r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6317
Expires: Wed, 29 Mar 2023 04:25:16 GMT
Date: Wed, 29 Mar 2023 02:39:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2208
Expires: Wed, 29 Mar 2023 03:16:47 GMT
Date: Wed, 29 Mar 2023 02:39:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 29 Mar 2023 02:15:53 GMT
content-type: application/json
age: 1446
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c0d9353dc46e88bf564ed464b0b073c7
0b5ce170e7db24267a3ba5b79a48548b1acd2e5b
7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2466
Expires: Wed, 29 Mar 2023 03:21:05 GMT
Date: Wed, 29 Mar 2023 02:39:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UPwE/lEgpL33Q5lkSXWTYeJc3kTGvwZtG5uTQ0+FJ0oFDzKsjKdiFB1RBbJcBnoCZ3IRxDTMtww=
x-amz-request-id: C9FDSPDVS3J8PPF5
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 29 Mar 2023 02:02:17 GMT
age: 2262
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash baeccc9644fd5ec03bb5cd72f7a7743f
f37ea9f36337eaff0e99c4256de186570cbb29eb
6f193fb352a8c242955f8d2485506dd1ccb13524fad899c330e0137f762191ae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6F193FB352A8C242955F8D2485506DD1CCB13524FAD899C330E0137F762191AE"
Last-Modified: Tue, 28 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21504
Expires: Wed, 29 Mar 2023 08:38:23 GMT
Date: Wed, 29 Mar 2023 02:39:59 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:39:59 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a3242c27d5e1454c4ed0224a21b99fde
d14f94d30b766f1e11284fb333529903e116718c
e9f38284fdd9e5d9c19f16fe29db0d58bc68bd71c35aebfbcb80580417feefae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9F38284FDD9E5D9C19F16FE29DB0D58BC68BD71C35AEBFBCB80580417FEEFAE"
Last-Modified: Sun, 26 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13823
Expires: Wed, 29 Mar 2023 06:30:22 GMT
Date: Wed, 29 Mar 2023 02:39:59 GMT
Connection: keep-alive
cutiegarden.wapka.site/
173.212.225.42200 OK 3.0 kB IP 173.212.225.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (690), with CRLF line terminators
Hash 44dfebc3ba6b9c5eeb324f1642d2b3e5
925a4c006fd945c34fa586806a99293deeb958a0
ebc947e1c47f6e0b1f6048020fc9e192afe31ee66c8c63a0b4343fd957c82094
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: cutiegarden.wapka.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:39:59 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=kc1s59g1tl7mh552svcciufkac; path=/; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2973
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Retry-After, ETag, Content-Length, Content-Type, Backoff, Pragma, Expires, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 29 Mar 2023 02:14:36 GMT
age: 1524
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dUF9H4bZDi1OgSwNtzOtPA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: O78rL8H/88tRdNFvT8GixEpt2PU=
Date: Wed, 29 Mar 2023 02:40:00 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
i.imgur.com/dm23dQH.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dm23dQH.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/dm23dQH.png
Accept-Ranges: bytes
Date: Wed, 29 Mar 2023 02:40:00 GMT
X-Served-By: cache-hel1410027-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1680057600.296630,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ba5b88c0d0088828db52db83d0267fda
6dffa018b0461e0bd165901b1d48478f7f9a6c48
66f2178ee9d5ad3212e3b0027e234e40b0ee5333a7767999f7b6d566b4910150
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66F2178EE9D5AD3212E3B0027E234E40B0EE5333A7767999F7B6D566B4910150"
Last-Modified: Mon, 27 Mar 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3117
Expires: Wed, 29 Mar 2023 03:31:57 GMT
Date: Wed, 29 Mar 2023 02:40:00 GMT
Connection: keep-alive
widget.supercounters.com/ssl/online_i.js
172.67.154.41200 OK 1.8 kB URL HTTP/2 widget.supercounters.com/ssl/online_i.js
IP 172.67.154.41:0
File type ASCII text, with CRLF line terminators
Hash 2fc724adbbe57f469cc98e789ba1667d
a63195c21f71a9478e0a2db91bc694606344d845
0ca89f4655cfeb0da2af3f54f4d583153b0fc23448ac37ad5862fff152f3ca02
GET /ssl/online_i.js HTTP/1.1
Host: widget.supercounters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
last-modified: Thu, 03 Mar 2022 11:46:10 GMT
etag: W/"6220aa82-10a3"
cache-control: max-age=300
cf-cache-status: HIT
age: 1929
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9svK9YCCC66PprG7NcHC6xqf3bjUeldFh0cNQu5IUWDUH%2FsLBSR7aGLoswb%2B0uT3jUkJgub5KH4Lb7RvzAKSRl9BkIuWXQSrQwLP3XPF%2FCSdDXeWjv%2BpgPHADN%2F4i5ZYdpG1wizQnJhHK40%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4bee1afc7fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dood.re/e/hyfepscz8cqsk7n6n7h88cnitdax4f95
172.67.68.226302 Found 0 B URL HTTP/2 dood.re/e/hyfepscz8cqsk7n6n7h88cnitdax4f95
IP 172.67.68.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /e/hyfepscz8cqsk7n6n7h88cnitdax4f95 HTTP/1.1
Host: dood.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 29 Mar 2023 02:40:00 GMT
content-length: 0
set-cookie: lang=1; domain=.dood.re; path=/
referer=; domain=.dood.re; path=/; expires=Wed, 29-Mar-2023 02:41:00 GMT
location: /e/61smz2flw8n16rl0dl4xgm4j4t505en
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xMD3Ct5r%2BMlmO3k3D3PIOfhSvsDGZEslQmxL80Kyzmb3vSgyiixYbDKAtRtAGg0Gd%2BGH7TbxJf0KR80KODX%2B6vMG0g73%2FLKzZ9PG7eR2D9Kx%2BBEt0SgXWDA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4bee34e72b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
104.17.25.14200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65451)
Hash 4b5f47439b640180cc3450f7de05d0d8
5a0dc9bcab80ddc409dd35fcb00a88fe6846fee2
1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5904059
expires: Mon, 18 Mar 2024 02:40:00 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mW5%2Bytkyxr30xUbvhXu6zylDaGd3y9Nf7GwELL3GI3HetQVz1ACEXKXFGAyyq9%2F586C3hUGVKfz9ULZ2fitir3o2uX4%2BvN2mB%2FjAGZTpajOm7YDZXU%2FBh243fqU4iIxXXu09rL%2Fy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7af4bee4ccc0b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash eb47393dc7050029d6483a199020ecd3
a9ca0999cdc167ac08c019e96fc1cf85abc0f9e8
cd97412fc07f69dc23388e77a41234625e653decc4113554ff6e86bab0324562
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:40:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 08:15:51 GMT
Expires: Mon, 03 Apr 2023 08:15:50 GMT
Etag: "a9ca0999cdc167ac08c019e96fc1cf85abc0f9e8"
Cache-Control: max-age=451549,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7af4bee47ed8b4f3-OSL
cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
104.17.25.14200 OK 591 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (1266)
Hash 414869f16aa77a65b4928a018f7f1abb
cea521f7a2958a50239526ed6b068f0937527653
afee364ce513c6517247b81cce5eb5eadb1dbbb35e439eb3fa97bbc15fac2cd3
GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript; charset=utf-8
content-length: 591
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-514"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12651493
expires: Mon, 18 Mar 2024 02:40:00 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nPtlFyWrK33MTtzco1ZioE3DaLyOzIpmsd%2BlVhNIeCWOoJBbMCgrEcVAqGjR8rmz8tMCYfzny%2BgLA03WtdeUP7OODSBZa6HfUpajFi93o%2B04cgxtsbOZ19rfYtuRWUUXKTrLJgYr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7af4bee4dccbb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.doodcdn.co/ads/ad.js
104.26.6.74200 OK 18 B IP 104.26.6.74:0
File type ASCII text, with no line terminators
Hash 071c641b229d2bfadd243b8fa2a9c88d
4048ed3ad506f9bb9052c23283912d0cfea8bcc6
3716878d3ceb2042b22c092b31c6f43cc862f8464e92ddde416a49624b32716e
GET /ads/ad.js HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
content-length: 18
access-control-allow-origin: *
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=20
expires: Wed, 27 Mar 2024 06:49:01 GMT
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
vary: User-Agent,Accept-Encoding
cf-cache-status: HIT
age: 71199
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HS%2F54pN9jj%2FYeG7I2CO5XTGLMGt47wcdLNJomP8v7hOlqecEl2Ema%2BTtt0X4J1MgmhQDPfMTMqhTYWI%2F%2FF4I2DEuI8u91W5XDZ9sVnrOEfIDiVE4u6RorbvcIRqhiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4bee4e9e60b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.doodcdn.co/img/no_video_3.svg
104.26.6.74200 OK 2.8 kB URL HTTP/2 i.doodcdn.co/img/no_video_3.svg
IP 104.26.6.74:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (2789)
Hash 077bfdaa49ae4877a42611b739ec4752
a2f9e1222b7af9abc05122411ab8902efcc08ead
70d6a17097a8c27edfaad6740e11359d9363f3f04bff1b93483e29c25609fa6c
GET /img/no_video_3.svg HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: image/svg+xml
content-length: 2812
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
etag: "61d3187c-afc"
expires: Thu, 27 Apr 2023 06:49:01 GMT
cache-control: public, max-age=2592000, no-transform
access-control-allow-origin: *
cf-cache-status: HIT
age: 71199
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4J0MaGfXC43grYzLUnDl9m0TFTPtelfqpTDZGpTegiAXiMtMEOUtgB3kr8s0vtuU7gAhW5OOgGnQulXfnjcDKZRKjy%2FZYQLJT7m8UamdFaQH7rg6Eh7o%2B9VInJ6Lpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4bee4e9e90b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.doodcdn.co/css/embed.css
104.26.6.74200 OK 80 kB URL HTTP/2 i.doodcdn.co/css/embed.css
IP 104.26.6.74:0
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 010e9740f2148647b93ae896d452119c
888e44accbd7e78a0654fd4eaf7541269d95e4e9
d33d9d5fc2eef77dd7cda0770e9bc8213f058f2ead19b7d9b7ed731bcd081a47
GET /css/embed.css HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: text/css
content-length: 79720
access-control-allow-origin: *
cache-control: public, max-age=2592000, no-transform
cf-bgj: minify
cf-polished: origSize=79890
etag: "61d3187c-13812"
expires: Thu, 27 Apr 2023 06:49:01 GMT
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
cf-cache-status: HIT
age: 71199
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D%2BYzYyjXFj0tvYW98z9%2FINP3RDR3wVHIygTYybo60wr2q%2FI9tl97taimBoqv4K0dIb%2F7Fa%2BZ%2FSoJ2yG6vu52iktNURveeU6JF16ROGnfonwZn0JOig0bAlxUpeIA8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4bee4f9ed0b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.whamiwiwu.pro/dea777/0fb044d94a07.js
67.216.91.5200 OK 366 kB URL HTTP/2 www.whamiwiwu.pro/dea777/0fb044d94a07.js
IP 67.216.91.5:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 366 kB (365798 bytes)
Hash c106c6c201c30500db8ddf899bd6d669
a5629fd09ad76c013597afe882eafe46d45935f2
f40bfb9a7dc434f779fafc71fa8bb1357e4a188d731b59657a5b822eb96eaf5b
GET /dea777/0fb044d94a07.js HTTP/1.1
Host: www.whamiwiwu.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ucdn/1.22.1
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=314611134, public
x-ureq-id: XDrrrzssYKy7XniAYHDaCxO/1BtQYlPAo1HVcwFLMsqzmAdmqk/B6ooG0EIWoxnf3GY8s5N7WkiuyFrNS0bW2GjDED1Td4QszNpqMuQg55RKoY6ehLyvar8c574+4+Vt
x-served-from: l1
x-vhostid: 114, 21688
content-encoding: br
X-Firefox-Spdy: h2
www.whamiwiwu.pro/dea777/0fb044d94a07.js
67.216.91.5200 OK 101 kB URL HTTP/2 www.whamiwiwu.pro/dea777/0fb044d94a07.js
IP 67.216.91.5:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 101 kB (101364 bytes)
Hash 0fd66ec7e42753584977dd29006a6de3
fbb3c3b463babcef732408a8d31da98a6bf8983d
a4032897c980750e3aee0f2c04acc54d3ad873d09025d1d61f29fd2379cc8ad2
GET /dea777/0fb044d94a07.js HTTP/1.1
Host: www.whamiwiwu.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://cutiegarden.wapka.site
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ucdn/1.22.1
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=314611134, public
x-ureq-id: XDrrrzssYKy7XniAYHDaCxO/1BtQYlPAo1HVcwFLMsqzmAdmqk/B6ooG0EIWoxnf3GY8s5N7WkiuyFrNS0bW2GjDED1Td4QszNpqMuQg55RKoY6ehLyvar8c574+4+Vt
x-served-from: l1
x-vhostid: 114, 21811
content-encoding: br
X-Firefox-Spdy: h2
biptolyla.com/c.DC9e6_b/2U5/laSnW/QB9GNaD-MmzhMTjTM/4iNFC/0Z0UMKzfM_yZM/zGgr1n
188.72.219.36200 OK 16 kB URL HTTP/2 biptolyla.com/c.DC9e6_b/2U5/laSnW/QB9GNaD-MmzhMTjTM/4iNFC/0Z0UMKzfM_yZM/zGgr1n
IP 188.72.219.36:0
File type Unicode text, UTF-8 text, with very long lines (5600)
Hash 4b35279ae729de466aa7c665ed50f735
28acbac3ec438a8fd03bb4efe5f438b8bbae2f73
f0e3487fd748b133f058435675daed8df5ead33a13b2d88d0cb117a2f05fa790
GET /c.DC9e6_b/2U5/laSnW/QB9GNaD-MmzhMTjTM/4iNFC/0Z0UMKzfM_yZM/zGgr1n HTTP/1.1
Host: biptolyla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
vary: Accept-Encoding
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
last-modified: Wed, 29 Mar 2023 02:40:00 GMT
set-cookie: kadSlcJ=eyJ0aW1lU3RhbXAiOjE2ODAwMTUyMTAsInpvbmVzIjp7IjQzMzIzODQiOls0MzMyMzg0LDcsMTY4MDAxNTIxMF19fQ==; max-age=1711593600; path=/
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
d18t35yyry2k49.cloudfront.net/?ryytd=919673
143.204.42.79200 OK 52 kB URL HTTP/2 d18t35yyry2k49.cloudfront.net/?ryytd=919673
IP 143.204.42.79:0
File type Unicode text, UTF-8 text, with very long lines (15955)
Hash 8a99ed0cd1bbbf02d74ad0815e8c95cc
24b83230e004d183636f9f17c2b1aa01a91dc7d1
986c36401661460f61f7348a3669719b164deb955bc1d069a0d4e40daa3dc240
GET /?ryytd=919673 HTTP/1.1
Host: d18t35yyry2k49.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 51549
date: Wed, 29 Mar 2023 02:39:08 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zo4UGK_DQgY1XMWOA5xBqlpE77MZ5-HbO0xKQ9lXazQOqhAIGBAzuA==
age: 52
X-Firefox-Spdy: h2
service.supercounters.com/fc.php?id=1400646&w=1&v=2&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&ref=&url=https%3A%2F%2Fcutiegarden.wapka.site%2F&sw=1280&sh=1024&rand=80
172.104.29.90200 OK 49 B URL HTTP/1.1 service.supercounters.com/fc.php?id=1400646&w=1&v=2&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&ref=&url=https%3A%2F%2Fcutiegarden.wapka.site%2F&sw=1280&sh=1024&rand=80
IP 172.104.29.90:0
File type ASCII text, with CRLF line terminators
Hash 86131b1f85041076abf91140d1e410dc
1e8a091bf045b54ae15727b90655baed20a03ca8
2101ef7331cab2982ab242377e16e14a0eba17c472050e23a1c996caede2f89c
GET /fc.php?id=1400646&w=1&v=2&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&ref=&url=https%3A%2F%2Fcutiegarden.wapka.site%2F&sw=1280&sh=1024&rand=80 HTTP/1.1
Host: service.supercounters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 29 Mar 2023 02:40:00 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.13
Content-Encoding: gzip
ocsp.buypass.com/
23.36.76.129200 OK 1.7 kB IP 23.36.76.129:0
ASN #20940 Akamai International B.V.
Hash d4f59304544376d7732b41e2cec90d07
b9713eccb6190953ebe49f45e48f11bf7a4bc071
d83ba810ff5718686565b460b4c89767aa6a876aa8f219d83509acf0415902ea
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 71e079b5-3e45-4121-b28f-ffbd8f12403c
Content-Length: 1701
Date: Wed, 29 Mar 2023 02:40:01 GMT
Connection: keep-alive
www.blockadsnot.com/audio.min.js
185.76.9.21200 OK 34 kB URL HTTP/2 www.blockadsnot.com/audio.min.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash 413730babb399e0049e36aa9ed2e724c
a16b780ee28cc5f7fff213c48212a22b24b2ebc5
127759f562f61afbdc663f0fe9a5057c9966acd20bf48f053a73fb040ad55c05
GET /audio.min.js HTTP/1.1
Host: www.blockadsnot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dood.re
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:01 GMT
content-type: application/x-javascript
vary: Accept-Encoding
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
expires: Tue, 04 Apr 2023 22:29:54 GMT
access-control-allow-origin: *
link: <https://blockadsnot.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
server: CDN77-Turbo
x-77-nzt: AblMCRS/HwX/nzoAAA
x-77-nzt-ray: af5856303b04888601a523647a4ecf08
x-accel-expires: @1680647394
x-cache: HIT
x-age: 15007
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
dood.re/e/61smz2flw8n16rl0dl4xgm4j4t505en
172.67.68.226200 OK 22 kB URL HTTP/2 dood.re/e/61smz2flw8n16rl0dl4xgm4j4t505en
IP 172.67.68.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (58386), with no line terminators
Hash c3ff08a59770b441e2cd457a9e4441be
268b391a176b18b401389db241cc408b0a7bd44e
83a31484faf6b4c1675ea120ed0c195ce0e0a1683a0f98b81e976816916fd035
GET /e/61smz2flw8n16rl0dl4xgm4j4t505en HTTP/1.1
Host: dood.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutiegarden.wapka.site/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: text/html; charset=UTF-8
expires: Tue, 28 Mar 2023 02:40:00 GMT
set-cookie: lang=1; domain=.dood.re; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JzjAz8eNnue9cbQuv3IoN07oo6V1dUSPjaGB2wQR%2FHd%2FLTRoI6nRtLy%2BzAyjCV92EDoZJBUqRQLMwmb5tgjXDYHrbYFTYE6jG%2Fecn%2FUXdK7OvuTrRyATtL0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4bee3eeb8b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
obrightsapphir.com/UnNNYlZ9TC4RawckHy0MYxciNx5nJxc1DAoWCzA/CCV8R2QQJSAzcCYaKV9vYkt9V2F0AyQGa2NVPhY3JgY+X2d0GiMEOW9VO19nfEB5TGVgXX9EI29CaxYmMxRwU3AiBzkOa2NFdVJmZ0R7UGVhRnU
104.21.60.187204 No Content 0 B URL HTTP/2 obrightsapphir.com/UnNNYlZ9TC4RawckHy0MYxciNx5nJxc1DAoWCzA/CCV8R2QQJSAzcCYaKV9vYkt9V2F0AyQGa2NVPhY3JgY+X2d0GiMEOW9VO19nfEB5TGVgXX9EI29CaxYmMxRwU3AiBzkOa2NFdVJmZ0R7UGVhRnU
IP 104.21.60.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /UnNNYlZ9TC4RawckHy0MYxciNx5nJxc1DAoWCzA/CCV8R2QQJSAzcCYaKV9vYkt9V2F0AyQGa2NVPhY3JgY+X2d0GiMEOW9VO19nfEB5TGVgXX9EI29CaxYmMxRwU3AiBzkOa2NFdVJmZ0R7UGVhRnU HTTP/1.1
Host: obrightsapphir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 29 Mar 2023 02:40:01 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P1VyFhI%2B0dCxnK81InvseDw1xCVnpMNw75TQ9ok1uUe5vji72JegOf0yEP4iiTkc332ylDfyPT3JYwi5clh5DiwXkrzT2US0LfeoP1lDlQrJKHjT7jOiSzWK0RUARBQnnTs5sJA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4bee898edb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/css/output.26d14de31430.css
104.16.94.42200 OK 11 kB URL HTTP/2 static-assets.highwebmedia.com/CACHE/css/output.26d14de31430.css
IP 104.16.94.42:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b70589caddc44027b81449ac95fa2a16
49f3f0f44fa5149397304daffc7d84143e4923ac
0e13b7eda2e8fe7043c1dfaa6412642761de9328cbe79ff113dd8f47c6b5840a
GET /CACHE/css/output.26d14de31430.css HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:01 GMT
content-type: text/css
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=84714
etag: W/"7caedc5dfbfc380a71d5c6f5c5503e2b"
last-modified: Tue, 07 Mar 2023 01:41:28 GMT
x-amz-id-2: O2TcoMFhsrPj26Sge8bEjEJwbAP6W1RaDyieiF36gILGaIWMPbr3ORhWDTyl/l5/SViFMbHviPo=
x-amz-meta-s3cmd-attrs: md5:7caedc5dfbfc380a71d5c6f5c5503e2b
x-amz-request-id: BR5V5K189W84FSEM
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 1661195
expires: Fri, 28 Apr 2023 02:40:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bzaZdteCzh0Ib0pmaJEjFaM9ucGOFC31rPieorH4nDdSUWakoRZGltggIMCaP6hwQW7zLjSdTUJTuouyRK8eild77NnBIk9ybeyuAquUDAOLFhgHyHWqhEyW1C9momHDJejWRcLNEwI1KKsJuMzw5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=zvFXnwmJmdHHSZ69c1H6YEnhHnXs7hrd6Yn1iVsgqXc-1680057601017-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee64830b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
obrightsapphir.com/NlU5TjIZalo9D2dmUQF/YS0KHXoCH2EGVnwzeAxRUhB/fXFgJh86W1JoAH4DBGABaEJfMQR8CxAmTS9GQyYEfxRfO18hDxAjBH8cBnsPfhwFc0xzAxAhSS9VC2QfPkZCOQR/BA5lCXsFAGcKfQoH
104.21.60.187204 No Content 0 B URL HTTP/2 obrightsapphir.com/NlU5TjIZalo9D2dmUQF/YS0KHXoCH2EGVnwzeAxRUhB/fXFgJh86W1JoAH4DBGABaEJfMQR8CxAmTS9GQyYEfxRfO18hDxAjBH8cBnsPfhwFc0xzAxAhSS9VC2QfPkZCOQR/BA5lCXsFAGcKfQoH
IP 104.21.60.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /NlU5TjIZalo9D2dmUQF/YS0KHXoCH2EGVnwzeAxRUhB/fXFgJh86W1JoAH4DBGABaEJfMQR8CxAmTS9GQyYEfxRfO18hDxAjBH8cBnsPfhwFc0xzAxAhSS9VC2QfPkZCOQR/BA5lCXsFAGcKfQoH HTTP/1.1
Host: obrightsapphir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 29 Mar 2023 02:40:01 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5zvKIyiWHGGDpYv79Q5P5ctEPn0ATvUzmG7T8z0mFGUNTHY%2BM0gcKZJrFWARSaq5k7WDVJOKGYdi2reKfiUfcL%2F6BmWiXoOVJuZyvIlnEAcGQhRLamewkMhcwpNc1K1irWrXldY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4bee8a8f4b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.doodcdn.com/theme_2/img/loader.svg
104.21.34.210301 Moved Permanently 33 kB URL HTTP/2 i.doodcdn.com/theme_2/img/loader.svg
IP 104.21.34.210:0
Hash e0725d9af7fcae232aefffd33d9c0bcb
15b635accffb8c8425a5f11a9b1993ab52db9ebc
47765afdcd9aac6b23545fc982b68e76ae390144e68a44a2dba5d219d72ba480
GET /theme_2/img/loader.svg HTTP/1.1
Host: i.doodcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://i.doodcdn.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 29 Mar 2023 02:40:01 GMT
location: https://i.doodcdn.co/theme_2/img/loader.svg
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:40:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mWitcFAFkDGxwJPUyGe54taw6zJgb2k8hoCWgeLYZk33KvdOZ1I8SazC0hWNsGYbcoOsUcQkMK5HwN10zRZz1OhvHidjbGinNAAnO2xMAkqkuBWIC24HrtqXMhvHm2V1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4bee86f14b505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ntedmanahegaz.com/VmNObms3AS0DVDdeLEgeJA9zS1kQRnwoD2cFflsdJFA9BBgjGnlACDoMOwoNJAwgGkU4BjpLWRBWAyk9IgAlWz8VBAM7CAMyAy0+b1APKFoyMX0FPBIbegoiEyEXJRw5IBQHCBUhNF4pGwQLOgoTMigtPm9GfCwtMQgDJig9LR8ZDDUvH18+BRsDHz46CxQ4LyYiDQkxBi8LOyweIQsFOD42FyYsPiUMKCowKhsBJhcxehgtAAA8PFkXIh8oUhU5JQ0mFxsXBjkuOQc/I2MGCzsDFwUpKD0HUwQcKi8HBz8jYysKLyUTBiY4PBpSKlYqFFIsPAYlJwReRj4iKAUiAjALKzsXNRg3Mx5XFD8tbyAFOD4RISZfGRcKAAg6OFsPOD0uICgWPQ47HD8FBwQPIiMCOhg4EiInKAk9GjsYP1wSNR9IASUMIB5WEBsCOCk5Fj1fPDoC
108.157.229.62200 OK 1.2 kB URL HTTP/2 ntedmanahegaz.com/VmNObms3AS0DVDdeLEgeJA9zS1kQRnwoD2cFflsdJFA9BBgjGnlACDoMOwoNJAwgGkU4BjpLWRBWAyk9IgAlWz8VBAM7CAMyAy0+b1APKFoyMX0FPBIbegoiEyEXJRw5IBQHCBUhNF4pGwQLOgoTMigtPm9GfCwtMQgDJig9LR8ZDDUvH18+BRsDHz46CxQ4LyYiDQkxBi8LOyweIQsFOD42FyYsPiUMKCowKhsBJhcxehgtAAA8PFkXIh8oUhU5JQ0mFxsXBjkuOQc/I2MGCzsDFwUpKD0HUwQcKi8HBz8jYysKLyUTBiY4PBpSKlYqFFIsPAYlJwReRj4iKAUiAjALKzsXNRg3Mx5XFD8tbyAFOD4RISZfGRcKAAg6OFsPOD0uICgWPQ47HD8FBwQPIiMCOhg4EiInKAk9GjsYP1wSNR9IASUMIB5WEBsCOCk5Fj1fPDoC
IP 108.157.229.62:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3042), with no line terminators
Hash 789dc8559e6a78cfd0db61b54404e7b2
162e2b9f679a598ae94f5c895271eecc11010bdd
9897325b868896fce9b407a1d3c71d0f04ceb1353232f8b0d9f15fb14efc52d7
GET /VmNObms3AS0DVDdeLEgeJA9zS1kQRnwoD2cFflsdJFA9BBgjGnlACDoMOwoNJAwgGkU4BjpLWRBWAyk9IgAlWz8VBAM7CAMyAy0+b1APKFoyMX0FPBIbegoiEyEXJRw5IBQHCBUhNF4pGwQLOgoTMigtPm9GfCwtMQgDJig9LR8ZDDUvH18+BRsDHz46CxQ4LyYiDQkxBi8LOyweIQsFOD42FyYsPiUMKCowKhsBJhcxehgtAAA8PFkXIh8oUhU5JQ0mFxsXBjkuOQc/I2MGCzsDFwUpKD0HUwQcKi8HBz8jYysKLyUTBiY4PBpSKlYqFFIsPAYlJwReRj4iKAUiAjALKzsXNRg3Mx5XFD8tbyAFOD4RISZfGRcKAAg6OFsPOD0uICgWPQ47HD8FBwQPIiMCOhg4EiInKAk9GjsYP1wSNR9IASUMIB5WEBsCOCk5Fj1fPDoC HTTP/1.1
Host: ntedmanahegaz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1190
date: Wed, 29 Mar 2023 02:40:01 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 d913eed4ff9d3ba68bce11280aa7e1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: BdCIEMOKtdVXuxeGMjtrDL7QvNoXs42v8GPVtP7gR6-484w1VJxFVA==
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/js/output.97a5db11ca63.js
104.16.94.42200 OK 236 kB URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.97a5db11ca63.js
IP 104.16.94.42:0
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Size 236 kB (236444 bytes)
Hash d14d951a27e26f24f820d480f741b703
8527c761ea82e00d923a9291ccaee53a5a35f509
ef4a1d15f372352f1fe78e2cca0cc97e8b5899250438e111ad3810c173da63fd
GET /CACHE/js/output.97a5db11ca63.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=827275
etag: W/"692ec922d2a39b4037073f70286968b3"
last-modified: Fri, 13 May 2022 09:09:46 GMT
x-amz-id-2: gTEF4QSQwnS8c0jBrqdsXPIJKzaqR9jeomtjfhvNA6tuBAqkRj/DWSdLN+3V6KAz6+O3GvhWfhE=
x-amz-meta-s3cmd-attrs: md5:692ec922d2a39b4037073f70286968b3
x-amz-request-id: SNQHVWRKEYE18P8H
cf-cache-status: HIT
age: 1658476
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u2TZv88Tjo6AVNJvrSC0447Wkb%2FL51r25q36l4knCp%2F4GCLO8DRHQwde0cd33cRz7rrxIYVl3jxRwnjD%2BafTvvfNEw7mPVfjMch3UUqf0JvAyulu5sGqnfn1ZY3KL%2F1aW1zorAoth%2F4B59%2BXbAFEHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=neVlT6klo1f7JfwQyapG_SmRXaIodR1lBhx798MixUU-1680057600989-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee61807b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/js/output.21e4d7885076.js
104.16.94.42200 OK 69 kB URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.21e4d7885076.js
IP 104.16.94.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63685)
Hash 5bbce017eefeded6f2173301b80521d2
dff9bd31244af58e5bac9708674add056fd352bb
5f8df20436c85190e37864d9ae5e70078f75d288a3bd6fb26bc0efb0e659d3c1
GET /CACHE/js/output.21e4d7885076.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:01 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=114830
etag: W/"b4ad9510a310ef8a83f71a5f317f091d"
last-modified: Wed, 02 Nov 2022 16:55:42 GMT
x-amz-id-2: PsN3iv65Njn7hNZwOdYd1oAvY+pAIQWUXN9tndhJWmeM1MvoPlyG8vIpgAHr+IS5kjdZ1+l3zUY=
x-amz-meta-s3cmd-attrs: md5:b4ad9510a310ef8a83f71a5f317f091d
x-amz-request-id: QXPZJGZRTB4AE79K
cf-cache-status: HIT
age: 2281305
expires: Fri, 28 Apr 2023 02:40:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=imat4jqp1wRvLTZ9AVae7VXwrfywKIUmIDlQOlQXLX71Cv6%2FF1e7xPCMNybcw9LfZxge7KDy3jGSWLATduw1otI8TqPJMGFJpV8TigNrzoO4pcpNeoaV%2FuUHUYljD5yunVBW532w8b%2BunRRP88RCLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=4goJYbii5H4R0a0J_TI3TF_XOM_CezVN8e.cQZyLOHo-1680057601022-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee6482fb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ntedmanahegaz.com/c0wzdGESLlAZXhJxUVIUASAOUVM1aQEyBUIqA0EXAX9AHhIGNQRaAh8jRhAHASNdAE8dKUdRUzULZjAGQxYAJRslfVw2MgoeYSEnAwJqNQo0GVgMUyYnUD0mGg11EicmL3pGDTICYhANFyJ5JScnNEUXUTYNeBgWORoCPVkkGlw1MisWVyMGIQZqJlQlDUsuFTcOeiAjN3VnNzAmDn5EDSsIYkAGJxpDNiAnCXUjMBQDfCIzKg5fMggVK3U+MzsZeDYkSwh8IjsiD3I5CzsdaSwmGh1XNg0XCmo2ODYdWBcyOx1pLCAJIGQ1DT0eakcOIRpmJQ43Kx42IiE0ehAjHy90PglDBHkfNxQIYQQ5KxRmPyMyDWE5UD0uYh84JA9UJjYhC3I+IzUWYS0GGx93EzhCFF8HByYbeVFTMQ5lECMVK1QnJBggW1ILACNdBFw7flsHMAceQEEvNXtSGDY0
108.157.229.62200 OK 1.2 kB URL HTTP/2 ntedmanahegaz.com/c0wzdGESLlAZXhJxUVIUASAOUVM1aQEyBUIqA0EXAX9AHhIGNQRaAh8jRhAHASNdAE8dKUdRUzULZjAGQxYAJRslfVw2MgoeYSEnAwJqNQo0GVgMUyYnUD0mGg11EicmL3pGDTICYhANFyJ5JScnNEUXUTYNeBgWORoCPVkkGlw1MisWVyMGIQZqJlQlDUsuFTcOeiAjN3VnNzAmDn5EDSsIYkAGJxpDNiAnCXUjMBQDfCIzKg5fMggVK3U+MzsZeDYkSwh8IjsiD3I5CzsdaSwmGh1XNg0XCmo2ODYdWBcyOx1pLCAJIGQ1DT0eakcOIRpmJQ43Kx42IiE0ehAjHy90PglDBHkfNxQIYQQ5KxRmPyMyDWE5UD0uYh84JA9UJjYhC3I+IzUWYS0GGx93EzhCFF8HByYbeVFTMQ5lECMVK1QnJBggW1ILACNdBFw7flsHMAceQEEvNXtSGDY0
IP 108.157.229.62:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3051), with no line terminators
Hash bf16dde5d460a970c3e8112d38e32503
097e550b6dc857ebdb56a9c61e9dfffe3337abd1
ec50ce163443f8b477857e407f588d8af3c972147cce2e856d5f30ac6c5bc11d
GET /c0wzdGESLlAZXhJxUVIUASAOUVM1aQEyBUIqA0EXAX9AHhIGNQRaAh8jRhAHASNdAE8dKUdRUzULZjAGQxYAJRslfVw2MgoeYSEnAwJqNQo0GVgMUyYnUD0mGg11EicmL3pGDTICYhANFyJ5JScnNEUXUTYNeBgWORoCPVkkGlw1MisWVyMGIQZqJlQlDUsuFTcOeiAjN3VnNzAmDn5EDSsIYkAGJxpDNiAnCXUjMBQDfCIzKg5fMggVK3U+MzsZeDYkSwh8IjsiD3I5CzsdaSwmGh1XNg0XCmo2ODYdWBcyOx1pLCAJIGQ1DT0eakcOIRpmJQ43Kx42IiE0ehAjHy90PglDBHkfNxQIYQQ5KxRmPyMyDWE5UD0uYh84JA9UJjYhC3I+IzUWYS0GGx93EzhCFF8HByYbeVFTMQ5lECMVK1QnJBggW1ILACNdBFw7flsHMAceQEEvNXtSGDY0 HTTP/1.1
Host: ntedmanahegaz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1199
date: Wed, 29 Mar 2023 02:40:01 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 d913eed4ff9d3ba68bce11280aa7e1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: LC0yLYeHazQsf8m5uqcjZVAF4BaSONYckQqNPhn0Wqzuw_RhqyNvCQ==
X-Firefox-Spdy: h2
ntedmanahegaz.com/RTlQa0kkWzMGdiQEMk08N1VtTnsDHGItLXRfYF4/NwojATowQGdFKilWJQ8vN1Y+H2crXCROewN9MgUbD3QGLgcCQDQzKy1WNCcYPVYHPgtyewc5AA1TIA4ZPQwaKggQQAA/EzJgETJsd3sVLwcoaSkbGhVsI1ocdWsmMx0EeBVYGB13ESoRIXgSWA09eCIvDhNwETguCGkRLgYMf2BSDXR/Zw97F3gCLD4BYAUyDQx/aFoIFHRmLQ4LXBcBeRBgYV4PIGtpAxp1WhwtDgtcERILI2NhGxsgVx5bEQBoKCl7E3UCHDoQYGFfDhVBAgIFdW9lKQF8XAg8ZDJ9CToiF3I8BGx3ewNbEBV4Yi0vF3E7KhATAAIOPgAKEhwQNm8qXx4QYSRYEAMMEjE+AwoXWyVxHzoYJitJbSJ9JmoSUhgSaTQRHit9
108.157.229.62200 OK 1.2 kB URL HTTP/2 ntedmanahegaz.com/RTlQa0kkWzMGdiQEMk08N1VtTnsDHGItLXRfYF4/NwojATowQGdFKilWJQ8vN1Y+H2crXCROewN9MgUbD3QGLgcCQDQzKy1WNCcYPVYHPgtyewc5AA1TIA4ZPQwaKggQQAA/EzJgETJsd3sVLwcoaSkbGhVsI1ocdWsmMx0EeBVYGB13ESoRIXgSWA09eCIvDhNwETguCGkRLgYMf2BSDXR/Zw97F3gCLD4BYAUyDQx/aFoIFHRmLQ4LXBcBeRBgYV4PIGtpAxp1WhwtDgtcERILI2NhGxsgVx5bEQBoKCl7E3UCHDoQYGFfDhVBAgIFdW9lKQF8XAg8ZDJ9CToiF3I8BGx3ewNbEBV4Yi0vF3E7KhATAAIOPgAKEhwQNm8qXx4QYSRYEAMMEjE+AwoXWyVxHzoYJitJbSJ9JmoSUhgSaTQRHit9
IP 108.157.229.62:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3025), with no line terminators
Hash d61d4a46e5600b19f478404ef5d6cf12
0894d3604f7ab548cc138bd6f41f118aa4434c19
c04eea07a917c501a1bd6f0b52693afe7ada7d1b9e0181b4d4e64e4234e31bff
GET /RTlQa0kkWzMGdiQEMk08N1VtTnsDHGItLXRfYF4/NwojATowQGdFKilWJQ8vN1Y+H2crXCROewN9MgUbD3QGLgcCQDQzKy1WNCcYPVYHPgtyewc5AA1TIA4ZPQwaKggQQAA/EzJgETJsd3sVLwcoaSkbGhVsI1ocdWsmMx0EeBVYGB13ESoRIXgSWA09eCIvDhNwETguCGkRLgYMf2BSDXR/Zw97F3gCLD4BYAUyDQx/aFoIFHRmLQ4LXBcBeRBgYV4PIGtpAxp1WhwtDgtcERILI2NhGxsgVx5bEQBoKCl7E3UCHDoQYGFfDhVBAgIFdW9lKQF8XAg8ZDJ9CToiF3I8BGx3ewNbEBV4Yi0vF3E7KhATAAIOPgAKEhwQNm8qXx4QYSRYEAMMEjE+AwoXWyVxHzoYJitJbSJ9JmoSUhgSaTQRHit9 HTTP/1.1
Host: ntedmanahegaz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1178
date: Wed, 29 Mar 2023 02:40:01 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 d913eed4ff9d3ba68bce11280aa7e1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: KMt4vb_pZL9If262ft8eKh3amQ4m1QRtE85mtiyCpmYz2DvQEg6R9A==
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/js/output.e1067846ea15.js
104.16.94.42200 OK 29 kB URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.e1067846ea15.js
IP 104.16.94.42:0
File type ASCII text, with very long lines (1534)
Hash 4324a9cd6e8298cd464b42cc31615490
cebc54a99bc84e5b16360956d7c5a44f0cfb4738
cb32912a6f6af536df0af3f2a3f955da1411e09cb8628a4309e8b55bf013a38a
GET /CACHE/js/output.e1067846ea15.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=108152
etag: W/"97a23c5e27826ee4bed1dbcfe0601da8"
last-modified: Thu, 24 Jun 2021 21:24:09 GMT
x-amz-id-2: sZx/hKnuGDhNa61R3FEdIbXB4af2uw7uOz32ypKCm1Xu3jw0mNYYEtyRa1eL6n6ApxbIA6b8Ud4=
x-amz-meta-s3cmd-attrs: md5:97a23c5e27826ee4bed1dbcfe0601da8
x-amz-request-id: 02S2FGR0KBTHFDSR
cf-cache-status: HIT
age: 1657352
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5L%2BaCSyGq%2FrUT7Kf9mOCdFOkycEbwlTifoOCD%2F2epnWPkoLIOhdah0uNmrXX2cH6OeWHE%2BRH77oiV1CDEkazwiQ%2FGwIw6rRjb%2BkrEYmrP3zarSODwW16W77%2BPf2oWpAvcvaDFBLGl1Ngyz4D3yRxyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=4ZtVfo2KBRXaDuLTDugwN9BrS6FT9j3HDR3xfyxvLV0-1680057600986-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee61805b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d1f05vr3sjsuy7.cloudfront.net/?srvfd=908057
54.192.98.55200 OK 471 B URL HTTP/2 d1f05vr3sjsuy7.cloudfront.net/?srvfd=908057
IP 54.192.98.55:0
Hash f2ece3e5907870b283917a99cd1af151
12359d23a1436959aef66b98ada87bcb624232b6
d1611493613d9d6dd13b642f7579d831ccbb9d61015775dd635c9a0b7588a54d
GET /?srvfd=908057 HTTP/1.1
Host: d1f05vr3sjsuy7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 96170
date: Wed, 29 Mar 2023 02:39:08 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Hit from cloudfront
via: 1.1 b475a5f7d95ff68ca0dc588e3c9a3230.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: ERYAUyow75sBopgXAhXm0L7-Mhroyhc4k-UkV1Vtu6ndn4S034ELGQ==
age: 52
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/cachebust/571-prod-9cbe72a3ccff977811e8.js
104.16.94.42200 OK 5.1 kB URL HTTP/2 static-assets.highwebmedia.com/cachebust/571-prod-9cbe72a3ccff977811e8.js
IP 104.16.94.42:0
File type ASCII text, with very long lines (14044), with no line terminators
Hash e69fa8a814d1798087f2e35e0fc3182f
b822b98e54449710011c4236e91fa89e97b8da93
fc39b50e99718151c2603f92cb6358640f39384e1e9876962e0de1159ae222d6
GET /cachebust/571-prod-9cbe72a3ccff977811e8.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=14105
etag: W/"3317b717aa00c76f51582c41fc2b215a"
last-modified: Tue, 28 Mar 2023 16:57:07 GMT
x-amz-id-2: 5az1TI5EYyBdvPoq+Q7OJw89bkomfsO1/2FRYgw/nlwjbbqrtjkIeKaJVVCoWbuQFRy1rLgGwkA=
x-amz-meta-s3cmd-attrs: md5:3317b717aa00c76f51582c41fc2b215a
x-amz-request-id: NXP4VRZJ9CRCG42Y
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 34814
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TT6uGr3qlLY477qpchwzgO9Hx0jpII0Es%2B90rqiUcGSnBC11xS8Qay2rFI6Y%2B%2FGMY5Zbzond%2FkCdYuPINkLojRJbIlus3tjzZpaWDEELGc649j7VgsGfni8gxmJYkxEqrxFc6U327coBiYZAWvsZug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=xw.eKvjJzG4ZWbKc4wsOBG9qYHc0BVgCawa3QLYhMQ4-1680057600990-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee62814b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash db1f11cedde47cf778700089de6fe437
f275c6617546a36e66bba98d8909af268adac418
cba914b21c23042c7b2d1abdf15f91dc21371a3eb8221e71395ccf71f93b9e8a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static-assets.highwebmedia.com/CACHE/js/output.22fcc6ddd7fb.js
104.16.94.42200 OK 44 kB URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.22fcc6ddd7fb.js
IP 104.16.94.42:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash f2df4b6723f1e2fb4b031fd4ed6ae899
72f62a7abdb1d8acd68a34b47e118352301bb61b
c352b99f0036ae670afba4af947daf53f7bd154ca471ef658bbf1b85a38f5f8a
GET /CACHE/js/output.22fcc6ddd7fb.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
etag: W/"b6478c81f6d00fc5f5f8c5c8a83e7def"
last-modified: Thu, 09 Feb 2023 22:37:40 GMT
x-amz-id-2: 58VSmCG/Ais5R9oTrtzfDhSSC99nuUTKfyZeoiSGQK03lg9TlssnatC6ZW+83j/+Kf251otKLQQ=
x-amz-meta-s3cmd-attrs: md5:b6478c81f6d00fc5f5f8c5c8a83e7def
x-amz-request-id: 9N425M5WQWDTXJ5C
cf-cache-status: HIT
age: 1483142
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0uMazi%2BN2GOco2pbTvn8jwrRRMk9%2FF1221q2UDtUg8j3XfscnjP7vSVrpS5NGXyMLtP%2Bo8gdUcNQgma46WH%2BMXqhj6Jw0k7za1hMKycIiKxrFwbd2CC%2FLmwNQHlSNsKUEzHc2XqQklECbOiFRaYJ3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=tFX5T.hVOa2oE2xPKRCrfoddjVvMRDtpT2ASsHxyULk-1680057600987-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee61809b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ntedmanahegaz.com/utx?cb=mK6g5nyryCQe&top=dood.re&tid=908057
108.157.229.62204 No Content 0 B URL HTTP/2 ntedmanahegaz.com/utx?cb=mK6g5nyryCQe&top=dood.re&tid=908057
IP 108.157.229.62:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=mK6g5nyryCQe&top=dood.re&tid=908057 HTTP/1.1
Host: ntedmanahegaz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dood.re
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 29 Mar 2023 02:40:01 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://dood.re
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Wed, 29 Mar 2023 02:41:01 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 d913eed4ff9d3ba68bce11280aa7e1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: sjjdQAHSMrDO7ze1J1SXGnEwAyaFLh5RSZt_q7PvY_tuDSqKkmzM_w==
X-Firefox-Spdy: h2
ntedmanahegaz.com/utx?cb=q8qTdkoHDEoN&top=dood.re&tid=919673
108.157.229.62204 No Content 0 B URL HTTP/2 ntedmanahegaz.com/utx?cb=q8qTdkoHDEoN&top=dood.re&tid=919673
IP 108.157.229.62:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=q8qTdkoHDEoN&top=dood.re&tid=919673 HTTP/1.1
Host: ntedmanahegaz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dood.re
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 29 Mar 2023 02:40:01 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://dood.re
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Wed, 29 Mar 2023 02:41:01 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 d913eed4ff9d3ba68bce11280aa7e1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: BLvagEeMa009n2nIqs98VJVSp5IecEACBy98TF4qNPNIy1KM4XrgmQ==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 69d033c232e94b122a0b66e4733f1d57
dca98865e28271c9eafc7307850dbce5126c1a86
d80b57ddab8c2898af0939a454bb1296abd2f964c3bf3eaea2bab7c225d73490
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash f2ece3e5907870b283917a99cd1af151
12359d23a1436959aef66b98ada87bcb624232b6
d1611493613d9d6dd13b642f7579d831ccbb9d61015775dd635c9a0b7588a54d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5395
Cache-Control: max-age=157862
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:01 GMT
Etag: "64235594-1d7"
Expires: Thu, 30 Mar 2023 22:31:03 GMT
Last-Modified: Tue, 28 Mar 2023 21:01:08 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
static-assets.highwebmedia.com/cachebust/825-react-d878dbc8fdafd88d1743.js
104.16.94.42200 OK 54 kB URL HTTP/2 static-assets.highwebmedia.com/cachebust/825-react-d878dbc8fdafd88d1743.js
IP 104.16.94.42:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 45dbb32e7dff80353f941ffa1b78a70b
03fc8cabb2ce34895310e25433d83cd97a6cbb4d
bf872a06545b0207adc8014ca7ef6a4fadfe97be70d5b8c928f15e45172a4aa2
GET /cachebust/825-react-d878dbc8fdafd88d1743.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=163800
etag: W/"dde90b357e0f68263495b3f03fa6f3c7"
last-modified: Fri, 24 Mar 2023 16:21:20 GMT
x-amz-id-2: aHZr9dh78pIP0aODiRywY5ITp8FJBskrxKkCo8MEQUNR+cv8NcX7o3o+3CAL5b6vlgc/Xfzhax8=
x-amz-meta-s3cmd-attrs: md5:dde90b357e0f68263495b3f03fa6f3c7
x-amz-request-id: JPM1G652GGM1FEWY
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 382537
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FmUyp9K8QJXcScSRTVdX75Do%2Fkpa9p3zrnmD2b85tSC6TayZLxvvRlXuldN1UBj09sPXWAoK%2Bn6qyCUg9N0x5HNpXijTQGMy%2BplRK6Vfjqi5MZWwxcjS90q00i9mIrR0b0jxSoQ7FaUanAkST8i3QA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=xw.eKvjJzG4ZWbKc4wsOBG9qYHc0BVgCawa3QLYhMQ4-1680057600990-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee6180cb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14249
Expires: Wed, 29 Mar 2023 06:37:31 GMT
Date: Wed, 29 Mar 2023 02:40:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14249
Expires: Wed, 29 Mar 2023 06:37:31 GMT
Date: Wed, 29 Mar 2023 02:40:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 253f48aa7cbf667d52cb37fda10cdb1f
e29478b866f90402b48d2b516d01d60a863c9cf9
b4a73ab71250b9e4a3f95e28dbf50dd000e1f338c7c3ac9f3351c1f6d6d3bfff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6049
x-amzn-requestid: 2d1a2a66-8b63-44f0-83ec-10628a5fcac6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CgvBFFMGIAMFhCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235ed3-2a90bf0365925acb3b348489;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:40:35 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: -XwoHom5AT8j5yHNvfnYQ-9xIqVpsyDffwFM0d_ESJicJvL8pTcABg==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:50:28 GMT
age: 17374
etag: "e29478b866f90402b48d2b516d01d60a863c9cf9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: FHONNj6M7I5oVTKAKYspq0ZAJMYohURXs5ufSL-r--zCSdjuSvrpSA==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:51:37 GMT
age: 17305
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/cachebust/runtime-react-45f3b2b76e24b2d56e00.js
104.16.94.42200 OK 8.1 kB URL HTTP/2 static-assets.highwebmedia.com/cachebust/runtime-react-45f3b2b76e24b2d56e00.js
IP 104.16.94.42:0
File type ASCII text, with very long lines (2031), with no line terminators
Hash 9f562154652b0d469b06af2e679e5ee3
f058a9ab77b9dcb7f50d1989433c25352458a830
49dd08031837d72ac219cdbce696c93294e244f76c4e0318f2f8861b3e1716fb
GET /cachebust/runtime-react-45f3b2b76e24b2d56e00.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=2094
etag: W/"c51fb31e30e6fe4ab6130330c6de8497"
last-modified: Fri, 24 Mar 2023 16:21:20 GMT
x-amz-id-2: iw2L36xKhaS4n1KnFk3RP9pCViDwNRTmajoww09bhcCP+yn9AnJhwjH3i/+XbLLc8NPliQkGGqM=
x-amz-meta-s3cmd-attrs: md5:c51fb31e30e6fe4ab6130330c6de8497
x-amz-request-id: JPMA248D6FPVVZXG
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 382537
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A4wWU0%2FbsUq0tGds9SshJ7ygWZ%2BVrJ7cjOWtGiM9SqmqKe8eI04Kh7Rip6EqEm3MDQtEL0KnJ3Xj6u8oTMe%2Fu8GpN0KiTGsIo5HlL2ciyMqubKD31J%2Bw8wy6i0eVJhjo5n7OFwN0X%2Fot6z9qUJNAYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=tFX5T.hVOa2oE2xPKRCrfoddjVvMRDtpT2ASsHxyULk-1680057600987-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee6180ab509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
172.64.133.29200 OK 110 kB IP 172.64.133.29:0
Size 110 kB (110030 bytes)
Hash 76a54f87efd88a9702d4785b59c17ba3
8fd8c78d3e249aa5245adabcd6f23d26f9274a8c
a8668bb49d613eb2e13414cad6f73e8d51f07f063ba64b9a2b1bfc6c7fb04364
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.re/
Origin: https://dood.re
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:01 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://dood.re
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 2985
last-modified: Wed, 29 Mar 2023 01:50:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LA%2BfG2Wpajk6keJJR9ZFctrn1omYsHiEmmBKcAKYv7twWXtyW3NNKw15AD%2FgtxLusFjv3sQNyUdrJZsYcPSGg6h2zAkeaK1wtWOXmRmNLAC6ecVIkSDOZ%2BFOY5G0eRg5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4beea9c7176d1-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32e391ba-5f96-413b-afda-e6ea52953668.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32e391ba-5f96-413b-afda-e6ea52953668.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11a3ec10ceec6a8147a4c173b4b420d7
9fe904e5f3062677c6290b821c89a7e3aaee0371
ce934631eda7670329b9bc46a14eff0dd9839bdc838ad90d401600bee70c4f4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32e391ba-5f96-413b-afda-e6ea52953668.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11027
x-amzn-requestid: 48f65bca-a792-4f2c-8eb4-d05c6dc2c2e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CXODXE7eoAMFl3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f907b-6a5a7a890aa383fc4e0eb983;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 00:23:23 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qeit17u4hnY6-u4djG8q98cqMH0bj5wwWQxczrjTN02iB3tQ8nq5MQ==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 14:23:50 GMT
age: 44172
etag: "9fe904e5f3062677c6290b821c89a7e3aaee0371"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2c8db4c7fb7a75c469208510007edef
7d4f86b02d0f30ff44453f3fb5ae2704895e92a3
f923d651ca0e6481a2819b891c546f84c3d3b6ae86a14c94ca8050c2b6c412d3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7017
x-amzn-requestid: 8f686bb3-a4ad-4d2f-b947-5e6b83cb24f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CWnNqG49oAMFxKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f5257-4f5c982f03e2f15b16c6bebd;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 19:58:15 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Xj27okGEgDh6N9CuQySGMs4g_OApIelvOqQrAHlFyAaaFxF1UbHmCQ==
via: 1.1 b6cdb2111444305bd4957a473b711ad6.cloudfront.net (CloudFront), 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 00:25:05 GMT
age: 40589
etag: "7d4f86b02d0f30ff44453f3fb5ae2704895e92a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.buypass.com/
23.36.76.129200 OK 1.7 kB IP 23.36.76.129:0
ASN #20940 Akamai International B.V.
Hash 81f7e71b61876d0a6463a5f47d80d59c
9cb3fd496515ac78fbbd538c0b1a78c984ddf477
e5ca9ca2d6d0975f49bb1f02d256ab4e6caf03c2c6d0fb9d79832527d2c8d2e4
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 28e54d97-8ed8-4956-b16f-a2393971226d
Content-Length: 1701
Date: Wed, 29 Mar 2023 02:40:02 GMT
Connection: keep-alive
limurol.com/ssp/req/1941940/?pb=e13240d9f0b6b553caff797b7e5f02e91680064801&psp=ykIVH_edGjImVME6zt8E1YBE_t_A6UVufLB6R7Kzk1OBuJH9RPUdSNuLyucGDrHglzBBy8cRyXN8Jmlp9OA-iQXjwuwDwRVsoQ3B1nDVp30eK3BoPO-SYAxkYEj9EXcut0Vjs-WKBlTyg-4B8hwsrwrxFrF6qisVNiRJY4pqYGx1ZcmppKCUfFe7YKKDDqbQtlRT132efHNWzynUYROCA8genXcnNDKkqHWU9NMkFMAA74WC3y6q1-0zAdhlXHqEi4wSKqcC2emf7gM0N_-1BI3moVeNLSkhwmyo0wfY4cdOwL6zKc9ejYzXQpxREOks17-fJ6VN2ZESCZmyZ-5DDp_G6GVO3FNT_77xNWqfDx1UaQ7Dk3uod8ktTwfw4GZJFhdEk2baaydDk6JRjnYLIp-eyh6BOZav1-8sdfIrJNT1zN066icLO3BfDN19oVb4aHM3P2gH1sjgBGoSap0iKmb6r_HjjMx0k3qJfQzyanUEABZ0RuB326GRFhCB9jE556Nl1uY7tHelHe4gZpx1_si1vCsC-vupl5WzCEZWJjlCFcESv8IOEUBNRdSnm93V8S2Neu50_X7bqcKRgp-Q5xrOI5NIHWfEug3gQP405hUXEL7zkuk0TF2S5k_GS37bb6mir9ZXEzhVxUoJQVHq_JSWhoLVz6j4QFz8c7I1CcFqvCJyzM04SHCJVbX8n2JwX8sb56K7DnQcwYOPkhsI13A10LGGg5dPQxiVAWopNE4hLxo0shXYYJg-Y60ILRkHlSo16-i3o7Wo7yBjrb7XnWTNE8ieiQntORj8m1S4ZdXu3DkvoWwhw9ZAzrnA&cb=_clsqi0miuy2kme1gdqpidw&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1941940/?pb=e13240d9f0b6b553caff797b7e5f02e91680064801&psp=ykIVH_edGjImVME6zt8E1YBE_t_A6UVufLB6R7Kzk1OBuJH9RPUdSNuLyucGDrHglzBBy8cRyXN8Jmlp9OA-iQXjwuwDwRVsoQ3B1nDVp30eK3BoPO-SYAxkYEj9EXcut0Vjs-WKBlTyg-4B8hwsrwrxFrF6qisVNiRJY4pqYGx1ZcmppKCUfFe7YKKDDqbQtlRT132efHNWzynUYROCA8genXcnNDKkqHWU9NMkFMAA74WC3y6q1-0zAdhlXHqEi4wSKqcC2emf7gM0N_-1BI3moVeNLSkhwmyo0wfY4cdOwL6zKc9ejYzXQpxREOks17-fJ6VN2ZESCZmyZ-5DDp_G6GVO3FNT_77xNWqfDx1UaQ7Dk3uod8ktTwfw4GZJFhdEk2baaydDk6JRjnYLIp-eyh6BOZav1-8sdfIrJNT1zN066icLO3BfDN19oVb4aHM3P2gH1sjgBGoSap0iKmb6r_HjjMx0k3qJfQzyanUEABZ0RuB326GRFhCB9jE556Nl1uY7tHelHe4gZpx1_si1vCsC-vupl5WzCEZWJjlCFcESv8IOEUBNRdSnm93V8S2Neu50_X7bqcKRgp-Q5xrOI5NIHWfEug3gQP405hUXEL7zkuk0TF2S5k_GS37bb6mir9ZXEzhVxUoJQVHq_JSWhoLVz6j4QFz8c7I1CcFqvCJyzM04SHCJVbX8n2JwX8sb56K7DnQcwYOPkhsI13A10LGGg5dPQxiVAWopNE4hLxo0shXYYJg-Y60ILRkHlSo16-i3o7Wo7yBjrb7XnWTNE8ieiQntORj8m1S4ZdXu3DkvoWwhw9ZAzrnA&cb=_clsqi0miuy2kme1gdqpidw&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1941940/?pb=e13240d9f0b6b553caff797b7e5f02e91680064801&psp=ykIVH_edGjImVME6zt8E1YBE_t_A6UVufLB6R7Kzk1OBuJH9RPUdSNuLyucGDrHglzBBy8cRyXN8Jmlp9OA-iQXjwuwDwRVsoQ3B1nDVp30eK3BoPO-SYAxkYEj9EXcut0Vjs-WKBlTyg-4B8hwsrwrxFrF6qisVNiRJY4pqYGx1ZcmppKCUfFe7YKKDDqbQtlRT132efHNWzynUYROCA8genXcnNDKkqHWU9NMkFMAA74WC3y6q1-0zAdhlXHqEi4wSKqcC2emf7gM0N_-1BI3moVeNLSkhwmyo0wfY4cdOwL6zKc9ejYzXQpxREOks17-fJ6VN2ZESCZmyZ-5DDp_G6GVO3FNT_77xNWqfDx1UaQ7Dk3uod8ktTwfw4GZJFhdEk2baaydDk6JRjnYLIp-eyh6BOZav1-8sdfIrJNT1zN066icLO3BfDN19oVb4aHM3P2gH1sjgBGoSap0iKmb6r_HjjMx0k3qJfQzyanUEABZ0RuB326GRFhCB9jE556Nl1uY7tHelHe4gZpx1_si1vCsC-vupl5WzCEZWJjlCFcESv8IOEUBNRdSnm93V8S2Neu50_X7bqcKRgp-Q5xrOI5NIHWfEug3gQP405hUXEL7zkuk0TF2S5k_GS37bb6mir9ZXEzhVxUoJQVHq_JSWhoLVz6j4QFz8c7I1CcFqvCJyzM04SHCJVbX8n2JwX8sb56K7DnQcwYOPkhsI13A10LGGg5dPQxiVAWopNE4hLxo0shXYYJg-Y60ILRkHlSo16-i3o7Wo7yBjrb7XnWTNE8ieiQntORj8m1S4ZdXu3DkvoWwhw9ZAzrnA&cb=_clsqi0miuy2kme1gdqpidw&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=2303282140b625fd0648164d2e94d23fb9ba; Path=/; Expires=Thu, 28 Mar 2024 02:40:02 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/tsdefaultassets/sounds/classic/large.mp3
104.16.94.42200 OK 58 kB URL HTTP/2 static-assets.highwebmedia.com/tsdefaultassets/sounds/classic/large.mp3
IP 104.16.94.42:0
File type MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Hash 3c341f99a417abeaa0e76f070d2ee776
c14d20fc3b5c6f0ec8085a59ff7108a0fd4ccd70
06a32e4bddac3148330822781fc4a9a62cab480e46e1ba8e8158b9d86445a7c7
GET /tsdefaultassets/sounds/classic/large.mp3 HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: audio/mpeg
content-length: 57678
x-amz-id-2: c8D+6ClfZKbwVgjLThXkhuyVCARJSz3kis92ARURVepcekZvXzG1fuUkCgfLHUQIJ5Vf4AS9OiVzmWlKOt8/aw==
x-amz-request-id: XZAY28NV7PAC03HD
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 19 Jan 2021 22:10:58 GMT
etag: "3c341f99a417abeaa0e76f070d2ee776"
x-amz-meta-s3cmd-attrs: md5:3c341f99a417abeaa0e76f070d2ee776
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 772356
expires: Fri, 28 Apr 2023 02:40:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pVxhcYC%2BMJURuJSvYaFAMcntLGiMJKbW%2F7h9tj8UGAS7Nds%2BsBrXAQhmbcL8VVqLfmdBu%2BCJy%2FeNmUB8xZfcqBaPAO9W3SiDPG%2BFQVU6KLZpbEMXNp88FJXS9tFU5GqMbGvYFSdvs8RWtM2OE8Kj5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: _cfuvid=zejHlWopwUusoM7_I6lEpvpExRy_Ey.ygvS6sKINBUw-1680057602207-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4beedbe09b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/tsdefaultassets/sounds/classic/tiny.mp3
104.16.94.42200 OK 19 kB URL HTTP/2 static-assets.highwebmedia.com/tsdefaultassets/sounds/classic/tiny.mp3
IP 104.16.94.42:0
File type MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Hash 1179631f78330d8b2e8918f8f0e2e9fa
743c778104ff0a87f440990ec9f285ed95a515e7
16da4e83dd5e5ebacba638b7ecea526f9d6b856c623f69de7813f9d2ed7220a4
GET /tsdefaultassets/sounds/classic/tiny.mp3 HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: audio/mpeg
content-length: 19226
x-amz-id-2: 7Q6Pnr9yspCpnsOqaWjBN44NLjDtlPo6wpYEcxwNALHhkJjOthOy7MXNU77VbhBa4PxA4p21e4I=
x-amz-request-id: VB12YAESENF45VRC
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 19 Jan 2021 22:11:00 GMT
etag: "1179631f78330d8b2e8918f8f0e2e9fa"
x-amz-meta-s3cmd-attrs: md5:1179631f78330d8b2e8918f8f0e2e9fa
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 1054573
expires: Fri, 28 Apr 2023 02:40:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S9erozHcB8FUH7PlEQy%2BiTnFb3lurjm6T0CF762TfYIZsi%2BCaTW1j8YopdYZci0nfjp99uHuQ3QF6qRpZKoQejz8jFzzoxfuH68Qa5nN5eOMdsYpqNWhMYvvgTw%2F%2B8OO1cpM6M%2Bn92ri8S1mS7ZMQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: _cfuvid=7IFk9rRKB4uF5UeEeht4BvgOhrHNHLsZeafFfU0ezjU-1680057602209-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4beedce16b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/tsdefaultassets/sounds/classic/small.mp3
104.16.94.42200 OK 26 kB URL HTTP/2 static-assets.highwebmedia.com/tsdefaultassets/sounds/classic/small.mp3
IP 104.16.94.42:0
Hash 253ee0e8cff6af88dcbcdbb9516434ba
40401617c1f7deeab3ad8743ad2e2787ac9d023d
a720d7d84f27c063a12feb6f19107ac193722c34dcf80e7d5388df2d8909593a
GET /tsdefaultassets/sounds/classic/small.mp3 HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: audio/mpeg
content-length: 25728
x-amz-id-2: gm1zVsqXKWAMG4UgVx3WdbiekqUM31K6YhT3aObAdgqf5zv4cc4wc5KMRKD+Q97Qr2usWZZUFMo=
x-amz-request-id: E18B3ZST3BRZ6TQT
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 19 Jan 2021 22:10:59 GMT
etag: "069c25fa18c496300dce85718add378b"
x-amz-meta-s3cmd-attrs: md5:069c25fa18c496300dce85718add378b
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 2173892
expires: Fri, 28 Apr 2023 02:40:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Myju%2BBpF6wVMsmBJ0gH47VZnOaW3B3b%2BV6VXHm2ru3Z9PVLcIxTrXCOXxgFIr9OZeaq3IF7VXbJ8%2Fqgjv79U9ByR%2BtrPGFplno3DDYTMsGI8ST2CTvC8%2FBKEZAwfWQ4hmYF76D%2F7QMz1Vv1SlK4JA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: _cfuvid=D2uQWhTVfNFhBU5WQV_7IpjIhi2LbUM.aem2wIHz1w0-1680057602210-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4beedce14b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/tsdefaultassets/sounds/classic/medium.mp3
104.16.94.42200 OK 33 kB URL HTTP/2 static-assets.highwebmedia.com/tsdefaultassets/sounds/classic/medium.mp3
IP 104.16.94.42:0
File type MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Hash a1b122ed72ab3c7f31eaf55a21fb14ce
d59bad3ba30640b238502ae3d2a8eba40574d51f
61aac93b83752081003a02921e70af75a4786b5b33467c8ef50add2d76cb8000
GET /tsdefaultassets/sounds/classic/medium.mp3 HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: audio/mpeg
content-length: 32600
x-amz-id-2: C/ArMAbxZKWIVBO+vtbfUW664daLsg8aQx+G+YWQ6OgNDyqqDk0OIqSt4bfDh0OVQJHkZf02Ovg=
x-amz-request-id: 3PS4ZER6C9G8HQFV
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 19 Jan 2021 22:10:59 GMT
etag: "a1b122ed72ab3c7f31eaf55a21fb14ce"
x-amz-meta-s3cmd-attrs: md5:a1b122ed72ab3c7f31eaf55a21fb14ce
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 61661
expires: Fri, 28 Apr 2023 02:40:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VxZO5l9bhvo3uOKQCsLAmdJHZj3woWOKNAbAyy%2B0dX5idG1JDcLYJ44ML5VJOq68%2F8%2BkjkxBDhqWf9jjSKGGZM%2BtqjYXVCLNPXOCdSsecL%2BbIg2xrJOqY6%2F5gvK95fm5cGddVRf%2FH8PNQb4XF%2FzE5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: _cfuvid=D2uQWhTVfNFhBU5WQV_7IpjIhi2LbUM.aem2wIHz1w0-1680057602210-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4beedce12b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/tsdefaultassets/sounds/classic/huge.mp3
104.16.94.42200 OK 58 kB URL HTTP/2 static-assets.highwebmedia.com/tsdefaultassets/sounds/classic/huge.mp3
IP 104.16.94.42:0
File type MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Hash 4f5f5acc1f52a82663f8b8762df7508d
15197386d884cfc8c6a04b2ca37f4e6325146567
8b2f2a0e8f6c4506f802775ffc24567495279088c55dc16d76da9e32257f58ce
GET /tsdefaultassets/sounds/classic/huge.mp3 HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: audio/mpeg
content-length: 57678
x-amz-id-2: zfozypmAyeoz2Ggv2CuIUpgPbSLF2vgAZ1ozvxIgAIvv4vsQtamgFDKUlJqa/ANP/qw2puCIvhY=
x-amz-request-id: 75TFMK4ZFNN8JG43
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 19 Jan 2021 22:10:58 GMT
etag: "4f5f5acc1f52a82663f8b8762df7508d"
x-amz-meta-s3cmd-attrs: md5:4f5f5acc1f52a82663f8b8762df7508d
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 770061
expires: Fri, 28 Apr 2023 02:40:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7iKanaJw%2B%2F6ESGjsCrQQsV32Zek9ctUmLJB5JVRjrYkKlWoAC1cuYFWT7QVkzDbYPoff4wI2bXfuak8iw6q5vB676egJ86YuRpw1EbLc6xPKX4NKCSzJApaa98RMRGYFb%2B11PK%2FGQN%2B3iuXV1SznCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: _cfuvid=6musn0ol7D_l2iHbv52bI_N2pcOZOLwLBOc.Fy6Lc1U-1680057602213-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4beedbe05b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.9504897364385616
131.153.88.95200 OK 23 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.9504897364385616
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 12a8eb2059a5184adf2125a0c8a5cb7d
5a4ec041efe3bc15fcc5d6820fd3607cd6f94fac
c083c709cf3fda785d8b3e998fdfef552cf835b80b545ba05431fc779219760e
GET /stream?room=kisimoto_key&f=0.9504897364385616 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: image/jpeg
content-length: 22557
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
d18t35yyry2k49.cloudfront.net/GOEpxQ0pbJR8ldUwjFX5zCXNHdHkeIAIsJEh3NwolfRg8JTgKBxd6AkJsBTkuBXpXLytWLUxlL1YpTHJsWS4Tfn4ePgEsIQU/HycvXiMfJi4ePxB+J1cwGC8mWW9DBX8WelRxehA9GC0uVz0CZngIJAVmeAh7QW16HXkzZngIPRgtfAxvQgFvCnoJdX4deT-NmeAg4B2Z5eXtBdmQIY1Rxel8vEiglHXg3cXoJekFyeglvQ3MsUTgUJSVAb0MFewh/X3NsTXdA
143.204.42.79200 OK 594 B URL HTTP/2 d18t35yyry2k49.cloudfront.net/GOEpxQ0pbJR8ldUwjFX5zCXNHdHkeIAIsJEh3NwolfRg8JTgKBxd6AkJsBTkuBXpXLytWLUxlL1YpTHJsWS4Tfn4ePgEsIQU/HycvXiMfJi4ePxB+J1cwGC8mWW9DBX8WelRxehA9GC0uVz0CZngIJAVmeAh7QW16HXkzZngIPRgtfAxvQgFvCnoJdX4deT-NmeAg4B2Z5eXtBdmQIY1Rxel8vEiglHXg3cXoJekFyeglvQ3MsUTgUJSVAb0MFewh/X3NsTXdA
IP 143.204.42.79:0
Hash f3ea856365a6f85f63a6d4dc668ade98
b6424776d81d4c3b27a322b7682e03186dc4469a
9fa8bed8ff7f5b4b96dd43807598bf126a584904bfbe141f6e7a27f89741f2a7
GET /GOEpxQ0pbJR8ldUwjFX5zCXNHdHkeIAIsJEh3NwolfRg8JTgKBxd6AkJsBTkuBXpXLytWLUxlL1YpTHJsWS4Tfn4ePgEsIQU/HycvXiMfJi4ePxB+J1cwGC8mWW9DBX8WelRxehA9GC0uVz0CZngIJAVmeAh7QW16HXkzZngIPRgtfAxvQgFvCnoJdX4deT-NmeAg4B2Z5eXtBdmQIY1Rxel8vEiglHXg3cXoJekFyeglvQ3MsUTgUJSVAb0MFewh/X3NsTXdA HTTP/1.1
Host: d18t35yyry2k49.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ntedmanahegaz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 365
date: Wed, 29 Mar 2023 02:40:02 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -XK63Tl-ItsOB6pLF16BAgpfbSTH1oSNPZmXc9uI46YSAKbb3FlEjQ==
X-Firefox-Spdy: h2
d1f05vr3sjsuy7.cloudfront.net/DbnRJMVENGydXbhodLQxoWUB7BWRIHjpePx5JAAUyPTZwYAY+EDNmPypSPUs1U0RvXTAAE3QXNAAXdAB3DxArDGVIASgMPAEOIF09D1F7d2RARGwDYUYDIF81AQM6FGNeGj0UY15FeR9hS0cLFGNeAyBfZ1pRenN0XEQxB2VLRwsUY14GPxRiL0V5BH9eXW-wDYQkRKlo+S0YPA2FfRHkAYV9RewE3BwYsVz4WUXt3YF5BZwF3G0l4
54.192.98.55200 OK 263 B URL HTTP/2 d1f05vr3sjsuy7.cloudfront.net/DbnRJMVENGydXbhodLQxoWUB7BWRIHjpePx5JAAUyPTZwYAY+EDNmPypSPUs1U0RvXTAAE3QXNAAXdAB3DxArDGVIASgMPAEOIF09D1F7d2RARGwDYUYDIF81AQM6FGNeGj0UY15FeR9hS0cLFGNeAyBfZ1pRenN0XEQxB2VLRwsUY14GPxRiL0V5BH9eXW-wDYQkRKlo+S0YPA2FfRHkAYV9RewE3BwYsVz4WUXt3YF5BZwF3G0l4
IP 54.192.98.55:0
File type ASCII text, with very long lines (302), with no line terminators
Hash f63062098326f927851d07d1d56e071f
888c65a7c38f56481cdca95b440ada8444118963
8a12df3029ef450c39906873d9050689fbaceaa4c1b86e0be7553253dfb7854d
GET /DbnRJMVENGydXbhodLQxoWUB7BWRIHjpePx5JAAUyPTZwYAY+EDNmPypSPUs1U0RvXTAAE3QXNAAXdAB3DxArDGVIASgMPAEOIF09D1F7d2RARGwDYUYDIF81AQM6FGNeGj0UY15FeR9hS0cLFGNeAyBfZ1pRenN0XEQxB2VLRwsUY14GPxRiL0V5BH9eXW-wDYQkRKlo+S0YPA2FfRHkAYV9RewE3BwYsVz4WUXt3YF5BZwF3G0l4 HTTP/1.1
Host: d1f05vr3sjsuy7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ntedmanahegaz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 263
date: Wed, 29 Mar 2023 02:40:02 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b475a5f7d95ff68ca0dc588e3c9a3230.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: TGnpKaq2wBI8w_6V89uxagtQnKHKvj3JxKdS6mp4tcl5RnVq-Naesg==
X-Firefox-Spdy: h2
d1f05vr3sjsuy7.cloudfront.net/GUDg0Z3QzV1oBSyRRUFpNYAkGUkx2UkcIGiAFfFUcI2lANQdldnJQFTxvc0EAKlwJV1I8WVoASXZdWgRJYR5VAxZtDBITBD9TCQUBM0lXDQ4gTVpBATEFWQgOOVRYBlFifgFJRHUKBE8DOVZQCAMjHQZXGiQdBldFYBYEQkcSHQZXAzlWAlNRY3oRVUQoDg-BCRxIdBlcGJh0HJkVgDRpXXXUKBAARM1NbQkYWCgRWRGAJBFZRYghSDgY1XlsfUWJ+BVdBfggSEklh
54.192.98.55200 OK 9.8 kB URL HTTP/2 d1f05vr3sjsuy7.cloudfront.net/GUDg0Z3QzV1oBSyRRUFpNYAkGUkx2UkcIGiAFfFUcI2lANQdldnJQFTxvc0EAKlwJV1I8WVoASXZdWgRJYR5VAxZtDBITBD9TCQUBM0lXDQ4gTVpBATEFWQgOOVRYBlFifgFJRHUKBE8DOVZQCAMjHQZXGiQdBldFYBYEQkcSHQZXAzlWAlNRY3oRVUQoDg-BCRxIdBlcGJh0HJkVgDRpXXXUKBAARM1NbQkYWCgRWRGAJBFZRYghSDgY1XlsfUWJ+BVdBfggSEklh
IP 54.192.98.55:0
Hash 8b2e79e3e27df5bc4ecd0dc3486a0a2f
52e507b9bacf1133c486e130c2233003a9bd914b
952004db22e656a8032ed6e235d8ee7c4a08a623d7c845b3d37da76cf07a0647
GET /GUDg0Z3QzV1oBSyRRUFpNYAkGUkx2UkcIGiAFfFUcI2lANQdldnJQFTxvc0EAKlwJV1I8WVoASXZdWgRJYR5VAxZtDBITBD9TCQUBM0lXDQ4gTVpBATEFWQgOOVRYBlFifgFJRHUKBE8DOVZQCAMjHQZXGiQdBldFYBYEQkcSHQZXAzlWAlNRY3oRVUQoDg-BCRxIdBlcGJh0HJkVgDRpXXXUKBAARM1NbQkYWCgRWRGAJBFZRYghSDgY1XlsfUWJ+BVdBfggSEklh HTTP/1.1
Host: d1f05vr3sjsuy7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ntedmanahegaz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 442
date: Wed, 29 Mar 2023 02:40:02 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b475a5f7d95ff68ca0dc588e3c9a3230.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: CM2fNJBU-SVRS7kLnTrKBnVyOvdpFKaPq4aNVGGwcZ9ioVACp-kwcg==
X-Firefox-Spdy: h2
d1f05vr3sjsuy7.cloudfront.net/5MGVtck5TCgMUcUQMCU93AF1dR3kWDx4dIEBYKwoCZicCBz0BMgETaEQfCU9+FgkMHCkNQwgcLQ1USxMqUlhZVDpACgZPLEUGHBEkShUYHGhFBFAfIUoMAR4vFVcrR2AAQF9CZkcMAxYhRxZIQH5eEUhAfgFVQ0JrAydIQH5HDANEehVWL1d8AB1bRmsDJ0-hAfkITSEEPAVVYXH4ZQF9CKVUGBh1rAiNfQn8AVVxCfxVXXRQnQgALHTYVVytDfgVLXVQ7DVQ
54.192.98.55200 OK 628 B URL HTTP/2 d1f05vr3sjsuy7.cloudfront.net/5MGVtck5TCgMUcUQMCU93AF1dR3kWDx4dIEBYKwoCZicCBz0BMgETaEQfCU9+FgkMHCkNQwgcLQ1USxMqUlhZVDpACgZPLEUGHBEkShUYHGhFBFAfIUoMAR4vFVcrR2AAQF9CZkcMAxYhRxZIQH5eEUhAfgFVQ0JrAydIQH5HDANEehVWL1d8AB1bRmsDJ0-hAfkITSEEPAVVYXH4ZQF9CKVUGBh1rAiNfQn8AVVxCfxVXXRQnQgALHTYVVytDfgVLXVQ7DVQ
IP 54.192.98.55:0
File type ASCII text, with very long lines (856), with no line terminators
Hash 078c9a467f0e6247c890edc1e852e4c8
710df182991ad2180c49b50273a63ebba5b05158
6bafc99f1594d203a4361d00dd23ce8208842f941aab5aa0d5386310e677272a
GET /5MGVtck5TCgMUcUQMCU93AF1dR3kWDx4dIEBYKwoCZicCBz0BMgETaEQfCU9+FgkMHCkNQwgcLQ1USxMqUlhZVDpACgZPLEUGHBEkShUYHGhFBFAfIUoMAR4vFVcrR2AAQF9CZkcMAxYhRxZIQH5eEUhAfgFVQ0JrAydIQH5HDANEehVWL1d8AB1bRmsDJ0-hAfkITSEEPAVVYXH4ZQF9CKVUGBh1rAiNfQn8AVVxCfxVXXRQnQgALHTYVVytDfgVLXVQ7DVQ HTTP/1.1
Host: d1f05vr3sjsuy7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ntedmanahegaz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 628
date: Wed, 29 Mar 2023 02:40:02 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b475a5f7d95ff68ca0dc588e3c9a3230.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: ZtfLm8g2aSzwZo3xdgRf4HBp1UJoOsr0rxKtVLMP_L9TMR90MjW3Uw==
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.167586011844437
131.153.88.95200 OK 23 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.167586011844437
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
Hash 6a56e34782e429aa4054346c87c2ff58
0486740ac3d02d4a6c2aac9cc117ca02208c7ffd
e36237a698e8219e122ebf4fb18e157ff09b1ce44c97206c2e6f4332d2eb12c4
GET /stream?room=kisimoto_key&f=0.167586011844437 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: image/jpeg
content-length: 23375
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.07902321698602877
131.153.88.95200 OK 28 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.07902321698602877
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 5619291010ce78f9f653b76b65855acb
889bc728450012c2e081079a51809c70ac7b697c
d674f6b01527b5fdb14add21542224e4dad86cfc68772788722857be72c9e948
GET /stream?room=aya_hitakayama&f=0.07902321698602877 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: image/jpeg
content-length: 27874
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
limurol.com/ssp/req/1941940/?pb=e13240d9f0b6b553caff797b7e5f02e91680064801&psp=ykIVH_edGjImVME6zt8E1YBE_t_A6UVufLB6R7Kzk1OBuJH9RPUdSNuLyucGDrHglzBBy8cRyXN8Jmlp9OA-iQXjwuwDwRVsoQ3B1nDVp30eK3BoPO-SYAxkYEj9EXcut0Vjs-WKBlTyg-4B8hwsrwrxFrF6qisVNiRJY4pqYGx1ZcmppKCUfFe7YKKDDqbQtlRT132efHNWzynUYROCA8genXcnNDKkqHWU9NMkFMAA74WC3y6q1-0zAdhlXHqEi4wSKqcC2emf7gM0N_-1BI3moVeNLSkhwmyo0wfY4cdOwL6zKc9ejYzXQpxREOks17-fJ6VN2ZESCZmyZ-5DDp_G6GVO3FNT_77xNWqfDx1UaQ7Dk3uod8ktTwfw4GZJFhdEk2baaydDk6JRjnYLIp-eyh6BOZav1-8sdfIrJNT1zN066icLO3BfDN19oVb4aHM3P2gH1sjgBGoSap0iKmb6r_HjjMx0k3qJfQzyanUEABZ0RuB326GRFhCB9jE556Nl1uY7tHelHe4gZpx1_si1vCsC-vupl5WzCEZWJjlCFcESv8IOEUBNRdSnm93V8S2Neu50_X7bqcKRgp-Q5xrOI5NIHWfEug3gQP405hUXEL7zkuk0TF2S5k_GS37bb6mir9ZXEzhVxUoJQVHq_JSWhoLVz6j4QFz8c7I1CcFqvCJyzM04SHCJVbX8n2JwX8sb56K7DnQcwYOPkhsI13A10LGGg5dPQxiVAWopNE4hLxo0shXYYJg-Y60ILRkHlSo16-i3o7Wo7yBjrb7XnWTNE8ieiQntORj8m1S4ZdXu3DkvoWwhw9ZAzrnA&cb=_clsqi0miuy2kme1gdqpidw&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1941940/?pb=e13240d9f0b6b553caff797b7e5f02e91680064801&psp=ykIVH_edGjImVME6zt8E1YBE_t_A6UVufLB6R7Kzk1OBuJH9RPUdSNuLyucGDrHglzBBy8cRyXN8Jmlp9OA-iQXjwuwDwRVsoQ3B1nDVp30eK3BoPO-SYAxkYEj9EXcut0Vjs-WKBlTyg-4B8hwsrwrxFrF6qisVNiRJY4pqYGx1ZcmppKCUfFe7YKKDDqbQtlRT132efHNWzynUYROCA8genXcnNDKkqHWU9NMkFMAA74WC3y6q1-0zAdhlXHqEi4wSKqcC2emf7gM0N_-1BI3moVeNLSkhwmyo0wfY4cdOwL6zKc9ejYzXQpxREOks17-fJ6VN2ZESCZmyZ-5DDp_G6GVO3FNT_77xNWqfDx1UaQ7Dk3uod8ktTwfw4GZJFhdEk2baaydDk6JRjnYLIp-eyh6BOZav1-8sdfIrJNT1zN066icLO3BfDN19oVb4aHM3P2gH1sjgBGoSap0iKmb6r_HjjMx0k3qJfQzyanUEABZ0RuB326GRFhCB9jE556Nl1uY7tHelHe4gZpx1_si1vCsC-vupl5WzCEZWJjlCFcESv8IOEUBNRdSnm93V8S2Neu50_X7bqcKRgp-Q5xrOI5NIHWfEug3gQP405hUXEL7zkuk0TF2S5k_GS37bb6mir9ZXEzhVxUoJQVHq_JSWhoLVz6j4QFz8c7I1CcFqvCJyzM04SHCJVbX8n2JwX8sb56K7DnQcwYOPkhsI13A10LGGg5dPQxiVAWopNE4hLxo0shXYYJg-Y60ILRkHlSo16-i3o7Wo7yBjrb7XnWTNE8ieiQntORj8m1S4ZdXu3DkvoWwhw9ZAzrnA&cb=_clsqi0miuy2kme1gdqpidw&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1941940/?pb=e13240d9f0b6b553caff797b7e5f02e91680064801&psp=ykIVH_edGjImVME6zt8E1YBE_t_A6UVufLB6R7Kzk1OBuJH9RPUdSNuLyucGDrHglzBBy8cRyXN8Jmlp9OA-iQXjwuwDwRVsoQ3B1nDVp30eK3BoPO-SYAxkYEj9EXcut0Vjs-WKBlTyg-4B8hwsrwrxFrF6qisVNiRJY4pqYGx1ZcmppKCUfFe7YKKDDqbQtlRT132efHNWzynUYROCA8genXcnNDKkqHWU9NMkFMAA74WC3y6q1-0zAdhlXHqEi4wSKqcC2emf7gM0N_-1BI3moVeNLSkhwmyo0wfY4cdOwL6zKc9ejYzXQpxREOks17-fJ6VN2ZESCZmyZ-5DDp_G6GVO3FNT_77xNWqfDx1UaQ7Dk3uod8ktTwfw4GZJFhdEk2baaydDk6JRjnYLIp-eyh6BOZav1-8sdfIrJNT1zN066icLO3BfDN19oVb4aHM3P2gH1sjgBGoSap0iKmb6r_HjjMx0k3qJfQzyanUEABZ0RuB326GRFhCB9jE556Nl1uY7tHelHe4gZpx1_si1vCsC-vupl5WzCEZWJjlCFcESv8IOEUBNRdSnm93V8S2Neu50_X7bqcKRgp-Q5xrOI5NIHWfEug3gQP405hUXEL7zkuk0TF2S5k_GS37bb6mir9ZXEzhVxUoJQVHq_JSWhoLVz6j4QFz8c7I1CcFqvCJyzM04SHCJVbX8n2JwX8sb56K7DnQcwYOPkhsI13A10LGGg5dPQxiVAWopNE4hLxo0shXYYJg-Y60ILRkHlSo16-i3o7Wo7yBjrb7XnWTNE8ieiQntORj8m1S4ZdXu3DkvoWwhw9ZAzrnA&cb=_clsqi0miuy2kme1gdqpidw&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Cookie: UID=2303282140b625fd0648164d2e94d23fb9ba
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 1.2 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be8ac0cabbe2d65e55cf717fbb292421
5f04c8e03f63228028b2a18489a9a4534e210114
bcd1b2d02e1d0e1f4aa6381763f22373759f0c8ba2a6b7aec377207f27328937
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2B8B45AB6E16A8EAF61BCCE6F50364D90F7211071094C27985EAD71993B98FBF"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4064
Expires: Wed, 29 Mar 2023 03:47:46 GMT
Date: Wed, 29 Mar 2023 02:40:02 GMT
Connection: keep-alive
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
142.250.74.45302 Found 590 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP 142.250.74.45:0
Hash d544d2f8874b0f784fa19c52407b590e
34f69d4939eaff5eb966f1a984df03ee72594ed6
f229a3e9c76d754389d7cdd69c55fff1348ecd83619721cf76e45ec7294c3357
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 29 Mar 2023 02:40:01 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AQMjQ7TnoHEoCa29pzGwMQWsYOg3cvOrxUo_HVNbocAr4-C0CcGVQgFDiSNexwCbrlNm9I4o1MGGIQ
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-p2dMWHy1lADJzYe-_lWy9A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
content-type: application/binary
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
set-cookie: __Host-GAPS=1:cvEGlydiKSWo_i1-fQXX3mhizcXcbw:Laje_2aziF8H770i; Expires=Fri, 28-Mar-2025 02:40:01 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
6.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dood.re
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://dood.re
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4bef24c24b4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js-agent.newrelic.com/lazy-loader.37550b27-1228.min.js
151.101.66.137200 OK 415 B URL HTTP/2 js-agent.newrelic.com/lazy-loader.37550b27-1228.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (928), with no line terminators
Hash 5c27b117169d51b62811508a19428588
556e43e62196a24cce7eccf1ef69595759a9fbf2
c6f60726478aad438071daa75444fa323154769c9e691b135702483bf7c2a157
GET /lazy-loader.37550b27-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8doJj3ypzZDXTnbuEWGf9kkXHKLrI1CkcUoZIsWBpS0jLvtDZW9CMKuX9KRDn0F/1Ug/vSYTIkg=
x-amz-request-id: MV5VZ4WJZ8M58E8Z
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "b6eaf4dad9b3e3384b0e9366ff9d0080"
x-amz-server-side-encryption: AES256
x-amz-version-id: veSIorK788CursSmiZNo6DAf4uBLqr8D
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 301
x-timer: S1680057603.947766,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 415
X-Firefox-Spdy: h2
js-agent.newrelic.com/async-api.61caf4d9-1228.min.js
151.101.66.137200 OK 1.1 kB URL HTTP/2 js-agent.newrelic.com/async-api.61caf4d9-1228.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (2127), with no line terminators
Hash 606b062f028a46f78399bb7d44e1bf9a
0db86185b54254f268bf63ad7eab2711e197396a
7e10af14b845f8d8bf4246edf5a58ad7962b843acee6dcf7ab358fa81b0ad763
GET /async-api.61caf4d9-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4qHimWNFjregNO0v24Uwy0VSu4TmAzYd49DPoEWeovYwE4PJjf1d38C588/3E3n3tidD+bqDd6g=
x-amz-request-id: 2YKDJKAR9W4YXCRZ
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "5a15fa90d5c9cf59729e937de488758b"
x-amz-server-side-encryption: AES256
x-amz-version-id: J0GluopGath26np.0jFNgGyfwhEN0LgG
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 506
x-timer: S1680057603.954455,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1122
X-Firefox-Spdy: h2
wapka.xyz/community-blog/?q=1
173.212.225.42200 OK 363 B URL HTTP/1.1 wapka.xyz/community-blog/?q=1
IP 173.212.225.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2fa2893ee28c6da9349778a2adaffaab
76e9a04e79c82a0b329ab8d0cc1e33a4d563327d
b962000f4609af7716de60640a64e5f2d6da2d4a9e09c12ae103f05a9b5f88e3
GET /community-blog/?q=1 HTTP/1.1
Host: wapka.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:40:02 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 363
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c152cddfe31a89d99e0b675646a07188
c1d1e9ca24fb2339c0e9e4b8ffad4d8151b2604b
e1a300bb276b0edd32821c20ccd37a4fb0e32504827644d51560a4847db29dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E1A300BB276B0EDD32821C20CCD37A4FB0E32504827644D51560A4847DB29DCE"
Last-Modified: Sun, 26 Mar 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7282
Expires: Wed, 29 Mar 2023 04:41:24 GMT
Date: Wed, 29 Mar 2023 02:40:02 GMT
Connection: keep-alive
4.adsco.re/
162.252.214.5200 OK 32 kB IP 162.252.214.5:0
Hash d861ca71ae85c59c7ecfb7a4374c17f2
33109a885cd6e0886bd978e8cfc6dfc9dcb47e25
8f8fdbef8e3fb64ab7678aaf8b3dd9934beb88d060dc15d8dc7461daeb0f77a8
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dood.re
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:40:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://dood.re
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
tmff8zgdfixz.l4.adsco.re/
185.200.118.90200 OK 0 B URL HTTP/1.1 tmff8zgdfixz.l4.adsco.re/
IP 185.200.118.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: tmff8zgdfixz.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://dood.re
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:40:03 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.6606809659359758
131.153.88.95200 OK 23 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.6606809659359758
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 3d24d91371657dfc9244cc39cd630471
b91ff518b79d130804954ed1dce316ae3fc39ab0
847a0df7e158166ca78e767ca74409056af2d78b9fdd3f472e2f03563f174563
GET /stream?room=kisimoto_key&f=0.6606809659359758 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: image/jpeg
content-length: 22948
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.14393259071828401
131.153.88.95200 OK 29 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.14393259071828401
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 38e319ad1185ecd807625e5c1c4a9a01
b55a4f8e079bb225ddfc5e06f71726ed8b12aa81
33e272f44ba12f8fce678830b1b7b3fdf00f430ee4ff5ddd0cff2e11a7db8b68
GET /stream?room=aya_hitakayama&f=0.14393259071828401 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: image/jpeg
content-length: 29198
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
limurol.com/ssp/req/1941940/?pb=e13240d9f0b6b553caff797b7e5f02e91680064801&psp=ykIVH_edGjImVME6zt8E1YBE_t_A6UVufLB6R7Kzk1OBuJH9RPUdSNuLyucGDrHglzBBy8cRyXN8Jmlp9OA-iQXjwuwDwRVsoQ3B1nDVp30eK3BoPO-SYAxkYEj9EXcut0Vjs-WKBlTyg-4B8hwsrwrxFrF6qisVNiRJY4pqYGx1ZcmppKCUfFe7YKKDDqbQtlRT132efHNWzynUYROCA8genXcnNDKkqHWU9NMkFMAA74WC3y6q1-0zAdhlXHqEi4wSKqcC2emf7gM0N_-1BI3moVeNLSkhwmyo0wfY4cdOwL6zKc9ejYzXQpxREOks17-fJ6VN2ZESCZmyZ-5DDp_G6GVO3FNT_77xNWqfDx1UaQ7Dk3uod8ktTwfw4GZJFhdEk2baaydDk6JRjnYLIp-eyh6BOZav1-8sdfIrJNT1zN066icLO3BfDN19oVb4aHM3P2gH1sjgBGoSap0iKmb6r_HjjMx0k3qJfQzyanUEABZ0RuB326GRFhCB9jE556Nl1uY7tHelHe4gZpx1_si1vCsC-vupl5WzCEZWJjlCFcESv8IOEUBNRdSnm93V8S2Neu50_X7bqcKRgp-Q5xrOI5NIHWfEug3gQP405hUXEL7zkuk0TF2S5k_GS37bb6mir9ZXEzhVxUoJQVHq_JSWhoLVz6j4QFz8c7I1CcFqvCJyzM04SHCJVbX8n2JwX8sb56K7DnQcwYOPkhsI13A10LGGg5dPQxiVAWopNE4hLxo0shXYYJg-Y60ILRkHlSo16-i3o7Wo7yBjrb7XnWTNE8ieiQntORj8m1S4ZdXu3DkvoWwhw9ZAzrnA&cb=_clsqi0miuy2kme1gdqpidw&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1941940/?pb=e13240d9f0b6b553caff797b7e5f02e91680064801&psp=ykIVH_edGjImVME6zt8E1YBE_t_A6UVufLB6R7Kzk1OBuJH9RPUdSNuLyucGDrHglzBBy8cRyXN8Jmlp9OA-iQXjwuwDwRVsoQ3B1nDVp30eK3BoPO-SYAxkYEj9EXcut0Vjs-WKBlTyg-4B8hwsrwrxFrF6qisVNiRJY4pqYGx1ZcmppKCUfFe7YKKDDqbQtlRT132efHNWzynUYROCA8genXcnNDKkqHWU9NMkFMAA74WC3y6q1-0zAdhlXHqEi4wSKqcC2emf7gM0N_-1BI3moVeNLSkhwmyo0wfY4cdOwL6zKc9ejYzXQpxREOks17-fJ6VN2ZESCZmyZ-5DDp_G6GVO3FNT_77xNWqfDx1UaQ7Dk3uod8ktTwfw4GZJFhdEk2baaydDk6JRjnYLIp-eyh6BOZav1-8sdfIrJNT1zN066icLO3BfDN19oVb4aHM3P2gH1sjgBGoSap0iKmb6r_HjjMx0k3qJfQzyanUEABZ0RuB326GRFhCB9jE556Nl1uY7tHelHe4gZpx1_si1vCsC-vupl5WzCEZWJjlCFcESv8IOEUBNRdSnm93V8S2Neu50_X7bqcKRgp-Q5xrOI5NIHWfEug3gQP405hUXEL7zkuk0TF2S5k_GS37bb6mir9ZXEzhVxUoJQVHq_JSWhoLVz6j4QFz8c7I1CcFqvCJyzM04SHCJVbX8n2JwX8sb56K7DnQcwYOPkhsI13A10LGGg5dPQxiVAWopNE4hLxo0shXYYJg-Y60ILRkHlSo16-i3o7Wo7yBjrb7XnWTNE8ieiQntORj8m1S4ZdXu3DkvoWwhw9ZAzrnA&cb=_clsqi0miuy2kme1gdqpidw&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1941940/?pb=e13240d9f0b6b553caff797b7e5f02e91680064801&psp=ykIVH_edGjImVME6zt8E1YBE_t_A6UVufLB6R7Kzk1OBuJH9RPUdSNuLyucGDrHglzBBy8cRyXN8Jmlp9OA-iQXjwuwDwRVsoQ3B1nDVp30eK3BoPO-SYAxkYEj9EXcut0Vjs-WKBlTyg-4B8hwsrwrxFrF6qisVNiRJY4pqYGx1ZcmppKCUfFe7YKKDDqbQtlRT132efHNWzynUYROCA8genXcnNDKkqHWU9NMkFMAA74WC3y6q1-0zAdhlXHqEi4wSKqcC2emf7gM0N_-1BI3moVeNLSkhwmyo0wfY4cdOwL6zKc9ejYzXQpxREOks17-fJ6VN2ZESCZmyZ-5DDp_G6GVO3FNT_77xNWqfDx1UaQ7Dk3uod8ktTwfw4GZJFhdEk2baaydDk6JRjnYLIp-eyh6BOZav1-8sdfIrJNT1zN066icLO3BfDN19oVb4aHM3P2gH1sjgBGoSap0iKmb6r_HjjMx0k3qJfQzyanUEABZ0RuB326GRFhCB9jE556Nl1uY7tHelHe4gZpx1_si1vCsC-vupl5WzCEZWJjlCFcESv8IOEUBNRdSnm93V8S2Neu50_X7bqcKRgp-Q5xrOI5NIHWfEug3gQP405hUXEL7zkuk0TF2S5k_GS37bb6mir9ZXEzhVxUoJQVHq_JSWhoLVz6j4QFz8c7I1CcFqvCJyzM04SHCJVbX8n2JwX8sb56K7DnQcwYOPkhsI13A10LGGg5dPQxiVAWopNE4hLxo0shXYYJg-Y60ILRkHlSo16-i3o7Wo7yBjrb7XnWTNE8ieiQntORj8m1S4ZdXu3DkvoWwhw9ZAzrnA&cb=_clsqi0miuy2kme1gdqpidw&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Cookie: UID=2303282140b625fd0648164d2e94d23fb9ba
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
js-agent.newrelic.com/spa-aggregate.7222cbb6-1228.min.js
151.101.66.137200 OK 6.7 kB URL HTTP/2 js-agent.newrelic.com/spa-aggregate.7222cbb6-1228.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (18769), with no line terminators
Hash 5deb666ca97bdb7ea6a3678df0f93046
10e6d4b738ac831808f181174a5d47e6714f0c66
86863712a2d1bccf1fb256cebd5a11d38fd15a4f8a579f062fa067c99fd2a9d3
GET /spa-aggregate.7222cbb6-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 02ZRvWQSsN7ybgz1cY3Zukb2GtJMJ5tGgboRn1skksUpKHUfjBWKaKNSwurVz5txcdRBseQ+rYI=
x-amz-request-id: A782FPCSK4KTQ306
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "5d22b006d12752c6dafe1b5f41318762"
x-amz-server-side-encryption: AES256
x-amz-version-id: 8nTKqPmpPpJMnC7V_9l7a.Xfo0rf._qG
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 279
x-timer: S1680057603.098587,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 6663
X-Firefox-Spdy: h2
js-agent.newrelic.com/862.e74e95d2-1228.min.js
151.101.66.137200 OK 3.3 kB URL HTTP/2 js-agent.newrelic.com/862.e74e95d2-1228.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (8095), with no line terminators
Hash 2c6d67d2bd7aa1f6c08a76954d047c3c
5daade1c47bb6f50b2113b517b12d44b13931e83
7126244a7f6f3d790033e16d8ccf52d4d41f5f4b98168e9efae681f220899149
GET /862.e74e95d2-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ODGthdKEh8F/R/deEYOW1Ebm5p9rPL88/GI7HSz7IV4BKMngJo2h5cORVS61qEV/RpFxp2U2dMI=
x-amz-request-id: YJ7J044SFE2WJ1F3
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "ff02f82193fd2ec047cb131aa65a0dd8"
x-amz-server-side-encryption: AES256
x-amz-version-id: gDL8cpdspH3IxcZPeLUXHRvPqJEXPWmp
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 1320
x-timer: S1680057603.104674,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3271
X-Firefox-Spdy: h2
js-agent.newrelic.com/page_view_event-aggregate.46b69e61-1228.min.js
151.101.66.137200 OK 1.7 kB URL HTTP/2 js-agent.newrelic.com/page_view_event-aggregate.46b69e61-1228.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (3842), with no line terminators
Hash d703d7154e49d9a1ce07d4dd2b226cb7
37cadee9462cfff37a74fbcb55936a45b64e4e48
8f905564e9fb69c42bf6f862883603849a4b44c64725e0795556d1dc5f5ea084
GET /page_view_event-aggregate.46b69e61-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ZW7hZ/SVYpBomWXp9PbVUDX2IEjZH01//6PSPu4gw2lGZAq/qbtgt5IirzqSXe1xSfK6eAc61oQ=
x-amz-request-id: YJ7KVR4JV3MXV4SY
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "75e56b9529bc3582d1ee120d4a1d49e9"
x-amz-server-side-encryption: AES256
x-amz-version-id: KBeqQAET2qZgk2U9E4XZJmVRm1HOq8Rk
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 1314
x-timer: S1680057603.104792,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1729
X-Firefox-Spdy: h2
js-agent.newrelic.com/page_view_timing-aggregate.ced8c919-1228.min.js
151.101.66.137200 OK 2.2 kB URL HTTP/2 js-agent.newrelic.com/page_view_timing-aggregate.ced8c919-1228.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (5426), with no line terminators
Hash c75a5acd79c2d258696d115cb843a372
d6e6ca6e03dddd29d5bb612b7894261a8b445a98
0de60dedc16b420a590189f7e3bf8b8bdadfa33b6419834db2ffa3fa6b7e69fd
GET /page_view_timing-aggregate.ced8c919-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: GB3dqnW6PpnOi3rUocoggX/qYb28eMXhMVEm8cDOh0LjJhHU9idywolI8WwfDnrXVNPyQAmCvCc=
x-amz-request-id: YJ7T5DYXGA9D7XKC
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "ddb946a277f5c644d555e8e1bcf23b77"
x-amz-server-side-encryption: AES256
x-amz-version-id: ktDXvd_Dmea2UVJNoozUGAPGaGpVn1ZV
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 1318
x-timer: S1680057603.105214,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2225
X-Firefox-Spdy: h2
js-agent.newrelic.com/metrics-aggregate.56d9a464-1228.min.js
151.101.66.137200 OK 1.8 kB URL HTTP/2 js-agent.newrelic.com/metrics-aggregate.56d9a464-1228.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (4128), with no line terminators
Hash f84674d70f2da6cf2475d96cb7bd17a3
ab21646e21c60f5434becfdddbdc7ed93dc37675
bdffea2371721acbad0ce69cbe57a6fda503fd0e4a300918aa3d8da4a598d65f
GET /metrics-aggregate.56d9a464-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 9tYWuYw8BkKxP0WzUFSHj0hhJ/h+lb0pIcLzT1iE87nHv7MFgWZtzLIC3BjQ+f7xSwwC6PN3GIA=
x-amz-request-id: YJ7K11MQHVY5FB6B
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "04475d81e10a8c7213d39d14e581c599"
x-amz-server-side-encryption: AES256
x-amz-version-id: cAHIZ8FQmEPf2jyMvAgXJXAVQ_Jrw1XM
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 1084
x-timer: S1680057603.105475,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1751
X-Firefox-Spdy: h2
js-agent.newrelic.com/jserrors-aggregate.64f61365-1228.min.js
151.101.66.137200 OK 2.9 kB URL HTTP/2 js-agent.newrelic.com/jserrors-aggregate.64f61365-1228.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (7660), with no line terminators
Hash e460383ef942d4368147befed4756575
97c96dbd480b1822fea8928db812da692d587d55
a4c77314269906cfdfc84678035cae17f03e9b836d59de9f2a1f25c943c3a030
GET /jserrors-aggregate.64f61365-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: tR6AP7M/xBTQ5hWQVBwrTCyXdK10Vjdane+TQtvvTV3AmWRU7qxDmXE4ddAk0NgMSj6Hij2M49g=
x-amz-request-id: A78E2NWVZA3DYN8N
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "06e9895d210a73225fa4b9a47e6e9c5a"
x-amz-server-side-encryption: AES256
x-amz-version-id: 7blonOgQSCw8rfW7sCjHyJm0L6QYtp4X
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 513
x-timer: S1680057603.105659,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2938
X-Firefox-Spdy: h2
js-agent.newrelic.com/ajax-aggregate.e6085a9a-1228.min.js
151.101.66.137200 OK 2.4 kB URL HTTP/2 js-agent.newrelic.com/ajax-aggregate.e6085a9a-1228.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (5165), with no line terminators
Hash 02911d7d1cb7fe28b7b2bc1acf9ad6aa
d83bdd4826e1cf5c5bfd6f3aa67dd07ff20c082a
239bc00b7961a0be6e7440f295cea69127a37649aecb3ec202a24e4ceba46e37
GET /ajax-aggregate.e6085a9a-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: G1LX3c31FW5dBULh9Yx0J6aZ9c3UUAbLs0SoI5436GaYvqy6migZ0Os9ZSWOX/1Eosj1eXoIeSg=
x-amz-request-id: A781Y95FH37QS1G7
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "61554094cde63c6eec39f630c32a828f"
x-amz-server-side-encryption: AES256
x-amz-version-id: Z4Nlcg06uCyBNWwjTtAHDtnTc5kadigL
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 724
x-timer: S1680057603.105773,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2365
X-Firefox-Spdy: h2
js-agent.newrelic.com/session_trace-aggregate.ada8b15b-1228.min.js
151.101.66.137200 OK 3.7 kB URL HTTP/2 js-agent.newrelic.com/session_trace-aggregate.ada8b15b-1228.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (9901), with no line terminators
Hash 6f91df6fc998fa88f468eaa1ebd3155d
b6b7e5cf4da4aceab02cadf0a47b02868b97fcaf
a795bf965e8d8d2ffa8b93495f82a337bc23815f4fc3c54a91e13541db672348
GET /session_trace-aggregate.ada8b15b-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: +X0DZKoAxksb0r5UTN80+bg7cK+bR3t91LjZWIk+6PB+yWSBmR5u3XcsQzvR9kjG9dDVIAp9/KQ=
x-amz-request-id: A78BCKN4B7HQ2WB3
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "69d309900c2caeef33af662ddf91affc"
x-amz-server-side-encryption: AES256
x-amz-version-id: CejlNuOfipmDjtAs.g7oae_1BhJQzddr
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 730
x-timer: S1680057603.105951,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3732
X-Firefox-Spdy: h2
js-agent.newrelic.com/page_action-aggregate.1ef08094-1228.min.js
151.101.66.137200 OK 1.2 kB URL HTTP/2 js-agent.newrelic.com/page_action-aggregate.1ef08094-1228.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (2766), with no line terminators
Hash 266c07f5762c0bc8bd699ea3321ea4b2
7753ab73650177a18565e14f64eb9164e09145b6
fd2c0b6ec6fe04fcc0fd0af6689e8bd3204c7f249d0b26a5d131e4985d9b78d3
GET /page_action-aggregate.1ef08094-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ncWrXTNXSvf3BhFGCARp2bc5UxWeuEslvIOsQV9ubBGoK2hGBZ21zXBn+Ly3zn7JqtuMnYA1z5M=
x-amz-request-id: A780TYPXZJNN5ENK
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "9c1563b1437a04e5cd75285b2f4bffb0"
x-amz-server-side-encryption: AES256
x-amz-version-id: ZC9wFZ_QkK2B08VVIX3wzqk3DACA4ZFm
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 731
x-timer: S1680057603.106194,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1202
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e19e7ae3b7d1ffbcd7ab25777f91e0df
1e8290ce881dce150849c1863620e0c426bd30eb
e08227903eb1191994dcd343220e9e2dc48bb94946cb6c676630c24ae8ec7ae8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E08227903EB1191994DCD343220E9E2DC48BB94946CB6C676630C24AE8EC7AE8"
Last-Modified: Sun, 26 Mar 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7408
Expires: Wed, 29 Mar 2023 04:43:31 GMT
Date: Wed, 29 Mar 2023 02:40:03 GMT
Connection: keep-alive
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.44504594774494466
131.153.88.95200 OK 24 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.44504594774494466
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash f81f3413a7946f902a3b7b48b088f3e4
66da2ec7e8e23577b9e81cb8e4533ef647c1a731
84622c2997a393a8d9abcfca6f9ae617e234fc8c949d933b8528726f3b7574ea
GET /stream?room=kisimoto_key&f=0.44504594774494466 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: image/jpeg
content-length: 23502
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
pt.ctsdwm.com/live-stream/?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&forcedPerformers%5B0%5D=YourDaniella&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site
93.93.51.191200 OK 34 kB URL HTTP/2 pt.ctsdwm.com/live-stream/?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&forcedPerformers%5B0%5D=YourDaniella&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site
IP 93.93.51.191:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
Hash 33a93353ce30e9e651be782224d776a3
b84960b4629fea44b88b7c1f8a3d5b0746b14cbe
c8433ba6bdf6fd96516f62b160485914817deebe50863b16a799b3f3dca52fff
GET /live-stream/?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&forcedPerformers%5B0%5D=YourDaniella&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site HTTP/1.1
Host: pt.ctsdwm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache
date: Wed, 29 Mar 2023 02:40:02 GMT
server: unknown
set-cookie: psui=a59f007fbf3384ccc33cc586d5d348f0; Path=/; Expires=Fri, 28-Apr-23 02:40:02 GMT; SameSite=None; Secure
content-encoding: gzip
X-Firefox-Spdy: h2
wapka.xyz/community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html
173.212.225.42200 OK 964 B URL HTTP/1.1 wapka.xyz/community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html
IP 173.212.225.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 78d8f0b672d9b0c903b82cb6dd246f56
6c0d27b4488472bb8be5e5d9508b4e0b071d5792
dd65bd75ad87e7e97d4e66f26fa7d727ed3e895985771d5f5b36d237e8109f91
POST /community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html HTTP/1.1
Host: wapka.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 8
Origin: https://wapka.xyz
Connection: keep-alive
Referer: https://wapka.xyz/community-blog/?q=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:40:03 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 964
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9149a9c9b4ab79be686275a3a6c55751
f255d19118b1f74bdb85864f084ad7d11b6bdc42
b681fc73bc9bd51e408e8cec7a7e8c179a67783b37059b5c67a66060a35c9b8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B681FC73BC9BD51E408E8CEC7A7E8C179A67783B37059B5C67A66060A35C9B8F"
Last-Modified: Sun, 26 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14128
Expires: Wed, 29 Mar 2023 06:35:31 GMT
Date: Wed, 29 Mar 2023 02:40:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9149a9c9b4ab79be686275a3a6c55751
f255d19118b1f74bdb85864f084ad7d11b6bdc42
b681fc73bc9bd51e408e8cec7a7e8c179a67783b37059b5c67a66060a35c9b8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B681FC73BC9BD51E408E8CEC7A7E8C179A67783B37059B5C67A66060A35C9B8F"
Last-Modified: Sun, 26 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14128
Expires: Wed, 29 Mar 2023 06:35:31 GMT
Date: Wed, 29 Mar 2023 02:40:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9149a9c9b4ab79be686275a3a6c55751
f255d19118b1f74bdb85864f084ad7d11b6bdc42
b681fc73bc9bd51e408e8cec7a7e8c179a67783b37059b5c67a66060a35c9b8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B681FC73BC9BD51E408E8CEC7A7E8C179A67783B37059B5C67A66060A35C9B8F"
Last-Modified: Sun, 26 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14128
Expires: Wed, 29 Mar 2023 06:35:31 GMT
Date: Wed, 29 Mar 2023 02:40:03 GMT
Connection: keep-alive
pt-static4.ptwmstcnt.com/npe/_common/script/adblock/advertisement-v183951.js
93.93.51.200200 OK 21 B URL HTTP/2 pt-static4.ptwmstcnt.com/npe/_common/script/adblock/advertisement-v183951.js
IP 93.93.51.200:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
File type ASCII text, with no line terminators
Hash 01c6e7ecb819ef28b0c9b962513a1596
1a49f493db7b91ed34a7040d36732352b9a5dc39
e97a9988dce8067f81f57557b349dd481e0335e75175179b6b01322be2ff13a5
GET /npe/_common/script/adblock/advertisement-v183951.js HTTP/1.1
Host: pt-static4.ptwmstcnt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: application/javascript
content-length: 21
last-modified: Tue, 28 Mar 2023 09:51:28 GMT
etag: "6422b8a0-15"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7e2d8156baac12231cc9cbfdefedacf1
62384d8842fb5b560ac39636bb519953e22dc664
ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash f6bb76ddbd2ec53026e2f9be686583c0
02c0ed4feb06e5aa02f7c28dd2644038435db0c5
02d43df9235f4923b2cb79af4f4a43dea77be6af9ffa4d296e19d267de448a74
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:40:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 08:10:08 GMT
Expires: Mon, 03 Apr 2023 08:10:07 GMT
Etag: "02c0ed4feb06e5aa02f7c28dd2644038435db0c5"
Cache-Control: max-age=451203,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7af4bef4eea9b4f3-OSL
bam.nr-data.net/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=3050&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/kisimoto_key/&ap=88&be=766&fe=1698&dc=892&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1680057622161,%22n%22:0,%22r%22:0,%22re%22:484,%22f%22:484,%22dn%22:484,%22dne%22:484,%22c%22:484,%22s%22:484,%22ce%22:484,%22rq%22:486,%22rp%22:732,%22rpe%22:751,%22dl%22:747,%22di%22:1588,%22ds%22:1657,%22de%22:1673,%22dc%22:2460,%22l%22:2460,%22le%22:2468%7D,%22navigation%22:%7B%22rc%22:2%7D%7D&fcp=2313&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAUJBFAFBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWCgsQDQ4JTVpmWgRIFkNOQRMPOVFaSkVDCxsCCgIQFhRbVE1UT1JWDEBPRhAPTVBmWAUTA1BOQRcKElxqXV4MUFAPQFlGAA5YQUxDA1BNBEwACw5EFRdLVBBEXBIWPAwMFU0XAxMCWVgVFxEGAhJcG1peDBMVQwARCxQVXEdmWAUTA0MDUlRbB10CChwCBl1YT1dUUgIUDQ1XVBwPAgFXVVBVAAQLV1gTFUMQBgIGFFxHGwtDWU0VEhBeTElaQE1YBFZYEwYGCk0RWEVSUE9CUBUHTEZPREtQSEQEQk0%2BDwYQCwldFwMTJnRtQ05BFBoSUVpXbhdUSxILDApBXBsGFwhDHRsUAzwABhBQVlxuB1BUCA4aRllEdkFRVBMTFUMXAjsHA09cWlQ%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%2BR1AFBww7DAhVTGUTWxFlQ1M/Rh5EFRdaUAxuTQAFQV5BFkxXVVgCExVDAQwIDBRmWFZVBBMDQw4KAwsSVFpdVEMdGxMNDAk8FU1UTUQSEwNDDgoSBkRESA%3D%3D&ja=%7B%22username%22:%22__anonymous__%22,%22enduser.id%22:%22anon_4p5p71546t%22,%22enduser.session%22:%223975858859%22,%22revision%22:%229065f486351d%22%7D&jsonp=NREUM.setToken
162.247.243.29200 OK 49 B URL HTTP/1.1 bam.nr-data.net/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=3050&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/kisimoto_key/&ap=88&be=766&fe=1698&dc=892&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1680057622161,%22n%22:0,%22r%22:0,%22re%22:484,%22f%22:484,%22dn%22:484,%22dne%22:484,%22c%22:484,%22s%22:484,%22ce%22:484,%22rq%22:486,%22rp%22:732,%22rpe%22:751,%22dl%22:747,%22di%22:1588,%22ds%22:1657,%22de%22:1673,%22dc%22:2460,%22l%22:2460,%22le%22:2468%7D,%22navigation%22:%7B%22rc%22:2%7D%7D&fcp=2313&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAUJBFAFBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWCgsQDQ4JTVpmWgRIFkNOQRMPOVFaSkVDCxsCCgIQFhRbVE1UT1JWDEBPRhAPTVBmWAUTA1BOQRcKElxqXV4MUFAPQFlGAA5YQUxDA1BNBEwACw5EFRdLVBBEXBIWPAwMFU0XAxMCWVgVFxEGAhJcG1peDBMVQwARCxQVXEdmWAUTA0MDUlRbB10CChwCBl1YT1dUUgIUDQ1XVBwPAgFXVVBVAAQLV1gTFUMQBgIGFFxHGwtDWU0VEhBeTElaQE1YBFZYEwYGCk0RWEVSUE9CUBUHTEZPREtQSEQEQk0%2BDwYQCwldFwMTJnRtQ05BFBoSUVpXbhdUSxILDApBXBsGFwhDHRsUAzwABhBQVlxuB1BUCA4aRllEdkFRVBMTFUMXAjsHA09cWlQ%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%2BR1AFBww7DAhVTGUTWxFlQ1M/Rh5EFRdaUAxuTQAFQV5BFkxXVVgCExVDAQwIDBRmWFZVBBMDQw4KAwsSVFpdVEMdGxMNDAk8FU1UTUQSEwNDDgoSBkRESA%3D%3D&ja=%7B%22username%22:%22__anonymous__%22,%22enduser.id%22:%22anon_4p5p71546t%22,%22enduser.session%22:%223975858859%22,%22revision%22:%229065f486351d%22%7D&jsonp=NREUM.setToken
IP 162.247.243.29:0
File type ASCII text, with no line terminators
Hash ada33e5b8877e743ff658bf4bfa1867c
5a78662243dac43c0ee48bcb7e05a536b84c2e38
dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82
GET /1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=3050&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/kisimoto_key/&ap=88&be=766&fe=1698&dc=892&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1680057622161,%22n%22:0,%22r%22:0,%22re%22:484,%22f%22:484,%22dn%22:484,%22dne%22:484,%22c%22:484,%22s%22:484,%22ce%22:484,%22rq%22:486,%22rp%22:732,%22rpe%22:751,%22dl%22:747,%22di%22:1588,%22ds%22:1657,%22de%22:1673,%22dc%22:2460,%22l%22:2460,%22le%22:2468%7D,%22navigation%22:%7B%22rc%22:2%7D%7D&fcp=2313&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAUJBFAFBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWCgsQDQ4JTVpmWgRIFkNOQRMPOVFaSkVDCxsCCgIQFhRbVE1UT1JWDEBPRhAPTVBmWAUTA1BOQRcKElxqXV4MUFAPQFlGAA5YQUxDA1BNBEwACw5EFRdLVBBEXBIWPAwMFU0XAxMCWVgVFxEGAhJcG1peDBMVQwARCxQVXEdmWAUTA0MDUlRbB10CChwCBl1YT1dUUgIUDQ1XVBwPAgFXVVBVAAQLV1gTFUMQBgIGFFxHGwtDWU0VEhBeTElaQE1YBFZYEwYGCk0RWEVSUE9CUBUHTEZPREtQSEQEQk0%2BDwYQCwldFwMTJnRtQ05BFBoSUVpXbhdUSxILDApBXBsGFwhDHRsUAzwABhBQVlxuB1BUCA4aRllEdkFRVBMTFUMXAjsHA09cWlQ%2BRUARB0FeQQJcRlJFDkEbTUAWBTwJSmpfUAxYVRhAWUY0D1dRVkYSExVDFwI7DBVmQ1xDElhWD0BZRlJWGxkbRABuWxMNFBcGFGZTWFwIXUBDWEEiChRcU1ZJQx0bFAM8BhEJTkZcQz5HXBMRCgsNRAMXCAFUHwlDTkERAjlKQUtYD1YbW0AuCxkPVVlYHlQfCUFKNA0NAlZCShEvZRlQUk1UWEZuXFcHVQoZGVRXX0MUTw8IAVQfCUhCJAEADVYaCwFQAQlQUlJEJQ9LUF9eGR4IUVdNVEFKG1JQRT5SVgwPChBBXBsMCQdUVw1ZVFBRUgIbGRtBAENYDBFBXkEdZRdTXghfZg4UBhYPB0BpGwtBbRtQPkFIQzobQVZEE20bW0I/RlUJCVdlE00RZUMBAgkTB1BSV21DCxk9QA8AOVJ0aRsdQW0bBQsQBQEKXGpKXhRfXT1AWUQ/RAhpGx1BbRsMDQENDwNrUF1YE1RaFT5BXkM6G1tcRwRDZUNOQzhBA1RXXFU%2BR1AFBww7DAhVTGUTWxFlQ1M/Rh5EFRdaUAxuTQAFQV5BFkxXVVgCExVDAQwIDBRmWFZVBBMDQw4KAwsSVFpdVEMdGxMNDAk8FU1UTUQSEwNDDgoSBkRESA%3D%3D&ja=%7B%22username%22:%22__anonymous__%22,%22enduser.id%22:%22anon_4p5p71546t%22,%22enduser.session%22:%223975858859%22,%22revision%22:%229065f486351d%22%7D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 49
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: text/javascript
cross-origin-resource-policy: cross-origin
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: *
x-served-by: cache-bma1637-BMA
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7e2d8156baac12231cc9cbfdefedacf1
62384d8842fb5b560ac39636bb519953e22dc664
ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
y577uags.dood.video/favicon.ico?i
162.19.19.62200 OK 15 kB URL HTTP/1.1 y577uags.dood.video/favicon.ico?i
IP 162.19.19.62:0
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 30d3656f43c817e38c3e7d70b2bfbdad
1aa43b43755e7cba5e145d0978517f7bedad7da6
a558a4796f60f07743027eec96b538b2e7758cca8c544ed796ff745837478555
GET /favicon.ico?i HTTP/1.1
Host: y577uags.dood.video
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 02:40:03 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 15406
Connection: keep-alive
Last-Modified: Sat, 29 Feb 2020 09:26:04 GMT
ETag: "3c2e-59fb38b06e300"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
tmff8zgdfixz.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 tmff8zgdfixz.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: tmff8zgdfixz.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://dood.re
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:40:03 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ac8d9cdf223e611b7f8416c986c1b2e
22410c6eb7ebc2e9ea54618ec5aca74fa46dbeaa
ad997ef489632d7cf36a034a50b1926463ef042bfe9064156514903b90d0e4a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD997EF489632D7CF36A034A50B1926463EF042BFE9064156514903B90D0E4A7"
Last-Modified: Sun, 26 Mar 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7268
Expires: Wed, 29 Mar 2023 04:41:11 GMT
Date: Wed, 29 Mar 2023 02:40:03 GMT
Connection: keep-alive
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.4173474039638587
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.4173474039638587
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 0165b4a1f3d6e0b2b7a5b016573b2800
1462f5d61629d90e6fa5c140616b46216c564c1a
f9b2f7606ccde8d9679dd5d59cbe844a6e1d8049b39c3748cea60dbbf3933eef
GET /stream?room=kisimoto_key&f=0.4173474039638587 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: image/jpeg
content-length: 22277
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/connect?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.eyJpYXQiOjE2ODAwNTc2MDMsImV4cCI6MTY4MDE0NDAwMy4wLCJ4LWFibHktY2FwYWJpbGl0eSI6IntcInJvb206dGlwX2FsZXJ0OjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cHVyY2hhc2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpmYW5jbHViOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bWVzc2FnZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcImdsb2JhbDpwdXNoX3NlcnZpY2VcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb21fYW5vbjpwcmVzZW5jZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cXVhbGl0eV91cGRhdGU6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpub3RpY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTplbnRlcl9sZWF2ZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnBhc3N3b3JkX3Byb3RlY3RlZDozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Byb21vdGVkOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Jldm9rZWQ6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpzdGF0dXM6M0REV0hQTDowXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnRpdGxlX2NoYW5nZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnNpbGVuY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpraWNrOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206dXBkYXRlOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206c2V0dGluZ3M6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl19IiwieC1hYmx5LWNsaWVudElkIjoicnBrZzI1N29maGQtYW5vbmFjZWI0OGI0LTFkMDQtNDAxZi04NjE5LTg2MjNkNjQwM2E3ZSJ9.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&stream=false&heartbeats=true&v=2&agent=ably-js%252F1.2.37%2520browser&remainPresentFor=0&rnd=9631167842891517
54.230.111.8200 OK 476 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/connect?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&stream=false&heartbeats=true&v=2&agent=ably-js%252F1.2.37%2520browser&remainPresentFor=0&rnd=9631167842891517
IP 54.230.111.8:0
File type JSON data\012- , ASCII text
Hash 51ed147269ec7627814a3be3614e070d
fddd86760d4ed4a668f8685c1f898ceeb83f1c06
4a069e22d022fe8ed0853ef19ff3a0008dce0351dede23f143aa8ed973fa2efd
GET /comet/connect?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.eyJpYXQiOjE2ODAwNTc2MDMsImV4cCI6MTY4MDE0NDAwMy4wLCJ4LWFibHktY2FwYWJpbGl0eSI6IntcInJvb206dGlwX2FsZXJ0OjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cHVyY2hhc2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpmYW5jbHViOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bWVzc2FnZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcImdsb2JhbDpwdXNoX3NlcnZpY2VcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb21fYW5vbjpwcmVzZW5jZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cXVhbGl0eV91cGRhdGU6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpub3RpY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTplbnRlcl9sZWF2ZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnBhc3N3b3JkX3Byb3RlY3RlZDozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Byb21vdGVkOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Jldm9rZWQ6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpzdGF0dXM6M0REV0hQTDowXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnRpdGxlX2NoYW5nZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnNpbGVuY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpraWNrOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206dXBkYXRlOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206c2V0dGluZ3M6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl19IiwieC1hYmx5LWNsaWVudElkIjoicnBrZzI1N29maGQtYW5vbmFjZWI0OGI0LTFkMDQtNDAxZi04NjE5LTg2MjNkNjQwM2E3ZSJ9.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&stream=false&heartbeats=true&v=2&agent=ably-js%252F1.2.37%2520browser&remainPresentFor=0&rnd=9631167842891517 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 476
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,X-Ably-Cluster,Server,X-Amz-Cf-Pop
date: Wed, 29 Mar 2023 02:40:03 GMT
vary: Origin
x-ably-cluster: production:highwebmedia
x-ably-serverid: frontend.41be.4.eu-central-1-A.i-01ba32a00371cd4b8.e913cCVigBMt6Y
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Y31Fy-vVU1QM45_VD2ble0EZMD0kN6uJKR-AhJtbMYmIxvEAUUlRpQ==
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.35039351668980334
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.35039351668980334
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash e7edb4ac31a438dd0cc8656311153fba
2909f3989ad1891b95dbbb5381169d2e9da804c7
977c84c4b8fd722c1d528e8a29606c2808830adfbf0fe3de31c248cef53cfa4f
GET /stream?room=aya_hitakayama&f=0.35039351668980334 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: image/jpeg
content-length: 29614
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
bam.nr-data.net/ins/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=3452&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/kisimoto_key/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAUJBFAFBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWCgsQDQ4JTVpmWgRIFkNOQRMPOVFaSkVDCxsCCgIQFhRbVE1UT1JWDEBPRhAPTVBmWAUTA1BOQRcKElxqXV4MUFAPQFlGAA5YQUxDA1BNBEwACw5EFRdLVBBEXBIWPAwMFU0XAxMCWVgVFxEGAhJcG1peDBMVQwARCxQVXEdmWAUTA0MDUlRbB10CChwCBl1YT1dUUgIUDQ1XVBwPAgFXVVBVAAQLV1gTFUMQBgIGFFxHGwtDWU0VEhBeTElaQE1YBFZYEwYGCk0RWEVSUE9CUBUHTEZPREtQSEQEQk0%2BDwYQCwldFwMTJnRtQ05BFBoSUVpXbhdUSxILDApBXBsGFwhDHRsUAzwABhBQVlxuB1BUCA4aRllEdkFRVBMTFUMXAjsHA09cWlQ%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%2BR1AFBww7DAhVTGUTWxFlQ1M/Rh5EFRdaUAxuTQAFQV5BFkxXVVgCExVDAQwIDBRmWFZVBBMDQw4KAwsSVFpdVEMdGxMNDAk8FU1UTUQSEwNDDgoSBkRESA%3D%3D
162.247.243.29204 No Content 0 B URL HTTP/1.1 bam.nr-data.net/ins/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=3452&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/kisimoto_key/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAUJBFAFBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWCgsQDQ4JTVpmWgRIFkNOQRMPOVFaSkVDCxsCCgIQFhRbVE1UT1JWDEBPRhAPTVBmWAUTA1BOQRcKElxqXV4MUFAPQFlGAA5YQUxDA1BNBEwACw5EFRdLVBBEXBIWPAwMFU0XAxMCWVgVFxEGAhJcG1peDBMVQwARCxQVXEdmWAUTA0MDUlRbB10CChwCBl1YT1dUUgIUDQ1XVBwPAgFXVVBVAAQLV1gTFUMQBgIGFFxHGwtDWU0VEhBeTElaQE1YBFZYEwYGCk0RWEVSUE9CUBUHTEZPREtQSEQEQk0%2BDwYQCwldFwMTJnRtQ05BFBoSUVpXbhdUSxILDApBXBsGFwhDHRsUAzwABhBQVlxuB1BUCA4aRllEdkFRVBMTFUMXAjsHA09cWlQ%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%2BR1AFBww7DAhVTGUTWxFlQ1M/Rh5EFRdaUAxuTQAFQV5BFkxXVVgCExVDAQwIDBRmWFZVBBMDQw4KAwsSVFpdVEMdGxMNDAk8FU1UTUQSEwNDDgoSBkRESA%3D%3D
IP 162.247.243.29:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ins/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=3452&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/kisimoto_key/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAUJBFAFBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWCgsQDQ4JTVpmWgRIFkNOQRMPOVFaSkVDCxsCCgIQFhRbVE1UT1JWDEBPRhAPTVBmWAUTA1BOQRcKElxqXV4MUFAPQFlGAA5YQUxDA1BNBEwACw5EFRdLVBBEXBIWPAwMFU0XAxMCWVgVFxEGAhJcG1peDBMVQwARCxQVXEdmWAUTA0MDUlRbB10CChwCBl1YT1dUUgIUDQ1XVBwPAgFXVVBVAAQLV1gTFUMQBgIGFFxHGwtDWU0VEhBeTElaQE1YBFZYEwYGCk0RWEVSUE9CUBUHTEZPREtQSEQEQk0%2BDwYQCwldFwMTJnRtQ05BFBoSUVpXbhdUSxILDApBXBsGFwhDHRsUAzwABhBQVlxuB1BUCA4aRllEdkFRVBMTFUMXAjsHA09cWlQ%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%2BR1AFBww7DAhVTGUTWxFlQ1M/Rh5EFRdaUAxuTQAFQV5BFkxXVVgCExVDAQwIDBRmWFZVBBMDQw4KAwsSVFpdVEMdGxMNDAk8FU1UTUQSEwNDDgoSBkRESA%3D%3D HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: text/plain
Content-Length: 3133
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Connection: keep-alive
date: Wed, 29 Mar 2023 02:40:03 GMT
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
x-served-by: cache-bma1637-BMA
realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.eyJpYXQiOjE2ODAwNTc2MDMsImV4cCI6MTY4MDE0NDAwMy4wLCJ4LWFibHktY2FwYWJpbGl0eSI6IntcInJvb206dGlwX2FsZXJ0OjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cHVyY2hhc2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpmYW5jbHViOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bWVzc2FnZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcImdsb2JhbDpwdXNoX3NlcnZpY2VcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb21fYW5vbjpwcmVzZW5jZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cXVhbGl0eV91cGRhdGU6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpub3RpY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTplbnRlcl9sZWF2ZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnBhc3N3b3JkX3Byb3RlY3RlZDozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Byb21vdGVkOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Jldm9rZWQ6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpzdGF0dXM6M0REV0hQTDowXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnRpdGxlX2NoYW5nZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnNpbGVuY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpraWNrOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206dXBkYXRlOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206c2V0dGluZ3M6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl19IiwieC1hYmx5LWNsaWVudElkIjoicnBrZzI1N29maGQtYW5vbmFjZWI0OGI0LTFkMDQtNDAxZi04NjE5LTg2MjNkNjQwM2E3ZSJ9.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=8155468399533689
54.230.111.8204 No Content 0 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.eyJpYXQiOjE2ODAwNTc2MDMsImV4cCI6MTY4MDE0NDAwMy4wLCJ4LWFibHktY2FwYWJpbGl0eSI6IntcInJvb206dGlwX2FsZXJ0OjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cHVyY2hhc2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpmYW5jbHViOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bWVzc2FnZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcImdsb2JhbDpwdXNoX3NlcnZpY2VcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb21fYW5vbjpwcmVzZW5jZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cXVhbGl0eV91cGRhdGU6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpub3RpY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTplbnRlcl9sZWF2ZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnBhc3N3b3JkX3Byb3RlY3RlZDozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Byb21vdGVkOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Jldm9rZWQ6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpzdGF0dXM6M0REV0hQTDowXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnRpdGxlX2NoYW5nZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnNpbGVuY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpraWNrOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206dXBkYXRlOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206c2V0dGluZ3M6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl19IiwieC1hYmx5LWNsaWVudElkIjoicnBrZzI1N29maGQtYW5vbmFjZWI0OGI0LTFkMDQtNDAxZi04NjE5LTg2MjNkNjQwM2E3ZSJ9.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=8155468399533689
IP 54.230.111.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=8155468399533689 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Content-Length,Accept,Authorization,X-Ably-Version,X-Ably-Lib,X-Ably-ClientId,Ably-Agent
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS
access-control-allow-origin: https://chaturbate.com
access-control-max-age: 3600
date: Wed, 29 Mar 2023 02:40:03 GMT
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u9_EiosN_tjJTmGPzotu9pe5yJCZ_GssoES_qSRvd1QFZegO7xflVw==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=8155468399533689
54.230.111.8201 Created 2 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=8155468399533689
IP 54.230.111.8:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
POST /comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=8155468399533689 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: application/json
Content-Length: 77
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
content-type: application/json
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,X-Ably-Cluster,Server,X-Amz-Cf-Pop
date: Wed, 29 Mar 2023 02:40:03 GMT
vary: Origin
x-ably-cluster: production:highwebmedia
x-ably-serverid: frontend.41be.4.eu-central-1-A.i-01ba32a00371cd4b8.e913cCVigBMt6Y
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -i8kHlqulFU1RWenYiWdMGXeIBfUAFJkj4oOjiOCT0WhbRlGndA_CA==
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.9461149293489011
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.9461149293489011
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 0165b4a1f3d6e0b2b7a5b016573b2800
1462f5d61629d90e6fa5c140616b46216c564c1a
f9b2f7606ccde8d9679dd5d59cbe844a6e1d8049b39c3748cea60dbbf3933eef
GET /stream?room=kisimoto_key&f=0.9461149293489011 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: image/jpeg
content-length: 22277
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
bam.nr-data.net/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=3414&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/aya_hitakayama/&ap=96&be=1613&fe=932&dc=710&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1680057622162,%22n%22:0,%22r%22:0,%22re%22:682,%22f%22:682,%22dn%22:682,%22dne%22:682,%22c%22:682,%22s%22:682,%22ce%22:682,%22rq%22:711,%22rp%22:963,%22rpe%22:967,%22dl%22:1468,%22di%22:2295,%22ds%22:2321,%22de%22:2328,%22dc%22:2541,%22l%22:2541,%22le%22:2548%7D,%22navigation%22:%7B%22rc%22:2%7D%7D&fcp=2482&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAQPBARbBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWABsCOwsPTVRSUBhQVABNQUhBEVVqUV4SRRtbQAAMAhJMR1tQFVQXAg0ORk9ESlxNVD5YXUNYUkhBFVBBXG4FXlQACw1GWURaXVhFFENbABYGSgAJVBcVExNUSBQHEBA8DlZGTRNbE1oJAxcREQRYQVwfAl5UQ05BBhEJTkZcQz5YXUNYQQAGVlsNCAdQHFtQAQdJV1AKURQJVVUITFYCVQdSDwAABVcJXENOQRYGAFxHXENDCxsJFhcUEFwWGlpEFVhcBgMRAAYIF0JYQQpQFxILFwFMRBUXS1QQRFwSFjwJBhJRWl0TWxN%2BJDZBSEEWQEFRXg9uTwQQEA0MCBsPGwJPCBtNQBYFPAJcQ1BSBG5fAA8KCBpEAxd2RQlUS0NOQRECOV1QT1gCVGYVGxMBQVwbUVxCCkVWEUBPRhYHZlpKbgdQVAgOGkZZRG5cV1UORkpDTkERAjlWRmZHBENKCA0NRllECAUbHUNEWD4AEQsUFVxHZlcAXFANG0FeQSBQR1xXDkkbTUAWBTwES1pOQgRDZhcHERcKCVcXAxNQAQxPUkFIQRNYakpFE1hXBkBZRi4JQ1xVXQAeDE9SQ0w0D1dRVkYSEXc1QlJUTVYCFW5YDwcNWkIbUlddGUdPC1ABDE9SSkQkA1peVh5TAQhRUlJUUkZ/XEtUB15BTlNTUU1WGxkbVghFZgINDgkKEhsPGwhRBwwHVltSUFMIURsdQ0FYEwMOF0FcG05lEwteUA89DBIGFFVUQG1DCxk9QFI4QUoZaRtFDkRLPUBZRD9ED1oJUz0TFUE%2BQQcCC0lUUFYPbRtbQj9GDwJjAXRtQx0ZPUAHDRAHW1lcbhJeTA8GP0ZZRmUXCG1DHRk9QA4LAQ9VUGtUBVhLBAEXOEFcGWkbXwRHXBM%2BQUhDOhtQVFMEVWYXCwcBDDlWW1VIPRMDQT5BVT9ERBcVEwJQVD4WAgNBXBtFTFMNWFpDTkEHDApWR2ZcDlVcQ1hBCAoBUUFUXgVUG01AEQsMC2ZGTVAVREpDWEEIChBcF0RM&ja=%7B%22username%22:%22__anonymous__%22,%22enduser.id%22:%22anon_3f4u2f6557%22,%22enduser.session%22:%223846376877%22,%22revision%22:%229065f486351d%22%7D&jsonp=NREUM.setToken
162.247.243.29200 OK 1.6 kB URL HTTP/1.1 bam.nr-data.net/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=3414&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/aya_hitakayama/&ap=96&be=1613&fe=932&dc=710&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1680057622162,%22n%22:0,%22r%22:0,%22re%22:682,%22f%22:682,%22dn%22:682,%22dne%22:682,%22c%22:682,%22s%22:682,%22ce%22:682,%22rq%22:711,%22rp%22:963,%22rpe%22:967,%22dl%22:1468,%22di%22:2295,%22ds%22:2321,%22de%22:2328,%22dc%22:2541,%22l%22:2541,%22le%22:2548%7D,%22navigation%22:%7B%22rc%22:2%7D%7D&fcp=2482&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAQPBARbBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWABsCOwsPTVRSUBhQVABNQUhBEVVqUV4SRRtbQAAMAhJMR1tQFVQXAg0ORk9ESlxNVD5YXUNYUkhBFVBBXG4FXlQACw1GWURaXVhFFENbABYGSgAJVBcVExNUSBQHEBA8DlZGTRNbE1oJAxcREQRYQVwfAl5UQ05BBhEJTkZcQz5YXUNYQQAGVlsNCAdQHFtQAQdJV1AKURQJVVUITFYCVQdSDwAABVcJXENOQRYGAFxHXENDCxsJFhcUEFwWGlpEFVhcBgMRAAYIF0JYQQpQFxILFwFMRBUXS1QQRFwSFjwJBhJRWl0TWxN%2BJDZBSEEWQEFRXg9uTwQQEA0MCBsPGwJPCBtNQBYFPAJcQ1BSBG5fAA8KCBpEAxd2RQlUS0NOQRECOV1QT1gCVGYVGxMBQVwbUVxCCkVWEUBPRhYHZlpKbgdQVAgOGkZZRG5cV1UORkpDTkERAjlWRmZHBENKCA0NRllECAUbHUNEWD4AEQsUFVxHZlcAXFANG0FeQSBQR1xXDkkbTUAWBTwES1pOQgRDZhcHERcKCVcXAxNQAQxPUkFIQRNYakpFE1hXBkBZRi4JQ1xVXQAeDE9SQ0w0D1dRVkYSEXc1QlJUTVYCFW5YDwcNWkIbUlddGUdPC1ABDE9SSkQkA1peVh5TAQhRUlJUUkZ/XEtUB15BTlNTUU1WGxkbVghFZgINDgkKEhsPGwhRBwwHVltSUFMIURsdQ0FYEwMOF0FcG05lEwteUA89DBIGFFVUQG1DCxk9QFI4QUoZaRtFDkRLPUBZRD9ED1oJUz0TFUE%2BQQcCC0lUUFYPbRtbQj9GDwJjAXRtQx0ZPUAHDRAHW1lcbhJeTA8GP0ZZRmUXCG1DHRk9QA4LAQ9VUGtUBVhLBAEXOEFcGWkbXwRHXBM%2BQUhDOhtQVFMEVWYXCwcBDDlWW1VIPRMDQT5BVT9ERBcVEwJQVD4WAgNBXBtFTFMNWFpDTkEHDApWR2ZcDlVcQ1hBCAoBUUFUXgVUG01AEQsMC2ZGTVAVREpDWEEIChBcF0RM&ja=%7B%22username%22:%22__anonymous__%22,%22enduser.id%22:%22anon_3f4u2f6557%22,%22enduser.session%22:%223846376877%22,%22revision%22:%229065f486351d%22%7D&jsonp=NREUM.setToken
IP 162.247.243.29:0
Hash acb1c0aff11533d6ef510e8067aba549
08ee7646d6e00c4b62db1467a1e05d15075f9b0d
69827cc50c7072a649b62ffc64a4ccb2b71bdcee14dddc76defe2b9a48c4c1f1
GET /1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=3414&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/aya_hitakayama/&ap=96&be=1613&fe=932&dc=710&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1680057622162,%22n%22:0,%22r%22:0,%22re%22:682,%22f%22:682,%22dn%22:682,%22dne%22:682,%22c%22:682,%22s%22:682,%22ce%22:682,%22rq%22:711,%22rp%22:963,%22rpe%22:967,%22dl%22:1468,%22di%22:2295,%22ds%22:2321,%22de%22:2328,%22dc%22:2541,%22l%22:2541,%22le%22:2548%7D,%22navigation%22:%7B%22rc%22:2%7D%7D&fcp=2482&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAQPBARbBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWABsCOwsPTVRSUBhQVABNQUhBEVVqUV4SRRtbQAAMAhJMR1tQFVQXAg0ORk9ESlxNVD5YXUNYUkhBFVBBXG4FXlQACw1GWURaXVhFFENbABYGSgAJVBcVExNUSBQHEBA8DlZGTRNbE1oJAxcREQRYQVwfAl5UQ05BBhEJTkZcQz5YXUNYQQAGVlsNCAdQHFtQAQdJV1AKURQJVVUITFYCVQdSDwAABVcJXENOQRYGAFxHXENDCxsJFhcUEFwWGlpEFVhcBgMRAAYIF0JYQQpQFxILFwFMRBUXS1QQRFwSFjwJBhJRWl0TWxN%2BJDZBSEEWQEFRXg9uTwQQEA0MCBsPGwJPCBtNQBYFPAJcQ1BSBG5fAA8KCBpEAxd2RQlUS0NOQRECOV1QT1gCVGYVGxMBQVwbUVxCCkVWEUBPRhYHZlpKbgdQVAgOGkZZRG5cV1UORkpDTkERAjlWRmZHBENKCA0NRllECAUbHUNEWD4AEQsUFVxHZlcAXFANG0FeQSBQR1xXDkkbTUAWBTwES1pOQgRDZhcHERcKCVcXAxNQAQxPUkFIQRNYakpFE1hXBkBZRi4JQ1xVXQAeDE9SQ0w0D1dRVkYSEXc1QlJUTVYCFW5YDwcNWkIbUlddGUdPC1ABDE9SSkQkA1peVh5TAQhRUlJUUkZ/XEtUB15BTlNTUU1WGxkbVghFZgINDgkKEhsPGwhRBwwHVltSUFMIURsdQ0FYEwMOF0FcG05lEwteUA89DBIGFFVUQG1DCxk9QFI4QUoZaRtFDkRLPUBZRD9ED1oJUz0TFUE%2BQQcCC0lUUFYPbRtbQj9GDwJjAXRtQx0ZPUAHDRAHW1lcbhJeTA8GP0ZZRmUXCG1DHRk9QA4LAQ9VUGtUBVhLBAEXOEFcGWkbXwRHXBM%2BQUhDOhtQVFMEVWYXCwcBDDlWW1VIPRMDQT5BVT9ERBcVEwJQVD4WAgNBXBtFTFMNWFpDTkEHDApWR2ZcDlVcQ1hBCAoBUUFUXgVUG01AEQsMC2ZGTVAVREpDWEEIChBcF0RM&ja=%7B%22username%22:%22__anonymous__%22,%22enduser.id%22:%22anon_3f4u2f6557%22,%22enduser.session%22:%223846376877%22,%22revision%22:%229065f486351d%22%7D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 49
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: text/javascript
cross-origin-resource-policy: cross-origin
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: *
x-served-by: cache-bma1669-BMA
pt-static2.ptwmstcnt.com/npe/image/pt_di-v183951.png
93.93.51.200200 OK 20 kB URL HTTP/2 pt-static2.ptwmstcnt.com/npe/image/pt_di-v183951.png
IP 93.93.51.200:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a39f133a8af87dc3b845832ff6d30cb
e67bba16969705430f54e65ad0a241ff987aa273
0d4451ade7ff63c59585c3637be283849dedd52d49886c6a7e73ec1364337ad4
GET /npe/image/pt_di-v183951.png HTTP/1.1
Host: pt-static2.ptwmstcnt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: image/png
content-length: 20381
last-modified: Tue, 28 Mar 2023 09:51:28 GMT
etag: "6422b8a0-4f9d"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pt-static5.ptwmstcnt.com/npe/_common/script/incognito/di.min-v183951.js
93.93.51.200200 OK 91 kB URL HTTP/2 pt-static5.ptwmstcnt.com/npe/_common/script/incognito/di.min-v183951.js
IP 93.93.51.200:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
Hash 89165b49d1a6a76cfdc63ba29f30a642
93cad330f8459dcdb9c53fb2eda3baeee202898a
c7ebd248ba9f513df35489e3380e0090ff206695ae0896aa6bebf455be433b85
GET /npe/_common/script/incognito/di.min-v183951.js HTTP/1.1
Host: pt-static5.ptwmstcnt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: application/javascript
last-modified: Tue, 28 Mar 2023 09:51:28 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6422b8a0-d47"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
content-encoding: gzip
X-Firefox-Spdy: h2
pt-static3.ptwmstcnt.com/npe/_common/fonts/pt-icons-v183951.woff
93.93.51.200200 OK 21 kB URL HTTP/2 pt-static3.ptwmstcnt.com/npe/_common/fonts/pt-icons-v183951.woff
IP 93.93.51.200:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
File type Web Open Font Format, TrueType, length 21352, version 1.0\012- data
Hash 0061f7277fcdd827e7a455ec557fe007
862c6faf18e335b147d1c76fe3eaf20c68a5b3ae
fd251a922ed58d7a7187125f73ecfc4f311e101a21d3e29d293a16f97f8650c1
GET /npe/_common/fonts/pt-icons-v183951.woff HTTP/1.1
Host: pt-static3.ptwmstcnt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pt.ctsdwm.com
Connection: keep-alive
Referer: https://pt-static3.ptwmstcnt.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: application/font-woff
content-length: 21352
last-modified: Tue, 28 Mar 2023 09:51:28 GMT
etag: "6422b8a0-5368"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pt-static3.ptwmstcnt.com/npe/_common/fonts/roboto_regular-webfont-v183951.woff
93.93.51.200200 OK 89 kB URL HTTP/2 pt-static3.ptwmstcnt.com/npe/_common/fonts/roboto_regular-webfont-v183951.woff
IP 93.93.51.200:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
File type Web Open Font Format, TrueType, length 89436, version 2.1101\012- data
Hash 27ebb57ca80d9efd1d7b2bb174af090f
527a35fa8eb34124d8bdc9bee973de676977637d
866c21d6cada368ff5a8049cb94a899b547fc763068036aacf94be7b24a2a40e
GET /npe/_common/fonts/roboto_regular-webfont-v183951.woff HTTP/1.1
Host: pt-static3.ptwmstcnt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pt.ctsdwm.com
Connection: keep-alive
Referer: https://pt-static3.ptwmstcnt.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: application/font-woff
content-length: 89436
last-modified: Tue, 28 Mar 2023 09:51:28 GMT
etag: "6422b8a0-15d5c"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
galleryn0.awemdia.com/ff268cab8d9fbae1ed7506f97496274f1e/e20625f9b515d63a4ba140b051964483_glamour_726x408.jpg?cno=53b0
93.93.51.190200 OK 65 kB URL HTTP/2 galleryn0.awemdia.com/ff268cab8d9fbae1ed7506f97496274f1e/e20625f9b515d63a4ba140b051964483_glamour_726x408.jpg?cno=53b0
IP 93.93.51.190:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, progressive, precision 8, 726x408, components 3\012- data
Hash e4f7776092f96bc734f90c274fbff38f
ac6fa7e573b16b9e99fae56c4245d7426315083b
19a80853fdad19217aff35ed4732290c8d78b7cd9dd656557334eb1d7aad00ad
GET /ff268cab8d9fbae1ed7506f97496274f1e/e20625f9b515d63a4ba140b051964483_glamour_726x408.jpg?cno=53b0 HTTP/1.1
Host: galleryn0.awemdia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: image/jpeg
content-length: 64982
last-modified: Mon, 06 Sep 2021 17:20:22 GMT
etag: "e4f7776092f96bc734f90c274fbff38f"
access-control-allow-origin: *
x-content-type-options: nosniff
x-cache-source: Origin
x-cache-status: R-HIT
expires: Wed, 12 Apr 2023 02:40:03 GMT
server: unknown
x-cdn-node: sesto
cache-control: max-age=1209600
x-real-source: -
accept-ranges: bytes
X-Firefox-Spdy: h2
galleryn2.awemdia.com/ff268cab8d9fbae1ed7506f97496274f12/2422368093bf15d370f46260d7885f48_glamour_726x408.jpg?cno=d88b
93.93.51.190200 OK 65 kB URL HTTP/2 galleryn2.awemdia.com/ff268cab8d9fbae1ed7506f97496274f12/2422368093bf15d370f46260d7885f48_glamour_726x408.jpg?cno=d88b
IP 93.93.51.190:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, progressive, precision 8, 726x408, components 3\012- data
Hash 07cf3bb42856ae98016868dded9bd472
f62d40659e47604e01cf1a05703481b8735bd4ff
85b8c8d14c8efb534e8764447fa2b5b9635869bca2c0dd15d5425c029f0d4d0f
GET /ff268cab8d9fbae1ed7506f97496274f12/2422368093bf15d370f46260d7885f48_glamour_726x408.jpg?cno=d88b HTTP/1.1
Host: galleryn2.awemdia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: image/jpeg
content-length: 64676
last-modified: Wed, 08 Sep 2021 15:51:28 GMT
etag: "07cf3bb42856ae98016868dded9bd472"
access-control-allow-origin: *
x-content-type-options: nosniff
x-cache-source: Origin
x-cache-status: R-HIT
expires: Wed, 12 Apr 2023 02:40:03 GMT
server: unknown
x-cdn-node: sesto
cache-control: max-age=1209600
x-real-source: -
accept-ranges: bytes
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.03946774562495947
131.153.88.95200 OK 29 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.03946774562495947
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 6b4ef6ac98dd505fdd6aee13b638b25a
f0f701f1c0a949511407be0b8947613a6fab49a5
f31b4b315b1b169146a35267e8af32bc75d06f13facf3e8c1798bc49c11a87af
GET /stream?room=aya_hitakayama&f=0.03946774562495947 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: image/jpeg
content-length: 29327
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&upgrade=e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3&format=json&heartbeats=true&v=2&agent=ably-js%2F1.2.37%20browser&remainPresentFor=0
54.230.111.8101 Switching Protocols 0 B URL HTTP/1.1 realtime.pa.highwebmedia.com/?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&upgrade=e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3&format=json&heartbeats=true&v=2&agent=ably-js%2F1.2.37%20browser&remainPresentFor=0
IP 54.230.111.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.eyJpYXQiOjE2ODAwNTc2MDMsImV4cCI6MTY4MDE0NDAwMy4wLCJ4LWFibHktY2FwYWJpbGl0eSI6IntcInJvb206dGlwX2FsZXJ0OjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cHVyY2hhc2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpmYW5jbHViOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bWVzc2FnZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcImdsb2JhbDpwdXNoX3NlcnZpY2VcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb21fYW5vbjpwcmVzZW5jZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cXVhbGl0eV91cGRhdGU6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpub3RpY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTplbnRlcl9sZWF2ZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnBhc3N3b3JkX3Byb3RlY3RlZDozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Byb21vdGVkOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Jldm9rZWQ6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpzdGF0dXM6M0REV0hQTDowXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnRpdGxlX2NoYW5nZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnNpbGVuY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpraWNrOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206dXBkYXRlOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206c2V0dGluZ3M6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl19IiwieC1hYmx5LWNsaWVudElkIjoicnBrZzI1N29maGQtYW5vbmFjZWI0OGI0LTFkMDQtNDAxZi04NjE5LTg2MjNkNjQwM2E3ZSJ9.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&upgrade=e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3&format=json&heartbeats=true&v=2&agent=ably-js%2F1.2.37%20browser&remainPresentFor=0 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://chaturbate.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZxDyqkGMI+dA4PAeOmG44Q==
Connection: keep-alive, Upgrade
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 29 Mar 2023 02:40:03 GMT
Connection: upgrade
Sec-Websocket-Accept: YAK1yuGuZLLfPDfbCtS79stmvdY=
Upgrade: websocket
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: k-TXj1XkGZuFdXOTdmCtAID_jlA8vBYnlXjlNYy9B-3jWHLY5H9k7A==
realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=49577178559238066
54.230.111.8204 No Content 0 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=49577178559238066
IP 54.230.111.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=49577178559238066 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Content-Length,Accept,Authorization,X-Ably-Version,X-Ably-Lib,X-Ably-ClientId,Ably-Agent
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS
access-control-allow-origin: https://chaturbate.com
access-control-max-age: 3600
date: Wed, 29 Mar 2023 02:40:03 GMT
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2bK2-GRbOOR763nPCuWaWMblSZ9_73oI1pQS5Z_MPNYOcJZ8z8WJlQ==
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.522578163295492
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.522578163295492
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 2d446352d05ca7b03d2e7638fe1e4afa
3587fc3776b822e993f5c9bf93cc94bcb633c6e6
70a528ddf50f4c08dd6f1497f76090c3639f860727263d4f26dac6f840dc0e83
GET /stream?room=kisimoto_key&f=0.522578163295492 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/jpeg
content-length: 22246
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/recv?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.eyJpYXQiOjE2ODAwNTc2MDMsImV4cCI6MTY4MDE0NDAwMy4wLCJ4LWFibHktY2FwYWJpbGl0eSI6IntcInJvb206dGlwX2FsZXJ0OjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cHVyY2hhc2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpmYW5jbHViOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bWVzc2FnZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcImdsb2JhbDpwdXNoX3NlcnZpY2VcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb21fYW5vbjpwcmVzZW5jZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cXVhbGl0eV91cGRhdGU6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpub3RpY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTplbnRlcl9sZWF2ZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnBhc3N3b3JkX3Byb3RlY3RlZDozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Byb21vdGVkOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Jldm9rZWQ6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpzdGF0dXM6M0REV0hQTDowXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnRpdGxlX2NoYW5nZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnNpbGVuY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpraWNrOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206dXBkYXRlOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206c2V0dGluZ3M6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl19IiwieC1hYmx5LWNsaWVudElkIjoicnBrZzI1N29maGQtYW5vbmFjZWI0OGI0LTFkMDQtNDAxZi04NjE5LTg2MjNkNjQwM2E3ZSJ9.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=6092495165092567
54.230.111.8200 OK 159 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/recv?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=6092495165092567
IP 54.230.111.8:0
File type JSON data\012- , ASCII text
Hash edbd334e461354539dd449479629db3b
2e389f1a4ae2a7e63f17119629b6fb540adb23f3
c96ff8f28dfb2a204e24d560f772de33ed83e1d9b7fdb667af41e5bc220abaa3
GET /comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/recv?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=6092495165092567 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 159
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,X-Ably-Cluster,Server,X-Amz-Cf-Pop
date: Wed, 29 Mar 2023 02:40:04 GMT
vary: Origin
x-ably-cluster: production:highwebmedia
x-ably-serverid: frontend.41be.4.eu-central-1-A.i-01ba32a00371cd4b8.e913cCVigBMt6Y
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BWZal_WHFCFmGpzV02DWg3agDYcxwY7f5ONCvi_L1BwuJxAZ1jLVng==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash da95f71a4263717c2b0625f7856c667e
e8d2167dbd57cf51ea4effc442f99b22c7a11ddd
034b25cf228869632b063ba7d5a58728c18f3acf81d19b00632242b1a30a7369
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "034B25CF228869632B063BA7D5A58728C18F3ACF81D19B00632242B1A30A7369"
Last-Modified: Sun, 26 Mar 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6852
Expires: Wed, 29 Mar 2023 04:34:16 GMT
Date: Wed, 29 Mar 2023 02:40:04 GMT
Connection: keep-alive
cdn.taboola.com/libtrc/wapkagroup-network/loader.js
151.101.65.44200 OK 47 kB URL HTTP/2 cdn.taboola.com/libtrc/wapkagroup-network/loader.js
IP 151.101.65.44:0
File type ASCII text, with very long lines (65168)
Hash 125640b413d3a136ac9e17a168acd0cc
6097ebd3173f1ec96ef9c12d6324779fa2ddfdc8
260235280eda1a067b54e9e4642399a1600b9e2e4f2fd6a6a201b39415c0ec8e
GET /libtrc/wapkagroup-network/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
etag: "de9274c4520f17b68fb2ec4a538000bd74db85b6"
last-modified: Tue, 28 Mar 2023 17:26:50 UTC
x-amz-id-2: SgOzT/lLlWIv4kxEkLlBiQozdGtQo5MF0yFY8CYbnO+RRknmGKuhsaGhJBAiYvJaJ0bJVwSzim8=
x-amz-replication-status: FAILED
x-amz-request-id: 857E9126KSQ66JXR
x-amz-server-side-encryption: AES256
x-amz-version-id: TnxrJvbiKBzVsL6Q_GKKDBCHh.yJvcf5
x-from-cache: 1
x-envoy-upstream-service-time: 9
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:04 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1672-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1680057604.966759,VS0,VE93
cache-control: private,max-age=14400
vary: Accept-Encoding, Accept-Encoding
abp: 28
content-length: 46573
X-Firefox-Spdy: h2
tmff8zgdfixz.s4.adsco.re/
185.200.116.90200 OK 80 kB URL HTTP/1.1 tmff8zgdfixz.s4.adsco.re/
IP 185.200.116.90:0
Hash 7507fe296d557662489083454e3934a9
a9755cff16361721045be09a3785819d5661c266
97175cc343fa7245fdb981170dbabb1a6b73a3b93c25e150cd529fe80c7be41c
POST / HTTP/1.1
Host: tmff8zgdfixz.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://dood.re
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:40:03 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=49577178559238066
54.230.111.8201 Created 2 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=49577178559238066
IP 54.230.111.8:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
POST /comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/send?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=49577178559238066 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: application/json
Content-Length: 1304
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
content-type: application/json
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,X-Ably-Cluster,Server,X-Amz-Cf-Pop
date: Wed, 29 Mar 2023 02:40:04 GMT
vary: Origin
x-ably-cluster: production:highwebmedia
x-ably-serverid: frontend.41be.4.eu-central-1-A.i-01ba32a00371cd4b8.e913cCVigBMt6Y
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xZAlNv4_UM-BdR11Avr7D3AecZnIGl59wev6heA-gsIKDbXL1IMBsg==
X-Firefox-Spdy: h2
pt.ctsdwm.com/38yAI/TpO.gif?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site&im=0
93.93.51.191200 OK 43 B URL HTTP/2 pt.ctsdwm.com/38yAI/TpO.gif?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site&im=0
IP 93.93.51.191:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /38yAI/TpO.gif?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site&im=0 HTTP/1.1
Host: pt.ctsdwm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/live-stream/?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&forcedPerformers%5B0%5D=YourDaniella&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site
Cookie: psui=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
server: unknown
set-cookie: psui=a59f007fbf3384ccc33cc586d5d348f0; Path=/; Expires=Fri, 28-Apr-23 02:40:04 GMT; SameSite=None; Secure
expires: Wed, 29 Mar 2023 02:40:03 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.7872055051840883
131.153.88.95200 OK 61 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.7872055051840883
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
Hash d34fc3eb785c782144a6587465375432
b59497551c79ea999730b8926e15399f41dbc653
990d68622fd5aaca42987c3b7fbacdd0b386f7e8de45d8f71cb9739a7a941a76
GET /stream?room=aya_hitakayama&f=0.7872055051840883 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/jpeg
content-length: 29009
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/disconnect?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=8484876830981491
54.230.111.8204 No Content 0 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/disconnect?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=8484876830981491
IP 54.230.111.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /comet/e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3/disconnect?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&rnd=8484876830981491 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,X-Ably-Cluster,Server,X-Amz-Cf-Pop
date: Wed, 29 Mar 2023 02:40:04 GMT
vary: Origin
x-ably-cluster: production:highwebmedia
x-ably-serverid: frontend.41be.4.eu-central-1-A.i-01ba32a00371cd4b8.e913cCVigBMt6Y
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ClP3M9gxJyUD3UVu61No9J9-CZPrijh4I5PYTEmpFGP5vEx7KnbFzg==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/connect?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.eyJpYXQiOjE2ODAwNTc2MDMsImV4cCI6MTY4MDE0NDAwMy4wLCJ4LWFibHktY2FwYWJpbGl0eSI6IntcInJvb206dGlwX2FsZXJ0OjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cHVyY2hhc2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpmYW5jbHViOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bWVzc2FnZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcImdsb2JhbDpwdXNoX3NlcnZpY2VcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb21fYW5vbjpwcmVzZW5jZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cXVhbGl0eV91cGRhdGU6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpub3RpY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTplbnRlcl9sZWF2ZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnBhc3N3b3JkX3Byb3RlY3RlZDozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Byb21vdGVkOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Jldm9rZWQ6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpzdGF0dXM6M0REV0hQTDowXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnRpdGxlX2NoYW5nZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnNpbGVuY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpraWNrOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206dXBkYXRlOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206c2V0dGluZ3M6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl19IiwieC1hYmx5LWNsaWVudElkIjoicnBrZzI1N29maGQtYW5vbmFjZWI0OGI0LTFkMDQtNDAxZi04NjE5LTg2MjNkNjQwM2E3ZSJ9.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&upgrade=e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3&heartbeats=true&v=2&agent=ably-js%252F1.2.37%2520browser&remainPresentFor=0&rnd=29614768206932685
54.230.111.8200 OK 412 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/connect?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.eyJpYXQiOjE2ODAwNTc2MDMsImV4cCI6MTY4MDE0NDAwMy4wLCJ4LWFibHktY2FwYWJpbGl0eSI6IntcInJvb206dGlwX2FsZXJ0OjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cHVyY2hhc2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpmYW5jbHViOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bWVzc2FnZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcImdsb2JhbDpwdXNoX3NlcnZpY2VcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb21fYW5vbjpwcmVzZW5jZTozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cXVhbGl0eV91cGRhdGU6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpub3RpY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTplbnRlcl9sZWF2ZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnBhc3N3b3JkX3Byb3RlY3RlZDozRERXSFBMOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Byb21vdGVkOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Jldm9rZWQ6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpzdGF0dXM6M0REV0hQTDowXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnRpdGxlX2NoYW5nZTozRERXSFBMXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnNpbGVuY2U6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpraWNrOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206dXBkYXRlOjNERFdIUExcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206c2V0dGluZ3M6M0REV0hQTFwiOiBbXCJzdWJzY3JpYmVcIl19IiwieC1hYmx5LWNsaWVudElkIjoicnBrZzI1N29maGQtYW5vbmFjZWI0OGI0LTFkMDQtNDAxZi04NjE5LTg2MjNkNjQwM2E3ZSJ9.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&upgrade=e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3&heartbeats=true&v=2&agent=ably-js%252F1.2.37%2520browser&remainPresentFor=0&rnd=29614768206932685
IP 54.230.111.8:0
File type JSON data\012- , ASCII text, with very long lines (411)
Hash 31e1bb37aa17321e5a5e8281a2344aae
df575a8362220cf5b37c62925eb39c073de24fdd
3aee6b5d0fae2362d0e196f6a62371282c0793d4cc590534dfb8ed2126fd1842
GET /comet/connect?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.Pf-jqETeyvOaGnerM_I88j-sgR58YgXcrQocWG_F9CQ&upgrade=e913cCVigBMt6Y!vMMNyuXp7QAQ6qQpJJrQE8-3e6e3&heartbeats=true&v=2&agent=ably-js%252F1.2.37%2520browser&remainPresentFor=0&rnd=29614768206932685 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,X-Ably-Cluster,Server,X-Amz-Cf-Pop
date: Wed, 29 Mar 2023 02:40:03 GMT
vary: Origin
x-ably-cluster: production:highwebmedia
x-ably-serverid: frontend.41be.4.eu-central-1-A.i-01ba32a00371cd4b8.e913cCVigBMt6Y
x-content-type-options: nosniff
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WD2r5PjtM9BK3dYiolmocW4g_asicz5HEuETFxfPBptg_ofBpT473w==
X-Firefox-Spdy: h2
pt.ctsdwm.com/Ser4u/zLa.gif?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site&im=0
93.93.51.191200 OK 43 B URL HTTP/2 pt.ctsdwm.com/Ser4u/zLa.gif?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site&im=0
IP 93.93.51.191:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /Ser4u/zLa.gif?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site&im=0 HTTP/1.1
Host: pt.ctsdwm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/live-stream/?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&forcedPerformers%5B0%5D=EllenChi&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site
Cookie: psui=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
server: unknown
set-cookie: psui=a59f007fbf3384ccc33cc586d5d348f0; Path=/; Expires=Fri, 28-Apr-23 02:40:04 GMT; SameSite=None; Secure
expires: Wed, 29 Mar 2023 02:40:03 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/impl.20230328-15-RELEASE.js
151.101.65.44200 OK 158 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20230328-15-RELEASE.js
IP 151.101.65.44:0
File type ASCII text, with very long lines (65508)
Size 158 kB (158172 bytes)
Hash 4235a82ad617a1297cd9a42a4c73f453
da5b07effed04cb74b110a66229f0dc2ba41caf4
4a2405027c737f66eb19072fc7c606346428d7dbc35f281403508286752df504
GET /libtrc/impl.20230328-15-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: kYvSVssSoKP/kI6q3fmP3q/BNFLu8H3zm5MVoDQOntBrJ/KuSIKnVhKlgTgpWudMqS3rz/pMZi4spUkPjxblXQ==
x-amz-request-id: B2KWT7C5YES3H7T3
last-modified: Tue, 28 Mar 2023 11:50:50 GMT
etag: "4235a82ad617a1297cd9a42a4c73f453"
x-amz-server-side-encryption: AES256
content-encoding: br
x-amz-version-id: sthDFBROS4ihsmOhXqLr3OwN7h1PiGmZ
content-type: application/javascript
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:04 GMT
via: 1.1 varnish
age: 24553
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 7874
x-timer: S1680057604.330745,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 80
server: AmazonS3-br
access-control-allow-origin: *
content-length: 158172
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.16965499066651424
131.153.88.95200 OK 23 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.16965499066651424
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 6fcf9f2017b22169d9f8ca8459f11c04
19a76e50290a0bc075b6109a02e14bf3f3411c98
bb8256ac42fd78808b0414174a807d5c9bf9de452f064ff4e74efce4fac5d363
GET /stream?room=kisimoto_key&f=0.16965499066651424 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/jpeg
content-length: 22829
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
api-protected.protoawegw.com/v2/player/performer/get?includeTestAccounts=&product=livejasmin&category=girl&withSb=1&psid=djsilver&pstool=302_2&profilePictureSize=896x504,504x896&ngs=1&performerIds[]=EllenChi
93.93.51.225200 OK 819 B URL HTTP/2 api-protected.protoawegw.com/v2/player/performer/get?includeTestAccounts=&product=livejasmin&category=girl&withSb=1&psid=djsilver&pstool=302_2&profilePictureSize=896x504,504x896&ngs=1&performerIds[]=EllenChi
IP 93.93.51.225:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
File type JSON data\012- , ASCII text, with very long lines (1154), with no line terminators
Hash 3f5aad6dac8885c43172db0a5768dfe6
8929a5918a1a801647e3654b4ec2afc7ddff91da
295b5e6016b78abb4562c8beb14310932cc36fa60aa24b322675ea30a9360684
GET /v2/player/performer/get?includeTestAccounts=&product=livejasmin&category=girl&withSb=1&psid=djsilver&pstool=302_2&profilePictureSize=896x504,504x896&ngs=1&performerIds[]=EllenChi HTTP/1.1
Host: api-protected.protoawegw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pt.ctsdwm.com/
Origin: https://pt.ctsdwm.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type
access-control-allow-methods: OPTIONS, GET, POST, PUT, DELETE, PATCH
server: unknown
content-encoding: gzip
X-Firefox-Spdy: h2
sb.scorecardresearch.com/b?c1=7&c2=34354936&cs_it=b9&cv=4.0.0%2B2301240627&ns__t=1680057626441&ns_c=UTF-8&ns_if=1&c3=1&c7=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&c8=harry%20styles%20will%20bald%20all%20in%20accessible%20lgbtq%20adventurous%20ball%20my%20policeman&c9=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2F%3Fq%3D1
143.204.55.25204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=7&c2=34354936&cs_it=b9&cv=4.0.0%2B2301240627&ns__t=1680057626441&ns_c=UTF-8&ns_if=1&c3=1&c7=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&c8=harry%20styles%20will%20bald%20all%20in%20accessible%20lgbtq%20adventurous%20ball%20my%20policeman&c9=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2F%3Fq%3D1
IP 143.204.55.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=7&c2=34354936&cs_it=b9&cv=4.0.0%2B2301240627&ns__t=1680057626441&ns_c=UTF-8&ns_if=1&c3=1&c7=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&c8=harry%20styles%20will%20bald%20all%20in%20accessible%20lgbtq%20adventurous%20ball%20my%20policeman&c9=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2F%3Fq%3D1 HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 29 Mar 2023 02:40:04 GMT
set-cookie: UID=18303afc65989bc7e280b3f1680057604; domain=.scorecardresearch.com; path=/; max-age=62208000
accept-ch: UA, Platform, Arch, Model, Mobile
x-cache: Miss from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WJarCML_klRojEu-sn3fiDqwuzjS9xOZUJuDzqAqE9oqXmCHuTXmxw==
X-Firefox-Spdy: h2
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash a684f3b449a125d2285678a6be0172a9
f5ba7774839ee9f45e1f2a88d322d3c3cfcc971f
91945112515f30fe6017f31f87a483adb2040d8435fce14fe9c44e89cf433b2c
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:40:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.38835730948401936
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.38835730948401936
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 9012b2de48315de782bb93e229f7fb71
5565b11354e1fc959b1241a0bc623634e2da10f4
4d64ec185f5347a3b7033db1f40ac2cecdb6f474de9f5cf4364e968c19c1b933
GET /stream?room=aya_hitakayama&f=0.38835730948401936 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/jpeg
content-length: 29552
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.6098418762801285
131.153.88.95200 OK 23 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.6098418762801285
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
Hash 1fb55ebcb12f9f16ce1ec34a7cd5b827
b0e7a129325108c5e7f530139ed043a31e1f67e9
3207b5fc7ab177cbaa7eb2af3650952563a3d5b8f768f3ba04a1e1e9b6045905
GET /stream?room=kisimoto_key&f=0.6098418762801285 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/jpeg
content-length: 22868
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
galleryn0.awemdia.com/ff268cab8d9fbae1ed7506f97496274f12/2422368093bf15d370f46260d7885f48_glamour_896x504.jpg?cno=d88b
93.93.51.190200 OK 89 kB URL HTTP/2 galleryn0.awemdia.com/ff268cab8d9fbae1ed7506f97496274f12/2422368093bf15d370f46260d7885f48_glamour_896x504.jpg?cno=d88b
IP 93.93.51.190:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, progressive, precision 8, 896x504, components 3\012- data
Hash 9121acb00919cd9b2dfdc9ef8bd1fa59
98063e9454e0907796d2c331bb74977f25b2f311
f416345b408f9fbc3ca80b07db1ba0eeedb7a9a2b7424b37b93cc01479dc5c2d
GET /ff268cab8d9fbae1ed7506f97496274f12/2422368093bf15d370f46260d7885f48_glamour_896x504.jpg?cno=d88b HTTP/1.1
Host: galleryn0.awemdia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/jpeg
content-length: 89338
last-modified: Wed, 08 Sep 2021 15:51:28 GMT
etag: "9121acb00919cd9b2dfdc9ef8bd1fa59"
access-control-allow-origin: *
x-content-type-options: nosniff
x-cache-source: Origin
x-cache-status: R-HIT
expires: Wed, 12 Apr 2023 02:40:04 GMT
server: unknown
x-cdn-node: sesto
cache-control: max-age=1209600
x-real-source: -
accept-ranges: bytes
X-Firefox-Spdy: h2
galleryn0.awemdia.com/ff268cab8d9fbae1ed7506f97496274f1e/e20625f9b515d63a4ba140b051964483_glamour_896x504.jpg?cno=53b0
93.93.51.190200 OK 94 kB URL HTTP/2 galleryn0.awemdia.com/ff268cab8d9fbae1ed7506f97496274f1e/e20625f9b515d63a4ba140b051964483_glamour_896x504.jpg?cno=53b0
IP 93.93.51.190:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, progressive, precision 8, 896x504, components 3\012- data
Hash 7d4403a3662cabfb206cc15f0aaa604b
6c41b9dff4133d6fa1a15c630a3c424696bd07fa
1febd083544c27a6fab9dd43715272d68be2bfddcbaab4b2ba8c39b1c7342a74
GET /ff268cab8d9fbae1ed7506f97496274f1e/e20625f9b515d63a4ba140b051964483_glamour_896x504.jpg?cno=53b0 HTTP/1.1
Host: galleryn0.awemdia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/jpeg
content-length: 94299
last-modified: Mon, 06 Sep 2021 17:20:22 GMT
etag: "7d4403a3662cabfb206cc15f0aaa604b"
access-control-allow-origin: *
x-content-type-options: nosniff
x-cache-source: Origin
x-cache-status: R-HIT
expires: Wed, 12 Apr 2023 02:40:04 GMT
server: unknown
x-cdn-node: sesto
cache-control: max-age=1209600
x-real-source: -
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 0a3e273f43465855159ca57a0749fb74
980594b18bffa9f8fb0e6b0ef52452be973b0e85
f4d9a8f15addde44ebe1afa4fdf83ec0103117f8981d91d768461eeac7e33176
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3663
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:04 GMT
Last-Modified: Wed, 29 Mar 2023 01:39:01 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
realtime.pa.highwebmedia.com/?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.eyJpYXQiOjE2ODAwNTc2MDMsImV4cCI6MTY4MDE0NDAwMy4wLCJ4LWFibHktY2FwYWJpbGl0eSI6IntcInJvb206dGlwX2FsZXJ0OlA3NDk2TVZcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cHVyY2hhc2U6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpmYW5jbHViOlA3NDk2TVZcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bWVzc2FnZTpQNzQ5Nk1WOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcImdsb2JhbDpwdXNoX3NlcnZpY2VcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb21fYW5vbjpwcmVzZW5jZTpQNzQ5Nk1WOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cXVhbGl0eV91cGRhdGU6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpub3RpY2U6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTplbnRlcl9sZWF2ZTpQNzQ5Nk1WXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnBhc3N3b3JkX3Byb3RlY3RlZDpQNzQ5Nk1WOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Byb21vdGVkOlA3NDk2TVZcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Jldm9rZWQ6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpzdGF0dXM6UDc0OTZNVjowXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnRpdGxlX2NoYW5nZTpQNzQ5Nk1WXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnNpbGVuY2U6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpraWNrOlA3NDk2TVZcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206dXBkYXRlOlA3NDk2TVZcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206c2V0dGluZ3M6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl19IiwieC1hYmx5LWNsaWVudElkIjoiemIzbnhkMjJoNm0tYW5vbmNlNzhkOTMxLWM1MTgtNGQwNy1iZDAwLWEzOTcxMmQ2ZThmZiJ9.JOGjqR3WY6NauuEAXGaaPnoWh9F2LZLVay0_7dR8e98&format=json&heartbeats=true&v=2&agent=ably-js%2F1.2.37%20browser&remainPresentFor=0
54.230.111.8101 Switching Protocols 0 B URL HTTP/1.1 realtime.pa.highwebmedia.com/?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.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.JOGjqR3WY6NauuEAXGaaPnoWh9F2LZLVay0_7dR8e98&format=json&heartbeats=true&v=2&agent=ably-js%2F1.2.37%20browser&remainPresentFor=0
IP 54.230.111.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IktTS3cyZy5MMzZJU2ciLCJ0eXAiOiJKV1QifQ.eyJpYXQiOjE2ODAwNTc2MDMsImV4cCI6MTY4MDE0NDAwMy4wLCJ4LWFibHktY2FwYWJpbGl0eSI6IntcInJvb206dGlwX2FsZXJ0OlA3NDk2TVZcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cHVyY2hhc2U6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpmYW5jbHViOlA3NDk2TVZcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bWVzc2FnZTpQNzQ5Nk1WOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcImdsb2JhbDpwdXNoX3NlcnZpY2VcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb21fYW5vbjpwcmVzZW5jZTpQNzQ5Nk1WOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206cXVhbGl0eV91cGRhdGU6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpub3RpY2U6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTplbnRlcl9sZWF2ZTpQNzQ5Nk1WXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnBhc3N3b3JkX3Byb3RlY3RlZDpQNzQ5Nk1WOjBcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Byb21vdGVkOlA3NDk2TVZcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206bW9kX3Jldm9rZWQ6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpzdGF0dXM6UDc0OTZNVjowXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnRpdGxlX2NoYW5nZTpQNzQ5Nk1WXCI6IFtcInN1YnNjcmliZVwiXSwgXCJyb29tOnNpbGVuY2U6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl0sIFwicm9vbTpraWNrOlA3NDk2TVZcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206dXBkYXRlOlA3NDk2TVZcIjogW1wic3Vic2NyaWJlXCJdLCBcInJvb206c2V0dGluZ3M6UDc0OTZNVlwiOiBbXCJzdWJzY3JpYmVcIl19IiwieC1hYmx5LWNsaWVudElkIjoiemIzbnhkMjJoNm0tYW5vbmNlNzhkOTMxLWM1MTgtNGQwNy1iZDAwLWEzOTcxMmQ2ZThmZiJ9.JOGjqR3WY6NauuEAXGaaPnoWh9F2LZLVay0_7dR8e98&format=json&heartbeats=true&v=2&agent=ably-js%2F1.2.37%20browser&remainPresentFor=0 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://chaturbate.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nyHFvNdLGQgi+XiZr4Jj6A==
Connection: keep-alive, Upgrade
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 29 Mar 2023 02:40:04 GMT
Connection: upgrade
Sec-Websocket-Accept: I8x3T//VoFvnXdbeSwTbBSG4PNE=
Upgrade: websocket
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uA4-h23aNLhPOlX_VbiKbfNcCavqtQPfKASpluP5aq-ZO-OSfy-7rg==
bam.nr-data.net/ins/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=4513&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/aya_hitakayama/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAQPBARbBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWABsCOwsPTVRSUBhQVABNQUhBEVVqUV4SRRtbQAAMAhJMR1tQFVQXAg0ORk9ESlxNVD5YXUNYUkhBFVBBXG4FXlQACw1GWURaXVhFFENbABYGSgAJVBcVExNUSBQHEBA8DlZGTRNbE1oJAxcREQRYQVwfAl5UQ05BBhEJTkZcQz5YXUNYQQAGVlsNCAdQHFtQAQdJV1AKURQJVVUITFYCVQdSDwAABVcJXENOQRYGAFxHXENDCxsJFhcUEFwWGlpEFVhcBgMRAAYIF0JYQQpQFxILFwFMRBUXS1QQRFwSFjwJBhJRWl0TWxN%2BJDZBSEEWQEFRXg9uTwQQEA0MCBsPGwJPCBtNQBYFPAJcQ1BSBG5fAA8KCBpEAxd2RQlUS0NOQRECOV1QT1gCVGYVGxMBQVwbUVxCCkVWEUBPRhYHZlpKbgdQVAgOGkZZRG5cV1UORkpDTkERAjlWRmZHBENKCA0NRllECAUbHUNEWD4AEQsUFVxHZlcAXFANG0FeQSBQR1xXDkkbTUAWBTwES1pOQgRDZhcHERcKCVcXAxNQAQxPUkFIQRNYakpFE1hXBkBZRi4JQ1xVXQAeDE9SQ0w0D1dRVkYSEXc1QlJUTVYCFW5YDwcNWkIbUlddGUdPC1ABDE9SSkQkA1peVh5TAQhRUlJUUkZ/XEtUB15BTlNTUU1WGxkbVghFZgINDgkKEhsPGwhRBwwHVltSUFMIURsdQ0FYEwMOF0FcG05lEwteUA89DBIGFFVUQG1DCxk9QFI4QUoZaRtFDkRLPUBZRD9ED1oJUz0TFUE%2BQQcCC0lUUFYPbRtbQj9GDwJjAXRtQx0ZPUAHDRAHW1lcbhJeTA8GP0ZZRmUXCG1DHRk9QA4LAQ9VUGtUBVhLBAEXOEFcGWkbXwRHXBM%2BQUhDOhtQVFMEVWYXCwcBDDlWW1VIPRMDQT5BVT9ERBcVEwJQVD4WAgNBXBtFTFMNWFpDTkEHDApWR2ZcDlVcQ1hBCAoBUUFUXgVUG01AEQsMC2ZGTVAVREpDWEEIChBcF0RM
162.247.243.29204 No Content 0 B URL HTTP/1.1 bam.nr-data.net/ins/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=4513&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/aya_hitakayama/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAQPBARbBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWABsCOwsPTVRSUBhQVABNQUhBEVVqUV4SRRtbQAAMAhJMR1tQFVQXAg0ORk9ESlxNVD5YXUNYUkhBFVBBXG4FXlQACw1GWURaXVhFFENbABYGSgAJVBcVExNUSBQHEBA8DlZGTRNbE1oJAxcREQRYQVwfAl5UQ05BBhEJTkZcQz5YXUNYQQAGVlsNCAdQHFtQAQdJV1AKURQJVVUITFYCVQdSDwAABVcJXENOQRYGAFxHXENDCxsJFhcUEFwWGlpEFVhcBgMRAAYIF0JYQQpQFxILFwFMRBUXS1QQRFwSFjwJBhJRWl0TWxN%2BJDZBSEEWQEFRXg9uTwQQEA0MCBsPGwJPCBtNQBYFPAJcQ1BSBG5fAA8KCBpEAxd2RQlUS0NOQRECOV1QT1gCVGYVGxMBQVwbUVxCCkVWEUBPRhYHZlpKbgdQVAgOGkZZRG5cV1UORkpDTkERAjlWRmZHBENKCA0NRllECAUbHUNEWD4AEQsUFVxHZlcAXFANG0FeQSBQR1xXDkkbTUAWBTwES1pOQgRDZhcHERcKCVcXAxNQAQxPUkFIQRNYakpFE1hXBkBZRi4JQ1xVXQAeDE9SQ0w0D1dRVkYSEXc1QlJUTVYCFW5YDwcNWkIbUlddGUdPC1ABDE9SSkQkA1peVh5TAQhRUlJUUkZ/XEtUB15BTlNTUU1WGxkbVghFZgINDgkKEhsPGwhRBwwHVltSUFMIURsdQ0FYEwMOF0FcG05lEwteUA89DBIGFFVUQG1DCxk9QFI4QUoZaRtFDkRLPUBZRD9ED1oJUz0TFUE%2BQQcCC0lUUFYPbRtbQj9GDwJjAXRtQx0ZPUAHDRAHW1lcbhJeTA8GP0ZZRmUXCG1DHRk9QA4LAQ9VUGtUBVhLBAEXOEFcGWkbXwRHXBM%2BQUhDOhtQVFMEVWYXCwcBDDlWW1VIPRMDQT5BVT9ERBcVEwJQVD4WAgNBXBtFTFMNWFpDTkEHDApWR2ZcDlVcQ1hBCAoBUUFUXgVUG01AEQsMC2ZGTVAVREpDWEEIChBcF0RM
IP 162.247.243.29:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ins/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=4513&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/aya_hitakayama/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVAdfAVtUBAQPBARbBlZWXxh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJzZhsLB1BVEgdPRiAgZndWRSRJTRMDQV5BAFhZSlRNV1gNEQZGT0RLUFhdPlhJQ1hBXVJIAAUXBVMfCFRWQUhBB1daV24HXVgGEUFeQUQVF1tUEkVmBhcGFxA5UEUbC0MICE9bU0pXVBcEDAVDHRsDBxAQPAFMUEpCPlZcDkBZRi0pGxkbWBFuWg4XDRARHxsPG38uExVDCxM7AAlMW01DGG5aDgwFDQcDV1ZcE1sTAFhAT0YKFmZbXEUWXksKQFlGAQpQTRdSDlwbTUAKFDwJS1JYXwhLWBULDApBXBt3VVgZEWoODhYQCglXRhsdQ1hJPgsQFEFcG3dVWBkRag4OFhAKCVdGGx1DWEk%2BAxAKQVwMBQoBVR0bCBI8BRAIZlpLVkMLGyMOChxDNVZZTEUIXlcSQiI3QUobXEluAl5XDwcAEAoJV2pNSBFUG1tAIAUBClwafWItExVDCxM7FhVcR2ZFGEFcQ1hBFgYVUFFcXxVYWA1AT0YRA0hAXEIVbkkAFgtGWUQWUFRTBFUWABsCOwsPTVRSUBhQVABNQUhBEVVqUV4SRRtbQAAMAhJMR1tQFVQXAg0ORk9ESlxNVD5YXUNYUkhBFVBBXG4FXlQACw1GWURaXVhFFENbABYGSgAJVBcVExNUSBQHEBA8DlZGTRNbE1oJAxcREQRYQVwfAl5UQ05BBhEJTkZcQz5YXUNYQQAGVlsNCAdQHFtQAQdJV1AKURQJVVUITFYCVQdSDwAABVcJXENOQRYGAFxHXENDCxsJFhcUEFwWGlpEFVhcBgMRAAYIF0JYQQpQFxILFwFMRBUXS1QQRFwSFjwJBhJRWl0TWxN%2BJDZBSEEWQEFRXg9uTwQQEA0MCBsPGwJPCBtNQBYFPAJcQ1BSBG5fAA8KCBpEAxd2RQlUS0NOQRECOV1QT1gCVGYVGxMBQVwbUVxCCkVWEUBPRhYHZlpKbgdQVAgOGkZZRG5cV1UORkpDTkERAjlWRmZHBENKCA0NRllECAUbHUNEWD4AEQsUFVxHZlcAXFANG0FeQSBQR1xXDkkbTUAWBTwES1pOQgRDZhcHERcKCVcXAxNQAQxPUkFIQRNYakpFE1hXBkBZRi4JQ1xVXQAeDE9SQ0w0D1dRVkYSEXc1QlJUTVYCFW5YDwcNWkIbUlddGUdPC1ABDE9SSkQkA1peVh5TAQhRUlJUUkZ/XEtUB15BTlNTUU1WGxkbVghFZgINDgkKEhsPGwhRBwwHVltSUFMIURsdQ0FYEwMOF0FcG05lEwteUA89DBIGFFVUQG1DCxk9QFI4QUoZaRtFDkRLPUBZRD9ED1oJUz0TFUE%2BQQcCC0lUUFYPbRtbQj9GDwJjAXRtQx0ZPUAHDRAHW1lcbhJeTA8GP0ZZRmUXCG1DHRk9QA4LAQ9VUGtUBVhLBAEXOEFcGWkbXwRHXBM%2BQUhDOhtQVFMEVWYXCwcBDDlWW1VIPRMDQT5BVT9ERBcVEwJQVD4WAgNBXBtFTFMNWFpDTkEHDApWR2ZcDlVcQ1hBCAoBUUFUXgVUG01AEQsMC2ZGTVAVREpDWEEIChBcF0RM HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: text/plain
Content-Length: 3167
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Connection: keep-alive
date: Wed, 29 Mar 2023 02:40:04 GMT
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
x-served-by: cache-bma1637-BMA
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.999635695347853
131.153.88.95200 OK 29 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.999635695347853
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 50a760804aec44b75bffd7b21dadb205
a90d468b8c975c1c5c32d2f5f086d2825b66f98b
8d78822c728825fe191b93b28c0acd1e0d0d9f183b96437bea75714c7dec7889
GET /stream?room=aya_hitakayama&f=0.999635695347853 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/jpeg
content-length: 29318
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.6689840928983241
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.6689840928983241
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 83a57c3589ad2b792f9d429eab915e9a
66e1c8512fae5d241f01c361e42061ea72d75065
9459109755c91a3b406c2668bda0c61a1db307f8e4d694dc95a5fed283dc4f81
GET /stream?room=kisimoto_key&f=0.6689840928983241 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/jpeg
content-length: 22207
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
bam.nr-data.net/events/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=4621&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/kisimoto_key/
162.247.243.29200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=4621&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/kisimoto_key/
IP 162.247.243.29:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=4621&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/kisimoto_key/ HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: text/plain
Content-Length: 2888
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 24
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/gif
access-control-allow-origin: https://chaturbate.com
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
access-control-allow-credentials: true
x-served-by: cache-bma1669-BMA
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.37808091464047977
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.37808091464047977
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 7d78ff917feb27024870d10dc09b4101
29abc2e9a3012733fc0b7d2202e7c960ade2b463
222235d292de53cb65fcf7ce72fbd45f70038a7786575285ad2b143644a38fce
GET /stream?room=aya_hitakayama&f=0.37808091464047977 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/jpeg
content-length: 29878
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
bam.nr-data.net/events/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=4680&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/aya_hitakayama/
162.247.243.29200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=4680&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/aya_hitakayama/
IP 162.247.243.29:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/6f524845d1?a=24279235&v=1228.PROD&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=4680&ck=0&s=b8ff50f873ee89f5&ref=https://chaturbate.com/embed/aya_hitakayama/ HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: text/plain
Content-Length: 2768
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 24
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: image/gif
access-control-allow-origin: https://chaturbate.com
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
access-control-allow-credentials: true
x-served-by: cache-bma1637-BMA
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 2ddd220a01e42b06768a15a2d873013d
6c8e480b681e5e87d46fc662486f5a4bc4e880d0
0f9749d085a35db603178645c8e1f74a5e91d6637bb1a471e6d123954002f58c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:40:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 29 Mar 2023 01:12:48 GMT
Expires: Wed, 05 Apr 2023 01:12:47 GMT
Etag: "6c8e480b681e5e87d46fc662486f5a4bc4e880d0"
Cache-Control: max-age=598962,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7af4befe2b1cb4f3-OSL
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.5396534560541185
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.5396534560541185
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 37698fdf51f5fd2a8bcd016749d20f0c
212023d6de2338ec07723a63ff24cc35acfbf379
6fce4aabfc4b8051724340193cb19dd12ac579bf1377d0e8403a0057ed8b71b7
GET /stream?room=kisimoto_key&f=0.5396534560541185 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 21975
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 81bc842261834916507fe38b60fe1f02
88405f995b8599a8c82df4b64d4bd33b9994b213
86fae4bf9b0f6cd67af06db2bda83fbeeaccd5f1490089b7167685bb0b986ae7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4795
Cache-Control: max-age=143901
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:05 GMT
Etag: "64232167-1d7"
Expires: Thu, 30 Mar 2023 18:38:26 GMT
Last-Modified: Tue, 28 Mar 2023 17:18:31 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 926 B IP 192.229.221.95:0
Hash e6d8cabfd403d2c88c19fa26f0c6a095
30baabf386816a65f8264e1501b52a95acd0da24
c9e8c246be2be97f226fc69d29c1c176041f8d5ecd7855d6f3655e5f1d6c5ba3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2077
Cache-Control: max-age=139775
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:05 GMT
Etag: "64231be7-139"
Expires: Thu, 30 Mar 2023 17:29:40 GMT
Last-Modified: Tue, 28 Mar 2023 16:55:03 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=2K7cA180M0RITmhlJTJCZkMwOUJGQlhaMUN2czhGJTJCdzB0VVElMkJIekdwa1owbCUyQk9Pa1huUk9NM0RBWW9sN3RhZndhNXlPOXM; expires=Mon, 22 Apr 2024 02:40:05 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 226184
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/cta-component.20230328-15-RELEASE.es6.js
151.101.65.44200 OK 5.4 kB URL HTTP/2 cdn.taboola.com/libtrc/cta-component.20230328-15-RELEASE.es6.js
IP 151.101.65.44:0
Hash fad2570e3de6544794775af475966461
0d498a1c6aa8c771115495db9e07455091834f40
4bf49aabcb2753f2b7a6f547ba7c99c31f017a7dd4e0352be82bede0b3330aff
GET /libtrc/cta-component.20230328-15-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: koF6fZLnDKWm0Xe6Cw+a5A+FLL++QgzEiqQpTgjC9Mg6eLKXuSqd2TnXCc9zp4kfmLiSfZgK8So=
x-amz-request-id: WN3KF2N69WQ495BY
x-amz-replication-status: PENDING
last-modified: Tue, 28 Mar 2023 13:58:26 GMT
etag: "d114bb92824106f90dc5d9c3a1fe7881"
x-amz-server-side-encryption: AES256
x-amz-version-id: pkUWeCLFu5EZarCMLff7jWZxYnm5tCVG
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
via: 1.1 varnish
age: 45699
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 13133
x-timer: S1680057605.114675,VS0,VE0
cache-control: private,max-age=2629743
vary: Accept-Encoding
abp: 80
access-control-allow-origin: *
content-length: 4739
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/userx.20230328-15-RELEASE.es6.js
151.101.65.44200 OK 5.4 kB URL HTTP/2 cdn.taboola.com/libtrc/userx.20230328-15-RELEASE.es6.js
IP 151.101.65.44:0
File type ASCII text, with very long lines (17842)
Hash e0433f93b1b50f6fe47efb5336c68f2c
9b6a8d93ea121ca5a12ae0ee0d61eb0197ccc6c7
164b902b0bd1fe7b575c1d290e38ae4ac5e81a8eb7840199145efeab6fe1d4f5
GET /libtrc/userx.20230328-15-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 7e7zfSbJVHyBw/hUl8faZvaDZ0mdsfa+jyGOKAw78DrmiC4hju6T21Ln2oqH8dbQoOeS0ikani4=
x-amz-request-id: D1PTX8T1S60HWQ9Z
x-amz-replication-status: PENDING
last-modified: Tue, 28 Mar 2023 13:58:59 GMT
etag: "a5d210d9dc891a0701249176e4a11026"
x-amz-server-side-encryption: AES256
x-amz-version-id: 94dxkhrfq6uB7CtP.fn5rQQp9bdUak4x
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
via: 1.1 varnish
age: 45666
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 3151
x-timer: S1680057605.118419,VS0,VE0
cache-control: private,max-age=2629743
vary: Accept-Encoding
abp: 80
access-control-allow-origin: *
content-length: 5399
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/feed-card-placeholder.20230328-15-RELEASE.es6.js
151.101.65.44200 OK 1.3 kB URL HTTP/2 cdn.taboola.com/libtrc/feed-card-placeholder.20230328-15-RELEASE.es6.js
IP 151.101.65.44:0
File type ASCII text, with very long lines (4627)
Hash fac5499cce6ff67fccaff66933668ecd
8fc65d17994f8933c005a6bab805ae192e820a61
7ca188f6eedc91ef0fa16a5025b2eb8d104aa1080595f7e65b4c97e7e648d1db
GET /libtrc/feed-card-placeholder.20230328-15-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: KvIFPhvwcfnC/R8IExeowNJZbSsz7hTzQfJd9P9Uqeexj8Vmm9whPKFQLNvzEOHgX8vslJUKTrI=
x-amz-request-id: DR7N5XQXEHGGNBWD
x-amz-replication-status: PENDING
last-modified: Tue, 28 Mar 2023 13:58:32 GMT
etag: "ef20ada774899ad5dc7688e3c77349dd"
x-amz-server-side-encryption: AES256
x-amz-version-id: o16LvEfalbaG6NTC52bbGDgNoM33HTBg
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
via: 1.1 varnish
age: 45692
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 12331
x-timer: S1680057605.121969,VS0,VE0
cache-control: private,max-age=2629743
vary: Accept-Encoding
abp: 80
access-control-allow-origin: *
content-length: 1263
X-Firefox-Spdy: h2
blockadsnot.com/iujspoblovosyolpbqj?_=BQFiAAAAAAAACZUAAgBveuejjnpqllfdIkLm9oEfNelzyYRfPpbHvICSkf6QNjeWbbUHLIBXe0_Wc4JboxdCaJkzVFyZKzB4vY0EaPnrbn7NMzfYw9YY8wg-p6nA8PgItDtw0ZMTyaGuFe-HNecYnxjrKWpN9f1-ErZdXKXtwMn_tFZVpIy1d9lqtqK9zmhtlx7PqswAikSRR807J60uDW11MZU0tZcjYbSN6jyIAFUXQMrLeFGFKzHkG9lm0JjlkJWIblro6fRNjuPINn-GVLBC0EQjwPSWKZ0jAxf0pi6il2ITI_Sp7XgBoYE0yDNoqRCG9WG4YOyEoswvKGUE12G79a3VWg9hIlv7rvHyYwY4UmVwZulipJAgyyBT1_NmXzCOm3onSS9vL1r2uRrjgiM-YKHFEH2UBOPW5x58Uvn7OJLgPmbln5iq2XeUJlx8VdZmMqzzz_sA-RSOI_qUlTxtAQ6yLvunK5F73eM&v=4&jQZlkznH=3881765&HbQBKOoR=&sHehGTLk=0,0&LtlnzPOp=&jRHLOrsk=https%3A%2F%2Fcutiegarden.wapka.site%2F&s=1280,1024,1,1280,1024,1
208.95.112.254200 OK 44 B URL HTTP/2 blockadsnot.com/iujspoblovosyolpbqj?_=BQFiAAAAAAAACZUAAgBveuejjnpqllfdIkLm9oEfNelzyYRfPpbHvICSkf6QNjeWbbUHLIBXe0_Wc4JboxdCaJkzVFyZKzB4vY0EaPnrbn7NMzfYw9YY8wg-p6nA8PgItDtw0ZMTyaGuFe-HNecYnxjrKWpN9f1-ErZdXKXtwMn_tFZVpIy1d9lqtqK9zmhtlx7PqswAikSRR807J60uDW11MZU0tZcjYbSN6jyIAFUXQMrLeFGFKzHkG9lm0JjlkJWIblro6fRNjuPINn-GVLBC0EQjwPSWKZ0jAxf0pi6il2ITI_Sp7XgBoYE0yDNoqRCG9WG4YOyEoswvKGUE12G79a3VWg9hIlv7rvHyYwY4UmVwZulipJAgyyBT1_NmXzCOm3onSS9vL1r2uRrjgiM-YKHFEH2UBOPW5x58Uvn7OJLgPmbln5iq2XeUJlx8VdZmMqzzz_sA-RSOI_qUlTxtAQ6yLvunK5F73eM&v=4&jQZlkznH=3881765&HbQBKOoR=&sHehGTLk=0,0&LtlnzPOp=&jRHLOrsk=https%3A%2F%2Fcutiegarden.wapka.site%2F&s=1280,1024,1,1280,1024,1
IP 208.95.112.254:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /iujspoblovosyolpbqj?_=BQFiAAAAAAAACZUAAgBveuejjnpqllfdIkLm9oEfNelzyYRfPpbHvICSkf6QNjeWbbUHLIBXe0_Wc4JboxdCaJkzVFyZKzB4vY0EaPnrbn7NMzfYw9YY8wg-p6nA8PgItDtw0ZMTyaGuFe-HNecYnxjrKWpN9f1-ErZdXKXtwMn_tFZVpIy1d9lqtqK9zmhtlx7PqswAikSRR807J60uDW11MZU0tZcjYbSN6jyIAFUXQMrLeFGFKzHkG9lm0JjlkJWIblro6fRNjuPINn-GVLBC0EQjwPSWKZ0jAxf0pi6il2ITI_Sp7XgBoYE0yDNoqRCG9WG4YOyEoswvKGUE12G79a3VWg9hIlv7rvHyYwY4UmVwZulipJAgyyBT1_NmXzCOm3onSS9vL1r2uRrjgiM-YKHFEH2UBOPW5x58Uvn7OJLgPmbln5iq2XeUJlx8VdZmMqzzz_sA-RSOI_qUlTxtAQ6yLvunK5F73eM&v=4&jQZlkznH=3881765&HbQBKOoR=&sHehGTLk=0,0&LtlnzPOp=&jRHLOrsk=https%3A%2F%2Fcutiegarden.wapka.site%2F&s=1280,1024,1,1280,1024,1 HTTP/1.1
Host: blockadsnot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Wed, 29 Mar 2023 02:40:05 GMT
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=wapka.xyz
178.250.0.157200 OK 5.4 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=wapka.xyz
IP 178.250.0.157:0
Hash 7803379f4d713866febaf3649cdbf85d
eb4218bd1560f312f4527777a2fcf2efb52d2199
8e1b61e878c7d091f31b476abad6183d461beaa8a64386687cd4ec57e4bc2da6
GET /syncframe?origin=rtus&topUrl=wapka.xyz HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=73ec0d2c-c2b9-4504-b7a8-72d7db63be40; expires=Mon, 22 Apr 2024 02:40:04 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 320193
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
awmbed.com/embed/lf?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&category=&forcedPerformers[]=EllenChi&vp[showChat]=true&vp[chatAutoHide]=true&vp[showCallToAction]=true&vp[showPerformerName]=true&vp[showPerformerStatus]=true&filters=&ms_notrack=1&subAffId={SUBAFFID}
93.93.51.191200 OK 4.3 kB URL HTTP/2 awmbed.com/embed/lf?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&category=&forcedPerformers[]=EllenChi&vp[showChat]=true&vp[chatAutoHide]=true&vp[showCallToAction]=true&vp[showPerformerName]=true&vp[showPerformerStatus]=true&filters=&ms_notrack=1&subAffId={SUBAFFID}
IP 93.93.51.191:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
Hash 81f64b86ac7e3bf3b2234491d1881f8c
e66a55d4b383c88f7a42be25be2af05d780cc7cc
ecd1d08486c18c30bb8f50c9eea4c40d3a724a4fe3e59f8f9388a2725042dc22
GET /embed/lf?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&category=&forcedPerformers[]=EllenChi&vp[showChat]=true&vp[chatAutoHide]=true&vp[showCallToAction]=true&vp[showPerformerName]=true&vp[showPerformerStatus]=true&filters=&ms_notrack=1&subAffId={SUBAFFID} HTTP/1.1
Host: awmbed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
cache-control: no-cache
date: Wed, 29 Mar 2023 02:40:00 GMT
server: unknown
set-cookie: psui=a59f007fbf3384ccc33cc586d5d348f0; Path=/; Expires=Fri, 28-Apr-23 02:40:00 GMT; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash f0a6feb08a28c7f2e21cf2d8ca1cc212
e6d487792583b84b3f20329a48d9dc973830a421
ac50c61cf37c0ac5ea2824e905510a7a308225ee0eca4c9bc5d9700f7f76c882
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5258
Cache-Control: max-age=103691
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:05 GMT
Etag: "64228286-138"
Expires: Thu, 30 Mar 2023 07:28:16 GMT
Last-Modified: Tue, 28 Mar 2023 06:00:38 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 312
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.3996531629969039
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.3996531629969039
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 6378df1a65ddfe0af88de95fa323fcd1
7bf91c0d821b1a917e398840d0ec1696a6611661
0c777e17a2350ac310373b60c11f88eaeb250211f931a34ccd1c533fbbfa762a
GET /stream?room=aya_hitakayama&f=0.3996531629969039 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 29477
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.87.46200 OK 3.2 kB URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.87.46:0
Hash 6da74fd254190d33afb38753dd2f6bad
a9f3c8f6d66b23e34aa27c83d1e98b0d12139c57
3cc9d5f83b11a7539f4dcdf2110cf014267f4efd9894c016bb4bf5085826fac8
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 63979
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/303ee73db57874a115ff9a03ed3f98b5.jpg
151.101.65.44200 OK 4.0 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/303ee73db57874a115ff9a03ed3f98b5.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e9440ad9f05dea24e0ecc1517769d6e7
d07652b0aae6a458ccd2c8f75a8fe715386a7a02
4adbbe8f6074c38a5f76d34c9344492c6d09014dc0c3386c4ddb37f9f1860458
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/303ee73db57874a115ff9a03ed3f98b5.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 403422004121904259511742054765733659700,297702914299677616001195815296283869647,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 403422004121904259511742054765733659700,297702914299677616001195815296283869647,29ecf9b93bbf306179626feeda1fab70
etag: "b3431189a94d3cfee1bf80d6f9a8c426"
last-modified: Thu, 23 Mar 2023 01:28:36 GMT
req-referer: https://mamul.am/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 0f5296b7afa12a002b4d9ab801a48a35
x-envoy-upstream-service-time: 543
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb801
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 84812
x-served-by: cache-iad-kiad7000073-IAD, cache-iad-kcgs7200071-IAD, cache-chi-klot8100116-CHI, cache-iad-kiad7000153-IAD, cache-bma1672-BMA
x-cache: MISS, MISS, MISS, MISS, HIT
x-cache-hits: 0, 0, 0, 0, 1
x-timer: S1680057605.225942,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/303ee73db57874a115ff9a03ed3f98b5.jpg
x-vcl-time-ms: 1
content-length: 3988
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/h_120,w_180,c_fill,g_xy_center,x_715,y_650/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/1440225207__D27icilx.jpg
151.101.65.44200 OK 8.6 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/h_120,w_180,c_fill,g_xy_center,x_715,y_650/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/1440225207__D27icilx.jpg
IP 151.101.65.44:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 300x300, segment length 16, baseline, precision 8, 180x120, components 3\012- data
Hash 059923985e93ebb70da28894493b5802
8b884cdee65fd585bce9ed4f8e48b99d05bc847e
25db376cb8e6f8c270becce11e44978083eeb8da854eadb34782440749cbff32
GET /taboola/image/fetch/h_120,w_180,c_fill,g_xy_center,x_715,y_650/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/1440225207__D27icilx.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 369363441152688204737512239120435109228,479630434368331010709126306595082482848,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 369363441152688204737512239120435109228,479630434368331010709126306595082482848,29ecf9b93bbf306179626feeda1fab70
etag: "059923985e93ebb70da28894493b5802"
expiration: expiry-date="Sun, 09 Apr 2023 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Thu, 09 Mar 2023 10:29:55 GMT
req-referer: https://search.wapka.site/search.php
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 160
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb803
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 428774
x-served-by: cache-iad-kjyo7100160-IAD, cache-iad-kjyo7100102-IAD, cache-chi-kigq8000155-CHI, cache-iad-kcgs7200030-IAD, cache-bma1672-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 2, 1
x-timer: S1680057605.226357,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/h_120,w_180,c_fill,g_xy_center,x_715,y_650/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/1440225207__D27icilx.jpg
x-vcl-time-ms: 1
content-length: 8624
X-Firefox-Spdy: h2
pt-static3.ptwmstcnt.com/npe/ba/ls/css/live-stream-v183951.css
93.93.51.200200 OK 13 kB URL HTTP/2 pt-static3.ptwmstcnt.com/npe/ba/ls/css/live-stream-v183951.css
IP 93.93.51.200:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
Hash 1986f1665292c13cc3528cd08bbc94c2
4076be52fd77740326fe44250759be5c0c679847
abe02fdff53ddd281edeea2a7a96e4a972ab9ce7d13ea06ab92537091d876d2f
GET /npe/ba/ls/css/live-stream-v183951.css HTTP/1.1
Host: pt-static3.ptwmstcnt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: text/css
last-modified: Tue, 28 Mar 2023 09:51:29 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6422b8a1-8ef2"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
content-encoding: gzip
X-Firefox-Spdy: h2
vidstat.taboola.com/lite-unit/3.9.9/UnitSliderDesktop.min.js
151.101.65.44200 OK 30 kB URL HTTP/2 vidstat.taboola.com/lite-unit/3.9.9/UnitSliderDesktop.min.js
IP 151.101.65.44:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e8d5ea739d7a475e4dc523ecf51560e7
a52f99322e8bd0a79e18a76fa0993e141f381d3c
af1856a1821c5fa115e55edc749a1865c87597eac312cfe4af28ad85fbf28577
GET /lite-unit/3.9.9/UnitSliderDesktop.min.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sun, 05 Mar 2023 10:04:45 GMT
etag: "c91c72e0f60c5d3334e6ce38164b3198"
x-amz-server-side-encryption: AES256
server: AmazonS3
via: 1.1 f13ebb34b9ca74b5ffe9e85709c21a7c.cloudfront.net (CloudFront), 1.1 varnish
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: Xx_HEvziMMgBaOOYUBq5NYEgsO-pa3d7uEGWYiA3_pfS8jXhJIA3JA==
cache-control: public, max-age=2592000
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 2046883
x-served-by: cache-bma1672-BMA
x-cache: Hit from cloudfront, HIT
x-cache-hits: 18408
x-timer: S1680057605.231319,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-headers: *
content-length: 30050
X-Firefox-Spdy: h2
vidstat.taboola.com/lite-unit/3.9.9/UnitFeedManagerDesktop.min.js
151.101.65.44200 OK 31 kB URL HTTP/2 vidstat.taboola.com/lite-unit/3.9.9/UnitFeedManagerDesktop.min.js
IP 151.101.65.44:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b16defc123430a25a5d5e4de0ae0e5a2
479a53b0a7d6c8c277f98c767300822de6098a23
685814dd0ebba4c1c65f940092ff7e36f282f1f89f219fd56b7e427a0edfebc9
GET /lite-unit/3.9.9/UnitFeedManagerDesktop.min.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sun, 05 Mar 2023 10:04:45 GMT
etag: "c04a240008c67910556582d1bf159ad7"
x-amz-server-side-encryption: AES256
server: AmazonS3
via: 1.1 fa679145440a8b5dfc579eecfc89d9d8.cloudfront.net (CloudFront), 1.1 varnish
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: Ie0LT7AithPlF7MQseQCzvMPlArj7C_BbemhlGH1q0V8SoeYlk9Xeg==
cache-control: public, max-age=2592000
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 2046868
x-served-by: cache-bma1672-BMA
x-cache: Hit from cloudfront, HIT
x-cache-hits: 46913
x-timer: S1680057605.231863,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-headers: *
content-length: 30995
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.23012518414480398
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.23012518414480398
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash deeae5fdb9f4f7efb8dfdb3c9d5ebcfc
0841b92e8ba295ca36540c0650411b688e9d43c0
5df1ce6976740a3545690df0f4a7e6b5cd3b52fa41ff8a258f00775b9506a429
GET /stream?room=kisimoto_key&f=0.23012518414480398 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 22127
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.0951640553394234
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.0951640553394234
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 05daa5048515c47b7aad2aee076b7497
144b19aabb345831475b501e6d61c54cf0d9d7c0
7d127ffce0a6c9ee49432749d637d42566d6010b16eda6e0b321cd5b7debb77e
GET /stream?room=aya_hitakayama&f=0.0951640553394234 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 29547
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/c4a6d2e522eb77c239a57b77cf87f16f.png
151.101.65.44200 OK 3.4 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/c4a6d2e522eb77c239a57b77cf87f16f.png
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1ef5ccd09b2317f7a9e800168fa41c9f
c27f3fa925317dd6e2c38f663ce1610c51f2bbb4
e6b1405dd2235a14087238f3a23b30cb56f6679cbbde4096a2681059368eb984
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/c4a6d2e522eb77c239a57b77cf87f16f.png HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 334840937470646990225866747919159929393,297702914299677616001195815296283869647,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 334840937470646990225866747919159929393,297702914299677616001195815296283869647,29ecf9b93bbf306179626feeda1fab70
etag: "85ffb2422f07eb54aaa838711a96cb5d"
last-modified: Mon, 06 Feb 2023 13:04:00 GMT
req-referer: https://plaza.rakuten.co.jp/ryuiti/diary/202102100000/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 81cebae444a4cee6082d6bbbc48694bf
x-envoy-upstream-service-time: 630
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb203
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 2407019
x-served-by: cache-iad-kjyo7100024-IAD, cache-iad-kcgs7200107-IAD, cache-sna10726-LGB, cache-iad-kcgs7200130-IAD, cache-bma1672-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 20, 1
x-timer: S1680057605.369763,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/c4a6d2e522eb77c239a57b77cf87f16f.png
x-vcl-time-ms: 1
content-length: 3360
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6af88beb51016df955247d92bb9506ae.jpg
151.101.65.44200 OK 6.2 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6af88beb51016df955247d92bb9506ae.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ca865d06bd3026366b5a57eb3e01975d
87a2abda55be4c6a82a399e0454aff9232fcf0bf
c7ec77d7ec4fdd9ededd01d20e4847fa458cb1bc5d591daffafb21d589abb346
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6af88beb51016df955247d92bb9506ae.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 406822727779378321521707630726531393357,297702914299677616001195815296283869647,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 406822727779378321521707630726531393357,297702914299677616001195815296283869647,29ecf9b93bbf306179626feeda1fab70
etag: "deceb72b57fec11852b88b75f2299a49"
expiration: expiry-date="Wed, 12 Apr 2023 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Sun, 12 Mar 2023 20:17:49 GMT
req-referer: https://mamul.am/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 269
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb801
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 20075
x-served-by: cache-iad-kiad7000135-IAD, cache-iad-kiad7000084-IAD, cache-chi-kigq8000098-CHI, cache-iad-kiad7000099-IAD, cache-bma1672-BMA
x-cache: MISS, MISS, MISS, MISS, HIT
x-cache-hits: 0, 0, 0, 0, 1
x-timer: S1680057605.369738,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_120%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6af88beb51016df955247d92bb9506ae.jpg
x-vcl-time-ms: 1
content-length: 6228
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/9dff79fb9ef09b7bc0a2da08c62c4336.jpg
151.101.65.44200 OK 5.2 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/9dff79fb9ef09b7bc0a2da08c62c4336.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2e0e116acb2f3407391ad10b0168c7ef
66c2c1cd79f4bc167d322a7d6f25215d9298baf4
c15ff84267a217294bbebb8f4242e7020c2bfaeaf6aee3daff513abb1e2e1bdc
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/9dff79fb9ef09b7bc0a2da08c62c4336.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 544214982511458917306505744284882893981,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 544214982511458917306505744284882893981,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
etag: "62927b25eb59bd267445a70be1e19aa5"
last-modified: Sun, 15 Jan 2023 01:14:17 GMT
req-referer: https://www.noticiasaominuto.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 054eda4fe88be25a42402db58b53a506
x-envoy-upstream-service-time: 149
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb203
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 3626843
x-served-by: cache-iad-kcgs7200158-IAD, cache-iad-kcgs7200124-IAD, cache-sna10743-LGB, cache-iad-kjyo7100045-IAD, cache-bma1672-BMA
x-cache: MISS, MISS, HIT, HIT, HIT
x-cache-hits: 0, 0, 1, 30, 1
x-timer: S1680057605.374984,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/9dff79fb9ef09b7bc0a2da08c62c4336.jpg
x-vcl-time-ms: 1
content-length: 5238
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/h_189,w_340,c_fill,g_xy_center,x_498,y_298/http%3A//cdn.taboola.com/libtrc/static/thumbnails/990282579a97b6ffde7cbd1f0b86c570.jpg
151.101.65.44200 OK 8.7 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/h_189,w_340,c_fill,g_xy_center,x_498,y_298/http%3A//cdn.taboola.com/libtrc/static/thumbnails/990282579a97b6ffde7cbd1f0b86c570.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 62ec4873efe013cd338a34d2e387a04a
fea900914dad342924d7d061220c51a1d6d5f996
f5accbc55da0591d2d2e0ed752ac84d8e1522ad2b1e212eaeab68a935c750f4c
GET /taboola/image/fetch/h_189,w_340,c_fill,g_xy_center,x_498,y_298/http%3A//cdn.taboola.com/libtrc/static/thumbnails/990282579a97b6ffde7cbd1f0b86c570.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 456434562094922319290242198549849340402,577533797669460612923389132172270393460,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 456434562094922319290242198549849340402,577533797669460612923389132172270393460,29ecf9b93bbf306179626feeda1fab70
etag: "d8aab6dd6b3d594ca7efc6520dac6826"
last-modified: Mon, 20 Mar 2023 13:57:14 GMT
req-referer: https://food.ndtv.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 507f5f6b00d241404d9383bd9cd336ce
x-envoy-upstream-service-time: 342
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb803
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 641553
x-served-by: cache-iad-kjyo7100097-IAD, cache-iad-kjyo7100142-IAD, cache-chi-klot8100078-CHI, cache-iad-kiad7000061-IAD, cache-bma1672-BMA
x-cache: MISS, MISS, MISS, MISS, HIT
x-cache-hits: 0, 0, 0, 0, 3
x-timer: S1680057605.377289,VS0,VE0
vary: ImageFormat
x-debug: /taboola/image/fetch/h_189,w_340,c_fill,g_xy_center,x_498,y_298/http%3A//cdn.taboola.com/libtrc/static/thumbnails/990282579a97b6ffde7cbd1f0b86c570.jpg
x-vcl-time-ms: 0
content-length: 8696
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/303ee73db57874a115ff9a03ed3f98b5.jpg
151.101.65.44200 OK 7.7 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/303ee73db57874a115ff9a03ed3f98b5.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b7243c34a5d0bfea3299b61578205aca
76cdf2626afb7b2de1c924ce2439d29bae2b999c
23679365d04603c2598327d5b7e0de92bad239e19144bee7a3a2afdaed909963
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/303ee73db57874a115ff9a03ed3f98b5.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 403422004121904259511742054765733659700,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 403422004121904259511742054765733659700,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
etag: "ebff38ea440ce3c9a9225915812272fd"
last-modified: Sun, 19 Feb 2023 16:34:45 GMT
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: f42baea50f6d1ee029d5535f12f40aeb
x-envoy-upstream-service-time: 711
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb202
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 1780501
x-served-by: cache-iad-kjyo7100097-IAD, cache-iad-kjyo7100044-IAD, cache-bur-kbur8200146-BUR, cache-iad-kjyo7100172-IAD, cache-bma1672-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 15, 1
x-timer: S1680057605.376897,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/303ee73db57874a115ff9a03ed3f98b5.jpg
x-vcl-time-ms: 1
content-length: 7748
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/h_189,w_340,c_fill,g_xy_center,x_715,y_650/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/1440225207__D27icilx.jpg
151.101.65.44200 OK 7.0 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/h_189,w_340,c_fill,g_xy_center,x_715,y_650/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/1440225207__D27icilx.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash c661f35009e10414c925b24db701ac49
fb65b0c426f58aadde9ae2122a7de6a310eb8112
3d42ecf1040ae2a1406c10896e382218b69f42a00d35c84c5610c00bdbba7fe4
GET /taboola/image/fetch/h_189,w_340,c_fill,g_xy_center,x_715,y_650/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/1440225207__D27icilx.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 369363441152688204737512239120435109228,499319591824814498192693730174804329228,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 369363441152688204737512239120435109228,499319591824814498192693730174804329228,29ecf9b93bbf306179626feeda1fab70
etag: "9d362a59b5edef686e28028a7ddb5ec3"
last-modified: Mon, 13 Mar 2023 09:50:30 GMT
req-referer: https://tamil.oneindia.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 5dcdca904f8fb7cfd190d2b712ff9754
x-envoy-upstream-service-time: 51
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb801
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 1347283
x-served-by: cache-iad-kjyo7100103-IAD, cache-iad-kjyo7100148-IAD, cache-lga21921-LGA, cache-iad-kiad7000153-IAD, cache-bma1672-BMA
x-cache: MISS, HIT, MISS, HIT, HIT
x-cache-hits: 0, 1, 0, 3, 1
x-timer: S1680057605.377133,VS0,VE2
vary: ImageFormat
x-debug: /taboola/image/fetch/h_189,w_340,c_fill,g_xy_center,x_715,y_650/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/1440225207__D27icilx.jpg
x-vcl-time-ms: 2
content-length: 7040
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/c4a6d2e522eb77c239a57b77cf87f16f.png
151.101.65.44200 OK 5.4 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/c4a6d2e522eb77c239a57b77cf87f16f.png
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 436083050dce7320c7fdc7c7e7ebe2fe
817d3641b1647b996f9458f56e3c9203171d0a68
d08e9f2998d31fe93955aa4f004f2ef3c886826eeee23e046655a0181fbe2455
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/c4a6d2e522eb77c239a57b77cf87f16f.png HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 334840937470646990225866747919159929393,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 334840937470646990225866747919159929393,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
etag: "5d7ff14cecb48c8d5254f4c8ae57d3e2"
expiration: expiry-date="Mon, 27 Feb 2023 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Fri, 27 Jan 2023 12:58:58 GMT
req-referer: https://www.espn.com/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 92
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb201
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 3066836
x-served-by: cache-iad-kiad7000031-IAD, cache-iad-kjyo7100108-IAD, cache-bur-kbur8200034-BUR, cache-iad-kcgs7200175-IAD, cache-bma1672-BMA
x-cache: MISS, HIT, HIT, HIT, HIT
x-cache-hits: 0, 2, 1, 102, 193
x-timer: S1680057605.388942,VS0,VE0
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/c4a6d2e522eb77c239a57b77cf87f16f.png
x-vcl-time-ms: 0
content-length: 5398
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/34030c35f58657e6db63adb71bd8b070.png
151.101.65.44200 OK 8.2 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/34030c35f58657e6db63adb71bd8b070.png
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e8d80da2eacc1a964b995d6ed2c56efe
f27487db1e1d46531bee7ecdb6ca966919ecccad
77ea5364149181ca9210ecf6b5bd72c854056027b703b7cce446e87a7d4610f5
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/34030c35f58657e6db63adb71bd8b070.png HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 567857210800731465300778636157927129364,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 567857210800731465300778636157927129364,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
etag: "2fb6cc4cf188b367d4fcfce7f957104c"
last-modified: Sat, 18 Feb 2023 00:02:37 GMT
req-referer: https://www.espn.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 91ca720a1fae9ad89f75d8818a25aba0
x-envoy-upstream-service-time: 771
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb204
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 2264646
x-served-by: cache-iad-kcgs7200047-IAD, cache-iad-kcgs7200126-IAD, cache-sna10733-LGB, cache-iad-kjyo7100022-IAD, cache-bma1672-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 28, 1
x-timer: S1680057605.398221,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/34030c35f58657e6db63adb71bd8b070.png
x-vcl-time-ms: 1
content-length: 8222
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6af88beb51016df955247d92bb9506ae.jpg
151.101.65.44200 OK 11 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6af88beb51016df955247d92bb9506ae.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4dba4708fc7f97127eb806c9fc62bdf4
327f7babc758e5f853405545ab4e6e750ee4b423
5fe1db137766489c0b26e3c2e60be6fd2272ebac960c8ced05bd46c712d130eb
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6af88beb51016df955247d92bb9506ae.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 406822727779378321521707630726531393357,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 406822727779378321521707630726531393357,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
etag: "a10a082259a73e068da2f406db7b3427"
last-modified: Sat, 18 Mar 2023 01:36:42 GMT
req-referer: https://www.manoramaonline.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: f12f60de3b9de66e5e547079e89b5737
x-envoy-upstream-service-time: 323
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb803
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 760135
x-served-by: cache-iad-kiad7000086-IAD, cache-iad-kcgs7200168-IAD, cache-chi-klot8100026-CHI, cache-iad-kiad7000151-IAD, cache-bma1672-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 3, 1
x-timer: S1680057605.398394,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6af88beb51016df955247d92bb9506ae.jpg
x-vcl-time-ms: 1
content-length: 11030
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/2e19cd92d61f0b274eefd9463a2862ee.jpg
151.101.65.44200 OK 7.4 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/2e19cd92d61f0b274eefd9463a2862ee.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0d1ac62d43bd51354a10d5695e3c91f1
c7e70649b871561d78cfe8729c7c5b47674dc266
d16f6d9efa583f7ff56eb79b79980578f4e25f6cc385acd3858e5cf12e016562
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/2e19cd92d61f0b274eefd9463a2862ee.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 622753756201263291993227816075754653162,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 622753756201263291993227816075754653162,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
etag: "13c0d64c718262570bc31b1f8838e5d2"
expiration: expiry-date="Tue, 28 Mar 2023 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Sat, 25 Feb 2023 22:04:21 GMT
req-referer: https://www.mundodeportivo.com/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 267
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb203
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 1020131
x-served-by: cache-iad-kcgs7200033-IAD, cache-iad-kiad7000100-IAD, cache-bur-kbur8200115-BUR, cache-iad-kjyo7100064-IAD, cache-bma1672-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 71, 1
x-timer: S1680057605.399637,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/2e19cd92d61f0b274eefd9463a2862ee.jpg
x-vcl-time-ms: 1
content-length: 7420
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/49e30cfb47e21c67f25095d2d7f086a6.jpg
151.101.65.44200 OK 7.9 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/49e30cfb47e21c67f25095d2d7f086a6.jpg
IP 151.101.65.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash db0c3ae10cf29d275cf4a35c4aaf7cf5
d9521e102df8f919544dfebdc8ad48523344c515
210b4d5585bc64afd33065b54d15a8b02b0c8d2fce003b3d02b4ab466f9b0e6d
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/49e30cfb47e21c67f25095d2d7f086a6.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 594755705797379670550579562063071952825,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 594755705797379670550579562063071952825,539224017810145466138863900429835611322,29ecf9b93bbf306179626feeda1fab70
etag: "c82fdeb9537d676cf173888833831a58"
last-modified: Sat, 18 Feb 2023 01:04:24 GMT
req-referer: https://www.espn.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 6f7c221b91eb695e71b3207d4b79d205
x-envoy-upstream-service-time: 68
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb803
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
age: 1180495
x-served-by: cache-iad-kjyo7100028-IAD, cache-iad-kcgs7200118-IAD, cache-chi-klot8100029-CHI, cache-iad-kcgs7200165-IAD, cache-bma1672-BMA
x-cache: MISS, HIT, MISS, HIT, HIT
x-cache-hits: 0, 1, 0, 523, 2
x-timer: S1680057605.403272,VS0,VE0
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_189%2Cw_340%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/49e30cfb47e21c67f25095d2d7f086a6.jpg
x-vcl-time-ms: 0
content-length: 7850
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/static/video/v1665482389/nmoaxescb3wafy9xqcha.mp4
151.101.65.44206 Partial Content 188 kB URL HTTP/2 cdn.taboola.com/libtrc/static/video/v1665482389/nmoaxescb3wafy9xqcha.mp4
IP 151.101.65.44:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 188 kB (187945 bytes)
Hash 6f118b59bea1371b8fbfc420a686ef86
922764917255c27449a19426b2905272fd858d29
d8e71def08e2ddc3d0833eda20945946a9de5dca54d9f56aaf71bdd4fe997209
GET /libtrc/static/video/v1665482389/nmoaxescb3wafy9xqcha.mp4 HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
x-amz-id-2: humKpSPtf8bNm9Nw/X8thNt7omaGV5bWMz+BwQD+/w79qvyEBcaMweTewavNjTATrsd12q33R7w=
x-amz-request-id: KKFWY6W303G7K6M3
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Oct 2022 09:59:57 GMT
etag: "357fadaae9648c9a978abf519c6579cb"
x-amz-version-id: gAB3o.jc1NP9RwUV4Rrwm8h.BxbAOH1C
content-type: video/mp4;codecs=avc1
server: AmazonS3
accept-ranges: bytes
age: 121
content-range: bytes 0-575765/575766
date: Wed, 29 Mar 2023 02:40:05 GMT
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1680057605.446662,VS0,VE1
cache-control: private,max-age=31536000
abp: 80
access-control-allow-origin: *
content-length: 575766
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8894157447049457
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8894157447049457
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 9fc93cb561d175c6550de376fc19e906
f188687daa311585ae2c2bec322d72c8a1d264ed
f8092283b936fd198e16806164d4b0cf3c8eae7b347a2d1a88d6df76a7b4715a
GET /stream?room=kisimoto_key&f=0.8894157447049457 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 21854
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.4146036769217488
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.4146036769217488
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 67c8ae7582e2dc386ddbe827ca26fa41
799dd79dc33fc06d3bec68115fe85e9a2f407ece
2998c8a31765d97b2098158b28c5e0ed43074fa8ab35c8dad61572409ad9b4f9
GET /stream?room=aya_hitakayama&f=0.4146036769217488 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 30318
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://wapka.xyz/
Origin: https://wapka.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:05 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://wapka.xyz
server-processing-duration-in-ticks: 609047
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
il-trc-events.taboola.com/wapkagroup-xyz/log/3/abtests?route=AM:IL:V<i=deflated&ri=9704a244391f1308d8ea7b427f4fd85c&sd=v2_470eee81378ca19fd8af247efdc520f0_e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84_1680057604_1680057604_CNawjgYQ4e9PGKPg89nyMCABKAEwogE434cMQJ6XEEj5qNkDUP___________wFYAGAAaKeW6aDs7Oe75gFwAA&ui=e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84&pi=/community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&wi=-8019147135717402700&pt=text&vi=1680057626659&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22block_clicks_init%22%2C%22type%22%3A%22block-clicks-manager%22%2C%22eventTime%22%3A1680057627099%7D&tim=02%3A40%3A27.099&id=9599&llvl=2&cv=20230328-15-RELEASE&
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/wapkagroup-xyz/log/3/abtests?route=AM:IL:V<i=deflated&ri=9704a244391f1308d8ea7b427f4fd85c&sd=v2_470eee81378ca19fd8af247efdc520f0_e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84_1680057604_1680057604_CNawjgYQ4e9PGKPg89nyMCABKAEwogE434cMQJ6XEEj5qNkDUP___________wFYAGAAaKeW6aDs7Oe75gFwAA&ui=e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84&pi=/community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&wi=-8019147135717402700&pt=text&vi=1680057626659&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22block_clicks_init%22%2C%22type%22%3A%22block-clicks-manager%22%2C%22eventTime%22%3A1680057627099%7D&tim=02%3A40%3A27.099&id=9599&llvl=2&cv=20230328-15-RELEASE&
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wapkagroup-xyz/log/3/abtests?route=AM:IL:V<i=deflated&ri=9704a244391f1308d8ea7b427f4fd85c&sd=v2_470eee81378ca19fd8af247efdc520f0_e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84_1680057604_1680057604_CNawjgYQ4e9PGKPg89nyMCABKAEwogE434cMQJ6XEEj5qNkDUP___________wFYAGAAaKeW6aDs7Oe75gFwAA&ui=e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84&pi=/community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&wi=-8019147135717402700&pt=text&vi=1680057626659&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22block_clicks_init%22%2C%22type%22%3A%22block-clicks-manager%22%2C%22eventTime%22%3A1680057627099%7D&tim=02%3A40%3A27.099&id=9599&llvl=2&cv=20230328-15-RELEASE& HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 7.2 kB IP 178.250.0.157:0
Hash 7ed0a1e4e224beff5d7bd655d4a38a0a
807c5ca5690455dfc0d8df8b45e961063f3bdcb7
172dd6aee53f31c95b2365cfb82786e123ff0037b2c86d5697d71317e0823756
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=2K7cA180M0RITmhlJTJCZkMwOUJGQlhaMUN2czhGJTJCdzB0VVElMkJIekdwa1owbCUyQk9Pa1huUk9NM0RBWW9sN3RhZndhNXlPOXM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=Wn-ey180M0RITmhlJTJCZkMwOUJGQlhaMUN2czhGJTJCdzB0VVElMkJIekdwa1owbCUyQk9Pa1ZGWUdySFhhemx0cU1tNGhxWkNhR1M; expires=Mon, 22 Apr 2024 02:40:05 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 321694
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ntedmanahegaz.com/multi?cs=RkxLSGZyfHtwVnJ9eXlWcXVycFE&abt=0&red=1&sm=76&k=&v=1.0.60.3&sts=0&prn=0&emb=1&tid=901258&rxy=1280_1024&u=1422455774997258&agec=1680057601&fs=1&mbkb=56.75368898978434&ref=https%3A%2F%2Fdood.re%2Fe%2F61smz2flw8n16rl0dl4xgm4j4t505en&osr=cutiegarden.wapka.site&jst=8&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&_yXpC=1680057627473&crc=1
108.157.229.62200 OK 1.5 kB URL HTTP/2 ntedmanahegaz.com/multi?cs=RkxLSGZyfHtwVnJ9eXlWcXVycFE&abt=0&red=1&sm=76&k=&v=1.0.60.3&sts=0&prn=0&emb=1&tid=901258&rxy=1280_1024&u=1422455774997258&agec=1680057601&fs=1&mbkb=56.75368898978434&ref=https%3A%2F%2Fdood.re%2Fe%2F61smz2flw8n16rl0dl4xgm4j4t505en&osr=cutiegarden.wapka.site&jst=8&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&_yXpC=1680057627473&crc=1
IP 108.157.229.62:0
File type ASCII text, with very long lines (3210), with no line terminators
Hash 84c78cc4fbb4ec9a90cb709e9d487b28
535826ff06b7ca823cafde070f63f94e02202040
5b74c33e9c8421250906dd299cedd5db770c8e78394f4a48ec4a2600d9045b8f
GET /multi?cs=RkxLSGZyfHtwVnJ9eXlWcXVycFE&abt=0&red=1&sm=76&k=&v=1.0.60.3&sts=0&prn=0&emb=1&tid=901258&rxy=1280_1024&u=1422455774997258&agec=1680057601&fs=1&mbkb=56.75368898978434&ref=https%3A%2F%2Fdood.re%2Fe%2F61smz2flw8n16rl0dl4xgm4j4t505en&osr=cutiegarden.wapka.site&jst=8&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&_yXpC=1680057627473&crc=1 HTTP/1.1
Host: ntedmanahegaz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dood.re
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 1538
date: Wed, 29 Mar 2023 02:40:05 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://dood.re
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: csu=33ea447c-6e48-4e01-a077-eaa098040b00
csu=1422455774997258
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 d913eed4ff9d3ba68bce11280aa7e1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: AD5hQYxgnpQ6Xv8IrAUUsq3mflVBJeb6tCQ30_eS-KyX6-W-hoOXKQ==
X-Firefox-Spdy: h2
il-trc-events.taboola.com/wapkagroup-xyz/log/2/debug?tim=02%3A40%3A27.307&type=warn&msg=video%20debug%3A%20SliderVideoUnitLoader%20loadUnit%20(SecurityError%3A%20Permission%20denied%20to%20access%20property%20%22document%22%20on%20cross-origin%20object)&llvl=2&id=704&cv=20230328-15-RELEASE<=deflated&pct=1
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/wapkagroup-xyz/log/2/debug?tim=02%3A40%3A27.307&type=warn&msg=video%20debug%3A%20SliderVideoUnitLoader%20loadUnit%20(SecurityError%3A%20Permission%20denied%20to%20access%20property%20%22document%22%20on%20cross-origin%20object)&llvl=2&id=704&cv=20230328-15-RELEASE<=deflated&pct=1
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wapkagroup-xyz/log/2/debug?tim=02%3A40%3A27.307&type=warn&msg=video%20debug%3A%20SliderVideoUnitLoader%20loadUnit%20(SecurityError%3A%20Permission%20denied%20to%20access%20property%20%22document%22%20on%20cross-origin%20object)&llvl=2&id=704&cv=20230328-15-RELEASE<=deflated&pct=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
x-fastly-to-nlb-rtt: 86100
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.9479096958318768
131.153.88.95200 OK 23 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.9479096958318768
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 692301c416ed74279dd7bcc621734b10
bbcac99892e7478d44ae0591f49461fc3309c435
eddd4ec58537761f4b41176740cd8eae003ce15fa4b62637cfba8154971523b7
GET /stream?room=kisimoto_key&f=0.9479096958318768 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 22554
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:05 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.87.121200 OK 38 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.87.121:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ae37bb690f944acfc17dfc36c0da6a43
e3fa0f7ebb4615311ba330d6c5cfbd8da80860ea
faf2e16de98271c842224426c805c87bc0f195a8b0070add937ab252c5e0ff9f
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 60423
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.2815712855357896
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.2815712855357896
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash b638549ce02ddf2ea1af89f4702726d3
ae0bb1fc9ad906d5f3299ef8222f0945ff486a6c
4b6ab05e5663e5c97035b13c156d9caf1e138f2914a23991de17347152d9d489
GET /stream?room=aya_hitakayama&f=0.2815712855357896 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 30392
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.018296354372110635
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.018296354372110635
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 28841bfe00d5760d03304eadcd5c8d07
5139b6fe26e5ed2ac6e25fb0ba727786cf96e0df
4c719ce10a15f8c2193d516591becc90da5c9ab864588a9dd3463270f26ed1c6
GET /stream?room=kisimoto_key&f=0.018296354372110635 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 21980
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
am-vid-events.taboola.com/st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=66496885&crid=6459505&dast=V7bCoCFgPh3eD1ACrdlATh3eD1ACrdlAUAAAAGBvQHJORxGGcWx2wt8ow2btFmZlorB4OVW7Tw-JaL2cpim3iMQEKWyWCyWLncKt9ksBatLAu3cOaarFWezW7lcTicI-NwCh_GcpkMaoGEZfb7DgrK6ekxuwyiouttsTucZs8bAkXRdDp8rnu97mH4OuzC5_Wv8bvdrrvT9HxLzH6fX-0wnY4u31vs8j09b8nL4zCbPW-h0_NW2Ewvy9vvOb0VZtPLcneYnn67W_c0Hd0Ks8Puljw9XrfD7tbb3ZqX6a23uYUOy-X5FvxNp5flrbCb3ErT561wa4wO01vocuueZrNb7rK9LG-Z3_Jzme5C09tsBwAAAIAHADHIOIgfQACACAAAAAAJAAAAAIqAin8LgQsAAAAADAAFphgNgE8Ogvec_f4AAGjYAgEAEMAgATjgqywBcOmLOQEAAAAAAAAAYPn___-PGbBPrZMZ8M_67AF48AF4ICpYLWIEAAAAsKWlonk0qRMqiyoAAIJ0K4ArAICAwxUezoYwAAAAgbEFelj8frPDrvG7XQYAAAAAAAAAYPZ_9o8m9DZ6nRbEMnqt9gsIALD2CwgAwKZuAABvAXBBR9CKwWB1ATE7AAAAgLv___9_PRDaDVYul3Gx2Q03DsdyZjIubJbRbmUzeVyTwcywvZNjCR-R3sXrvhBhmf2-g4JyenrMLoOo6Hpb7A6n2XMQHzQMy8kgmB9FS5a75W41mixGo-VysxtuRoP9DcRgNcCJGCyXk8lisluNVqPNcDeaDRYoEIMJUrRktVwuV5vNarUbLWaDzXK42SBFq1az0WYwXM0ms91uNRwMl6MRUrRkuVvuVqPJYjRaLje74WY0GCJM2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaomAA614EF-lE9zB8HT7L33V4C5_Xi1iiOVmkE9llX9oNVi6XcbHZDTcOx3JmMi5sltFuZTN5XJPBzLBv2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaN2bDwWC1mw1G-8ZsOBisdrPBaN-hM3xXn7NRWjkHPS6hZ1zOnW8Og8JlsHh_n4u0GW3cjCpt2GJRXYs718Qq9Pv9fr_f7_f7_d6N2eAxGAwvy1dbmDi_Pcu32tl4DwZFLBGcLtKJ6GU8XcQSydMinUhWJpfNtZo5hsPdxrha2EzO1ciwXK2Wy-VwZHNZxBKl6SKd6DV-t9t1d5qeb4nZ7_OrHabT0eV7i12-p-cteXkcZrPnLXR63gqb6WV5-z2nt8JselnuDtPTb3frnqajW2F22N2Sp8frdtjdertb8zK99Ta30GG5PN-Cv-n0srwVdpNbafq8FW6N0WF6C11u3dNsdstdtpflLfNbfi7TXWh6my3qPzLkYq4czEWTuWI1WiUAAAAAAAAAgCXMmTcBAAAAOA1oOZiNVssFmLgP1wU2AQAAAAAA2IW0JVKpzr-gLW782OEehq_DZ_m7Dm_h83plgIn7bObNnglirVbLGgAAQAAbAAAggFs3bwHYjBx_QQxWy8n-ARDEWq0W!&cmcv=&pix=31589837&cb=1680057627604&uv=3265&tms=1680057627604&abt=dfrc_vB!nonrv_vA!nrlc_vA!t45!ufm_vC&ru=https://wapka.xyz/community-blog/?q=1&ft=2&su=2&unm=FEED_MANAGER&debug=pn:!sqg:!torgn:1680057625279!ts:1680057627604&mntl=1
141.226.228.48200 OK 0 B URL HTTP/2 am-vid-events.taboola.com/st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=66496885&crid=6459505&dast=V7bCoCFgPh3eD1ACrdlATh3eD1ACrdlAUAAAAGBvQHJORxGGcWx2wt8ow2btFmZlorB4OVW7Tw-JaL2cpim3iMQEKWyWCyWLncKt9ksBatLAu3cOaarFWezW7lcTicI-NwCh_GcpkMaoGEZfb7DgrK6ekxuwyiouttsTucZs8bAkXRdDp8rnu97mH4OuzC5_Wv8bvdrrvT9HxLzH6fX-0wnY4u31vs8j09b8nL4zCbPW-h0_NW2Ewvy9vvOb0VZtPLcneYnn67W_c0Hd0Ks8Puljw9XrfD7tbb3ZqX6a23uYUOy-X5FvxNp5flrbCb3ErT561wa4wO01vocuueZrNb7rK9LG-Z3_Jzme5C09tsBwAAAIAHADHIOIgfQACACAAAAAAJAAAAAIqAin8LgQsAAAAADAAFphgNgE8Ogvec_f4AAGjYAgEAEMAgATjgqywBcOmLOQEAAAAAAAAAYPn___-PGbBPrZMZ8M_67AF48AF4ICpYLWIEAAAAsKWlonk0qRMqiyoAAIJ0K4ArAICAwxUezoYwAAAAgbEFelj8frPDrvG7XQYAAAAAAAAAYPZ_9o8m9DZ6nRbEMnqt9gsIALD2CwgAwKZuAABvAXBBR9CKwWB1ATE7AAAAgLv___9_PRDaDVYul3Gx2Q03DsdyZjIubJbRbmUzeVyTwcywvZNjCR-R3sXrvhBhmf2-g4JyenrMLoOo6Hpb7A6n2XMQHzQMy8kgmB9FS5a75W41mixGo-VysxtuRoP9DcRgNcCJGCyXk8lisluNVqPNcDeaDRYoEIMJUrRktVwuV5vNarUbLWaDzXK42SBFq1az0WYwXM0ms91uNRwMl6MRUrRkuVvuVqPJYjRaLje74WY0GCJM2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaomAA614EF-lE9zB8HT7L33V4C5_Xi1iiOVmkE9llX9oNVi6XcbHZDTcOx3JmMi5sltFuZTN5XJPBzLBv2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaN2bDwWC1mw1G-8ZsOBisdrPBaN-hM3xXn7NRWjkHPS6hZ1zOnW8Og8JlsHh_n4u0GW3cjCpt2GJRXYs718Qq9Pv9fr_f7_f7_d6N2eAxGAwvy1dbmDi_Pcu32tl4DwZFLBGcLtKJ6GU8XcQSydMinUhWJpfNtZo5hsPdxrha2EzO1ciwXK2Wy-VwZHNZxBKl6SKd6DV-t9t1d5qeb4nZ7_OrHabT0eV7i12-p-cteXkcZrPnLXR63gqb6WV5-z2nt8JselnuDtPTb3frnqajW2F22N2Sp8frdtjdertb8zK99Ta30GG5PN-Cv-n0srwVdpNbafq8FW6N0WF6C11u3dNsdstdtpflLfNbfi7TXWh6my3qPzLkYq4czEWTuWI1WiUAAAAAAAAAgCXMmTcBAAAAOA1oOZiNVssFmLgP1wU2AQAAAAAA2IW0JVKpzr-gLW782OEehq_DZ_m7Dm_h83plgIn7bObNnglirVbLGgAAQAAbAAAggFs3bwHYjBx_QQxWy8n-ARDEWq0W!&cmcv=&pix=31589837&cb=1680057627604&uv=3265&tms=1680057627604&abt=dfrc_vB!nonrv_vA!nrlc_vA!t45!ufm_vC&ru=https://wapka.xyz/community-blog/?q=1&ft=2&su=2&unm=FEED_MANAGER&debug=pn:!sqg:!torgn:1680057625279!ts:1680057627604&mntl=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=66496885&crid=6459505&dast=V7bCoCFgPh3eD1ACrdlATh3eD1ACrdlAUAAAAGBvQHJORxGGcWx2wt8ow2btFmZlorB4OVW7Tw-JaL2cpim3iMQEKWyWCyWLncKt9ksBatLAu3cOaarFWezW7lcTicI-NwCh_GcpkMaoGEZfb7DgrK6ekxuwyiouttsTucZs8bAkXRdDp8rnu97mH4OuzC5_Wv8bvdrrvT9HxLzH6fX-0wnY4u31vs8j09b8nL4zCbPW-h0_NW2Ewvy9vvOb0VZtPLcneYnn67W_c0Hd0Ks8Puljw9XrfD7tbb3ZqX6a23uYUOy-X5FvxNp5flrbCb3ErT561wa4wO01vocuueZrNb7rK9LG-Z3_Jzme5C09tsBwAAAIAHADHIOIgfQACACAAAAAAJAAAAAIqAin8LgQsAAAAADAAFphgNgE8Ogvec_f4AAGjYAgEAEMAgATjgqywBcOmLOQEAAAAAAAAAYPn___-PGbBPrZMZ8M_67AF48AF4ICpYLWIEAAAAsKWlonk0qRMqiyoAAIJ0K4ArAICAwxUezoYwAAAAgbEFelj8frPDrvG7XQYAAAAAAAAAYPZ_9o8m9DZ6nRbEMnqt9gsIALD2CwgAwKZuAABvAXBBR9CKwWB1ATE7AAAAgLv___9_PRDaDVYul3Gx2Q03DsdyZjIubJbRbmUzeVyTwcywvZNjCR-R3sXrvhBhmf2-g4JyenrMLoOo6Hpb7A6n2XMQHzQMy8kgmB9FS5a75W41mixGo-VysxtuRoP9DcRgNcCJGCyXk8lisluNVqPNcDeaDRYoEIMJUrRktVwuV5vNarUbLWaDzXK42SBFq1az0WYwXM0ms91uNRwMl6MRUrRkuVvuVqPJYjRaLje74WY0GCJM2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaomAA614EF-lE9zB8HT7L33V4C5_Xi1iiOVmkE9llX9oNVi6XcbHZDTcOx3JmMi5sltFuZTN5XJPBzLBv2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaN2bDwWC1mw1G-8ZsOBisdrPBaN-hM3xXn7NRWjkHPS6hZ1zOnW8Og8JlsHh_n4u0GW3cjCpt2GJRXYs718Qq9Pv9fr_f7_f7_d6N2eAxGAwvy1dbmDi_Pcu32tl4DwZFLBGcLtKJ6GU8XcQSydMinUhWJpfNtZo5hsPdxrha2EzO1ciwXK2Wy-VwZHNZxBKl6SKd6DV-t9t1d5qeb4nZ7_OrHabT0eV7i12-p-cteXkcZrPnLXR63gqb6WV5-z2nt8JselnuDtPTb3frnqajW2F22N2Sp8frdtjdertb8zK99Ta30GG5PN-Cv-n0srwVdpNbafq8FW6N0WF6C11u3dNsdstdtpflLfNbfi7TXWh6my3qPzLkYq4czEWTuWI1WiUAAAAAAAAAgCXMmTcBAAAAOA1oOZiNVssFmLgP1wU2AQAAAAAA2IW0JVKpzr-gLW782OEehq_DZ_m7Dm_h83plgIn7bObNnglirVbLGgAAQAAbAAAggFs3bwHYjBx_QQxWy8n-ARDEWq0W!&cmcv=&pix=31589837&cb=1680057627604&uv=3265&tms=1680057627604&abt=dfrc_vB!nonrv_vA!nrlc_vA!t45!ufm_vC&ru=https://wapka.xyz/community-blog/?q=1&ft=2&su=2&unm=FEED_MANAGER&debug=pn:!sqg:!torgn:1680057625279!ts:1680057627604&mntl=1 HTTP/1.1
Host: am-vid-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 899c89f37cc868c7dc0810066c8fbac5
fedd0ba558f542a331087646a25c5fa545d1a906
c8196aafb1f59c2d4cb78aa67a41de66eed7180f45afc596fc8fcc621fa95aeb
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:40:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 02 Apr 2023 00:55:26 GMT
ETag: "fedd0ba558f542a331087646a25c5fa545d1a906"
Last-Modified: Wed, 29 Mar 2023 00:55:27 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3458
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7af4bf046f26b509-OSL
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.5901742004176905
131.153.88.95200 OK 31 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.5901742004176905
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash b6f3320317c49a0fdaef8e3ae47d0db6
d6b8a39413951a03a8c9d75b4d053b5e993119ab
520ee9b2ba320fee07e8e722b2d7304e0346305578a906490392540c31eb144a
GET /stream?room=aya_hitakayama&f=0.5901742004176905 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 30691
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1
3.33.220.150200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1
IP 3.33.220.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ntedmanahegaz.com/floater?cs=YnVNaUNTRHhYdFBNelhzUkd%2FWHI&abt=0&red=1&sm=83&k=&v=0.9.1.5&sts=0&prn=0&emb=1&tid=919673&rxy=1280_1024&u=1422455774997258&agec=1680057601&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&mbkb=56.75368898978434&ref=https%3A%2F%2Fdood.re%2Fe%2F61smz2flw8n16rl0dl4xgm4j4t505en&osr=cutiegarden.wapka.site&jst=8&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&aa=oi1_&_9Vs7=1680057627476&crc=1
108.157.229.62200 OK 3.9 kB URL HTTP/2 ntedmanahegaz.com/floater?cs=YnVNaUNTRHhYdFBNelhzUkd%2FWHI&abt=0&red=1&sm=83&k=&v=0.9.1.5&sts=0&prn=0&emb=1&tid=919673&rxy=1280_1024&u=1422455774997258&agec=1680057601&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&mbkb=56.75368898978434&ref=https%3A%2F%2Fdood.re%2Fe%2F61smz2flw8n16rl0dl4xgm4j4t505en&osr=cutiegarden.wapka.site&jst=8&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&aa=oi1_&_9Vs7=1680057627476&crc=1
IP 108.157.229.62:0
File type ASCII text, with very long lines (6007), with no line terminators
Hash fb1094e19a55c755a1b11dedf58568e5
ff8a5a2332fcab8acf62992435f2be66b4942fe6
b64029e11a181eb691eb85eb9437f9db7d2a66152135c582f0eead9a95b07718
GET /floater?cs=YnVNaUNTRHhYdFBNelhzUkd%2FWHI&abt=0&red=1&sm=83&k=&v=0.9.1.5&sts=0&prn=0&emb=1&tid=919673&rxy=1280_1024&u=1422455774997258&agec=1680057601&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&mbkb=56.75368898978434&ref=https%3A%2F%2Fdood.re%2Fe%2F61smz2flw8n16rl0dl4xgm4j4t505en&osr=cutiegarden.wapka.site&jst=8&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&aa=oi1_&_9Vs7=1680057627476&crc=1 HTTP/1.1
Host: ntedmanahegaz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dood.re
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 3860
date: Wed, 29 Mar 2023 02:40:05 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://dood.re
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: csu=6bbb267f-77d8-4e3e-afb7-2bac2660b11e
csu=1422455774997258
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 d913eed4ff9d3ba68bce11280aa7e1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: u6ia55eqoXaTV5Hn_aGmm2pkgoE88pYrcJ1kHiRT0MgKLHw8bsKVDA==
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.9298661753068908
131.153.88.95200 OK 21 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.9298661753068908
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash bdcf446171933c733cddfc703da07d65
3bf33e6db008e1c1bcc6e6206bef49207e984662
67724dc19e8b1dda586c9f23bfd5d7ecf9515820e205f167ff25e5e9b497a301
GET /stream?room=kisimoto_key&f=0.9298661753068908 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 21418
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 5c9234f64b03ec11c91129e83eba4557
98a5f2223aeb769c14ed2088663dbe7c50a113ee
0417ba9a9634bec1b24837be99feee321890da0796525f25cdfdeb44dae3ea4a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6391
Cache-Control: max-age=109136
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:05 GMT
Etag: "6422935e-1d7"
Expires: Thu, 30 Mar 2023 08:59:01 GMT
Last-Modified: Tue, 28 Mar 2023 07:12:30 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
am-match.taboola.com/sync?dast=V7bCoCFgPh3eD1ACrdlATh3eD1ACrdlAUAAAAGBvQHJORxGGcWx2wt8ow2btFmZlorB4OVW7Tw-JaL2cpim3iMQEKWyWCyWLncKt9ksBatLAu3cOaarFWezW7lcTicI-NwCh_GcpkMaoGEZfb7DgrK6ekxuwyiouttsTucZs8bAkXRdDp8rnu97mH4OuzC5_Wv8bvdrrvT9HxLzH6fX-0wnY4u31vs8j09b8nL4zCbPW-h0_NW2Ewvy9vvOb0VZtPLcneYnn67W_c0Hd0Ks8Puljw9XrfD7tbb3ZqX6a23uYUOy-X5FvxNp5flrbCb3ErT561wa4wO01vocuueZrNb7rK9LG-Z3_Jzme5C09tsBwAAAIAHADHIOIgfQACACAAAAAAJAAAAAIqAin8LgQsAAAAADAAFphgNgE8Ogvec_f4AAGjYAgEAEMAgATjgqywBcOmLOQEAAAAAAAAAYPn___-PGbBPrZMZ8M_67AF48AF4ICpYLWIEAAAAsKWlonk0qRMqiyoAAIJ0K4ArAICAwxUezoYwAAAAgbEFelj8frPDrvG7XQYAAAAAAAAAYPZ_9o8m9DZ6nRbEMnqt9gsIALD2CwgAwKZuAABvAXBBR9CKwWB1ATE7AAAAgLv___9_PRDaDVYul3Gx2Q03DsdyZjIubJbRbmUzeVyTwcywvZNjCR-R3sXrvhBhmf2-g4JyenrMLoOo6Hpb7A6n2XMQHzQMy8kgmB9FS5a75W41mixGo-VysxtuRoP9DcRgNcCJGCyXk8lisluNVqPNcDeaDRYoEIMJUrRktVwuV5vNarUbLWaDzXK42SBFq1az0WYwXM0ms91uNRwMl6MRUrRkuVvuVqPJYjRaLje74WY0GCJM2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaomAA614EF-lE9zB8HT7L33V4C5_Xi1iiOVmkE9llX9oNVi6XcbHZDTcOx3JmMi5sltFuZTN5XJPBzLBv2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaN2bDwWC1mw1G-8ZsOBisdrPBaN-hM3xXn7NRWjkHPS6hZ1zOnW8Og8JlsHh_n4u0GW3cjCpt2GJRXYs718Qq9Pv9fr_f7_f7_d6N2eAxGAwvy1dbmDi_Pcu32tl4DwZFLBGcLtKJ6GU8XcQSydMinUhWJpfNtZo5hsPdxrha2EzO1ciwXK2Wy-VwZHNZxBKl6SKd6DV-t9t1d5qeb4nZ7_OrHabT0eV7i12-p-cteXkcZrPnLXR63gqb6WV5-z2nt8JselnuDtPTb3frnqajW2F22N2Sp8frdtjdertb8zK99Ta30GG5PN-Cv-n0srwVdpNbafq8FW6N0WF6C11u3dNsdstdtpflLfNbfi7TXWh6my3qPzLkYq4czEWTuWI1WiUAAAAAAAAAgCXMmTcBAAAAOA1oOZiNVssFmLgP1wU2AQAAAAAA2IW0JVKpzr-gLW782OEehq_DZ_m7Dm_h83plgIn7bObNnglirVbLGgAAQAAbAAAggFs3bwHYjBx_QQxWy8n-ARDEWq0W!&excid=22&docw=0&cijs=1&nlb=true
141.226.228.48200 OK 952 B URL HTTP/2 am-match.taboola.com/sync?dast=V7bCoCFgPh3eD1ACrdlATh3eD1ACrdlAUAAAAGBvQHJORxGGcWx2wt8ow2btFmZlorB4OVW7Tw-JaL2cpim3iMQEKWyWCyWLncKt9ksBatLAu3cOaarFWezW7lcTicI-NwCh_GcpkMaoGEZfb7DgrK6ekxuwyiouttsTucZs8bAkXRdDp8rnu97mH4OuzC5_Wv8bvdrrvT9HxLzH6fX-0wnY4u31vs8j09b8nL4zCbPW-h0_NW2Ewvy9vvOb0VZtPLcneYnn67W_c0Hd0Ks8Puljw9XrfD7tbb3ZqX6a23uYUOy-X5FvxNp5flrbCb3ErT561wa4wO01vocuueZrNb7rK9LG-Z3_Jzme5C09tsBwAAAIAHADHIOIgfQACACAAAAAAJAAAAAIqAin8LgQsAAAAADAAFphgNgE8Ogvec_f4AAGjYAgEAEMAgATjgqywBcOmLOQEAAAAAAAAAYPn___-PGbBPrZMZ8M_67AF48AF4ICpYLWIEAAAAsKWlonk0qRMqiyoAAIJ0K4ArAICAwxUezoYwAAAAgbEFelj8frPDrvG7XQYAAAAAAAAAYPZ_9o8m9DZ6nRbEMnqt9gsIALD2CwgAwKZuAABvAXBBR9CKwWB1ATE7AAAAgLv___9_PRDaDVYul3Gx2Q03DsdyZjIubJbRbmUzeVyTwcywvZNjCR-R3sXrvhBhmf2-g4JyenrMLoOo6Hpb7A6n2XMQHzQMy8kgmB9FS5a75W41mixGo-VysxtuRoP9DcRgNcCJGCyXk8lisluNVqPNcDeaDRYoEIMJUrRktVwuV5vNarUbLWaDzXK42SBFq1az0WYwXM0ms91uNRwMl6MRUrRkuVvuVqPJYjRaLje74WY0GCJM2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaomAA614EF-lE9zB8HT7L33V4C5_Xi1iiOVmkE9llX9oNVi6XcbHZDTcOx3JmMi5sltFuZTN5XJPBzLBv2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaN2bDwWC1mw1G-8ZsOBisdrPBaN-hM3xXn7NRWjkHPS6hZ1zOnW8Og8JlsHh_n4u0GW3cjCpt2GJRXYs718Qq9Pv9fr_f7_f7_d6N2eAxGAwvy1dbmDi_Pcu32tl4DwZFLBGcLtKJ6GU8XcQSydMinUhWJpfNtZo5hsPdxrha2EzO1ciwXK2Wy-VwZHNZxBKl6SKd6DV-t9t1d5qeb4nZ7_OrHabT0eV7i12-p-cteXkcZrPnLXR63gqb6WV5-z2nt8JselnuDtPTb3frnqajW2F22N2Sp8frdtjdertb8zK99Ta30GG5PN-Cv-n0srwVdpNbafq8FW6N0WF6C11u3dNsdstdtpflLfNbfi7TXWh6my3qPzLkYq4czEWTuWI1WiUAAAAAAAAAgCXMmTcBAAAAOA1oOZiNVssFmLgP1wU2AQAAAAAA2IW0JVKpzr-gLW782OEehq_DZ_m7Dm_h83plgIn7bObNnglirVbLGgAAQAAbAAAggFs3bwHYjBx_QQxWy8n-ARDEWq0W!&excid=22&docw=0&cijs=1&nlb=true
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash 5da5106f7d919dd41a69fbbe15cf25e3
9cccb829002b2c80e2a7c20b4cc16dc37f9cccb9
e2207b2b18973ab9ce07b8d03e01db9b7d6f14d23751a03f3857521b985c3f7d
GET /sync?dast=V7bCoCFgPh3eD1ACrdlATh3eD1ACrdlAUAAAAGBvQHJORxGGcWx2wt8ow2btFmZlorB4OVW7Tw-JaL2cpim3iMQEKWyWCyWLncKt9ksBatLAu3cOaarFWezW7lcTicI-NwCh_GcpkMaoGEZfb7DgrK6ekxuwyiouttsTucZs8bAkXRdDp8rnu97mH4OuzC5_Wv8bvdrrvT9HxLzH6fX-0wnY4u31vs8j09b8nL4zCbPW-h0_NW2Ewvy9vvOb0VZtPLcneYnn67W_c0Hd0Ks8Puljw9XrfD7tbb3ZqX6a23uYUOy-X5FvxNp5flrbCb3ErT561wa4wO01vocuueZrNb7rK9LG-Z3_Jzme5C09tsBwAAAIAHADHIOIgfQACACAAAAAAJAAAAAIqAin8LgQsAAAAADAAFphgNgE8Ogvec_f4AAGjYAgEAEMAgATjgqywBcOmLOQEAAAAAAAAAYPn___-PGbBPrZMZ8M_67AF48AF4ICpYLWIEAAAAsKWlonk0qRMqiyoAAIJ0K4ArAICAwxUezoYwAAAAgbEFelj8frPDrvG7XQYAAAAAAAAAYPZ_9o8m9DZ6nRbEMnqt9gsIALD2CwgAwKZuAABvAXBBR9CKwWB1ATE7AAAAgLv___9_PRDaDVYul3Gx2Q03DsdyZjIubJbRbmUzeVyTwcywvZNjCR-R3sXrvhBhmf2-g4JyenrMLoOo6Hpb7A6n2XMQHzQMy8kgmB9FS5a75W41mixGo-VysxtuRoP9DcRgNcCJGCyXk8lisluNVqPNcDeaDRYoEIMJUrRktVwuV5vNarUbLWaDzXK42SBFq1az0WYwXM0ms91uNRwMl6MRUrRkuVvuVqPJYjRaLje74WY0GCJM2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaomAA614EF-lE9zB8HT7L33V4C5_Xi1iiOVmkE9llX9oNVi6XcbHZDTcOx3JmMi5sltFuZTN5XJPBzLBv2TYzy2a2XAtWE49btNoM1sLNauJWrZaT1WyzsuwmG7fo9TFdHCPLwjjaN2bDwWC1mw1G-8ZsOBisdrPBaN-hM3xXn7NRWjkHPS6hZ1zOnW8Og8JlsHh_n4u0GW3cjCpt2GJRXYs718Qq9Pv9fr_f7_f7_d6N2eAxGAwvy1dbmDi_Pcu32tl4DwZFLBGcLtKJ6GU8XcQSydMinUhWJpfNtZo5hsPdxrha2EzO1ciwXK2Wy-VwZHNZxBKl6SKd6DV-t9t1d5qeb4nZ7_OrHabT0eV7i12-p-cteXkcZrPnLXR63gqb6WV5-z2nt8JselnuDtPTb3frnqajW2F22N2Sp8frdtjdertb8zK99Ta30GG5PN-Cv-n0srwVdpNbafq8FW6N0WF6C11u3dNsdstdtpflLfNbfi7TXWh6my3qPzLkYq4czEWTuWI1WiUAAAAAAAAAgCXMmTcBAAAAOA1oOZiNVssFmLgP1wU2AQAAAAAA2IW0JVKpzr-gLW782OEehq_DZ_m7Dm_h83plgIn7bObNnglirVbLGgAAQAAbAAAggFs3bwHYjBx_QQxWy8n-ARDEWq0W!&excid=22&docw=0&cijs=1&nlb=true HTTP/1.1
Host: am-match.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: text/html;charset=ISO-8859-1
machineid: 3401
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.4474664600982514
131.153.88.95200 OK 31 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.4474664600982514
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash fe195a06ede8839bcb0693af0515450a
fe539b3129603d34ee0c31d5c2956f3db1f132da
d108e34b2ae4aad6fc088aa74f6d7980281c45829b14eb81cfc26a3137ce7afb
GET /stream?room=aya_hitakayama&f=0.4474664600982514 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: image/jpeg
content-length: 30672
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
pr-bh.ybp.yahoo.com/sync/taboola/?gdpr=1&us_privacy=1---
99.80.82.120200 OK 43 B URL HTTP/2 pr-bh.ybp.yahoo.com/sync/taboola/?gdpr=1&us_privacy=1---
IP 99.80.82.120:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 13e1c7a2184e36d7ae519e99b1aa226f
355ccad4eac39838e1cc76fd0b670fd2ea1e5aa3
48a33ca9f42b91902d57ad8ac52e1ce32b92c8c10c732f2dbb6fe960ebfd9438
GET /sync/taboola/?gdpr=1&us_privacy=1--- HTTP/1.1
Host: pr-bh.ybp.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/gif
content-length: 43
age: 0
strict-transport-security: max-age=31536000
server: ATS
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18419)
Hash 6fc5aa8dc0757944cb0ca776001cc8e8
6fdd75f7a2d398133ced6ee90e7f295e437b2cd5
772c841401f6629f6a6ad975f1ce5086ef26df082435d522c236280380ce5aeb
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?p=16698&endpoint=us-east&gdpr=1&us_privacy=1---
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Tue, 28 Mar 2023 14:15:18 GMT
Content-Encoding: gzip
Content-Length: 9997
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=41802
Expires: Wed, 29 Mar 2023 14:16:48 GMT
Date: Wed, 29 Mar 2023 02:40:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 5f8735b4ecf5514e25b219d61762c567
dd537a5d5e8dd2f5bef74fc1a43676c00226484d
b928e446b947523f3e83320cf5c5f155ab8196b093bf49ba06235aa9afcc7711
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 29 Mar 2023 02:40:06 GMT
Last-Modified: Wed, 29 Mar 2023 00:58:05 GMT
Server: ECAcc (bsa/EA9D)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IYvHEkL8-ZNB5Rw8QHn5PTXxV77dJSCqzzVbV9bG4MvyL2RZwgatvQ==
Age: 6122
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8461435454886952
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8461435454886952
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 0a186533ca5d8fedcffcbc5880415ad8
a6c80f88732cafea94b729110d92b91f4aa8ed7b
ced3b9d29485f2f7bd5240e3a5766ceb128acb45094bea4f9c30b1ea7d61a3a1
GET /stream?room=kisimoto_key&f=0.8461435454886952 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/jpeg
content-length: 21998
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.8552080147754172
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.8552080147754172
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 8be027dc65afe73e89bb1ef7b3960d60
57b4b312b36db0780f44fddf156a7b5d30657e6f
ff7c0382e79362652460883d822c961fa2b705422a01dfbd72d20a1bad736eea
GET /stream?room=aya_hitakayama&f=0.8552080147754172 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/jpeg
content-length: 30195
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
52.22.68.57302 Found 0 B URL HTTP/2 taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
IP 52.22.68.57:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo HTTP/1.1
Host: taboola-supply-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 29 Mar 2023 02:40:06 GMT
content-length: 0
location: https://sync-t1.taboola.com/sg/telaria-rtb-network/1/rtb-h/?gdpr=1&us_privacy=1---&taboola_hm=42046f9284aa42f0b54709c82a6de16c&orig=video
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
set-cookie: tvid=42046f9284aa42f0b54709c82a6de16c; Domain=.tremorhub.com; Expires=Thu, 28-Mar-2024 08:28:26 GMT; Path=/; Secure; SameSite=None
tv_UISTB=<taboolaUserId>; Domain=.tremorhub.com; Expires=Fri, 28-Mar-2025 14:16:46 GMT; Path=/; Secure; SameSite=None
tvssa=1680057606121; Domain=.tremorhub.com; Expires=Mon, 03-Apr-2023 02:40:06 GMT; Path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.2538650838209269
131.153.88.95200 OK 21 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.2538650838209269
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash f54ce00849283982c899c217d1d99d2b
63e7354bd5890de3590270cddd8aa39df05c9094
e64d40dbb50ec41243a12a06a799bcfee42a26c734d7c3ac4ccbc318218e50c9
GET /stream?room=kisimoto_key&f=0.2538650838209269 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/jpeg
content-length: 21422
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Bu1h_uzDQdc
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Bu1h_uzDQdc
IP 142.250.74.131:0
Hash c473696963d9e98f96f85dad7fab675e
2cde61c3b0d0a02f66c30e6c180d1e28fcabb164
9b0a7f462bf90ce7670105ed18a951e9b7d700731a7001b07845dfca4a2ac8cd
POST /s/gts1d4/Bu1h_uzDQdc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tr.blismedia.com/v1/api/sync/rubicon?gdpr=1&us_privacy=1---
34.96.105.8204 No Content 0 B URL HTTP/2 tr.blismedia.com/v1/api/sync/rubicon?gdpr=1&us_privacy=1---
IP 34.96.105.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/api/sync/rubicon?gdpr=1&us_privacy=1--- HTTP/1.1
Host: tr.blismedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
set-cookie: b=6423A50603C49D08DDF72E5CBLIS;Version=1;Domain=blismedia.com;Path=/;Max-Age=31540000;SameSite=None;Secure
date: Wed, 29 Mar 2023 02:40:06 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
trc.taboola.com/wapkagroup-xyz/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=5
151.101.65.44204 No Content 0 B URL HTTP/2 trc.taboola.com/wapkagroup-xyz/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=5
IP 151.101.65.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /wapkagroup-xyz/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=5 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 14297
Origin: https://wapka.xyz
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://wapka.xyz
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:06 GMT
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1680057606.225341,VS0,VE108
x-vcl-time-ms: 108
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/rubicon?gdpr=1&us_privacy=1---
3.33.220.150200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/rubicon?gdpr=1&us_privacy=1---
IP 3.33.220.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/rubicon?gdpr=1&us_privacy=1--- HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Bu1h_uzDQdc
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Bu1h_uzDQdc
IP 142.250.74.131:0
Hash c473696963d9e98f96f85dad7fab675e
2cde61c3b0d0a02f66c30e6c180d1e28fcabb164
9b0a7f462bf90ce7670105ed18a951e9b7d700731a7001b07845dfca4a2ac8cd
POST /s/gts1d4/Bu1h_uzDQdc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash ac87b8b53eb958f6f68e22569dc2cac7
07e8adbd34bdfeb283ceb9923d5dff619a548efd
2755266fc68e00e5e3db78a73b4148b102e8b08f77c2d095cfddf926c8c0bc5f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2995
Cache-Control: max-age=98218
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:06 GMT
Etag: "642275fd-1d7"
Expires: Thu, 30 Mar 2023 05:57:04 GMT
Last-Modified: Tue, 28 Mar 2023 05:07:09 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash ac87b8b53eb958f6f68e22569dc2cac7
07e8adbd34bdfeb283ceb9923d5dff619a548efd
2755266fc68e00e5e3db78a73b4148b102e8b08f77c2d095cfddf926c8c0bc5f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2995
Cache-Control: max-age=98218
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:40:06 GMT
Etag: "642275fd-1d7"
Expires: Thu, 30 Mar 2023 05:57:04 GMT
Last-Modified: Tue, 28 Mar 2023 05:07:09 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
token.rubiconproject.com/token?pid=36584&gdpr=1&us_privacy=1---
213.19.162.90204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=36584&gdpr=1&us_privacy=1---
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=36584&gdpr=1&us_privacy=1--- HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 693f17ec94b6fd0c82d03268b1ba23d6
token.rubiconproject.com/token?pid=25470&gdpr=1&us_privacy=1---
213.19.162.90204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=25470&gdpr=1&us_privacy=1---
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=25470&gdpr=1&us_privacy=1--- HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2eb7d209ab67664d6226c75331547ba1
secure.adnxs.com/getuidnb?https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4894%26nid%3D1986%26put%3D$UID%26expires%3D30&gdpr=1&us_privacy=1---
185.89.211.84400 Request failed due to privacy signals 146 B URL HTTP/1.1 secure.adnxs.com/getuidnb?https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4894%26nid%3D1986%26put%3D$UID%26expires%3D30&gdpr=1&us_privacy=1---
IP 185.89.211.84:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6ba2e6193e3c04a544b487011a5faf29
01ba4f12b932a934fad5b51614b85f824cc80ffe
bfb16f2d35702077ef9d8416d9eef53d688ff16e6faf73d5b9913d76e1144d9a
GET /getuidnb?https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4894%26nid%3D1986%26put%3D$UID%26expires%3D30&gdpr=1&us_privacy=1--- HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 400 Request failed due to privacy signals
Server: nginx/1.21.3
Date: Wed, 29 Mar 2023 02:40:06 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 959.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.13594121456589037
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.13594121456589037
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 2cc613b4ec9ef252f1c04854881839b7
5d8713cfbcbf366c191232a4ecadd998d0988aa7
d6831fbffc8ea87396aa20ab30c9f481a9411813c354fe90b6b93001cd1f4207
GET /stream?room=aya_hitakayama&f=0.13594121456589037 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/jpeg
content-length: 30149
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
151.101.65.44200 OK 254 B URL HTTP/2 cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
IP 151.101.65.44:0
File type PNG image data, 12 x 12, 8-bit gray+alpha, non-interlaced\012- data
Hash dfa7b52c86e56bd67fa4002f6ed19854
7df722645482433c2b5c8d8ab4272a9874592f27
f68019eb4b4e5933301d4ee75969e0cb94ed8333bf514630fa749eb9c3e483c9
GET /libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: c3AK0F63Rmz1U+ZkwDZRH6hJiJRTGpZB8kTBPWz0vwbg9siBxtMOH8aEqr1NtVeNHtLhLAVUR9E=
x-amz-request-id: 4JKSR0YA3KVH073N
x-amz-replication-status: COMPLETED
last-modified: Wed, 24 Jun 2015 07:14:11 GMT
etag: "dfa7b52c86e56bd67fa4002f6ed19854"
x-amz-meta-s3cmd-attrs: uid:0/gname:root/uname:root/gid:0/mode:33188/mtime:1377415166/atime:1435052450/md5:dfa7b52c86e56bd67fa4002f6ed19854/ctime:1422381567
x-amz-version-id: hL.cyLD7Q4TL5ceY.7JQwF9m5IYI8mkC
content-type: image/png
server: AmazonS3
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:06 GMT
via: 1.1 varnish
age: 11009
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 230
x-timer: S1680057607.531010,VS0,VE0
cache-control: private,max-age=31536000
abp: 80
access-control-allow-origin: *
content-length: 254
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8895464212233742
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8895464212233742
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash dcdd869d8171c5acd284fe383599a16a
bed5df90f049cff6722061b202c2f9add52b802c
238a29719df222fe676d20ddce26acda93aa49f5a832c4eda3053c4ab5310c6f
GET /stream?room=kisimoto_key&f=0.8895464212233742 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/jpeg
content-length: 22025
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
pixel-us-east.rubiconproject.com/exchange/sync.php?p=16698&gdpr=1&us_privacy=1---&gdpr=1&us_privacy=1---
69.173.151.100204 No Content 0 B URL HTTP/1.1 pixel-us-east.rubiconproject.com/exchange/sync.php?p=16698&gdpr=1&us_privacy=1---&gdpr=1&us_privacy=1---
IP 69.173.151.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=16698&gdpr=1&us_privacy=1---&gdpr=1&us_privacy=1--- HTTP/1.1
Host: pixel-us-east.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 0228ab361cece0438ff9eb16e4e5890e
Content-Type: image/gif
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash ea337e52dd5d78324b38c2554b0815a0
e460e4793d1195979e285de235286bd2bfca5edd
2a602c9d98ec331affc11544aad4287b10f3d63428866289acff60e48f3feb3d
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=153950
Date: Wed, 29 Mar 2023 02:40:06 GMT
Etag: "642348ed-1d7"
Expires: Thu, 30 Mar 2023 21:25:56 GMT
Last-Modified: Tue, 28 Mar 2023 20:07:09 GMT
Server: ECAcc (nya/1C5E)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: G7hAhWoZh9mkMpHGb64Hqgd-7upj9lZUBfKdL8coe4GPU6AAQEp6tw==
Age: 4728
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.25607004426059576
131.153.88.95200 OK 31 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.25607004426059576
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 300a4b3d4da1b59856f58ae5d06358bf
8a4a87ddf50b70b6e0634833f62802b4c33fd018
373b3e435089edd46981650b19d7509caaaea434836dc4db1e91ba0d2e8394ff
GET /stream?room=aya_hitakayama&f=0.25607004426059576 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/jpeg
content-length: 30600
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.19465185006153907
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.19465185006153907
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 1db6309ef05a7bd1556e514e618f2a1f
51afd27fe98b7d8760c3cbdc8579cb2384918198
c7ac63012dd118c2b29d0eaf0cef8b95c8d51258fb483b1b75a0a9ffc2a7613b
GET /stream?room=kisimoto_key&f=0.19465185006153907 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/jpeg
content-length: 21705
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
sync.ipredictive.com/d/sync/cookie/generic?https://pixel.rubiconproject.com/tap.php?v=17149&nid=2861&put=${ADELPHIC_CUID}&expires=30&gdpr=1&us_privacy=1---
34.192.97.149302 Found 175 B URL HTTP/1.1 sync.ipredictive.com/d/sync/cookie/generic?https://pixel.rubiconproject.com/tap.php?v=17149&nid=2861&put=${ADELPHIC_CUID}&expires=30&gdpr=1&us_privacy=1---
IP 34.192.97.149:0
File type HTML document, ASCII text
Hash 9075150e919f545cbc5ef29185baeefe
5e19f9ea174da00a0264b34a11b00172ff7905be
86d7447cbe38edf248d6388cb859927b159756212d3c15ebf3af94ac2c7426d3
GET /d/sync/cookie/generic?https://pixel.rubiconproject.com/tap.php?v=17149&nid=2861&put=${ADELPHIC_CUID}&expires=30&gdpr=1&us_privacy=1--- HTTP/1.1
Host: sync.ipredictive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Wed, 29 Mar 2023 02:40:06 GMT
Location: https://pixel.rubiconproject.com/tap.php?v=17149&nid=2861&put=f4d5a133-662e-4cf9-923b-012c89f3cb88&expires=30&gdpr=1&us_privacy=1---
Set-Cookie: cu=f4d5a133-662e-4cf9-923b-012c89f3cb88|1680057606679; Path=/; Domain=ipredictive.com; Expires=Thu, 28 Mar 2024 02:40:06 GMT; Max-Age=31536000; SameSite=None; Secure
X-CI-RTID: 350d2083-56db-4fd9-a075-bb76a5dd5353
Content-Length: 175
Connection: keep-alive
sync-t1.taboola.com/sg/telaria-rtb-network/1/rtb-h/?gdpr=1&us_privacy=1---&taboola_hm=42046f9284aa42f0b54709c82a6de16c&orig=video
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/telaria-rtb-network/1/rtb-h/?gdpr=1&us_privacy=1---&taboola_hm=42046f9284aa42f0b54709c82a6de16c&orig=video
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sg/telaria-rtb-network/1/rtb-h/?gdpr=1&us_privacy=1---&taboola_hm=42046f9284aa42f0b54709c82a6de16c&orig=video HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://imprammp.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:06 GMT
x-fastly-to-nlb-rtt: 27454
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.5866847050426054
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.5866847050426054
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 4a2f7e62c939ffee47d9a17798e19a0d
04dfa28b7e89b38c4ed3777bed257ea443652c9d
8837891866351a6e38555e29da99103797cd6c55a13bd376e8307891ba416e80
GET /stream?room=aya_hitakayama&f=0.5866847050426054 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/jpeg
content-length: 29799
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---&dcc=t
52.46.128.147200 OK 43 B URL HTTP/1.1 s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---&dcc=t
IP 52.46.128.147:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6851dbf491ae442da3314f19e8aff085
ecfec27263608c4ae7cd4f8e0cebb1b061df2ac3
c21e2c1246fe45a6750ae6208db2b5965ff6ed63eb80d2ecec3be9c83813428e
GET /dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Wed, 29 Mar 2023 02:40:06 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: JDF97WJXCRHYZTK4X48Q
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
pixel.rubiconproject.com/tap.php?v=17149&nid=2861&put=f4d5a133-662e-4cf9-923b-012c89f3cb88&expires=30&gdpr=1&us_privacy=1---
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=17149&nid=2861&put=f4d5a133-662e-4cf9-923b-012c89f3cb88&expires=30&gdpr=1&us_privacy=1---
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=17149&nid=2861&put=f4d5a133-662e-4cf9-923b-012c89f3cb88&expires=30&gdpr=1&us_privacy=1--- HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.7034464367810837
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.7034464367810837
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash c8bff9796a6fecefd29bc83745217d2c
0c3e842cca4d95e2a87e71c5dfab303d8455bd57
3a4f5e1e46d9502af571b4100d5465c6136296efd2d14df7aed89a398e1c34d1
GET /stream?room=kisimoto_key&f=0.7034464367810837 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/jpeg
content-length: 21724
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.04864759890648551
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.04864759890648551
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 7c3aa047e5332e3770a80c74621c3205
5dda0994402e854a86170aa01ec4c77f6d966fd0
2287402c9c11b126b6caf401f6ea18bf06b491a8b4c32156b21df42230f2255c
GET /stream?room=aya_hitakayama&f=0.04864759890648551 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: image/jpeg
content-length: 30025
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.4561347303587444
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.4561347303587444
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash b4ecaf204ea1ea84193454f679e7bc1f
1cd6b1abc33148a406a75a42112eeb4e66706fb3
39d430f3957e44df974315f8212f05fe36a0b9f998eaeef93b016a2f5e808c1d
GET /stream?room=kisimoto_key&f=0.4561347303587444 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 21604
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cdn.taboola.com/scripts/cds-pips.js
151.101.65.44200 OK 1.3 kB URL HTTP/2 cdn.taboola.com/scripts/cds-pips.js
IP 151.101.65.44:0
File type ASCII text, with very long lines (3545), with no line terminators
Hash 780c5c514014519ce276709f515905a0
04fe86d00b9c9077effe05171d066d243ecab221
015db06150b62ad2ad533883652174ebb6f07e24a7147fdac01a0ccd266e3f30
GET /scripts/cds-pips.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2KBeU0d7OyPXtZDYUoIqlTBmhGhsve90tjYoemCxISjKQrNgcxT28sPXVt5KfJt+6r7dFoJgA8g=
x-amz-request-id: NFWGDQGY1WQ95XHE
x-amz-replication-status: COMPLETED
last-modified: Wed, 12 Oct 2022 13:57:57 GMT
etag: "383fa66d2a0a09f4a6e64a9593ad43bb"
x-amz-version-id: z5FoayaLm_Bvew3pbkytkoHczFCvkPwT
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:07 GMT
via: 1.1 varnish
age: 455
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 186
x-timer: S1680057607.109172,VS0,VE0
vary: Accept-Encoding
abp: 80
cache-control: private, max-age=3600
access-control-allow-origin: *
content-length: 1340
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.537549906044703
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.537549906044703
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 541fecd5030ddcba6b32c058075caadf
de79cad18699d54070f82ec9a6c71722ffeec43b
238e964832a48544d3ecbdec608612d03a7f39c66ad966136505e2cb30510cca
GET /stream?room=aya_hitakayama&f=0.537549906044703 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 30388
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.2944211773317792
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.2944211773317792
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 0390cadfa7ceeaa26b86fd9bd33c5f50
9297a0e957c7d7f086db0bb31f309dd8010cee66
8657cc87b417d9a3b3711f935a739b3d3da4195bf730125dffd0d144f174c6df
GET /stream?room=kisimoto_key&f=0.2944211773317792 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 21618
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
a.tribalfusion.com/i.match?p=b10&u={rubicon_user_token}&redirect=https%3A//pixel.rubiconproject.com/tap.php%3Fv%3D111756%26nid%3D3856%26put%3D%24TF_USER_ID_ENC%24%26expires%3D180&gdpr=1&us_privacy=1---
104.18.24.173302 Found 40 B URL HTTP/2 a.tribalfusion.com/i.match?p=b10&u={rubicon_user_token}&redirect=https%3A//pixel.rubiconproject.com/tap.php%3Fv%3D111756%26nid%3D3856%26put%3D%24TF_USER_ID_ENC%24%26expires%3D180&gdpr=1&us_privacy=1---
IP 104.18.24.173:0
File type ASCII text, with no line terminators
Hash dea7d460fd23cdf5ef6a79a8686db037
fe7e0528a1b0eeae03fb7baab563f3451f9e9d2c
a48985aaddcfafbfb36bdd7fd405bd849b265180b19711cc0b8bcacdf8b54d0f
GET /i.match?p=b10&u={rubicon_user_token}&redirect=https%3A//pixel.rubiconproject.com/tap.php%3Fv%3D111756%26nid%3D3856%26put%3D%24TF_USER_ID_ENC%24%26expires%3D180&gdpr=1&us_privacy=1--- HTTP/1.1
Host: a.tribalfusion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 29 Mar 2023 02:40:06 GMT
content-type: text/html
location: https://s.tribalfusion.com/z/i.match?p=b10&u={rubicon_user_token}&redirect=https%3A//pixel.rubiconproject.com/tap.php%3Fv%3D111756%26nid%3D3856%26put%3D%24TF_USER_ID_ENC%24%26expires%3D180&gdpr=1&us_privacy=1---
p3p: CP="NOI DEVo TAIa OUR BUS"
x-function: 206
x-reuse-index: 436
cache-control: no-cache, private
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
set-cookie: ANON_ID=ahnoeUm5abmAyuoETM72gKVGYQUtYNQWZbbgbPQRH; path=/; domain=.tribalfusion.com; expires=Tue, 27-Jun-2023 02:40:06 GMT; SameSite=None; Secure;
ANON_ID_old=ahnoeUm5abmAyuoETM72gKVGYQUtYNQWZbbgbPQRH; path=/; domain=.tribalfusion.com; expires=Tue, 27-Jun-2023 02:40:06 GMT;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7af4bf078b36b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
xml.serve-servee.com/thumbnail?i=tWwNhdMbun8_0&p=1680057605.220815&imgt=icon
172.64.163.38302 Found 0 B URL HTTP/2 xml.serve-servee.com/thumbnail?i=tWwNhdMbun8_0&p=1680057605.220815&imgt=icon
IP 172.64.163.38:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /thumbnail?i=tWwNhdMbun8_0&p=1680057605.220815&imgt=icon HTTP/1.1
Host: xml.serve-servee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 29 Mar 2023 02:40:07 GMT
content-length: 0
location: https://static.serve-servee.com/n337/ad/250x250_hqCCg8Cm.png
cache-control: no-store
age: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M0GeiCgbZYLzoW3ncYe4%2FjLhA7YpDvDIWeU8eES05Ki0YscL%2B7doQ%2FahPq23PhJVb1cQF5msxOf2IE8frtm0XUsaWgzJuDEA6gkzbrsNl8xPUFsgk92Xh3%2B8RsLumRy5lj18JZD%2B1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4bf0c581d71f2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.9563359354375112
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.9563359354375112
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 6fe223567ae7565ac1ba1e2472ee6ae8
dc5f32dfde08039a7d1b9d647712831b1f917d94
793aecd62cde042a4db406f6762b1482a12e14d2c59b7c7009a3e3c56f537c80
GET /stream?room=aya_hitakayama&f=0.9563359354375112 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 29766
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
static.serve-servee.com/n337/ad/250x250_hqCCg8Cm.png
172.64.163.38200 OK 89 kB URL HTTP/2 static.serve-servee.com/n337/ad/250x250_hqCCg8Cm.png
IP 172.64.163.38:0
File type PNG image data, 250 x 250, 8-bit/color RGB, non-interlaced\012- data
Hash 0994ec31361ea569c5549063145bfdd2
9b270e9f7a346a0f0f60a978e154f49740350270
e4dbff1cf1f9750d68296737897eba9bd59ebdcb292015e87c3be61b5c242422
GET /n337/ad/250x250_hqCCg8Cm.png HTTP/1.1
Host: static.serve-servee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/png
content-length: 88957
last-modified: Thu, 08 Apr 2021 13:54:09 GMT
accept-ranges: bytes
etag: "606f0b01-15b7d"
cache-control: max-age=86400
x-hw: 1680057607.cds287.lo4.h2,1680057607.cds305.lo4.c
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9GUs%2FsN0dTwiyx9HYixn%2BVixf%2Brfz93TsD4G89uPlsNRoaDKviL57sYlW4tToMcBDjmOOUexJGj1%2BTNP09ymrrgJ5PnWdQWamdGLGEqxp8lVqm8QkaW9mCGkmpTxMa4Or%2F7Cqms9ZFZBsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4bf0d286671f2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bookadil.com/winnotice?sid=H4sIAAAAAAAC%2F1RTzYscRRSvifEQPCl6EHIY8aIis%2F0xM5kxSDAmkcV1d8kHexOqq7p3n9NT1VR1T8%2FuaVGQnGTEgznW%2FvaL6CrmDxCl14ssCJmLrOj%2BC4pC8CgzGTP6oPt9%2FB7Fr9771cc7xRnzUPDT1ff0FqUpX2g1vPora6SkLm19%2BXbd9xre5foaqXbzcn04%2BZnBG77Xaniv1t%2BJRU8vBJ7veb7n12%2BQiRM9XJiioOyo6ze6XqMZNPxWE0PjYIsaLK9BDs7YcyA5fnrjxwcgUUH1v7kW216us9ev94uU59pgIA%2FvqJ7SpUJ%2FHiamhkQdzrqh7Zixe%2Beg1eGMNfRgb8IaEY1Z7WcfkTqcUUM02H%2FMLkoRK0TyGZSDCnFagXgFoT8CyYcMEBLLK1D9g2VtSr75GOUTdMzOP%2FoLVI7Z%2Bd%2Beh%2Bp%2FfTWlYf2WTouctLIYJg40rEDrFbLiGPkWA5XHEPmHIPkTW3i0BNXfW7GpBkk3vT1RBUoqpPEI3DIUk48YiqSGIquhL0%2FrvNVNPO9SEiVh2GkKIcJQiFanLVsybHYSD4WY0Bshz0YQ6QjCbCMz2%2BjRCKb4BGQrFNyBMofMHnT9bvtSiFicXPmbTQ2cTuucd2PhidAL4lZbRkHgN%2F124PmyKUPeDWNEdHLl5fuveXeCCCkxxPzkuz9mB1jloAq3qww5mPiEzWzXyPzkypOuDQcrGWzOMJAOZcxQWoaSM5TEUOYM5cDty9QG1h3I1BaRP%2FPBzIduV%2Bfrbl%2Fn67FiO9kZe3a6mz%2FF%2B%2BjFp%2FXEE0En6TbDoNPsdqOObF4K2522FL7sxM2OhKV%2FJ0D2HLitYYvG7IVff0c2kY38DBE%2Fhk2PIegl8OIieOnANxy2lIPUR5HWPS4pbQjdR5ZfQL5Z20nP2ItTHu17d%2F83WmEcMuPwAf3AsJ7e3b2pS7Z3U5eWPVjJcurTFp%2Fo51bO8%2FipL96NN0tt5OI1O7r%2FlpgAk%2FDodmzzJa4kqXXLvrxKUsbmhjYiZt8u2rU4Wi3sxtXCqCJbWn37xmI%2FM7G1pFUFTg%2Bvfw5BY3bh01%2BmL%2BPiV2%2BCTAVTOPSLJ6sC6Qoi24bN5jWrGUw6z6OMoSzcrgmieXEihnS%2Bc%2FDIwf4nj%2Bbxjv0elhxyy%2F4BAAD%2F%2FwEAAP%2F%2FZMc%2F1oMEAAA%3D&ap=${AUCTION_PRICE}&l=3577992&sub3=1680057605&pid=91283&sub2=icon&auid=aa9ec0c302e56db221416201d4d3a93e&icon=https://cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg
172.67.159.187307 Temporary Redirect 0 B URL HTTP/2 bookadil.com/winnotice?sid=H4sIAAAAAAAC%2F1RTzYscRRSvifEQPCl6EHIY8aIis%2F0xM5kxSDAmkcV1d8kHexOqq7p3n9NT1VR1T8%2FuaVGQnGTEgznW%2FvaL6CrmDxCl14ssCJmLrOj%2BC4pC8CgzGTP6oPt9%2FB7Fr9771cc7xRnzUPDT1ff0FqUpX2g1vPora6SkLm19%2BXbd9xre5foaqXbzcn04%2BZnBG77Xaniv1t%2BJRU8vBJ7veb7n12%2BQiRM9XJiioOyo6ze6XqMZNPxWE0PjYIsaLK9BDs7YcyA5fnrjxwcgUUH1v7kW216us9ev94uU59pgIA%2FvqJ7SpUJ%2FHiamhkQdzrqh7Zixe%2Beg1eGMNfRgb8IaEY1Z7WcfkTqcUUM02H%2FMLkoRK0TyGZSDCnFagXgFoT8CyYcMEBLLK1D9g2VtSr75GOUTdMzOP%2FoLVI7Z%2Bd%2Beh%2Bp%2FfTWlYf2WTouctLIYJg40rEDrFbLiGPkWA5XHEPmHIPkTW3i0BNXfW7GpBkk3vT1RBUoqpPEI3DIUk48YiqSGIquhL0%2FrvNVNPO9SEiVh2GkKIcJQiFanLVsybHYSD4WY0Bshz0YQ6QjCbCMz2%2BjRCKb4BGQrFNyBMofMHnT9bvtSiFicXPmbTQ2cTuucd2PhidAL4lZbRkHgN%2F124PmyKUPeDWNEdHLl5fuveXeCCCkxxPzkuz9mB1jloAq3qww5mPiEzWzXyPzkypOuDQcrGWzOMJAOZcxQWoaSM5TEUOYM5cDty9QG1h3I1BaRP%2FPBzIduV%2Bfrbl%2Fn67FiO9kZe3a6mz%2FF%2B%2BjFp%2FXEE0En6TbDoNPsdqOObF4K2522FL7sxM2OhKV%2FJ0D2HLitYYvG7IVff0c2kY38DBE%2Fhk2PIegl8OIieOnANxy2lIPUR5HWPS4pbQjdR5ZfQL5Z20nP2ItTHu17d%2F83WmEcMuPwAf3AsJ7e3b2pS7Z3U5eWPVjJcurTFp%2Fo51bO8%2FipL96NN0tt5OI1O7r%2FlpgAk%2FDodmzzJa4kqXXLvrxKUsbmhjYiZt8u2rU4Wi3sxtXCqCJbWn37xmI%2FM7G1pFUFTg%2Bvfw5BY3bh01%2BmL%2BPiV2%2BCTAVTOPSLJ6sC6Qoi24bN5jWrGUw6z6OMoSzcrgmieXEihnS%2Bc%2FDIwf4nj%2Bbxjv0elhxyy%2F4BAAD%2F%2FwEAAP%2F%2FZMc%2F1oMEAAA%3D&ap=${AUCTION_PRICE}&l=3577992&sub3=1680057605&pid=91283&sub2=icon&auid=aa9ec0c302e56db221416201d4d3a93e&icon=https://cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg
IP 172.67.159.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /winnotice?sid=H4sIAAAAAAAC%2F1RTzYscRRSvifEQPCl6EHIY8aIis%2F0xM5kxSDAmkcV1d8kHexOqq7p3n9NT1VR1T8%2FuaVGQnGTEgznW%2FvaL6CrmDxCl14ssCJmLrOj%2BC4pC8CgzGTP6oPt9%2FB7Fr9771cc7xRnzUPDT1ff0FqUpX2g1vPora6SkLm19%2BXbd9xre5foaqXbzcn04%2BZnBG77Xaniv1t%2BJRU8vBJ7veb7n12%2BQiRM9XJiioOyo6ze6XqMZNPxWE0PjYIsaLK9BDs7YcyA5fnrjxwcgUUH1v7kW216us9ev94uU59pgIA%2FvqJ7SpUJ%2FHiamhkQdzrqh7Zixe%2Beg1eGMNfRgb8IaEY1Z7WcfkTqcUUM02H%2FMLkoRK0TyGZSDCnFagXgFoT8CyYcMEBLLK1D9g2VtSr75GOUTdMzOP%2FoLVI7Z%2Bd%2Beh%2Bp%2FfTWlYf2WTouctLIYJg40rEDrFbLiGPkWA5XHEPmHIPkTW3i0BNXfW7GpBkk3vT1RBUoqpPEI3DIUk48YiqSGIquhL0%2FrvNVNPO9SEiVh2GkKIcJQiFanLVsybHYSD4WY0Bshz0YQ6QjCbCMz2%2BjRCKb4BGQrFNyBMofMHnT9bvtSiFicXPmbTQ2cTuucd2PhidAL4lZbRkHgN%2F124PmyKUPeDWNEdHLl5fuveXeCCCkxxPzkuz9mB1jloAq3qww5mPiEzWzXyPzkypOuDQcrGWzOMJAOZcxQWoaSM5TEUOYM5cDty9QG1h3I1BaRP%2FPBzIduV%2Bfrbl%2Fn67FiO9kZe3a6mz%2FF%2B%2BjFp%2FXEE0En6TbDoNPsdqOObF4K2522FL7sxM2OhKV%2FJ0D2HLitYYvG7IVff0c2kY38DBE%2Fhk2PIegl8OIieOnANxy2lIPUR5HWPS4pbQjdR5ZfQL5Z20nP2ItTHu17d%2F83WmEcMuPwAf3AsJ7e3b2pS7Z3U5eWPVjJcurTFp%2Fo51bO8%2FipL96NN0tt5OI1O7r%2FlpgAk%2FDodmzzJa4kqXXLvrxKUsbmhjYiZt8u2rU4Wi3sxtXCqCJbWn37xmI%2FM7G1pFUFTg%2Bvfw5BY3bh01%2BmL%2BPiV2%2BCTAVTOPSLJ6sC6Qoi24bN5jWrGUw6z6OMoSzcrgmieXEihnS%2Bc%2FDIwf4nj%2Bbxjv0elhxyy%2F4BAAD%2F%2FwEAAP%2F%2FZMc%2F1oMEAAA%3D&ap=${AUCTION_PRICE}&l=3577992&sub3=1680057605&pid=91283&sub2=icon&auid=aa9ec0c302e56db221416201d4d3a93e&icon=https://cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg HTTP/1.1
Host: bookadil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
date: Wed, 29 Mar 2023 02:40:07 GMT
content-length: 0
location: https://cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
x-request-id: f5b4698486fa1df8a4fe621cf4a8c197
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IwxO32pC%2Bsz5qH3A1Ybe8r2kOthcb4MebVSvXztqZLRedyUX3XSqvM4EoVV92dq1k5Z2NKtacURQld5g23tOy%2BzmliI4jyLm7APJw8aAB%2BtpEw6G9i9Q79IbAp4X3ak%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4bf0c4c760b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.770229359782893
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.770229359782893
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash e5dcbb6c5324d7d170651df37d99f522
95d1cb53807105e8ecf05635d41fc1bbbde06ebe
c05debc8e6efdebd408b0179dedcbfd800a16a3202e1c809794c7d5e4eb78c8f
GET /stream?room=kisimoto_key&f=0.770229359782893 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 21855
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6208588e2c801b0c7ec557287d80f166
71079a8192940c19ab84d33039fc1fa437066cb3
c169a24f728f1679d861ab53a26a09ece1905057c53a6a316229cf493317e41a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C169A24F728F1679D861AB53A26A09ECE1905057C53A6A316229CF493317E41A"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7408
Expires: Wed, 29 Mar 2023 04:43:35 GMT
Date: Wed, 29 Mar 2023 02:40:07 GMT
Connection: keep-alive
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.35133889934117835
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.35133889934117835
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash db4520828f396204e410297605109337
bcbba7a56a91515468e8b0836da6632f43c5546c
d03ff0541120bf7ef559dec7b14877461e6fa60e0eaee0ebfe950e91cf7204a4
GET /stream?room=aya_hitakayama&f=0.35133889934117835 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 29857
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg
45.133.44.10200 OK 33 kB URL HTTP/2 cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2020:05:18 19:19:17], baseline, precision 8, 200x200, components 3\012- data
Hash 70cf8250da1a25a7b445231428af7828
a849d338423d2919949340838c768bba90b9081c
b7060bc46dc459a00d4124523a26f0cbf31fba31d41fccae9f82bedaf22c1186
GET /cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 33103
server: nginx/1.17.6
last-modified: Tue, 09 Jun 2020 11:44:50 GMT
etag: "5edf7632-814f"
expires: Fri, 31 Mar 2023 02:40:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.13587357047912363
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.13587357047912363
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash e5dcbb6c5324d7d170651df37d99f522
95d1cb53807105e8ecf05635d41fc1bbbde06ebe
c05debc8e6efdebd408b0179dedcbfd800a16a3202e1c809794c7d5e4eb78c8f
GET /stream?room=kisimoto_key&f=0.13587357047912363 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 21855
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.6270316855410059
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.6270316855410059
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
Hash b803b0bf092d3c65014de51aec2e4be8
db628f0907948ce4cb44dda7748a663c0fc5b5ff
c4ae7db8769e99ef2cf469e4ea9f8244ffb60a974cd7f3959ff2e71c03e0b166
GET /stream?room=aya_hitakayama&f=0.6270316855410059 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 29992
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.9764445398204052
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.9764445398204052
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash e91fae34d177f58dad46b5cb7134355f
4320920590e434985749956ed1abd004b9540b3a
139108595807d3b2f8b606561c687e02482aa8e7da681fcb167634353a6b41c3
GET /stream?room=kisimoto_key&f=0.9764445398204052 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 22510
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.7405318717109155
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.7405318717109155
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 78d3c8a305c64c6594fe71e18de60d36
585ace7e4e8d39f35fa0dca84e9ca832bd820be6
0c7e784889222985189df01dbcafabb30c39cb58ca570aa52e39b54e6e71717a
GET /stream?room=aya_hitakayama&f=0.7405318717109155 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 29805
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8299811599501372
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8299811599501372
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash e91fae34d177f58dad46b5cb7134355f
4320920590e434985749956ed1abd004b9540b3a
139108595807d3b2f8b606561c687e02482aa8e7da681fcb167634353a6b41c3
GET /stream?room=kisimoto_key&f=0.8299811599501372 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 22510
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.12236697606819724
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.12236697606819724
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 8027e8e81271d5d8f313731c556428e4
3602971b2808c63ee348c970b92ad3a086e29395
6bb7d1b445284f51c47aeb0a4248f1d640e57039e7d942a1e18ba973fb78f309
GET /stream?room=aya_hitakayama&f=0.12236697606819724 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 29870
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.25721860104773786
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.25721860104773786
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash f6f22f16c119ed7051018e66422da286
bdf7cc87ef014b6d64c0a4383e80fbae8e0ff7e8
9e24685959be0a77d67731801b5c4afb52de4fd48d2174f4207e5e870a41faf8
GET /stream?room=kisimoto_key&f=0.25721860104773786 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:07 GMT
content-type: image/jpeg
content-length: 21829
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.811835713847064
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.811835713847064
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 47fd394d15e67e85788b2189cee4f57b
c8198aac1200d4e9afef076ae61ab67d78827bf6
9e6bd8a70c2177a0b5948dcfd7cffe1e777a7419dd270857ae2bd81000ca1c67
GET /stream?room=aya_hitakayama&f=0.811835713847064 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:08 GMT
content-type: image/jpeg
content-length: 29969
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8224061889231928
131.153.88.95200 OK 23 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8224061889231928
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 5888b897d9059716eeea56cda171b307
8d2489e1303890e2e8447f3ac77bfcbd495a3ae1
2c42b31b7d229801209341a7105958a6a0d9fb34874082ec9a85503f0c05f5c7
GET /stream?room=kisimoto_key&f=0.8224061889231928 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:08 GMT
content-type: image/jpeg
content-length: 23013
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.8445188027418948
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.8445188027418948
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
Hash 5e25c619bf19c05d63fe6f0f48ea28ba
dd146ff53122565b1e5e4e9a26d906d42e819b85
1163e9c9ad4bc6cb1efc0f91fd3deb731f04ad729273d36d09c3051a7a0b7b60
GET /stream?room=aya_hitakayama&f=0.8445188027418948 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:08 GMT
content-type: image/jpeg
content-length: 29664
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.5898707098660487
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.5898707098660487
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 102b4f3068038ae46a175e38377fc9be
f68b8b2bdd44a399c1951feddf69da81882c7bb7
d61dc1d051a3239e31fce97066fcef23f1d7b9e38b53c58e5b07a71147cdde22
GET /stream?room=kisimoto_key&f=0.5898707098660487 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:08 GMT
content-type: image/jpeg
content-length: 21730
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.08425614372316514
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.08425614372316514
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 0fbbb2bce821d6694dc07f71ed894ada
eece12c18fabdb93ee2d8545692f7e6429e1f9b2
7a5fd068aff344206fc114b1eba0dddc21afcbe7f6589ea1817edb1665784617
GET /stream?room=aya_hitakayama&f=0.08425614372316514 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:08 GMT
content-type: image/jpeg
content-length: 29853
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8703415142789722
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8703415142789722
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 75b3ef0742d29f699038afcfdbf15187
09dc6acba193172f17f18e7e32151fcdb6e40d86
36531f50159180df767bcbdbe1567f4268adfef3b7d1a848d68a4b74790f08e0
GET /stream?room=kisimoto_key&f=0.8703415142789722 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:08 GMT
content-type: image/jpeg
content-length: 22197
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.4353272757814636
131.153.88.95200 OK 30 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=aya_hitakayama&f=0.4353272757814636
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash b696e7c9c90d68749c4c9f3f58d6a1f1
3e5e4bbbfc04c45dbdc46518852bd96e1dc9ba6c
3165f75625b1c0138db00404629ff2f6ee61d12d161ef0f4a24e8790a796c279
GET /stream?room=aya_hitakayama&f=0.4353272757814636 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:08 GMT
content-type: image/jpeg
content-length: 30382
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8658395936200491
131.153.88.95200 OK 22 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=kisimoto_key&f=0.8658395936200491
IP 131.153.88.95:0
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 7ce3db9a7a88d83cccb55e9240473507
4b9734e6e233820b10a4f7b26f533835916571f4
3f320f162ba82ced41f7a1463b204f27c78acb6f15b03644b575586383dcf61f
GET /stream?room=kisimoto_key&f=0.8658395936200491 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:08 GMT
content-type: image/jpeg
content-length: 21797
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/cachebust/158-prod-e6411238cb0089faa467.js
104.16.94.42200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/cachebust/158-prod-e6411238cb0089faa467.js
IP 104.16.94.42:0
GET /cachebust/158-prod-e6411238cb0089faa467.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=34667
etag: W/"666c5155f912230414d380cded74953f"
last-modified: Tue, 28 Mar 2023 16:57:07 GMT
x-amz-id-2: 9cZGPgAA58/cXRF+tpVXDw0VufNU1KUvZ+gYwi451yrmZCIk1wcIiqLLQRbD6kdEVoi3BHM02x8=
x-amz-meta-s3cmd-attrs: md5:666c5155f912230414d380cded74953f
x-amz-request-id: NXP2SQ5XTVF0Z7HW
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 34814
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EfaYEfb5zE6eFe%2FvlYDZL9IgyB3hB3uMC1u9FfxnvQpdv13IbBjzDvptC80sJqwyb7fxun5mG7F8LGIsPCGdbqsem7XZ%2BaaHYgkyO%2BrPA6oXQM8FbkFs69ZW69l%2B2aEGgrcyW5GbTGjPuJFjcGgoAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=xw.eKvjJzG4ZWbKc4wsOBG9qYHc0BVgCawa3QLYhMQ4-1680057600990-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee62816b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/cachebust/175-prod-5b45697bd91e1bf63576.js
104.16.94.42200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/cachebust/175-prod-5b45697bd91e1bf63576.js
IP 104.16.94.42:0
GET /cachebust/175-prod-5b45697bd91e1bf63576.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:01 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=1820789
etag: W/"d53175535c0cba6352a84a0e898afa9b"
last-modified: Tue, 28 Mar 2023 23:54:01 GMT
x-amz-id-2: /TKWrly4oN+6FsBf3hAfLIffaMGmR6/kjBeU/6hS//qZGPNwRHXynthi8OyrcKiqI+8l2gSV4O8=
x-amz-meta-s3cmd-attrs: md5:d53175535c0cba6352a84a0e898afa9b
x-amz-request-id: VQVD5VMTSTV4V8KC
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 9792
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f%2FPFiEyW2VfqB5IQSmER0VONMuk81IUCwRe5LOBB3Q9TEw93Sb3TfALMoQtS0QJPydStJX605D%2BE0%2Fa8F1iQp9uyoOAY0Gq%2BNTOcDiK1DST5V1SqP%2FxazNrxS6%2F2%2FMiZWGSUWJ7uUxtWw9Tk9CwMyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=CYOrxDIyjPKENSAeFP5xCtA5B31Buf_Z56FK1HKHpQE-1680057600991-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee62815b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/js/output.caee332d326d.js
104.16.94.42200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.caee332d326d.js
IP 104.16.94.42:0
GET /CACHE/js/output.caee332d326d.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:01 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
etag: W/"b61e15511bf0db70d0d422e98c465403"
last-modified: Thu, 24 Jun 2021 21:24:08 GMT
x-amz-id-2: HeoCFEUKzTihPkh1D1dueOkltnCJFjGi5HuYWiCUmgPBwm4469ef2j6fTJmt3Rc9WX3D61SDttc=
x-amz-meta-s3cmd-attrs: md5:b61e15511bf0db70d0d422e98c465403
x-amz-request-id: 75T4PX5CV0NYCRDS
cf-cache-status: HIT
age: 770061
expires: Fri, 28 Apr 2023 02:40:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GxHROjwan2UQYdymIBNuEbV%2Bb14RUraMFWDd%2B%2BRsUzeongzeSUuLpjI4mfxEStQbMmvSgtEYB0zuCH50kug2ZlUessyR06Vk%2Be5dEyNAmG6xgkXbsxReY2QXPfsvg2BSLKCkP3STPqz1QBCZiz2Gpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=SkxwSUwZVQibNVOnU8jSZnv6fck3phVAewg2H19dxfA-1680057601018-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee64833b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wapka.xyz/
x-crto-bundle: NV4PLl84VnFsREs4SUhRTnJBdmVEMVdFc0cyTWxjbHlsQnRtVXNOV2FiWFd6QXh2WVlYcndyMGdTbThNazJVbSUyRjl6ejdBeVNJeUtRUWdsJTJGNHQ0Sk9PeUZUUzV6QTdKU1YxSDZIejJlSlVIQWoyNmtSJTJCNFducklGenpYSUtNM0tUSkNoTSUyRlp1b0xMR0NpN3NEamtJV244eUNsQSUzRCUzRA
Origin: https://wapka.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://wapka.xyz
server-processing-duration-in-ticks: 1749968
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
chaturbate.com/in/?track=embed&tour=6o0b&campaign=ldZ4M&disable_sound=1&mobileRedirect=never&embed_video_only=1
104.18.101.40302 Found 0 B URL HTTP/2 chaturbate.com/in/?track=embed&tour=6o0b&campaign=ldZ4M&disable_sound=1&mobileRedirect=never&embed_video_only=1
IP 104.18.101.40:0
GET /in/?track=embed&tour=6o0b&campaign=ldZ4M&disable_sound=1&mobileRedirect=never&embed_video_only=1 HTTP/1.1
Host: chaturbate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: text/html; charset=utf-8
location: /topembed/female/?join_overlay=1&tour=6o0b&campaign=ldZ4M&disable_sound=1&mobileRedirect=never&embed_video_only=1
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
vary: Accept-Language, Cookie
content-language: en
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.mmcdn.com https://*.highwebmedia.com https://*.chaturbate.com https://chaturbate.com https://ajax.googleapis.com https://js-agent.newrelic.com https://cdnjs.cloudflare.com https://www.google-analytics.com https://www.google.com/recaptcha/ https://www.google.com/cv/ https://www.gstatic.com/recaptcha/ https://www.gstatic.com/cv/ https://www.gstatic.com/eureka/ https://www.gstatic.com/cast/ https://*.nr-data.net https://certify-js.alexametrics.com https://player.vimeo.com/api/player.js https://static.hotjar.com https://script.hotjar.com ; style-src 'self' data: 'unsafe-inline' https://*.highwebmedia.com https://cdnjs.cloudflare.com https://fonts.googleapis.com https://static.hotjar.com https://script.hotjar.com; img-src 'self' data: https://*.mmcdn.com https://*.highwebmedia.com https://*.stream.highwebmedia.com https://*.chaturbate.com https://chaturbate.com https://www.google-analytics.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com https://cdnjs.cloudflare.com https://www.gstatic.com https://*.nr-data.net https://certify.alexametrics.com https://stats.g.doubleclick.net https://cbgames.s3.amazonaws.com https://player.vimeo.com https://script.hotjar.com http://script.hotjar.com ; font-src 'self' data: https://*.mmcdn.com https://*.highwebmedia.com https://cdnjs.cloudflare.com https://fonts.gstatic.com http://script.hotjar.com https://script.hotjar.com ; connect-src 'self' blob: blob https://*.mmcdn.com wss://*.mmcdn.com wss://*.mmcdn.com:8443 https://*.highwebmedia.com wss://*.highwebmedia.com wss://*.highwebmedia.com:8443 https://*.nr-data.net https://*.chaturbate.com https://chaturbate.com https://www.google-analytics.com https://cbvideoupload.s3-accelerate.amazonaws.com https://stats.g.doubleclick.net https://internet-up.ably-realtime.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com https://tls-use1.fpapi.io https://use1.fptls.com https://eun1.fptls.com https://aps1.fptls.com https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com ; media-src 'self' https://*.mmcdn.com https://*.highwebmedia.com https://*.chaturbate.com https://chaturbate.com mediasource: blob: data: https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com; object-src 'self' https://*.mmcdn.com https://*.highwebmedia.com https://download.macromedia.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com ; frame-src 'self' https://*.mmcdn.com https://*.chaturbate.com https://chaturbate.com https://*.highwebmedia.com https://adserver.exoticads.com https://www.google.com/recaptcha/ https://*.wnu.com https://wnu.com https://checkout.2000charge.com https://www.sofort.com https://*.girogate.de https://player.vimeo.com https://vars.hotjar.com https://directory-live.cb.dev ; child-src 'self' blob: blob ; worker-src 'self' blob: blob ; form-action 'self' https://*.chaturbate.com https://chaturbate.com https://*.stream.highwebmedia.com https://*.wnu.com https://wnu.com https://devportal.cb.dev https://*.web.amer-1.jumio.ai https://smartpay.coinsmart.com https://secure.paygarden.com ; manifest-src 'self' https://*.mmcdn.com https://*.highwebmedia.com ; report-uri https://report-uri.mmcdn.com/r/t/csp/enforce;
report-to: {"group":"default","max_age":2592000,"endpoints":[{"url":"https://report-uri.mmcdn.com/a/t/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":2592000,"include_subdomains":true}
x-frame-options: DENY
cache-control: no-cache
x-content-type-options: nosniff
x-xss-protection: 1; mode=block; report=https://report-uri.highwebmedia.com/r/t/xss/enforce
referrer-policy: strict-origin-when-cross-origin
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
set-cookie: u_6o0b=1; expires=Mon, 03 Apr 2023 02:40:00 GMT; Max-Age=432000; Path=/
us_6o0b=1; Path=/
mobile_redirect=never; Domain=.chaturbate.com; expires=Wed, 29 Mar 2023 13:40:00 GMT; Max-Age=39600; Path=/
mobile_redirect_source=affiliate; Domain=.chaturbate.com; expires=Wed, 29 Mar 2023 13:40:00 GMT; Max-Age=39600; Path=/
affkey=eJwdzEEOQDAQheGrNLMWRcTCHVzArtoppaVpBwtxdxnL7+XPe4CgF9Ad1QSFAB0i05uxHdiUNjaGCQ07sRaimHsp9UkOZ5UM7uWt4qbK7Agld8paLs2anb8wNbz9z00N7wd5uCFW; Domain=.chaturbate.com; expires=Fri, 28 Apr 2023 02:40:00 GMT; Max-Age=2592000; Path=/
fromaffiliate=1; Domain=.chaturbate.com; Path=/
noads=1; expires=Wed, 29 Mar 2023 08:40:00 GMT; Max-Age=21600; Path=/
sbr=sec:sbr2f2d1f5a-8fbf-4094-afef-f0740438781b:1phLjE:Nhho4bV_ZXZRJuIW37jmfhrXJ1Q; Domain=.chaturbate.com; expires=Mon, 22 Dec 2025 02:40:00 GMT; HttpOnly; Max-Age=86313600; Path=/; Secure
__cf_bm=x1vWtSg0K7nPFsJmFHsIztS7Xl5uNi57mWWpov0BDMc-1680057600-0-AeJWvmRLq8aAUu4C+LSGttyB7ql7IH2mBEFb9Vsqexft4J9qxq1K1mFjrEuSG9aIIl126myViwKd0wNDn3Xr84w=; path=/; expires=Wed, 29-Mar-23 03:10:00 GMT; domain=.chaturbate.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7af4bee19ddfb529-OSL
X-Firefox-Spdy: h2
awmbed.com/embed/lf?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&category=&forcedPerformers[]=YourDaniella&vp[showChat]=true&vp[chatAutoHide]=true&vp[showCallToAction]=true&vp[showPerformerName]=true&vp[showPerformerStatus]=true&filters=&ms_notrack=1&subAffId={SUBAFFID}
93.93.51.191200 OK 0 B URL HTTP/2 awmbed.com/embed/lf?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&category=&forcedPerformers[]=YourDaniella&vp[showChat]=true&vp[chatAutoHide]=true&vp[showCallToAction]=true&vp[showPerformerName]=true&vp[showPerformerStatus]=true&filters=&ms_notrack=1&subAffId={SUBAFFID}
IP 93.93.51.191:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
GET /embed/lf?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&category=&forcedPerformers[]=YourDaniella&vp[showChat]=true&vp[chatAutoHide]=true&vp[showCallToAction]=true&vp[showPerformerName]=true&vp[showPerformerStatus]=true&filters=&ms_notrack=1&subAffId={SUBAFFID} HTTP/1.1
Host: awmbed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
cache-control: no-cache
date: Wed, 29 Mar 2023 02:40:00 GMT
server: unknown
set-cookie: psui=a59f007fbf3384ccc33cc586d5d348f0; Path=/; Expires=Fri, 28-Apr-23 02:40:00 GMT; SameSite=None; Secure
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
142.250.74.45302 Found 0 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP 142.250.74.45:0
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 29 Mar 2023 02:40:01 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AQMjQ7RrSHu-KJwgMjOj7KgXoSriqjvvK0MBUHkiqgc7zbWq-MoEHUIGyKisn97_MOyA7UrCxw8Msg
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"AccountsSigninPassiveLoginHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSigninPassiveLoginHttp/external"}]}, {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: script-src 'nonce-Q8S4njVpVdyeL1iK1JFldA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, require-trusted-types-for 'script';report-uri /cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none; report-to="AccountsSigninPassiveLoginHttp"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/binary
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
set-cookie: __Host-GAPS=1:tFgJLbwSn34IW_X0Q67-4PSgpTN82Q:LPCd8fW_kTQYEOO6; Expires=Fri, 28-Mar-2025 02:40:01 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/cachebust/542-prod-5f97347cb496eb7f5821.js
104.16.94.42200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/cachebust/542-prod-5f97347cb496eb7f5821.js
IP 104.16.94.42:0
GET /cachebust/542-prod-5f97347cb496eb7f5821.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=208302
etag: W/"7e1b2b8628e20d37e7e61d21e2741506"
last-modified: Tue, 28 Mar 2023 16:57:07 GMT
x-amz-id-2: pIeyPpbd2pScnlATO3Aa1eo+9shDwxJxzJK4R8GJE+dGLDHX4HTNhz8V6Og8E72NZzV3ZgzGigA=
x-amz-meta-s3cmd-attrs: md5:7e1b2b8628e20d37e7e61d21e2741506
x-amz-request-id: NXP1KDZX5E98MA1V
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 34814
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KuqQoZ2Ff2MPdiGLKC0uwdwCpkka5kEa%2BHFbVJShldQbW32iIGabnm6N1wM9AIDC7ZKdUqA6KGBV1tD1CdM5vOj9DjSCy0RGB0ojBHZuJKxi2FWVT5GYxpdy6ca%2Bn2q5s8qQb79OmsWwfkZUB11aeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=CYOrxDIyjPKENSAeFP5xCtA5B31Buf_Z56FK1HKHpQE-1680057600991-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee62818b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/css/output.c604915fd7b4.css
104.16.94.42200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/CACHE/css/output.c604915fd7b4.css
IP 104.16.94.42:0
GET /CACHE/css/output.c604915fd7b4.css HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: text/css
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=215023
etag: W/"b07590aff41d12531ee4268d53077adc"
last-modified: Fri, 17 Mar 2023 01:13:30 GMT
x-amz-id-2: DS23jdR/gmwlXI9OxN/91uxydqLlYTu9x+f2D0+jdzZt29jdAIf9jRXu+330i/dkHNyXWXXWOEE=
x-amz-meta-s3cmd-attrs: md5:b07590aff41d12531ee4268d53077adc
x-amz-request-id: 9F2FTRGPXR5FCS7M
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 1041847
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dmZVNn1r9fJDCjYzJxPlLqDdmK%2BbwuZ5BiMHP%2F4w%2FnvQ%2BAfMd8W5q35r4PCo%2FbhqF0bu10KASjklXvSEZO%2FuMqrOxbm4f0eDbgg2kHXbKokd62FZIVPQTSAPivaWsI2aTbaQTAEwq4yyNjSzjw%2B3JQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=xw.eKvjJzG4ZWbKc4wsOBG9qYHc0BVgCawa3QLYhMQ4-1680057600990-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee61803b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 507762
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/cachebust/theatermode-react-3bb519ece67b2ddb1f64.js
104.16.94.42200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/cachebust/theatermode-react-3bb519ece67b2ddb1f64.js
IP 104.16.94.42:0
GET /cachebust/theatermode-react-3bb519ece67b2ddb1f64.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=22803
etag: W/"9516de9f7d1c399f31ae40d605a9e2ba"
last-modified: Fri, 24 Mar 2023 16:21:20 GMT
x-amz-id-2: z8P7JqaMg1UnowjnJ4mk6185ZQUk1cM6rYsp3KKbC/cvKpCMcXzP9Qp1rTkZMEhKTCE6SUsq22E=
x-amz-meta-s3cmd-attrs: md5:9516de9f7d1c399f31ae40d605a9e2ba
x-amz-request-id: JPM5ATB4Y9Z1JSCH
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 382537
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YfAu6jZp8%2FqGC6ckSVhf6F7t1cOgKLGFHnIXSKfg6KHokvlheLrd8RSgEv9OyDTzUQlU0X5ZNIIjsBK%2F2F72CN2P%2FWUPCQ%2FmqxSZ7PoQWihZSnVVpVOLHIuqCLGHOA70FXwWJBaxC5ep70qiNYL9tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=neVlT6klo1f7JfwQyapG_SmRXaIodR1lBhx798MixUU-1680057600989-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee6280fb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
172.64.133.29200 OK 0 B IP 172.64.133.29:0
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.re/
Origin: https://dood.re
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:01 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://dood.re
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 2985
last-modified: Wed, 29 Mar 2023 01:50:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6i%2FRCqgPmonUZZ4vGqe%2Fv%2FoGSCiSEygV9QfN07%2BoHMqyAtdLJ30Jl8GzDYH5aZVJFhoCQlPViIc26ZNW3ZGbl4GL6GYzJ62VnLKvVk6K7UJ8KxBjMSVB3TBn3t%2FXgqTq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4beea9c7776d1-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
143.204.55.25200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 143.204.55.25:0
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 09 Mar 2023 09:22:40 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 28 Mar 2023 03:50:28 GMT
cache-control: max-age=86400
etag: W/"a06e7a176f40dc26aa5e9567ac9d2d5e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5fYQVIGj6zXeB17Y13G7Si5IS4CuGFOBrnmky5vZiFycTwZvRBvL2w==
age: 82176
X-Firefox-Spdy: h2
trc.taboola.com/wapkagroup-xyz/trc/3/json?tim=02%3A40%3A26.662<i=deflated&data=%7B%22id%22%3A20%2C%22ii%22%3A%22%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1680005874397%2C%22vi%22%3A1680057626659%2C%22cv%22%3A%2220230328-15-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22bv%22%3A%220%22%2C%22wc%22%3Atrue%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22plf%22%3A%7B%22ack_exm%22%3Atrue%7D%2C%22bu%22%3A%22https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22vpi%22%3A%22%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A300%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A150%2C%22dw%22%3A300%2C%22dh%22%3A150%2C%22nsid%22%3A%22wapkagroup-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22thumbnails-mid-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%22%2C%22uip%22%3A%22Mid%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Mid%20Article%20Thumbnails%22%2C%22cd%22%3A8%2C%22mw%22%3A284%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22alternating-thumbnails-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A8%2C%22mw%22%3A284%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%2CBelow%20Article%20Thumbnails%3Dalternating-thumbnails-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%2C%2CMid%20Article%20Thumbnails%3Dthumbnails-mid-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
151.101.65.44200 OK 0 B URL HTTP/2 trc.taboola.com/wapkagroup-xyz/trc/3/json?tim=02%3A40%3A26.662<i=deflated&data=%7B%22id%22%3A20%2C%22ii%22%3A%22%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1680005874397%2C%22vi%22%3A1680057626659%2C%22cv%22%3A%2220230328-15-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22bv%22%3A%220%22%2C%22wc%22%3Atrue%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22plf%22%3A%7B%22ack_exm%22%3Atrue%7D%2C%22bu%22%3A%22https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22vpi%22%3A%22%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A300%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A150%2C%22dw%22%3A300%2C%22dh%22%3A150%2C%22nsid%22%3A%22wapkagroup-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22thumbnails-mid-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%22%2C%22uip%22%3A%22Mid%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Mid%20Article%20Thumbnails%22%2C%22cd%22%3A8%2C%22mw%22%3A284%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22alternating-thumbnails-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A8%2C%22mw%22%3A284%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%2CBelow%20Article%20Thumbnails%3Dalternating-thumbnails-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%2C%2CMid%20Article%20Thumbnails%3Dthumbnails-mid-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
IP 151.101.65.44:0
GET /wapkagroup-xyz/trc/3/json?tim=02%3A40%3A26.662<i=deflated&data=%7B%22id%22%3A20%2C%22ii%22%3A%22%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1680005874397%2C%22vi%22%3A1680057626659%2C%22cv%22%3A%2220230328-15-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22bv%22%3A%220%22%2C%22wc%22%3Atrue%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22plf%22%3A%7B%22ack_exm%22%3Atrue%7D%2C%22bu%22%3A%22https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22vpi%22%3A%22%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A300%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A150%2C%22dw%22%3A300%2C%22dh%22%3A150%2C%22nsid%22%3A%22wapkagroup-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22thumbnails-mid-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%22%2C%22uip%22%3A%22Mid%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Mid%20Article%20Thumbnails%22%2C%22cd%22%3A8%2C%22mw%22%3A284%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22alternating-thumbnails-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A8%2C%22mw%22%3A284%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html%2CBelow%20Article%20Thumbnails%3Dalternating-thumbnails-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%2C%2CMid%20Article%20Thumbnails%3Dthumbnails-mid-a%3Apub%3Dwapkagroup-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://wapka.xyz
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://wapka.xyz
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1680057605.685337,VS0,VE323
vary: Accept-Encoding
x-vcl-time-ms: 323
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=rtus&domain=wapka.xyz&sn=FirefoxSyncframe&so=0&topUrl=wapka.xyz&info=Wn-ey180M0RITmhlJTJCZkMwOUJGQlhaMUN2czhGJTJCdzB0VVElMkJIekdwa1owbCUyQk9Pa1ZGWUdySFhhemx0cU1tNGhxWkNhR1M&idsd=181456501,-1278196352&rtusCallerId=72&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=wapka.xyz&sn=FirefoxSyncframe&so=0&topUrl=wapka.xyz&info=Wn-ey180M0RITmhlJTJCZkMwOUJGQlhaMUN2czhGJTJCdzB0VVElMkJIekdwa1owbCUyQk9Pa1ZGWUdySFhhemx0cU1tNGhxWkNhR1M&idsd=181456501,-1278196352&rtusCallerId=72&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=rtus&domain=wapka.xyz&sn=FirefoxSyncframe&so=0&topUrl=wapka.xyz&info=Wn-ey180M0RITmhlJTJCZkMwOUJGQlhaMUN2czhGJTJCdzB0VVElMkJIekdwa1owbCUyQk9Pa1ZGWUdySFhhemx0cU1tNGhxWkNhR1M&idsd=181456501,-1278196352&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=wapka.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:05 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 822510
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
pt.ctsdwm.com/live-stream/?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&forcedPerformers%5B0%5D=EllenChi&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site
93.93.51.191200 OK 0 B URL HTTP/2 pt.ctsdwm.com/live-stream/?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&forcedPerformers%5B0%5D=EllenChi&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site
IP 93.93.51.191:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
GET /live-stream/?c=object_container&site=wl3&cobrandId=246032&psid=djsilver&pstool=202_1&psprogram=cbrnd&campaign_id=&forcedPerformers%5B0%5D=EllenChi&vp%5BshowChat%5D=true&vp%5BchatAutoHide%5D=true&vp%5BshowCallToAction%5D=true&vp%5BshowPerformerName%5D=true&vp%5BshowPerformerStatus%5D=true&filters=&subAffId=%7BSUBAFFID%7D&embedTool=1&origin=cutiegarden.wapka.site HTTP/1.1
Host: pt.ctsdwm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache
date: Wed, 29 Mar 2023 02:40:02 GMT
server: unknown
set-cookie: psui=a59f007fbf3384ccc33cc586d5d348f0; Path=/; Expires=Fri, 28-Apr-23 02:40:02 GMT; SameSite=None; Secure
content-encoding: gzip
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/cachebust/chatembed-prod-205062c548561bbccee0.js
104.16.94.42200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/cachebust/chatembed-prod-205062c548561bbccee0.js
IP 104.16.94.42:0
GET /cachebust/chatembed-prod-205062c548561bbccee0.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=26626
etag: W/"07e3536facfc44e2207f9d7d88cafda3"
last-modified: Tue, 28 Mar 2023 16:57:08 GMT
x-amz-id-2: T0244rnB8w5cWtVQRgdaEwadnRhIo2anzbMjpFwIzoMyWrKet/ECts1Rnh6KNemb3POEGDLIZ0o=
x-amz-meta-s3cmd-attrs: md5:07e3536facfc44e2207f9d7d88cafda3
x-amz-request-id: NXP4EHAY5WBXM45D
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 34814
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Erec5vWBkr5jLTHuDmry2gozu78ToPEjeK03zTaU7kE2UBqay0%2F7A2t8wsUPXn%2F8Tsm5ZZvyWrmfowlsWRcLLmP2sac4BnUBxFqTSwvv8et8lIkiLZ%2BZ9coYZyT5HQ%2Fv1q%2BRt9unKHf%2B5%2FXqjf40IA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=.DWr6sxggOi66sRh1X9a2Otwv_7JDXQmTr3au8JOB7c-1680057600994-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee6281ab509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
172.64.133.29200 OK 0 B IP 172.64.133.29:0
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.re/
Origin: https://dood.re
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:01 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://dood.re
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 2985
last-modified: Wed, 29 Mar 2023 01:50:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LqsoOQZj%2BN%2FqGUo8LYW43r5Ur0KbDNQrU4elCveq1wdtSJWtqdUddB%2BiT5xzUOVgQoxbUsrpTpq0St7EcQTjZSq8n7KGPJJr6HsUu80CZ2KJGMlntsEe8ufKHbxRi2Wc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4beea9c7376d1-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:02 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Sat, 29 Apr 2023 02:40:02 GMT
etag: W/"cMPvpvd3jDHdlppiuYNttw=="
cf-cache-status: HIT
age: 360239
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4bef0fc17b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/cachebust/788-prod-df806890aa67b70210b9.js
104.16.94.42200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/cachebust/788-prod-df806890aa67b70210b9.js
IP 104.16.94.42:0
GET /cachebust/788-prod-df806890aa67b70210b9.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=70456
etag: W/"58d418d9e0bd3cb0f45771fa2ee80417"
last-modified: Tue, 28 Mar 2023 16:57:07 GMT
x-amz-id-2: y7P8qLpz70Vw0jJ6a+VqvgIZzmXMyTk8foHA8SpEwqUjK8nOoPEUNbgBKuCa20l9qM1rvS/DZvw=
x-amz-meta-s3cmd-attrs: md5:58d418d9e0bd3cb0f45771fa2ee80417
x-amz-request-id: NXP7DV676EM737ER
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 34814
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BTBFoQhWPpWLcRNpvUVcCRBOYq09%2B8SZ6vb8epef0StMG%2BJU17bsOf2e5IBtMQvayD8wk9djWhkZX4NdhD2z1TeVuNfErZFwFhYfiq6rfTjJnvTVF5wQ23LwDDmHEh3HLiAba45t%2BtoBOIi3eCQtxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=LpkjwOVqvJFD3xHq42gCpiP4jKXB8poxo.hY2m.n94c-1680057600996-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee62819b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pogothere.xyz/
172.64.133.29200 OK 0 B IP 172.64.133.29:0
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.re/
Origin: https://dood.re
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:01 GMT
content-type: text/plain
set-cookie: csu=1332409588147376@1@1680057601; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://dood.re
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1wbSNuMQWQ16OC49z8lrfw3XQeGeCWmeH%2FZ78vi7JsYKoR3FLu%2FG7%2FCLHxWGrhTsXEuF%2B6jCxZV9U0%2FLSXDTv75dwjKEPvSWgTMq9MPgM1so89dPRAhpvNpb1X4H6nQz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4beea9c7276d1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pt-static5.ptwmstcnt.com/npe/ba/ls/script/ls-v183951.js
93.93.51.200200 OK 0 B URL HTTP/2 pt-static5.ptwmstcnt.com/npe/ba/ls/script/ls-v183951.js
IP 93.93.51.200:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
GET /npe/ba/ls/script/ls-v183951.js HTTP/1.1
Host: pt-static5.ptwmstcnt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:03 GMT
content-type: application/javascript
last-modified: Tue, 28 Mar 2023 09:51:29 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6422b8a1-74404"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
content-encoding: gzip
X-Firefox-Spdy: h2
api-protected.protoawegw.com/v2/player/performer/get?includeTestAccounts=&product=livejasmin&category=girl&withSb=1&psid=djsilver&pstool=302_2&profilePictureSize=896x504,504x896&ngs=1&performerIds[]=YourDaniella
93.93.51.225200 OK 0 B URL HTTP/2 api-protected.protoawegw.com/v2/player/performer/get?includeTestAccounts=&product=livejasmin&category=girl&withSb=1&psid=djsilver&pstool=302_2&profilePictureSize=896x504,504x896&ngs=1&performerIds[]=YourDaniella
IP 93.93.51.225:0
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
GET /v2/player/performer/get?includeTestAccounts=&product=livejasmin&category=girl&withSb=1&psid=djsilver&pstool=302_2&profilePictureSize=896x504,504x896&ngs=1&performerIds[]=YourDaniella HTTP/1.1
Host: api-protected.protoawegw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pt.ctsdwm.com/
Origin: https://pt.ctsdwm.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:04 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type
access-control-allow-methods: OPTIONS, GET, POST, PUT, DELETE, PATCH
server: unknown
content-encoding: gzip
X-Firefox-Spdy: h2
adstook.com/wapka_lib.js
188.114.96.1200 OK 0 B IP 188.114.96.1:0
GET /wapka_lib.js HTTP/1.1
Host: adstook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 11:00:44 GMT
etag: W/"135a-5f766f47fbf42-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 962
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AirRCmLIOmDBQCEY1lk4oAnNvWt362VIGeenx3yoV8%2B9W48kyAoPmD5s7%2BstmloRmqQv5%2FwQGa3%2FFEAx4MFXdsKd2J%2BLpbieAKIIQDDZcTP4wme6LcwslozikwzD4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4bee1edb7b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
chaturbate.com/in/?track=embed&tour=6o0b&campaign=ldZ4M&disable_sound=1&mobileRedirect=never&embed_video_only=1
104.18.101.40302 Found 0 B URL HTTP/2 chaturbate.com/in/?track=embed&tour=6o0b&campaign=ldZ4M&disable_sound=1&mobileRedirect=never&embed_video_only=1
IP 104.18.101.40:0
GET /in/?track=embed&tour=6o0b&campaign=ldZ4M&disable_sound=1&mobileRedirect=never&embed_video_only=1 HTTP/1.1
Host: chaturbate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutiegarden.wapka.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: text/html; charset=utf-8
location: /topembed/female/?join_overlay=1&tour=6o0b&campaign=ldZ4M&disable_sound=1&mobileRedirect=never&embed_video_only=1
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
vary: Accept-Language, Cookie
content-language: en
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.mmcdn.com https://*.highwebmedia.com https://*.chaturbate.com https://chaturbate.com https://ajax.googleapis.com https://js-agent.newrelic.com https://cdnjs.cloudflare.com https://www.google-analytics.com https://www.google.com/recaptcha/ https://www.google.com/cv/ https://www.gstatic.com/recaptcha/ https://www.gstatic.com/cv/ https://www.gstatic.com/eureka/ https://www.gstatic.com/cast/ https://*.nr-data.net https://certify-js.alexametrics.com https://player.vimeo.com/api/player.js https://static.hotjar.com https://script.hotjar.com ; style-src 'self' data: 'unsafe-inline' https://*.highwebmedia.com https://cdnjs.cloudflare.com https://fonts.googleapis.com https://static.hotjar.com https://script.hotjar.com; img-src 'self' data: https://*.mmcdn.com https://*.highwebmedia.com https://*.stream.highwebmedia.com https://*.chaturbate.com https://chaturbate.com https://www.google-analytics.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com https://cdnjs.cloudflare.com https://www.gstatic.com https://*.nr-data.net https://certify.alexametrics.com https://stats.g.doubleclick.net https://cbgames.s3.amazonaws.com https://player.vimeo.com https://script.hotjar.com http://script.hotjar.com ; font-src 'self' data: https://*.mmcdn.com https://*.highwebmedia.com https://cdnjs.cloudflare.com https://fonts.gstatic.com http://script.hotjar.com https://script.hotjar.com ; connect-src 'self' blob: blob https://*.mmcdn.com wss://*.mmcdn.com wss://*.mmcdn.com:8443 https://*.highwebmedia.com wss://*.highwebmedia.com wss://*.highwebmedia.com:8443 https://*.nr-data.net https://*.chaturbate.com https://chaturbate.com https://www.google-analytics.com https://cbvideoupload.s3-accelerate.amazonaws.com https://stats.g.doubleclick.net https://internet-up.ably-realtime.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com https://tls-use1.fpapi.io https://use1.fptls.com https://eun1.fptls.com https://aps1.fptls.com https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com ; media-src 'self' https://*.mmcdn.com https://*.highwebmedia.com https://*.chaturbate.com https://chaturbate.com mediasource: blob: data: https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com; object-src 'self' https://*.mmcdn.com https://*.highwebmedia.com https://download.macromedia.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com ; frame-src 'self' https://*.mmcdn.com https://*.chaturbate.com https://chaturbate.com https://*.highwebmedia.com https://adserver.exoticads.com https://www.google.com/recaptcha/ https://*.wnu.com https://wnu.com https://checkout.2000charge.com https://www.sofort.com https://*.girogate.de https://player.vimeo.com https://vars.hotjar.com https://directory-live.cb.dev ; child-src 'self' blob: blob ; worker-src 'self' blob: blob ; form-action 'self' https://*.chaturbate.com https://chaturbate.com https://*.stream.highwebmedia.com https://*.wnu.com https://wnu.com https://devportal.cb.dev https://*.web.amer-1.jumio.ai https://smartpay.coinsmart.com https://secure.paygarden.com ; manifest-src 'self' https://*.mmcdn.com https://*.highwebmedia.com ; report-uri https://report-uri.mmcdn.com/r/t/csp/enforce;
report-to: {"group":"default","max_age":2592000,"endpoints":[{"url":"https://report-uri.mmcdn.com/a/t/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":2592000,"include_subdomains":true}
x-frame-options: DENY
cache-control: no-cache
x-content-type-options: nosniff
x-xss-protection: 1; mode=block; report=https://report-uri.highwebmedia.com/r/t/xss/enforce
referrer-policy: strict-origin-when-cross-origin
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
set-cookie: u_6o0b=1; expires=Mon, 03 Apr 2023 02:40:00 GMT; Max-Age=432000; Path=/
us_6o0b=1; Path=/
mobile_redirect=never; Domain=.chaturbate.com; expires=Wed, 29 Mar 2023 13:40:00 GMT; Max-Age=39600; Path=/
mobile_redirect_source=affiliate; Domain=.chaturbate.com; expires=Wed, 29 Mar 2023 13:40:00 GMT; Max-Age=39600; Path=/
affkey=eJwdzEEOQDAQheGrNLMWRcTCHVzArtoppaVpBwtxdxnL7+XPe4CgF9Ad1QSFAB0i05uxHdiUNjaGCQ07sRaimHsp9UkOZ5UM7uWt4qbK7Agld8paLs2anb8wNbz9z00N7wd5uCFW; Domain=.chaturbate.com; expires=Fri, 28 Apr 2023 02:40:00 GMT; Max-Age=2592000; Path=/
fromaffiliate=1; Domain=.chaturbate.com; Path=/
noads=1; expires=Wed, 29 Mar 2023 08:40:00 GMT; Max-Age=21600; Path=/
sbr=sec:sbr34b8b409-89f7-445e-a275-ab215aba09a9:1phLjE:uxt_mu_uarlBgj09-grYfjgO15c; Domain=.chaturbate.com; expires=Mon, 22 Dec 2025 02:40:00 GMT; HttpOnly; Max-Age=86313600; Path=/; Secure
__cf_bm=oHwh0zZg8dgBEj0XtKYq2smnYTQ4jt8NBu6CESthOJ0-1680057600-0-Acjxxn27SdSnC1+Oa0a01xsvtHrDG3L+mlZK0JVBlP3S2xC1B0eZj88wjvD6g/9gzGPn+FGKzK+e6FjguFbnQK4=; path=/; expires=Wed, 29-Mar-23 03:10:00 GMT; domain=.chaturbate.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7af4bee2be68b529-OSL
X-Firefox-Spdy: h2
15.taboola.com/tb?oid=15&pubnm=wapkagroup-xyz&unitType=244&tbloc=&pageType=text&pstn=Below%20Article%20Thumbnails&uuip=Feed%20-%20Below%20Article%20Thumbnails&cisrf=&cirf=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&encoded=1&uid=e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84&variant=-100|1&callback=TRC.videoTagCallbacks.videoCallback2&cb=1680057627116&tagid=&cntry=NO&platform=1&sesid=470eee81378ca19fd8af247efdc520f0&itemid=/community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&viewid=1680057626659&geolat=&geoing=&deviceifa=&appid=&sd=v2_470eee81378ca19fd8af247efdc520f0_e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84_1680057604_1680057604_CNawjgYQ4e9PGKPg89nyMCABKAEwogE434cMQJ6XEEj5qNkDUP___________wFYAGAAaKeW6aDs7Oe75gFwAA&ri=2edef55f1887c85afd95d09559998dfe&appname=&cdb=&gdprApplies=true&rid=&sii=-8019147135717402700&oee=true&tpubid=1308641&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=1---®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1308633&prcnt=&layer=&normp=1&gvv=10592
151.101.65.44200 OK 0 B URL HTTP/2 15.taboola.com/tb?oid=15&pubnm=wapkagroup-xyz&unitType=244&tbloc=&pageType=text&pstn=Below%20Article%20Thumbnails&uuip=Feed%20-%20Below%20Article%20Thumbnails&cisrf=&cirf=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&encoded=1&uid=e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84&variant=-100|1&callback=TRC.videoTagCallbacks.videoCallback2&cb=1680057627116&tagid=&cntry=NO&platform=1&sesid=470eee81378ca19fd8af247efdc520f0&itemid=/community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&viewid=1680057626659&geolat=&geoing=&deviceifa=&appid=&sd=v2_470eee81378ca19fd8af247efdc520f0_e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84_1680057604_1680057604_CNawjgYQ4e9PGKPg89nyMCABKAEwogE434cMQJ6XEEj5qNkDUP___________wFYAGAAaKeW6aDs7Oe75gFwAA&ri=2edef55f1887c85afd95d09559998dfe&appname=&cdb=&gdprApplies=true&rid=&sii=-8019147135717402700&oee=true&tpubid=1308641&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=1---®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1308633&prcnt=&layer=&normp=1&gvv=10592
IP 151.101.65.44:0
GET /tb?oid=15&pubnm=wapkagroup-xyz&unitType=244&tbloc=&pageType=text&pstn=Below%20Article%20Thumbnails&uuip=Feed%20-%20Below%20Article%20Thumbnails&cisrf=&cirf=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&encoded=1&uid=e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84&variant=-100|1&callback=TRC.videoTagCallbacks.videoCallback2&cb=1680057627116&tagid=&cntry=NO&platform=1&sesid=470eee81378ca19fd8af247efdc520f0&itemid=/community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&viewid=1680057626659&geolat=&geoing=&deviceifa=&appid=&sd=v2_470eee81378ca19fd8af247efdc520f0_e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84_1680057604_1680057604_CNawjgYQ4e9PGKPg89nyMCABKAEwogE434cMQJ6XEEj5qNkDUP___________wFYAGAAaKeW6aDs7Oe75gFwAA&ri=2edef55f1887c85afd95d09559998dfe&appname=&cdb=&gdprApplies=true&rid=&sii=-8019147135717402700&oee=true&tpubid=1308641&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=1---®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1308633&prcnt=&layer=&normp=1&gvv=10592 HTTP/1.1
Host: 15.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://wapka.xyz
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/html;charset=ISO-8859-1
machineid: 1451
link: <https://am-wf.taboola.com>; rel=preconnect
xvid-debug: mrmr - :
pragma: no-cache
cache-control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: https://wapka.xyz
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1680057605.122194,VS0,VE44
vary: Accept-Encoding
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/cachebust/129-react-2bd840eae383c63529e8.js
104.16.94.42200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/cachebust/129-react-2bd840eae383c63529e8.js
IP 104.16.94.42:0
GET /cachebust/129-react-2bd840eae383c63529e8.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:00 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=51217
etag: W/"4ac8ab83c5a7950411aadfb3b4b0d6cf"
last-modified: Fri, 24 Mar 2023 16:21:19 GMT
x-amz-id-2: IaEOhNS4tlgp+AN6RqAwlCmfsK4fg1d8xlAs8/r+CZ9hMQbjX6xCyLpzHsvzTeuXMdlT6gds08U=
x-amz-meta-s3cmd-attrs: md5:4ac8ab83c5a7950411aadfb3b4b0d6cf
x-amz-request-id: JPM8E6CQ7YSN76B5
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 382537
expires: Fri, 28 Apr 2023 02:40:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fla1IBMMYBaSImkGOkZKolwDJD%2B5ekfKhsD5nRqzxraEfP%2FpeXGza2F%2Fi2TN%2F4jrhe5i41XhFyM0unYZw%2FreTjF4vD%2FemzEw5BpOMzsbRhtMl3Qw8LEA3cbVg1gDeu7y7YuxJWhodcwZsXSHys17%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=LPwo.qitUER93rXVawyp2ljCPeZmiVDAqE9PGRuGjpE-1680057600988-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee6180eb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
15.taboola.com/tb?oid=15&pubnm=wapkagroup-xyz&unitType=59&tbloc=&pageType=text&pstn=Slider%20-%20Video&uuip=&cisrf=&cirf=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&encoded=1&uid=e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84&variant=-100|1&callback=TRC.videoTagCallbacks.videoCallback1&cb=1680057627113&tagid=&cntry=NO&platform=1&sesid=470eee81378ca19fd8af247efdc520f0&itemid=/community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&viewid=1680057626659&geolat=&geoing=&deviceifa=&appid=&sd=v2_470eee81378ca19fd8af247efdc520f0_e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84_1680057604_1680057604_CNawjgYQ4e9PGKPg89nyMCABKAEwogE434cMQJ6XEEj5qNkDUP___________wFYAGAAaKeW6aDs7Oe75gFwAA&ri=9704a244391f1308d8ea7b427f4fd85c&appname=&cdb=&gdprApplies=true&rid=&sii=-8019147135717402700&oee=true&tpubid=1308641&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=1---®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1308633&prcnt=&layer=&normp=1&gvv=10592
151.101.65.44200 OK 0 B URL HTTP/2 15.taboola.com/tb?oid=15&pubnm=wapkagroup-xyz&unitType=59&tbloc=&pageType=text&pstn=Slider%20-%20Video&uuip=&cisrf=&cirf=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&encoded=1&uid=e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84&variant=-100|1&callback=TRC.videoTagCallbacks.videoCallback1&cb=1680057627113&tagid=&cntry=NO&platform=1&sesid=470eee81378ca19fd8af247efdc520f0&itemid=/community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&viewid=1680057626659&geolat=&geoing=&deviceifa=&appid=&sd=v2_470eee81378ca19fd8af247efdc520f0_e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84_1680057604_1680057604_CNawjgYQ4e9PGKPg89nyMCABKAEwogE434cMQJ6XEEj5qNkDUP___________wFYAGAAaKeW6aDs7Oe75gFwAA&ri=9704a244391f1308d8ea7b427f4fd85c&appname=&cdb=&gdprApplies=true&rid=&sii=-8019147135717402700&oee=true&tpubid=1308641&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=1---®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1308633&prcnt=&layer=&normp=1&gvv=10592
IP 151.101.65.44:0
GET /tb?oid=15&pubnm=wapkagroup-xyz&unitType=59&tbloc=&pageType=text&pstn=Slider%20-%20Video&uuip=&cisrf=&cirf=https%3A%2F%2Fwapka.xyz%2Fcommunity-blog%2Fmatthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&encoded=1&uid=e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84&variant=-100|1&callback=TRC.videoTagCallbacks.videoCallback1&cb=1680057627113&tagid=&cntry=NO&platform=1&sesid=470eee81378ca19fd8af247efdc520f0&itemid=/community-blog/matthew-lewis-recalls-his-aftermost-alternation-with-alan-rickman-on-set-of-harry-potter-and-its-a-chat-he-will-never-forget.html&viewid=1680057626659&geolat=&geoing=&deviceifa=&appid=&sd=v2_470eee81378ca19fd8af247efdc520f0_e63f2369-05bc-4530-835b-5592563e272c-tuctb1d2a84_1680057604_1680057604_CNawjgYQ4e9PGKPg89nyMCABKAEwogE434cMQJ6XEEj5qNkDUP___________wFYAGAAaKeW6aDs7Oe75gFwAA&ri=9704a244391f1308d8ea7b427f4fd85c&appname=&cdb=&gdprApplies=true&rid=&sii=-8019147135717402700&oee=true&tpubid=1308641&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=1---®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1308633&prcnt=&layer=&normp=1&gvv=10592 HTTP/1.1
Host: 15.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://wapka.xyz
Connection: keep-alive
Referer: https://wapka.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/html;charset=ISO-8859-1
machineid: 1414
link: <https://am-wf.taboola.com>; rel=preconnect
xvid-debug: mrmr - :
pragma: no-cache
cache-control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: https://wapka.xyz
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 02:40:05 GMT
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1680057605.119724,VS0,VE38
vary: Accept-Encoding
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/js/output.9b823bb2f723.js
104.16.94.42200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.9b823bb2f723.js
IP 104.16.94.42:0
GET /CACHE/js/output.9b823bb2f723.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:40:01 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
etag: W/"1360376b8f5657814f662391b765d655"
last-modified: Tue, 24 May 2022 17:14:17 GMT
x-amz-id-2: KTWJY/HCZAzfCN7zvoTtoCRDkjCDtsx43npe+RSp0Ebo2HF6WHgess4Ct9QL7Zi8XExzaRuhmCw=
x-amz-meta-s3cmd-attrs: md5:1360376b8f5657814f662391b765d655
x-amz-request-id: M1HHWCFNA8C6CV81
cf-cache-status: HIT
age: 2171170
expires: Fri, 28 Apr 2023 02:40:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LRU03sB3gUPBwh2pQnYBgfv%2BznGIb6BY6anT2KyVVMdcwrRZkWz2672Kc34BpYpECClz2ChFb8dxEJrVQCkjh2msV46HsqAdUzdlP3357Ee%2Bp3x8k5dGxHxQuXeYX2ijVSy%2BkaEUCcA00G05e1N8Eg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=M39ShcaWC1Odop7sc6AYLbocYecShaqEPftQwj_igRE-1680057601019-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7af4bee64832b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
godpvqnszo.com/get/1941940?zoneid=1941940&jp=_cl1p94kx2n44evtcvbu6d9&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6865503697438745
62.122.171.6200 OK 0 B URL HTTP/2 godpvqnszo.com/get/1941940?zoneid=1941940&jp=_cl1p94kx2n44evtcvbu6d9&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6865503697438745
IP 62.122.171.6:0
GET /get/1941940?zoneid=1941940&jp=_cl1p94kx2n44evtcvbu6d9&nojs=0&ix=0&abvar=0&febuild=1.0.82&t=0&x=801&y=801&wcks=0&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6865503697438745 HTTP/1.1
Host: godpvqnszo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:40:01 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=2303282140228b93f60f6b499fa3fadef947; Path=/; Expires=Thu, 28 Mar 2024 02:40:01 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WXTGF28
142.250.74.168200 OK 0 B URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WXTGF28
IP 142.250.74.168:0
GET /gtm.js?id=GTM-WXTGF28 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pt.ctsdwm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 29 Mar 2023 02:40:03 GMT
expires: Wed, 29 Mar 2023 02:40:03 GMT
cache-control: private, max-age=900
last-modified: Wed, 29 Mar 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68073
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
IP 31.13.72.36:0
GET /login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net 'unsafe-inline' blob: data: 'self' 'unsafe-eval';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
vary: Sec-Fetch-Site, Sec-Fetch-Mode, Accept-Encoding
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: YgjxeA1O3yi/l2RG1N50Wvoc3y5L3VvZvoPOmuTpQRRZ35yYeAgcYiLgp53E3kDEAaADqcFYol/NygFxU7xA3A==
date: Wed, 29 Mar 2023 02:40:01 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2