/v4/Universal?campaignId=ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4&campaignType=smartpop&creativeId=ca6624202b11763d71416a8ead72efb72b6393c2d3c8dd0c6eab3c1996806e05&iterationId=402449&masterSmartpopId=1914&memberId=41d72742-51c6-4217-8e52-36cad911761d&p1=Promo_Banners_Straight_T1_Desk&p2=49657&quality=optimal&ruleId=17&smartpopId=1807&sourceId=xxxfiles.com&tag=-girls%2Findian&trackOff=1&userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&variationId=30282
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: DYNAMIC
set-cookie: _var=893328.30282; Path=/; HttpOnly; SameSite=Strict
__cflb=02DiuDfsBaY2bRYJiCddNhqGgfsRfgxdZSR77f3VWMR8Y; SameSite=None; Secure; path=/; expires=Fri, 24-Mar-23 09:41:04 GMT; HttpOnly
server: cloudflare
cf-ray: 7ac60f52399f0b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "AE6E3A87910B22A44D77DC05F40D5D2E7088D19CE0311B7A98F78274E7CC0409"
Last-Modified: Tue, 21 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14543
Expires: Thu, 23 Mar 2023 14:43:27 GMT
Date: Thu, 23 Mar 2023 10:41:04 GMT
Connection: keep-alive
|
GET /smartpop/ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4?userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&memberId=d3a82dd2-26c0-4e9d-b530-e10bbc57bbd2&sourceId=xxxfiles.com&p1=Promo_Banners_Straight_T1_Desk&p2=49657&trackOff=1 HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twinrdsrv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
104.18.51.106
HTTP/2 302 Found
date: Thu, 23 Mar 2023 10:41:04 GMT
content-length: 0
location: https://creative.xlivrdr.com/widgets/v4/Universal?campaignId=ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4&campaignType=smartpop&creativeId=ca6624202b11763d71416a8ead72efb72b6393c2d3c8dd0c6eab3c1996806e05&iterationId=402449&masterSmartpopId=1914&memberId=d3a82dd2-26c0-4e9d-b530-e10bbc57bbd2&p1=Promo_Banners_Straight_T1_Desk&p2=49657&quality=optimal&ruleId=17&smartpopId=1807&sourceId=xxxfiles.com&tag=-girls%2Findian&trackOff=1&userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&variationId=30282
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: DYNAMIC
set-cookie: _var=893328.30282; Path=/; HttpOnly; SameSite=Strict
__cflb=02DiuDfsBaY2bRYJiCeScBLPeXxw9eeb9JD1ET1wGkEyS; SameSite=None; Secure; path=/; expires=Fri, 24-Mar-23 09:41:04 GMT; HttpOnly
server: cloudflare
cf-ray: 7ac60f5229990b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /sbar.json?key=f1558eeca431d45f5f8240bae243d8b1 HTTP/1.1
Host: registercherryheadquarter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
173.233.137.44
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Server: nginx/1.19.5
Date: Thu, 23 Mar 2023 10:41:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://www.xxxfiles.tv
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=18618717; expires=Fri, 24 Mar 2023 10:41:04 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 24 Mar 2023 10:41:04 GMT; secure; SameSite=None
uncs=1; expires=Fri, 24 Mar 2023 10:41:04 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 24 Mar 2023 10:41:04 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 24 Mar 2023 10:41:04 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d9bc1be987651a53e1196a7f4cb7f6a8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
GET /splash.php?idzone=4646896 HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
95.211.229.248
HTTP/1.1 200 OK
Content-Type: text/xml;charset=UTF-8
Server: nginx
Date: Thu, 23 Mar 2023 10:41:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22641c2cc07b4f74.836433683021290702%22%3B%7D; expires=Sat, 22 Mar 2025 10:41:04 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4646896%7C80752864%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Cxxxfiles.tv%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Fri, 24 Mar 2023 10:41:04 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.xlivrdr.com/
Origin: https://creative.xlivrdr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
104.18.62.235
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 10:41:04 GMT
content-length: 16
x-amz-id-2: umnGOMVCjminO+qe5UBV06OrSizh/U59KvaEibge5v1gMRbq/UnThpljPBepeh+5w7wEpQIcu/4=
x-amz-request-id: 3YW9SERF7DC7262X
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.xlivrdr.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 6686
expires: Thu, 23 Mar 2023 14:41:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f539a2cb4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /splash.php?idzone=4248590 HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22641c2cc07b4f74.836433683021290702%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4646896%7C80752864%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Cxxxfiles.tv%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
95.211.229.248
HTTP/1.1 200 OK
Content-Type: text/xml;charset=UTF-8
Server: nginx
Date: Thu, 23 Mar 2023 10:41:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22641c2cc07b4f74.836433683021290702%22%3B%7D; expires=Sat, 22 Mar 2025 10:41:04 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4248590%7C76717922%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C641c2cc07b4f74.836433683021290702%7C%7C0%7Cxxxfiles.tv%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Fri, 24 Mar 2023 10:41:04 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
GET /sbar.json?key=cc48f4cc72bd1ab0cd76dca8048a896c HTTP/1.1
Host: improviseprofane.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
173.233.137.36
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Server: nginx/1.19.5
Date: Thu, 23 Mar 2023 10:41:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://www.xxxfiles.tv
Access-Control-Allow-Origin: http://www.xxxfiles.tv
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17371676; expires=Fri, 24 Mar 2023 10:41:04 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 24 Mar 2023 10:41:04 GMT; secure; SameSite=None
uncs=1; expires=Fri, 24 Mar 2023 10:41:04 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 24 Mar 2023 10:41:04 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 24 Mar 2023 10:41:04 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fc1465f8208cb2bb672855eb3e421f7c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "D4102CDC832D746A8829089AAA3B7A9D5D0F87D920D0F53E5EAC80AF5D76219E"
Last-Modified: Tue, 21 Mar 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12073
Expires: Thu, 23 Mar 2023 14:02:17 GMT
Date: Thu, 23 Mar 2023 10:41:04 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "D4102CDC832D746A8829089AAA3B7A9D5D0F87D920D0F53E5EAC80AF5D76219E"
Last-Modified: Tue, 21 Mar 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12073
Expires: Thu, 23 Mar 2023 14:02:17 GMT
Date: Thu, 23 Mar 2023 10:41:04 GMT
Connection: keep-alive
|
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSwWsbxxeeTfw75fJLCIFACuqthSDvStpYaqChbupg6tpunOJTD7Mzs%2FLUszPLzK5W1sk0tORQitpTj%2BtPdkzbEJI%2FoBDkXlrTglVK8aGG%2FA2FQG9FskDtg5n3vvne4fvem8%2F38jPiI6en6x%2BYnlSKzodVv%2FLGptTcFK6y%2BqAS%2BFX%2FdmVT6luN25Xu%2BLKdtwI%2FrPpvVu4Jtm3ma37g%2B4EfVJakFbHpzk9YyPRJK6i2%2FGqjVg3CBrr2v9jlHhz1wDtn5AokH%2F1v66fnkGwInTy7K9x2ZtKb7yW5opmx6PDDj%2FS2NoVGMitj6yHWh9NuGDci5JsLMPpw6gCmsz92gEiOiPdHgEgfTmUi6hycK40UhEbEL6HoDCHUEJIOwcxDSH5CAMaxugadPF41tqA75ywdsyMy9%2BovyGJE5v68Cp08XVSyW9kwKs%2Bk0Q7duITsDiHbQ6T5EbKeB1kcgWWfQvJfyfyrFehkf80pA8nLiXsph5DxEEr0QZ2HfHykhzz2kKceEn5aoWEr9v2FOIrr9WaDMVavMxY2b%2FGQ1xvN2EfOxvL6yNI%2BmOqD2V2kdhfb8uuT8MrJyjJs%2FgJuq4TjHlw2It6Hu%2BjwEoUgKBxBQQkKSVBkBEWnPODK1Vz5mCuXR8E016a5Xg5M1t6jByZrC0320jNyeTwd78b1j7EtTitxEIZNIRht1APeCOMwbtYafkRFrVHnzSiAkyWkuzAx3JMjcvnaZ0jliFygvyCiR3DqCEz%2BHzR%2FDbQYLNR80K1Bo%2Bmjp591hN2JrRCpsbrKTAJuSqTZHLIdb0%2BdkeuTTb29cQ2CHd%2F5%2BeW9p1d7L8FsidSW%2BET%2BSNBWjwb3TUH275vCkedraSYT2aPjLW5kNBMXv3tf7BTG8uW7rv%2FtO2xMjMsnD4TLVqjmUrcd%2BX5Rci7skrFMkB%2BW3aaI1nO3tZhbnacr6%2B8uLSepFc5Jo4eg8sR9ASZH5JL5e%2FI%2FX%2F%2F9S0g7hM1LJPkxmQakGYKlu3DpTL0zBFbNeqLUQ5GXA1uLZo9KEigxwzQq4f6Fo1m95x6hbT3Q7CF0UqJjS3RUCar6cPnFQZba4zu%2F1SeBSHmDSFlvP1JWfXU%2BWidPKyKM%2FVj4NRHFrSheoD5vxY1WRFuBWIhCGiBzI37j5ot%2FAAAA%2F%2F8BAAD%2F%2F1JHKNh3BAAA HTTP/1.1
Host: registercherryheadquarter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Cookie: u_pl=18618717; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
173.233.137.44
HTTP/1.1 200 OK
Content-Type: image/gif
Server: nginx/1.19.5
Date: Thu, 23 Mar 2023 10:41:04 GMT
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c3a248e85720b204286792e76d5b2739
Strict-Transport-Security: max-age=0; includeSubdomains
|
GET /smartpop/8d895a7a3b4847a30c0a159b2850ec6cd538abf45b153ead926036436ae26b20?userId=9b65bf46ffaa65f3a0e9f48617bfce410a91e0834859e07cbac61729433ad6e8&memberId=ooc4ASOprprturdbLZVPbXS6VzqpbXUzOodTK6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOc6VylK47.3LGZDnOldK6V0rpXSuldK6VwfYA- HTTP/1.1
Host: go.xlirdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
104.18.51.106
HTTP/2 302 Found
date: Thu, 23 Mar 2023 10:41:04 GMT
content-length: 0
location: https://go.xlirdr.com/api/models/vast?campaignId=8d895a7a3b4847a30c0a159b2850ec6cd538abf45b153ead926036436ae26b20&campaignType=smartpop&creativeId=4ecbf483db62b985de7f6ba77c0c167dcdbbd27e797a4c82eb223a1393acd989&iterationId=414986&masterSmartpopId=2683&memberId=ooc4ASOprprturdbLZVPbXS6VzqpbXUzOodTK6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOc6VylK47.3LGZDnOldK6V0rpXSuldK6VwfYA-&ruleId=157&smartpopId=7237&tag=girls&usePreroll=true&userId=9b65bf46ffaa65f3a0e9f48617bfce410a91e0834859e07cbac61729433ad6e8&variationId=30386
access-control-allow-origin: http://www.xxxfiles.tv
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: DYNAMIC
set-cookie: _var=67574152.30386; Path=/; HttpOnly; SameSite=Strict
__cflb=0H28uukSkGJRy5UBr1u9iAwwBfboBLDnR111ythuhgG; SameSite=None; Secure; path=/; expires=Fri, 24-Mar-23 09:41:04 GMT; HttpOnly
server: cloudflare
cf-ray: 7ac60f55ee781c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /do2/5a4d8c9f24e543abb29e2f21424e70ea/vast? HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Cookie: ts_uid=75387cc9-7a1c-4f4c-9bbf-223562984651; bfq=APeIECNCx5YZMmbMiFFjRhcWIsYU3BLjoYgyE2PYuJHDRg0aNGzQ6NJH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
136.243.80.153
HTTP/2 200 OK
content-type: application/xml; charset=utf-8
server: nginx
date: Thu, 23 Mar 2023 10:41:04 GMT
access-control-allow-origin: http://www.xxxfiles.tv
access-control-allow-methods: POST, GET, HEAD
access-control-allow-headers: Accept, X-Requested-With, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Legacy
access-control-allow-credentials: true
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-api-version: 2
x-vast: 3.0
x-request-id: 82d48c08d6b35a38
set-cookie: ts_uid=75387cc9-7a1c-4f4c-9bbf-223562984651; expires=Sat, 23 Sep 2023 10:41:04 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
bfq=APeIECNCx5YZMmbMiFFjRhcWIsYU3CLjoYgyE2PYuJHDRg0aNGzQ6NJH; expires=Fri, 24 Mar 2023 10:41:04 GMT; domain=.tsyndicate.com; path=/; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
|
GET /easy?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&xhVersion=1&skipOffset=00:00:05&memberId=7b28721a-3822-4410-8645-bc3fe14eeef2&contentType=video/mp4&no_bb=1 HTTP/1.1
Host: go.xlirdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.xxxfiles.tv/
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
104.18.51.106
HTTP/2 302 Found
date: Thu, 23 Mar 2023 10:41:04 GMT
content-length: 0
location: https://go.xlirdr.com/api/models/vast?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&campaignType=easylink&contentType=video%2Fmp4&creativeId=4ecbf483db62b985de7f6ba77c0c167dcdbbd27e797a4c82eb223a1393acd989&iterationId=414909&masterSmartpopId=2683&memberId=7b28721a-3822-4410-8645-bc3fe14eeef2&no_bb=1&ruleId=157&skipOffset=00%3A00%3A05&smartpopId=5347&tag=girls&usePreroll=true&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&variationId=30386&xhVersion=1
access-control-allow-origin: http://www.xxxfiles.tv
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: DYNAMIC
set-cookie: _var=67247758.30386; Path=/; HttpOnly; SameSite=Strict
__cflb=02DiuDfsBaY2bRYJiCeS4Kkib9dpHBnhaXi4RnGPGkvgL; SameSite=None; Secure; path=/; expires=Fri, 24-Mar-23 09:41:04 GMT; HttpOnly
server: cloudflare
cf-ray: 7ac60f560e911c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "26F0004290E81E938D7A4D6F22D8EF03A79DCF0C3EBABD71296DF782E6CFF94F"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11623
Expires: Thu, 23 Mar 2023 13:54:48 GMT
Date: Thu, 23 Mar 2023 10:41:05 GMT
Connection: keep-alive
|
GET /sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
45.133.44.3
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Thu, 23 Mar 2023 10:41:04 GMT
server: nginx/1.17.6
last-modified: Fri, 19 Feb 2021 09:27:09 GMT
etag: W/"602f846d-4fa"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 23 Mar 2023 11:41:04 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
GET /api/spots/309159?host=www.xxxfiles.tv&ev=205&wh=939&ww=1280&uuid=&i=1&kw=Masturbation%2Cyoung%2CSquirt%2Csquirting%2CSolo%2CFisting%2Cpublic%20nudity%2Cdancing%20scenes%2Cextreme%20closeups%2Cmasturbation%20to%20orgasm%2Cother%20stuffing%2Cupskirt%20in%20public%2Cftvgirls.com%2Cvagina%20gaping%20closeups%2Clong%20labia%20and%20stretching%2CEllie&s1=%25subid1%25 HTTP/1.1
Host: umtpopxcsedc.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
135.181.208.216
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
server: nginx
date: Thu, 23 Mar 2023 10:41:04 GMT
vary: Accept-Encoding
set-cookie: nauid=VpXsKGnikRABPCsvrR1E; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
GET /thumbs/1679568000/95501563 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative.xlivrdr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
104.18.63.124
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:05 GMT
content-length: 34945
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=1, max-stale=1, stale-if-error=1
cf-bgj: imgq:100,h2pri
cf-polished: origSize=36112, status=webp_bigger
etag: "e264a11c18266cbf53e3529a34b33d74"
last-modified: Thu, 23 Mar 2023 10:39:47 GMT
cf-cache-status: HIT
age: 63
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f56fb7f1c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /sb/au/5d/1e/66/5d1e6654b79f5bf053b789353432e45e/1613739250.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.xxxfiles.tv
Connection: keep-alive
Referer: http://www.xxxfiles.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
45.133.44.3
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Thu, 23 Mar 2023 10:41:04 GMT
server: nginx/1.17.6
last-modified: Fri, 19 Feb 2021 12:54:16 GMT
etag: W/"602fb4f8-4fa"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 23 Mar 2023 11:41:04 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
GET /thumbs/1679568000/48780161 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative.xlivrdr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.63.124
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:05 GMT
content-length: 24562
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=1, max-stale=1, stale-if-error=1
cf-bgj: imgq:100,h2pri
cf-polished: origSize=25549, status=webp_bigger
etag: "ca6accff9fb60d3d0514ec30e29ec54a"
last-modified: Thu, 23 Mar 2023 10:39:36 GMT
cf-cache-status: HIT
age: 62
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f570b921c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /thumbs/1679568000/87386015 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative.xlivrdr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.63.124
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:05 GMT
content-length: 31540
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=1, max-stale=1, stale-if-error=1
cf-bgj: imgq:100,h2pri
cf-polished: origSize=32822, status=webp_bigger
etag: "c3f91bbd0f6b9b157978e900c0a94177"
last-modified: Thu, 23 Mar 2023 10:39:15 GMT
cf-cache-status: HIT
age: 57
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f56fb831c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /thumbs/1679568000/80316166 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative.xlivrdr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.63.124
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:05 GMT
content-length: 41891
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=1, max-stale=1, stale-if-error=1
cf-bgj: imgq:100,h2pri
cf-polished: origSize=44308, status=webp_bigger
etag: "213b4fecaa108f30d1dd5522283fc9dd"
last-modified: Thu, 23 Mar 2023 10:39:13 GMT
cf-cache-status: HIT
age: 56
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f56fb861c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /thumbs/1679568000/77550739 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative.xlivrdr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.63.124
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:05 GMT
content-length: 38752
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=1, max-stale=1, stale-if-error=1
cf-bgj: imgq:100,h2pri
cf-polished: origSize=41222, status=webp_bigger
etag: "767412240d0935914aaab85f116f1b80"
last-modified: Thu, 23 Mar 2023 10:39:30 GMT
cf-cache-status: HIT
age: 62
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f570b901c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /thumbs/1679568000/94049035 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative.xlivrdr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.63.124
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:05 GMT
content-length: 49468
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=1, max-stale=1, stale-if-error=1
cf-bgj: imgq:100,h2pri
cf-polished: origSize=50886, status=webp_bigger
etag: "bd8a94ddaae4d59cb7f5b5adfd3c17c7"
last-modified: Thu, 23 Mar 2023 10:39:27 GMT
cf-cache-status: HIT
age: 62
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f570b941c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /thumbs/1679568000/103723538 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative.xlivrdr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.63.124
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:05 GMT
content-length: 44039
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=1, max-stale=1, stale-if-error=1
cf-bgj: imgq:100,h2pri
cf-polished: origSize=45454, status=webp_bigger
etag: "c4ae6d40f00005664cb93b64a841db58"
last-modified: Thu, 23 Mar 2023 10:39:11 GMT
cf-cache-status: HIT
age: 61
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f570b951c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
|
142.250.74.74
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 23 Mar 2023 10:41:05 GMT
Date: Thu, 23 Mar 2023 10:41:05 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
|
GET /sb/ssp/utility/social-media/whatsapp/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
172.64.166.9
HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 23 Mar 2023 10:41:05 GMT
last-modified: Thu, 11 Feb 2021 15:19:43 GMT
etag: W/"60254b0f-52a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 11047785
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BICx%2FDzLggMcohJvYsjdI39c%2BZxbFHurY4lsNe0d8k6mlgu52eDo2SZActE7ThvZ4BhrR5bM5TyClyX%2FBTj2I7rQ%2BoTFkfIJu0DLOLimLscUdUeqK8cgA8FRHIaQeA7%2F0Ac5hnnAmQHG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac60f588b983855-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "FE9A1B3C4FB8BBB1B0DF43875B6D563B7967E2D9FC9529DBB6D4865A9FAA7752"
Last-Modified: Wed, 22 Mar 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17840
Expires: Thu, 23 Mar 2023 15:38:25 GMT
Date: Thu, 23 Mar 2023 10:41:05 GMT
Connection: keep-alive
|
GET /si/c6/9a/f6/c69af62e3cbd0d91d332fbb8d334d20d/1664809088.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
45.133.44.10
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 10:41:05 GMT
content-length: 18489
server: nginx/1.17.6
last-modified: Mon, 03 Oct 2022 14:58:17 GMT
etag: "633af889-4839"
expires: Sat, 25 Mar 2023 10:41:05 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
|
93.93.51.191