| www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ | 172.67.206.175 | 301 Moved Permanently | 0 B |
URL HTTP/1.1www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP172.67.206.175:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ HTTP/1.1
Host: www.hentaiasmr.moe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 13 Sep 2022 14:11:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 13 Sep 2022 15:11:29 GMT
Location: https://www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bStk%2Bj%2FteJMPFXVueDA2DKzo7VpdaUOEZ48fSn4h3iXh3384TZbs7lYqYWDWj%2BAFo2YdfmIYXadamzA9%2B6h1EeccNqH%2FelRnHJ7lVuN9%2Fom4YzM3BxU1iA1120jYpmv4hvJnLtw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a178ee9cfd0afa-OSL
alt-svc: h2=":443"; ma=60
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.27 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash99b7d23c1748d0526782b9ff9ea45f09 eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 13 Sep 2022 14:08:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5ANYG460WOdEwz-znOaHaXMeTcTHPXiHa9WUv6G89Om6t_OKOZUnRw==
Age: 163
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashbe88d3e043e3b95b52e41812e50fb634 0318ba1ce487817ea7cba61dd9413bed29213800 b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10116
Expires: Tue, 13 Sep 2022 17:00:05 GMT
Date: Tue, 13 Sep 2022 14:11:29 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain | 143.204.55.49 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain IP143.204.55.49:0
File typePEM certificate\012- , ASCII text Hash742edb4038f38bc533514982f3d2e861 cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 13 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g_8MLkNA40eRHESVETe6RcXUFB9WROvUmjofoHZpkdJTT2qIYZsydQ==
age: 34575
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| a.realsrv.com/video-slider.js | 205.185.216.42 | 200 OK | 13 kB |
URL HTTP/1.1a.realsrv.com/video-slider.js IP205.185.216.42:0
File typeASCII text, with very long lines (45726), with no line terminators Hash76da46f4c257b96bfb42e8a22f70e4f3 f64e2431557a6ebc9ce742dae555fe84eb2f5141 73a66ac6767d009e6a2d3727eff796bf8c1bb3221f473d8fb558bdd25dd9aa9b
GET /video-slider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:11:30 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 13013
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"d2ce3ee76ea3afea4a58d6d606a"
X-HW: 1663078290.dop223.sk1.t,1663078290.cds071.sk1.shn,1663078290.cds071.sk1.c
Access-Control-Allow-Origin: *, *
|
|
| a.realsrv.com/ad-provider.js | 205.185.216.42 | 200 OK | 24 kB |
URL HTTP/1.1a.realsrv.com/ad-provider.js IP205.185.216.42:0
File typeASCII text, with very long lines (65536), with no line terminators Hash46504668ecf4671f582f5ba93a2f3c6b 8b165c478da3dd4fd4df3b40745733049b5acb0c 5230c0e2745fedbf038f97e374a5b6ea033434301aa86ec545eae37b29350799
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:11:30 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 23726
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"2bf044048f482551901a41a7444"
X-HW: 1663078290.dop201.sk1.t,1663078290.cds205.sk1.shn,1663078290.dop201.sk1.t,1663078290.cds207.sk1.c
Access-Control-Allow-Origin: *, *
|
|
| cuddlethehyena.com/solid.gif?z=1866240&abvar=0 | 62.122.171.6 | 200 OK | 43 B |
URL HTTP/2cuddlethehyena.com/solid.gif?z=1866240&abvar=0 IP62.122.171.6:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash28e463819a210071de3b45ebe7633613 6dccd571828ec0912629119cf7eabfea9f33ddbc 44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
POST /solid.gif?z=1866240&abvar=0 HTTP/1.1
Host: cuddlethehyena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
|
|
| a.realsrv.com/popunder1000.js | 205.185.216.42 | 200 OK | 40 kB |
URL HTTP/1.1a.realsrv.com/popunder1000.js IP205.185.216.42:0
File typeASCII text, with very long lines (65536), with no line terminators Hashecf59349935e274ee2cb03e357d71158 7aa74be5d4c9e213b0692eaa0ac6a78e5d74b9e1 64603c3d15d7d1fdf05fd5ef4e582ec4766635797f974cc08f3d6e79c7725d31
GET /popunder1000.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:11:30 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 39969
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"1063790cabf57ffff66ecc0cab2"
X-HW: 1663078290.dop201.sk1.t,1663078290.cds205.sk1.shn,1663078290.dop201.sk1.t,1663078290.cds258.sk1.c
Access-Control-Allow-Origin: *, *
|
|
| pixel.wp.com/g.gif?v=ext&j=1%3A11.3.1&blog=194586036&post=0&tz=-4&srv=www.hentaiasmr.moe&host=www.hentaiasmr.moe&ref=&fcp=0&rand=0.6463534273010452 | 192.0.76.3 | 200 OK | 9.1 kB |
URL HTTP/2pixel.wp.com/g.gif?v=ext&j=1%3A11.3.1&blog=194586036&post=0&tz=-4&srv=www.hentaiasmr.moe&host=www.hentaiasmr.moe&ref=&fcp=0&rand=0.6463534273010452 IP192.0.76.3:0
Hash8ccd6d003ef78a6523dc6c9dd9f43edd e9bd91d778b6312c73a5043ff1f9496d197298cf 0bebde01de6c3c4aeb81d50f27d111becfbe358d044155194b193d37dec7c889
GET /g.gif?v=ext&j=1%3A11.3.1&blog=194586036&post=0&tz=-4&srv=www.hentaiasmr.moe&host=www.hentaiasmr.moe&ref=&fcp=0&rand=0.6463534273010452 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| c0.wp.com/p/jetpack/11.3.1/css/jetpack.css | 192.0.77.37 | 200 OK | 16 kB |
URL HTTP/2c0.wp.com/p/jetpack/11.3.1/css/jetpack.css IP192.0.77.37:0
File typeUnicode text, UTF-8 text, with very long lines (65533), with no line terminators Hash3da697fe22ffd9b645738de9d3fb15d0 85f322c6368ccb5ce46be96f7ec27d5653fb9b75 ac62785c668227b7bfd49f7a98179f68aea27392bc7f64380af8b74b4fa3a0f6
GET /p/jetpack/11.3.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 19 Jul 2022 17:25:16 GMT
content-encoding: br
expires: Wed, 13 Sep 2023 14:11:30 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| syndication.realsrv.com/splash.php?idzone=4608836&cookieconsent=true | 95.211.229.248 | 200 OK | 4.0 kB |
URL HTTP/1.1syndication.realsrv.com/splash.php?idzone=4608836&cookieconsent=true IP95.211.229.248:0 ASN#60781 LeaseWeb Netherlands B.V.
Hash092e74374a1077669a10b2b2cced156b 6fe8dae63d5b8c5ff8dd3d0f979ebdac34c26222 87f169806c802113d3a673f9c74e97f98df0f1a2a7a35828b6f519660cd756ff
GET /splash.php?idzone=4608836&cookieconsent=true HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:30 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:30 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Wed, 14 Sep 2022 14:11:30 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashec7a5bb8e310f5c9c992cf85832d5445 e32b8e200a79da9008985e8e6c272f35b02581c5 6391e4c68631e272509ade559b8f568b03dd88be1956906332ae584f9faee00a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=UA-185402816-18 | 142.250.74.72 | 200 OK | 42 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-185402816-18 IP142.250.74.72:0
File typeASCII text, with very long lines (1615) Hashb74decd68ad09e203bc39694a74ede23 6b4e13ecde4c2d096baa1442eb8d8070291f154f 589021456e5b140a300867c3d575622c6619509053c4599209e1f119eed86b21
GET /gtag/js?id=UA-185402816-18 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 13 Sep 2022 14:11:30 GMT
expires: Tue, 13 Sep 2022 14:11:30 GMT
cache-control: private, max-age=900
last-modified: Tue, 13 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41921
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashe96dbe1b54932c8f447bbbfc9d31cfb0 b15d4a54fbdf95b0af8bd34b6f8ef03055eef0cd 427326963ac1ef6ddeeaf52ab07807c694b82effa6111671ada8270b1faecdae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2911
Cache-Control: max-age=153836
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:11:30 GMT
Etag: "63203a1f-1d7"
Expires: Thu, 15 Sep 2022 08:55:26 GMT
Last-Modified: Tue, 13 Sep 2022 08:06:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashec7a5bb8e310f5c9c992cf85832d5445 e32b8e200a79da9008985e8e6c272f35b02581c5 6391e4c68631e272509ade559b8f568b03dd88be1956906332ae584f9faee00a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js | 192.0.77.37 | 200 OK | 30 kB |
URL HTTP/2c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js IP192.0.77.37:0
File typeASCII text, with very long lines (65447) Hashb4760b677aac4851687f43034c5b7f04 53869e5ca6c8b775c1f1296b118287b35616048f 1f358bdef72ff115dfd95bd211b8d8b1d48fdc637dbb9fe03b94da9063c354ff
GET /c/6.0.2/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
content-encoding: br
expires: Wed, 13 Sep 2023 14:11:30 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| limurol.com/ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 | 62.122.171.6 | 200 OK | 7 B |
URL HTTP/2limurol.com/ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 IP62.122.171.6:0
File typeASCII text, with no line terminators Hasha97eb6fbe6f13b601d5d48c0eba8baae 736efb938caf3d0edec406932ada889f1a4f2268 a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=2209130911393d60834bb74e97808cf25b3b; Path=/; Expires=Wed, 13 Sep 2023 14:11:31 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
|
|
| limurol.com/ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 | 62.122.171.6 | 200 OK | 7 B |
URL HTTP/2limurol.com/ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 IP62.122.171.6:0
File typeASCII text, with no line terminators Hasha97eb6fbe6f13b601d5d48c0eba8baae 736efb938caf3d0edec406932ada889f1a4f2268 a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: UID=2209130911393d60834bb74e97808cf25b3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
|
|
| syndication.realsrv.com/v1/api.php | 95.211.229.248 | 200 OK | 6.2 kB |
URL HTTP/1.1syndication.realsrv.com/v1/api.php IP95.211.229.248:0 ASN#60781 LeaseWeb Netherlands B.V.
File typeJSON data\012- , ASCII text, with very long lines (10724), with no line terminators Hash13d5bc6fe141de83ee80fad031adfbad 937e6dda87d3534ab803d0837588361f74bbc8db 716998b1697086331edb1878cf92105cfc0b8381d8ee0affeb277c0c41239df5
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 379
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| s3t3d2y8.afcdn.net/library/426059/62b98a39ab4e50d36d7986fc5538f57fc72b0372.webp | 185.76.9.18 | 200 OK | 9.5 kB |
URL HTTP/2s3t3d2y8.afcdn.net/library/426059/62b98a39ab4e50d36d7986fc5538f57fc72b0372.webp IP185.76.9.18:0 ASN#60068 Datacamp Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 300x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash2b07d6f75f90712734b51b3c2640d5e1 62b98a39ab4e50d36d7986fc5538f57fc72b0372 10e5aae537ed74546c55153e7061bdc3554d2806b3155c401b8fcffe5cea6991
GET /library/426059/62b98a39ab4e50d36d7986fc5538f57fc72b0372.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/webp
content-length: 9486
last-modified: Thu, 08 Sep 2022 14:48:34 GMT
etag: "631a00c2-250e"
expires: Tue, 12 Sep 2023 15:18:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1694532617
server: CDN77-Turbo
x-77-nzt: AblMCQ0t0df/Cj8BAA
x-77-nzt-ray: TC7+8mtCKh0
x-cache: HIT
x-age: 81674
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11QS2pDMQy8Si/wzEiWLDnrdttASg7g9wntIik0XaSgw8fvlUCpBzyDNZIGM5gH1IHyE2FHtMsUlVJFEk6kEq/7QwjF+3L5bh/tev5K588lhAu0hsEEHpU7S4hKAXkQIcRcay5hakzMHKSRAx2suXu7SkA2KFllZy+ufVwc357j5XgI6lV53IgM3AgI2vKE9AVd47YOPC0++QJlNx9B5DbPRXWa5iYiJa/G//nxiyRaqNf58dAx0Eb9IDbVrj+XKeKPZYVuTRzia6qlGFrj2Qrl5lkwlvWHaDrNbWxmdzxQYnJnAQAA | 95.211.229.248 | 200 OK | 20 B |
URL HTTP/1.1syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11QS2pDMQy8Si/wzEiWLDnrdttASg7g9wntIik0XaSgw8fvlUCpBzyDNZIGM5gH1IHyE2FHtMsUlVJFEk6kEq/7QwjF+3L5bh/tev5K588lhAu0hsEEHpU7S4hKAXkQIcRcay5hakzMHKSRAx2suXu7SkA2KFllZy+ufVwc357j5XgI6lV53IgM3AgI2vKE9AVd47YOPC0++QJlNx9B5DbPRXWa5iYiJa/G//nxiyRaqNf58dAx0Eb9IDbVrj+XKeKPZYVuTRzia6qlGFrj2Qrl5lkwlvWHaDrNbWxmdzxQYnJnAQAA IP95.211.229.248:0 ASN#60781 LeaseWeb Netherlands B.V.
Hasha4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA11QS2pDMQy8Si/wzEiWLDnrdttASg7g9wntIik0XaSgw8fvlUCpBzyDNZIGM5gH1IHyE2FHtMsUlVJFEk6kEq/7QwjF+3L5bh/tev5K588lhAu0hsEEHpU7S4hKAXkQIcRcay5hakzMHKSRAx2suXu7SkA2KFllZy+ufVwc357j5XgI6lV53IgM3AgI2vKE9AVd47YOPC0++QJlNx9B5DbPRXWa5iYiJa/G//nxiyRaqNf58dAx0Eb9IDbVrj+XKeKPZYVuTRzia6qlGFrj2Qrl5lkwlvWHaDrNbWxmdzxQYnJnAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| s3t3d2y8.afcdn.net/library/623611/ed0885e8288645e4cca003a57f3a486611122606.jpg | 185.76.9.18 | 200 OK | 29 kB |
URL HTTP/2s3t3d2y8.afcdn.net/library/623611/ed0885e8288645e4cca003a57f3a486611122606.jpg IP185.76.9.18:0 ASN#60068 Datacamp Limited
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data Hashde65c02764f5d04b7ac0a815d366c969 ed0885e8288645e4cca003a57f3a486611122606 05e417d7c0294dfb542e9de1f1f8c763d8bbfe3f08316fd1b0c78ebb1c22e7f9
GET /library/623611/ed0885e8288645e4cca003a57f3a486611122606.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/jpeg
content-length: 28796
last-modified: Mon, 25 May 2020 13:58:36 GMT
etag: "5ecbcf0c-707c"
expires: Fri, 30 Jun 2023 11:10:15 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195204
server: CDN77-Turbo
x-77-nzt: AblMCQ22lpD/j/JhAA
x-77-nzt-ray: Y7z2/WW6fus
x-cache: HIT
x-age: 6419087
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| s3t3d2y8.afcdn.net/library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg | 185.76.9.18 | 200 OK | 25 kB |
URL HTTP/2s3t3d2y8.afcdn.net/library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg IP185.76.9.18:0 ASN#60068 Datacamp Limited
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data Hashdbe31828ea0277ab9845bf67aa749927 cc7211683ae26562c2df637755f311868f37c8ea 6499cca4ce115e6dcb44a71342a5c705f938fbffbe5c410b55e60051a417b917
GET /library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/jpeg
content-length: 25056
last-modified: Thu, 30 Mar 2017 09:55:25 GMT
etag: "58dcd60d-61e0"
expires: Fri, 30 Jun 2023 14:29:46 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195223
server: CDN77-Turbo
x-77-nzt: AblMCQ0a7sH/fPJhAA
x-77-nzt-ray: 49l8ev0Mr0c
x-cache: HIT
x-age: 6419068
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| s3t3d2y8.afcdn.net/library/692514/72928a7cad8198b3e9ab14a2f0220601aff56a07.jpg | 185.76.9.18 | 200 OK | 26 kB |
URL HTTP/2s3t3d2y8.afcdn.net/library/692514/72928a7cad8198b3e9ab14a2f0220601aff56a07.jpg IP185.76.9.18:0 ASN#60068 Datacamp Limited
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data Hash316e02345cdd5d4167b5a17253fd855d 72928a7cad8198b3e9ab14a2f0220601aff56a07 c7b35046dc527d4f6167ea21967c71800a5bbb46b52d647f48294c61dc46f0ad
GET /library/692514/72928a7cad8198b3e9ab14a2f0220601aff56a07.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/jpeg
content-length: 25606
last-modified: Thu, 22 Oct 2020 17:10:55 GMT
etag: "5f91bd1f-6406"
expires: Wed, 30 Aug 2023 14:54:35 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693416492
server: CDN77-Turbo
x-77-nzt: AblMCQ2ki/f/50YSAA
x-77-nzt-ray: tS+pQM/gK2c
x-cache: HIT
x-age: 1197799
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| s3t3d2y8.afcdn.net/library/344676/8d56c5a4dc87f994b32a34cacb64fce1a8c10500.webp | 185.76.9.18 | 200 OK | 3.2 kB |
URL HTTP/2s3t3d2y8.afcdn.net/library/344676/8d56c5a4dc87f994b32a34cacb64fce1a8c10500.webp IP185.76.9.18:0 ASN#60068 Datacamp Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hashc5b9eaabdf9d87a060447b064ce3fc15 8d56c5a4dc87f994b32a34cacb64fce1a8c10500 b1341b48d5719e5dd1b7a5ec8bb9b5748c26c0741aa6d2b12bb2344f77a131a0
GET /library/344676/8d56c5a4dc87f994b32a34cacb64fce1a8c10500.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/webp
content-length: 3208
last-modified: Wed, 03 Nov 2021 16:40:42 GMT
etag: "6182bb8a-c88"
expires: Fri, 30 Jun 2023 11:21:04 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195364
server: CDN77-Turbo
x-77-nzt: AblMCQ2CRL3/7/FhAA
x-77-nzt-ray: vMaAZeGwXnw
x-cache: HIT
x-age: 6418927
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| s3t3d2y8.afcdn.net/library/426059/548180d44acd4d6e553e920149e72aba8c8a08e3.mp4 | 185.76.9.18 | 206 Partial Content | 49 kB |
URL HTTP/2s3t3d2y8.afcdn.net/library/426059/548180d44acd4d6e553e920149e72aba8c8a08e3.mp4 IP185.76.9.18:0 ASN#60068 Datacamp Limited
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data Hash6276f56cb578ac6abb7c299c8e95d1d2 548180d44acd4d6e553e920149e72aba8c8a08e3 2c083f2561bf5d6a7af011446bd800f6c090a65c75b04a1332c9dda3bbfab52b
GET /library/426059/548180d44acd4d6e553e920149e72aba8c8a08e3.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: video/mp4
content-length: 49070
last-modified: Thu, 08 Sep 2022 15:24:49 GMT
etag: "631a0941-bfae"
expires: Fri, 08 Sep 2023 15:57:14 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1694188657
server: CDN77-Turbo
x-77-nzt: AblMCQ0OF9n/on4GAA
x-77-nzt-ray: Sx3apvvSpws
x-cache: HIT
x-age: 425634
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-49069/49070
X-Firefox-Spdy: h2
|
|
| syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PS04FIRC8ihcY0l9o3tq1JhoPwDBMdPGeic+FJn14mzEaIwV0pVNV0AREC9QF+QbhhHhi9IqpQhJKqOJ39w8u6M/j8t5e2vX8ls6vwzNxRvQCRcC8UlRxUeXC2RHBuaLWbGG1wkbgqM4OAVIObbAEABQR/vR4exwMhDLu+eikEhw+pmsf1m2AkhVbASN127Jq71sTkcxT+P+T8I0Yg2xG/zQCCx4lFvjB2vXz0t3/SI5pZJr014quVDu2dTQdva+D5uZ9X3PdR4EMX3Jwja9QAQAA | 95.211.229.248 | 200 OK | 20 B |
URL HTTP/1.1syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PS04FIRC8ihcY0l9o3tq1JhoPwDBMdPGeic+FJn14mzEaIwV0pVNV0AREC9QF+QbhhHhi9IqpQhJKqOJ39w8u6M/j8t5e2vX8ls6vwzNxRvQCRcC8UlRxUeXC2RHBuaLWbGG1wkbgqM4OAVIObbAEABQR/vR4exwMhDLu+eikEhw+pmsf1m2AkhVbASN127Jq71sTkcxT+P+T8I0Yg2xG/zQCCx4lFvjB2vXz0t3/SI5pZJr014quVDu2dTQdva+D5uZ9X3PdR4EMX3Jwja9QAQAA IP95.211.229.248:0 ASN#60781 LeaseWeb Netherlands B.V.
Hasha4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA11PS04FIRC8ihcY0l9o3tq1JhoPwDBMdPGeic+FJn14mzEaIwV0pVNV0AREC9QF+QbhhHhi9IqpQhJKqOJ39w8u6M/j8t5e2vX8ls6vwzNxRvQCRcC8UlRxUeXC2RHBuaLWbGG1wkbgqM4OAVIObbAEABQR/vR4exwMhDLu+eikEhw+pmsf1m2AkhVbASN127Jq71sTkcxT+P+T8I0Yg2xG/zQCCx4lFvjB2vXz0t3/SI5pZJr014quVDu2dTQdva+D5uZ9X3PdR4EMX3Jwja9QAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PSU4DQQz8Ch+YkctLLzlzJhKIB3R6ZgSHBCnhECQ/HvcgIYRLbtehytVmYp6oTpAH0AE4CLxirjQrzzD1p+OzK/xtvXy293Y7X+fzx+qazVL2TFmpeOWY6momWZID5IaKhORZRXKNPTAXpwCbhDbYTITY4K8vj3sjwOTxjsxBw+V0H6ZtLb2sZFxyORFQ8rIks96XpqpJhvD/H+kHcQWrc4B+MWEfUeQ7a7evS3f/I9mP0WGy3RoRqjRyGiOVjWlrfVFBQW/oENbVTqLlG1mu7t1SAQAA | 95.211.229.248 | 200 OK | 20 B |
URL HTTP/1.1syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PSU4DQQz8Ch+YkctLLzlzJhKIB3R6ZgSHBCnhECQ/HvcgIYRLbtehytVmYp6oTpAH0AE4CLxirjQrzzD1p+OzK/xtvXy293Y7X+fzx+qazVL2TFmpeOWY6momWZID5IaKhORZRXKNPTAXpwCbhDbYTITY4K8vj3sjwOTxjsxBw+V0H6ZtLb2sZFxyORFQ8rIks96XpqpJhvD/H+kHcQWrc4B+MWEfUeQ7a7evS3f/I9mP0WGy3RoRqjRyGiOVjWlrfVFBQW/oENbVTqLlG1mu7t1SAQAA IP95.211.229.248:0 ASN#60781 LeaseWeb Netherlands B.V.
Hasha4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA11PSU4DQQz8Ch+YkctLLzlzJhKIB3R6ZgSHBCnhECQ/HvcgIYRLbtehytVmYp6oTpAH0AE4CLxirjQrzzD1p+OzK/xtvXy293Y7X+fzx+qazVL2TFmpeOWY6momWZID5IaKhORZRXKNPTAXpwCbhDbYTITY4K8vj3sjwOTxjsxBw+V0H6ZtLb2sZFxyORFQ8rIks96XpqpJhvD/H+kHcQWrc4B+MWEfUeQ7a7evS3f/I9mP0WGy3RoRqjRyGiOVjWlrfVFBQW/oENbVTqLlG1mu7t1SAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PQU7EMAz8Ch9o5HHsONkzZ5BAPKBJW8FhF4nlAJIfj1sEQnjkjBPN2DET80RtQr4BnYBThjekRkk4QcXv7h9c4M/r5X1+ma/nt3R+Xb00VogbmVD1xsHiopotFwcoLGTV2EWsNjNxqGenAGsObVSJiBAt/Onx9kgEmDzOfaiDok1c6GO3bWsddSXlarUTUG1ZiuoYyywiJe/C/7+kb8QezDGdfx4CEw6KID+q+fp5Ge5/JMc6spv01wofvdderW2cBZk7F5Stb4PVVLSVL4Sl0rlRAQAA | 95.211.229.248 | 200 OK | 6.5 kB |
URL HTTP/1.1syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PQU7EMAz8Ch9o5HHsONkzZ5BAPKBJW8FhF4nlAJIfj1sEQnjkjBPN2DET80RtQr4BnYBThjekRkk4QcXv7h9c4M/r5X1+ma/nt3R+Xb00VogbmVD1xsHiopotFwcoLGTV2EWsNjNxqGenAGsObVSJiBAt/Onx9kgEmDzOfaiDok1c6GO3bWsddSXlarUTUG1ZiuoYyywiJe/C/7+kb8QezDGdfx4CEw6KID+q+fp5Ge5/JMc6spv01wofvdderW2cBZk7F5Stb4PVVLSVL4Sl0rlRAQAA IP95.211.229.248:0 ASN#60781 LeaseWeb Netherlands B.V.
Hashf78d1e43c1540fc61e380e8da0f37278 acdbb207e48656d56a2809fb83b4e114359ab19e 3e810cf7320461910ecef79631728639912fd38e61616ee579332a0dd204883e
GET /cimp.php?t=api&data=H4sIAAAAAAAAA11PQU7EMAz8Ch9o5HHsONkzZ5BAPKBJW8FhF4nlAJIfj1sEQnjkjBPN2DET80RtQr4BnYBThjekRkk4QcXv7h9c4M/r5X1+ma/nt3R+Xb00VogbmVD1xsHiopotFwcoLGTV2EWsNjNxqGenAGsObVSJiBAt/Onx9kgEmDzOfaiDok1c6GO3bWsddSXlarUTUG1ZiuoYyywiJe/C/7+kb8QezDGdfx4CEw6KID+q+fp5Ge5/JMc6spv01wofvdderW2cBZk7F5Stb4PVVLSVL4Sl0rlRAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11Oy0oEQQz8FX9gmlQ6/dqzZwXFD5jp6UEPu4LrYYX6eDMjgthFqKRTSUpFdZI2Id5BTsApgg2hSTANSMaHxyca+Doun/PbfD1/hPP7YDTLJbNIMals6my0hKrZCAhjsSKt0ESsaIpEYqQ4vHCtZ0GQq6/gy/P9EXCYEk1vHl7st6lCX0m57cPbqL0OSVpLXQSoZV1zSr2vs7mluAv/e5UfhAjJ3tffD8eEg/wJj2y+fl06+UeyIx1Dbs9sp1kFrbe+SF7qVuNoax9j2wwZdWvrN1XHwIFUAQAA | 95.211.229.248 | 200 OK | 20 B |
URL HTTP/1.1syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11Oy0oEQQz8FX9gmlQ6/dqzZwXFD5jp6UEPu4LrYYX6eDMjgthFqKRTSUpFdZI2Id5BTsApgg2hSTANSMaHxyca+Doun/PbfD1/hPP7YDTLJbNIMals6my0hKrZCAhjsSKt0ESsaIpEYqQ4vHCtZ0GQq6/gy/P9EXCYEk1vHl7st6lCX0m57cPbqL0OSVpLXQSoZV1zSr2vs7mluAv/e5UfhAjJ3tffD8eEg/wJj2y+fl06+UeyIx1Dbs9sp1kFrbe+SF7qVuNoax9j2wwZdWvrN1XHwIFUAQAA IP95.211.229.248:0 ASN#60781 LeaseWeb Netherlands B.V.
Hasha4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA11Oy0oEQQz8FX9gmlQ6/dqzZwXFD5jp6UEPu4LrYYX6eDMjgthFqKRTSUpFdZI2Id5BTsApgg2hSTANSMaHxyca+Doun/PbfD1/hPP7YDTLJbNIMals6my0hKrZCAhjsSKt0ESsaIpEYqQ4vHCtZ0GQq6/gy/P9EXCYEk1vHl7st6lCX0m57cPbqL0OSVpLXQSoZV1zSr2vs7mluAv/e5UfhAjJ3tffD8eEg/wJj2y+fl06+UeyIx1Dbs9sp1kFrbe+SF7qVuNoax9j2wwZdWvrN1XHwIFUAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.029701%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PS0pEMRC8ihd4ob9JZ9a6VRiZA+T90MWM4LgYoQ5v3lNB7ILuJlVdVIREBqoD6x3TgfmgjMqpUjJJ7IbHpyOM8bJcPtpru57f0/ltgUkmryhUjAJV+jSYc4hm1AorUbxk9NY5FbBDQR3i2qV9S8ScXTWyuXFoN8Pp+R4PpyM4EdlPFyjRTZzAexgYoXOg22a3LjHFQi5RYuyOUeY5u0/T3Mws6yb8H56+kXKvzsvvQ8fA++hF2Ld2/bxMwB/J9kvX7cj304DFli2XmXIjH3ld12K5tjaXUdZFdApd4gvfWAMpagEAAA== | 95.211.229.248 | 200 OK | 20 B |
URL HTTP/1.1syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PS0pEMRC8ihd4ob9JZ9a6VRiZA+T90MWM4LgYoQ5v3lNB7ILuJlVdVIREBqoD6x3TgfmgjMqpUjJJ7IbHpyOM8bJcPtpru57f0/ltgUkmryhUjAJV+jSYc4hm1AorUbxk9NY5FbBDQR3i2qV9S8ScXTWyuXFoN8Pp+R4PpyM4EdlPFyjRTZzAexgYoXOg22a3LjHFQi5RYuyOUeY5u0/T3Mws6yb8H56+kXKvzsvvQ8fA++hF2Ld2/bxMwB/J9kvX7cj304DFli2XmXIjH3ld12K5tjaXUdZFdApd4gvfWAMpagEAAA== IP95.211.229.248:0 ASN#60781 LeaseWeb Netherlands B.V.
Hasha4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA11PS0pEMRC8ihd4ob9JZ9a6VRiZA+T90MWM4LgYoQ5v3lNB7ILuJlVdVIREBqoD6x3TgfmgjMqpUjJJ7IbHpyOM8bJcPtpru57f0/ltgUkmryhUjAJV+jSYc4hm1AorUbxk9NY5FbBDQR3i2qV9S8ScXTWyuXFoN8Pp+R4PpyM4EdlPFyjRTZzAexgYoXOg22a3LjHFQi5RYuyOUeY5u0/T3Mws6yb8H56+kXKvzsvvQ8fA++hF2Ld2/bxMwB/J9kvX7cj304DFli2XmXIjH3ld12K5tjaXUdZFdApd4gvfWAMpagEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%2299.0199%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| u3y8v8u4.aucdn.net/library/461665/348d2c5fc3978b9b935d4a1e071538cdc1307ee5.mp4 | 185.76.9.18 | 206 Partial Content | 1.9 MB |
URL HTTP/2u3y8v8u4.aucdn.net/library/461665/348d2c5fc3978b9b935d4a1e071538cdc1307ee5.mp4 IP185.76.9.18:0 ASN#60068 Datacamp Limited
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data Size1.9 MB (1908734 bytes) Hashba5ff3f90a8c0ec653ff1151d8c7532b 7d50c2060284e009daf65376456b97f213bf255e 6637e3a0effa1ed5c78dbdabaf219f497ac59314bc9d21a0c755d7760d60fb36
GET /library/461665/348d2c5fc3978b9b935d4a1e071538cdc1307ee5.mp4 HTTP/1.1
Host: u3y8v8u4.aucdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: video/mp4
content-length: 13083299
last-modified: Mon, 30 May 2022 13:35:13 GMT
etag: "6294c811-c7a2a3"
expires: Fri, 30 Jun 2023 11:08:40 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195235
server: CDN77-Turbo
x-77-nzt: AblMCQ2icpb/cPJhAA
x-77-nzt-ray: zymN29M/lwY
x-cache: HIT
x-age: 6419056
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-13083298/13083299
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hash56f5d7f608e25d64207135f045f988cb 901eb59372ae330ae85e1384da93479b21ae1082 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 13 Sep 2022 12:41:12 GMT
expires: Tue, 13 Sep 2022 14:41:12 GMT
cache-control: public, max-age=7200
age: 5420
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash7c85e22b75dd559a6c65736bae63c5bd eb57470991666108a01b8ee0adf707e1c1dc8642 bd05cc5dfc5ddd554cc9ac5395035ce302b0b74343d199a64b2dbdcac0070944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:11:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-185402816-18&cid=618758431.1663078279&jid=887837131&gjid=1894935754&_gid=1479344820.1663078279&_u=YEBAAUAAAAAAAC~&z=1086766672 | 142.251.1.157 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-185402816-18&cid=618758431.1663078279&jid=887837131&gjid=1894935754&_gid=1479344820.1663078279&_u=YEBAAUAAAAAAAC~&z=1086766672 IP142.251.1.157:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-185402816-18&cid=618758431.1663078279&jid=887837131&gjid=1894935754&_gid=1479344820.1663078279&_u=YEBAAUAAAAAAAC~&z=1086766672 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.hentaiasmr.moe
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 13 Sep 2022 14:11:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash7c85e22b75dd559a6c65736bae63c5bd eb57470991666108a01b8ee0adf707e1c1dc8642 bd05cc5dfc5ddd554cc9ac5395035ce302b0b74343d199a64b2dbdcac0070944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:11:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashfe792a43fbfd72d158215bb5fa087c19 5b28cebdebfdd33871fa4982f39a89f5ce3cbf99 ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10180
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:11:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashfe792a43fbfd72d158215bb5fa087c19 5b28cebdebfdd33871fa4982f39a89f5ce3cbf99 ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10180
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:11:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashfe792a43fbfd72d158215bb5fa087c19 5b28cebdebfdd33871fa4982f39a89f5ce3cbf99 ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10180
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:11:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashfe792a43fbfd72d158215bb5fa087c19 5b28cebdebfdd33871fa4982f39a89f5ce3cbf99 ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10180
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:11:32 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc9ab2ec10c79b91d15edb1d1e3dc763c 744fee4a0baa22ba3aa352d60620a916972b47dd f7bb66f5bb572d73f936fc74823f51ede1f2c4e309a939b39d9529ff8f757fbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9945
x-amzn-requestid: a347749f-a63a-4533-a274-7151b9f235ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXcX8HAKoAMF5EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa765-56cff18515b2a5b3397231df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:40:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lZ3FmD1gM8YBgZNt97kuYSol1kj0GQqRjyLT_7715VtH9GR1WpMDxA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:20 GMT
age: 59352
etag: "744fee4a0baa22ba3aa352d60620a916972b47dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6174529fff57758e958da5432344962f 05ec2076b32398d60ee77fab8c14345bc7dfe647 65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: -SwaUjMInlOaGpH6yK1W1a57QCQMgY-l43RdUfKVtZA1zJzMrLzC6g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 04:49:30 GMT
age: 33722
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash557695ec8ffeebb0272c099542a14ace ad627b434e1c3b693d8636675bcea0f8794e0dc2 4d79c7830caa73b921d6abaa97771ab1f4dc8fd709597f01ba04c268c03b6157
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10407
x-amzn-requestid: 85df5ad9-f229-4d33-90b9-5dd28c77578a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YH396F2SIAMFnGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63196d25-3ee08f1e27cd37e96dba0f40;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 04:18:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Oep2UJdadBnTBuCy7CexUcezT0cCvm_9hroZnV-UrC9lQQxwUc4rkw==
via: 1.1 07c02ae6c53d85283eb15380264d9998.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 06:18:57 GMT
age: 28355
etag: "ad627b434e1c3b693d8636675bcea0f8794e0dc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg | 34.120.237.76 | 200 OK | 8.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe407da4d97d497925b1ab523fd416787 166741631fb93d109b18dde6d316b3fa3276aa8f 707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2jR7F56GE_qqbRBWjNDiDBgWbCYv-Ac6kvC1LI0HciQkKGTeNDYlyw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:16:59 GMT
age: 57273
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash838f709437b2dfbede4ee15307afe217 2ab2ee20e720b78be6deb55f967ac0d8b7dad048 a3b47ce595b475f2aab6f7378888d15ba3e98453d6c8a3d88946efc5d65eedba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10849
x-amzn-requestid: 722d8d75-0911-4b59-af65-2b408bc09d80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbx6E9-oAMFT8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa672-74ea9343619d4a1865e34818;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4rpwcrZLDlgcwBtH7wpoHMOb8hhFbKbZSQpjWqUqbt_Sl4ud3dm9Vg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:18 GMT
age: 59354
etag: "2ab2ee20e720b78be6deb55f967ac0d8b7dad048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg | 34.120.237.76 | 200 OK | 7.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashae7d16fad4da4300a1953a916fb59688 488c58f73c81bb4d45e496c458fe3197a0884c26 4d4946932d53caad6e97bcc66527bd9cad658c0cf6f4215d01943b8a9e832959
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7720
x-amzn-requestid: 7670a969-cb9c-4583-8455-10f7512ee9c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YT9YJG__oAMF4YA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e429a-674ef5a4727826ab0d60529e;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 20:18:34 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OOCryyfLht-3ebVn-5aWtQI_JnVkWxMGggv07cUoomDlgb5ogru7vg==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:01:55 GMT
age: 58177
etag: "488c58f73c81bb4d45e496c458fe3197a0884c26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js | 192.0.77.37 | 200 OK | 0 B |
URL HTTP/2c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js IP192.0.77.37:0
GET /c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Wed, 13 Sep 2023 14:11:30 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| stats.wp.com/e-202237.js | 192.0.76.3 | 200 OK | 0 B |
IP192.0.76.3:0
GET /e-202237.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Sun, 03 Sep 2023 22:56:03 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
|
|
| cuddlethehyena.com/t/9/fret/meow4/1866240/brt.js | 62.122.171.6 | 200 OK | 0 B |
URL HTTP/2cuddlethehyena.com/t/9/fret/meow4/1866240/brt.js IP62.122.171.6:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /t/9/fret/meow4/1866240/brt.js HTTP/1.1
Host: cuddlethehyena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: application/javascript
last-modified: Wed, 07 Sep 2022 13:38:24 GMT
vary: Accept-Encoding
etag: W/"63189ed0-1091a"
x-js-ab1: current
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| s3t3d2y8.afcdn.net/images/close-icon.svg | 185.76.9.18 | 200 OK | 0 B |
URL HTTP/2s3t3d2y8.afcdn.net/images/close-icon.svg IP185.76.9.18:0 ASN#60068 Datacamp Limited
GET /images/close-icon.svg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Jun 2022 13:13:10 GMT
etag: W/"62bc4fe6-109"
expires: Fri, 30 Jun 2023 18:46:40 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195206
server: CDN77-Turbo
x-77-nzt: AblMCQ2lcTv/jfJhAA
x-77-nzt-ray: vnkOlIp/B5o
x-cache: HIT
x-age: 6419085
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ | 104.21.77.99 | 200 OK | 0 B |
URL HTTP/2www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP104.21.77.99:0
GET /category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ HTTP/1.1
Host: www.hentaiasmr.moe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
last-modified: Tue, 13 Sep 2022 14:11:23 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hcbR47zwnrA8QaOjtymT4T%2FH6w9%2FqcRzFvXyJmVOne6eegEgNArxlW2fcUFItYD4V956%2FO%2BFNVKiYRXibSsRSYIXPyA2C57NegPwElwi7Ip91nDA1w0JU1eYpCLlti0olSO0CtU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74a178f04c320b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cuddlethehyena.com/get/1866240?zoneid=1866240&jp=_cl5s2bhrz3yacml25m04ub&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6301440985624676 | 62.122.171.6 | 200 OK | 0 B |
URL HTTP/2cuddlethehyena.com/get/1866240?zoneid=1866240&jp=_cl5s2bhrz3yacml25m04ub&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6301440985624676 IP62.122.171.6:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /get/1866240?zoneid=1866240&jp=_cl5s2bhrz3yacml25m04ub&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6301440985624676 HTTP/1.1
Host: cuddlethehyena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=22091309114a8e9b3c919646999ce13f7045; Path=/; Expires=Wed, 13 Sep 2023 14:11:30 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
|
|