www.allpornstream.com/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js
200 OK 2.4 kB URL GET HTTP/2 www.allpornstream.com/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type ASCII text, with very long lines (6274)
Hash c0dc04a574108028bf6bde0c0e6d8e88
61237ccd1f8af2ae508382ded36af62bd54cb6c2
1a54a1907a6443e3c81608130bfed4546eb0ce5d0c8897e1d7a3b43d89ecc367
GET /wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allpornstream.com/matching-set-and-matching-taste/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
content-length: 2356
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Accept-Encoding,Origin
last-modified: Mon, 11 Sep 2023 17:59:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
content-encoding: gzip
access-control-allow-origin:
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/cache/autoptimize/css/autoptimize_3cebe9df6e8e42f3bcaca410ca26fbee.css
200 OK 26 kB URL GET HTTP/2 www.allpornstream.com/wp-content/cache/autoptimize/css/autoptimize_3cebe9df6e8e42f3bcaca410ca26fbee.css
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type Unicode text, UTF-8 text, with very long lines (62193)
Hash 510e393bcd200fda3f0fde5f4c97106a
7eb1936f702b84cb3252004f8210c9eb37d8a40e
3820ae379aee07a2e5baf0c9f08a756438513fb36c1667c1f827616080860f90
GET /wp-content/cache/autoptimize/css/autoptimize_3cebe9df6e8e42f3bcaca410ca26fbee.css HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allpornstream.com/matching-set-and-matching-taste/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: text/css
content-length: 26260
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Accept-Encoding,Origin
last-modified: Mon, 11 Sep 2023 18:06:53 GMT
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Fri, 06 Sep 2024 02:06:28 GMT
content-encoding: gzip
access-control-allow-origin:
X-Firefox-Spdy: h2
www.allpornstream.com/matching-set-and-matching-taste/
200 OK 85 kB URL User Request GET HTTP/2 www.allpornstream.com/matching-set-and-matching-taste/
IP
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (39883)
Hash be189f1b143d1057da5aa7f47c9cf6b6
4db6e1a117a8bc94e3347aea78d531e92120af57
f4fb16abd014e6b4faed83c8077d3fe0b62a1d8328717d7d6ba4279960713af7
GET /matching-set-and-matching-taste/ HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:27 GMT
content-type: text/html; charset=UTF-8
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Accept-Encoding,Origin
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin:
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
x-ua-compatible: IE=edge,chrome=1
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/uploads/ad-inserter/5ac478bc/ads.js?ver=2.7.30-1694563202
200 OK 119 B URL GET HTTP/2 www.allpornstream.com/wp-content/uploads/ad-inserter/5ac478bc/ads.js?ver=2.7.30-1694563202
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type ASCII text, with CRLF line terminators
Hash ccc3e82cca6f2b1db94ecf7bcece8a4b
b0f42f25d941d885c310cadbcea5889256e9e0b3
fefd325564cac01c24fee88ef1c90caab5a2b91b25aa86a12d32126b8175f2a3
GET /wp-content/uploads/ad-inserter/5ac478bc/ads.js?ver=2.7.30-1694563202 HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
content-length: 119
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Accept-Encoding,Origin
last-modified: Sun, 17 Sep 2023 00:00:04 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
content-encoding: gzip
access-control-allow-origin:
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/uploads/ad-inserter/5ac478bc/sponsors.js?ver=2.7.30-1694563202
200 OK 25 B URL GET HTTP/2 www.allpornstream.com/wp-content/uploads/ad-inserter/5ac478bc/sponsors.js?ver=2.7.30-1694563202
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type ASCII text, with no line terminators
Hash 4613d84ed0bd8735d1034da62b007cac
03e4c6aab478a71d5a34f026f75262ff1d3577ca
ff185ea8941aa70d46b805ab407015cbd9ca81ec8bf3e97601f30f8f6f6aa363
GET /wp-content/uploads/ad-inserter/5ac478bc/sponsors.js?ver=2.7.30-1694563202 HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
content-length: 25
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Origin
last-modified: Sun, 17 Sep 2023 00:00:04 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
access-control-allow-origin:
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/uploads/ad-inserter/5ac478bc/advertising.js?ver=2.7.30-1694563202
200 OK 1.7 kB URL GET HTTP/2 www.allpornstream.com/wp-content/uploads/ad-inserter/5ac478bc/advertising.js?ver=2.7.30-1694563202
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type ASCII text, with very long lines (534), with CRLF line terminators
Hash c6bebde01ae8d10925e54030786d9625
db267a522674cf2d1246bcf32ae5ce2c61c3d4c7
df5c37bc026c30984ad4f5780808f31f23be9def8a9f51dc2d93bd16fe950374
GET /wp-content/uploads/ad-inserter/5ac478bc/advertising.js?ver=2.7.30-1694563202 HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
content-length: 1717
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Accept-Encoding,Origin
last-modified: Sun, 17 Sep 2023 00:00:04 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
content-encoding: gzip
access-control-allow-origin:
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/plugins/ad-inserter-pro/js/banner.js?ver=2.7.30
200 OK 24 B URL GET HTTP/2 www.allpornstream.com/wp-content/plugins/ad-inserter-pro/js/banner.js?ver=2.7.30
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type ASCII text, with CRLF line terminators
Hash 0118f3cf342eba35959e0bb9069b73a6
0b46a14b395eb6a644bef2d19567762f15b5f23c
9a737aee22dcfd3be2498d406cd05c854b2922041c49ae8baebfd0cffdbb2c1f
GET /wp-content/plugins/ad-inserter-pro/js/banner.js?ver=2.7.30 HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
content-length: 24
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Origin
last-modified: Mon, 11 Sep 2023 17:58:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
access-control-allow-origin:
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/uploads/ad-inserter/5ac478bc/adverts.js?ver=2.7.30-1694563202
200 OK 3.0 kB URL GET HTTP/2 www.allpornstream.com/wp-content/uploads/ad-inserter/5ac478bc/adverts.js?ver=2.7.30-1694563202
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type ASCII text, with very long lines (561)
Hash e02f3c2b0f36589171460668b6d78790
1580eaac578b666b3fa8d49d9d69316a6525827e
8039e4e4a59de1c0413112d4ab0c2b87c3bfb2a9f269a30378a303832458a0f1
GET /wp-content/uploads/ad-inserter/5ac478bc/adverts.js?ver=2.7.30-1694563202 HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
content-length: 3037
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Accept-Encoding,Origin
last-modified: Sun, 17 Sep 2023 00:00:04 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
content-encoding: gzip
access-control-allow-origin:
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/plugins/ad-inserter-pro/js/300x250.js?ver=2.7.30
200 OK 25 B URL GET HTTP/2 www.allpornstream.com/wp-content/plugins/ad-inserter-pro/js/300x250.js?ver=2.7.30
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type ASCII text, with CRLF line terminators
Hash 477a3439cb9e1c0c964ec9c4ea8dfb09
2ea01b77c5646e7de702517261278c5020dc21dc
5094ccbebe88be6b459174d1cca74c7a024fcada1f077756ffa80878347d967b
GET /wp-content/plugins/ad-inserter-pro/js/300x250.js?ver=2.7.30 HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
content-length: 25
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Origin
last-modified: Mon, 11 Sep 2023 17:58:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
access-control-allow-origin:
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/cache/autoptimize/js/autoptimize_1410ff48112d57f75009d616c36166f4.js
200 OK 27 kB URL GET HTTP/2 www.allpornstream.com/wp-content/cache/autoptimize/js/autoptimize_1410ff48112d57f75009d616c36166f4.js
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type ASCII text, with very long lines (32026)
Hash 49cc69b28fdc35dbff904da37009e45c
7bfed6e39c23402463c5b27bdcfe6c566e8d3d74
387c31ec4a5e598068e9aad8bd649985f64586b477721fb5d1f3156e3c032342
GET /wp-content/cache/autoptimize/js/autoptimize_1410ff48112d57f75009d616c36166f4.js HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
content-length: 26818
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Accept-Encoding,Origin
last-modified: Mon, 11 Sep 2023 18:06:53 GMT
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Fri, 06 Sep 2024 02:06:28 GMT
content-encoding: gzip
access-control-allow-origin:
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 6baf1d8a31b46b31d2194fa3d66d08bd
e22400364dd8ef4742854ce14a2ae125efbc94ca
5baf7a3cffc50d8a196828ec49da7527c6b99a513a1e14344a1e3d3c4df40f3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 17 Sep 2023 02:06:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.fluidplayer.com/v2/current/fluidplayer.min.css
200 OK 4.6 kB URL GET HTTP/1.1 cdn.fluidplayer.com/v2/current/fluidplayer.min.css
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectfluidplayer.com
FingerprintB0:9D:B5:99:B5:B6:BE:D4:DB:14:D7:DE:47:52:90:91:06:FB:62:80
ValiditySun, 23 Jul 2023 14:05:06 GMT - Sat, 21 Oct 2023 14:05:05 GMT
File type ASCII text, with very long lines (34580)
Hash ccf7e6c79062d3b214a26e1416948b99
2081069fe50d99f5dc159c68e5ca0ea4b9942725
b89485f60b9d7cf92ab0ac946c1728454a609e4466026626035e2102b4811193
GET /v2/current/fluidplayer.min.css HTTP/1.1
Host: cdn.fluidplayer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.allpornstream.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 17 Sep 2023 02:06:28 GMT
Connection: Keep-Alive
ETag: "1584964688"
Cache-Control: max-age=26434
Content-Encoding: gzip
Content-Length: 4618
Content-Type: text/css
Last-Modified: Mon, 23 Mar 2020 11:58:08 GMT
Accept-Ranges: bytes
X-HW: 1694916388.dop015.sk1.t,1694916388.cds016.sk1.shn,1694916388.cds016.sk1.c
cdn.fluidplayer.com/v2/current/fluidplayer.min.js
200 OK 28 kB URL GET HTTP/1.1 cdn.fluidplayer.com/v2/current/fluidplayer.min.js
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectfluidplayer.com
FingerprintB0:9D:B5:99:B5:B6:BE:D4:DB:14:D7:DE:47:52:90:91:06:FB:62:80
ValiditySun, 23 Jul 2023 14:05:06 GMT - Sat, 21 Oct 2023 14:05:05 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 75fe4c766bbf4b39fe3d753e6a2438a0
c08fe1b344edb4f563b019b1d2e4621fd4656a7f
6d35529e97ac48abda83c68a13d780e8505ec839865a7fb84a91fde809cc6f14
GET /v2/current/fluidplayer.min.js HTTP/1.1
Host: cdn.fluidplayer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 17 Sep 2023 02:06:28 GMT
Connection: Keep-Alive
ETag: "1584964688"
Cache-Control: max-age=11731
Content-Encoding: gzip
Content-Length: 28351
Content-Type: application/javascript
Last-Modified: Mon, 23 Mar 2020 11:58:08 GMT
Accept-Ranges: bytes
X-HW: 1694916388.dop016.sk1.t,1694916388.cds225.sk1.shn,1694916388.cds225.sk1.c
www.googletagmanager.com/gtag/js?id=G-H9QE41NY25
200 OK 89 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-H9QE41NY25
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintE6:F7:82:C1:10:AC:08:76:A1:97:70:B7:56:B7:EF:92:30:BA:1E:12
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (3651)
Hash 2f909509a55a8a6e04042d04fb4f1d90
a02fac9b81c0b7950e95a41851928456ed71edc8
602729f1d85f70882c73a64b5751545f142586c54b82e9bf7ab7bf7e46efe531
GET /gtag/js?id=G-H9QE41NY25 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 17 Sep 2023 02:06:28 GMT
expires: Sun, 17 Sep 2023 02:06:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89108
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.buypass.com/
1.7 kB IP
ASN #20940 Akamai International B.V.
Hash 897b571113a8f8aafb12c5d425552053
a750b13a87d904551645587bdeecaacde9bb8b22
15ae7d078f4a52977a722a47a714b8b2a10fd51fcd06c4223972c77e9572db64
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: f0250b21-f8c3-4396-b968-5b53ce9d6194
Content-Length: 1701
Date: Sun, 17 Sep 2023 02:06:28 GMT
Connection: keep-alive
www.allpornstream.com/wp-content/themes/apstheme/fonts/fa-solid-900.woff2
200 OK 75 kB URL GET HTTP/2 www.allpornstream.com/wp-content/themes/apstheme/fonts/fa-solid-900.woff2
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type Web Open Font Format (Version 2), TrueType, length 75440, version 329.-1049\012- data
Hash b5cf8ae26748570d8fb95a47f46b69e1
07bed153d47f9129a944ee54dd72952deed074c8
cd398be1a91817126cef10224738e624358edf6f08043abad7e60c1aaeccc8d0
GET /wp-content/themes/apstheme/fonts/fa-solid-900.woff2 HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.allpornstream.com/wp-content/cache/autoptimize/css/autoptimize_3cebe9df6e8e42f3bcaca410ca26fbee.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-length: 75440
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Origin
last-modified: Sat, 22 Feb 2020 23:24:00 GMT
accept-ranges: bytes
access-control-allow-origin:
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 3f690653f247c02a01c2528105aefa1c
49b43e6ae93d42552873e76d5f7fd04d09ef5303
e65860a990d88abab1a953c18a8498894fa306c9b8f5218f72379ff51281ba70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 17 Sep 2023 02:06:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Open+Sans:300,400&subset=cyrillic,greek,latin-ext
200 OK 1.1 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400&subset=cyrillic,greek,latin-ext
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
File type gzip compressed data, max compression\012- data
Hash a93e6d0f52a3f09b0db99dd00fca8852
507289ebb7c6559984f3d637c97a3d0d214639b7
89b870df8bf8b9a28e94abf1dd2a3711cc554a6d115fc2d5e75ddab7cee4ea73
GET /css?family=Open+Sans:300,400&subset=cyrillic,greek,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.fluidplayer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 17 Sep 2023 02:06:28 GMT
date: Sun, 17 Sep 2023 02:06:28 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fvcwqkkqmuv.com/solid.gif?z=1968193&abvar=0&febuild=1.0.147&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
200 OK 43 B URL POST HTTP/2 fvcwqkkqmuv.com/solid.gif?z=1968193&abvar=0&febuild=1.0.147&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint9A:2F:14:29:BF:3A:F6:04:3C:73:42:7B:73:9F:C1:FE:76:C6:D5:0F
ValidityWed, 31 May 2023 13:01:06 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1968193&abvar=0&febuild=1.0.147&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: fvcwqkkqmuv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
set-cookie: CHCK=1; Path=/; Expires=Sun, 20 Oct 2024 02:06:28 GMT; HttpOnly; Secure; SameSite=None
UID=2309162106ab1739ec60a34028881b7cdc77; Path=/; Expires=Sun, 20 Oct 2024 02:06:28 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/themes/apstheme/img/image-gradient.png
200 OK 1.7 kB URL GET HTTP/2 www.allpornstream.com/wp-content/themes/apstheme/img/image-gradient.png
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type PNG image data, 80 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash a1d415a8b6c8bf15657d6bec80f80458
b83bc16a0ed3df9f4d09a88ee162ee83d29cb54c
4d6f9711e0b89931512ec47583e3b7014826651e1b9bb706634a712a1106439f
GET /wp-content/themes/apstheme/img/image-gradient.png HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.allpornstream.com/wp-content/cache/autoptimize/css/autoptimize_3cebe9df6e8e42f3bcaca410ca26fbee.css
Cookie: _ga_H9QE41NY25=GS1.1.1694916388.1.0.1694916388.60.0.0; _ga=GA1.1.1075486518.1694916389
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: image/png
content-length: 1690
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Origin
last-modified: Sat, 22 Feb 2020 23:24:00 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
access-control-allow-origin:
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/themes/apstheme/fonts/fa-regular-400.woff2
200 OK 14 kB URL GET HTTP/2 www.allpornstream.com/wp-content/themes/apstheme/fonts/fa-regular-400.woff2
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type Web Open Font Format (Version 2), TrueType, length 13580, version 329.-1049\012- data
Hash e07d9e40b26048d9abe2ef966cd6e263
c744217caa82b3245cffa2714aaf2ec9f749614d
6a16c04229bc2b4da226eb97e68d94f49ba6437b7b5e16c14a101b21a29384e9
GET /wp-content/themes/apstheme/fonts/fa-regular-400.woff2 HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.allpornstream.com/wp-content/cache/autoptimize/css/autoptimize_3cebe9df6e8e42f3bcaca410ca26fbee.css
Cookie: _ga_H9QE41NY25=GS1.1.1694916388.1.0.1694916388.60.0.0; _ga=GA1.1.1075486518.1694916389
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-length: 13580
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Origin
last-modified: Sat, 22 Feb 2020 23:24:00 GMT
accept-ranges: bytes
access-control-allow-origin:
X-Firefox-Spdy: h2
ocsp.sectigo.com/
471 B IP
Hash 453a79e8cdcd3b40ba0f9a5df2460a23
f76e4edd8731c0e3a745cc2920a31d995a9da5ea
3307269db2e555866a874035e8f0c55f157c2c011413d364f75ee41fccf5075e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 17 Sep 2023 02:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 16 Sep 2023 17:12:56 GMT
Expires: Sat, 23 Sep 2023 17:12:55 GMT
Etag: "f76e4edd8731c0e3a745cc2920a31d995a9da5ea"
Cache-Control: max-age=572640,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 807dca458af55697-OSL
ocsp.sectigo.com/
471 B IP
Hash 453a79e8cdcd3b40ba0f9a5df2460a23
f76e4edd8731c0e3a745cc2920a31d995a9da5ea
3307269db2e555866a874035e8f0c55f157c2c011413d364f75ee41fccf5075e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 17 Sep 2023 02:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 16 Sep 2023 17:12:56 GMT
Expires: Sat, 23 Sep 2023 17:12:55 GMT
Etag: "f76e4edd8731c0e3a745cc2920a31d995a9da5ea"
Cache-Control: max-age=572879,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 807dca457bf55689-OSL
ocsp.buypass.com/
1.7 kB IP
ASN #20940 Akamai International B.V.
Hash 7fe0bd0eb7fd8e66ba44d72709b2fd24
c7fa9d043b5f7717ce09ce789f29153482d5ef7b
294dee4765db7a132ea03fb84f502a0acd861b0b8eef9d9918f69d4a609c7ea0
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: fd77455c-d872-42aa-afb5-d99a537510c2
Content-Length: 1701
Date: Sun, 17 Sep 2023 02:06:28 GMT
Connection: keep-alive
limurol.com/ssp/req/1968193/?pb=ea8462c22923baf65081ce88c4692a511694923588&psp=JIuSXrDmIOgM-IegksI-7kGAhLZ0GTcf9aM2LwntbYe5NKnXJf-2HbjYQnBKz_tDu3Uc9n3pTjhoVOs7KinK5nCubnGKrTWWvENT69YfMne06KmWk-h39AnK9Xnm18qu1E4BH86P5B8mFTKulDqa-4PscT_lYpJOyHCqB6ge3DpSXaZ4yrj6fTMdrZ4ejCIneSxnSagQx6T9fo-6o8kGV4taJwC51YSFATB-5ZGxqENcDzf4vEYN9j5IMva9-TuHPQJEQOKI_YikFXcCIAbZQ2kFBWRjID6Okp8Xzaj8vL7aR95GZcNsN2HcGWiNLt7p5oFCjPl8T7g6SZXqwb0okzncfHdKjN-FbudcBAU0xstKEOIl2iYXPmIaSMqFaioYT7p0DAbvyIukFslqQsTT972Tol5KcMROr6yf_yhZ6a_l7hiA-0rBO1ykWFY8E_lKkTR0JvvqItZk-UB8N1wOr_QJ1bl4a1sQ7ldKdAKynuu9aCdZeQ_jD_ogQHhkTBsoq-1rHrS0YjpZ5Di34tPnVzNPK8LuTFlCaOLKmzQikRASWVmekNI1P975-8ZVoI31jwhh21UnD7PjjYnfdwrb8RKDF6BTD2HcqzSsjfmVvShoNMtExBzEEA8DsTnA-YD3dhCeYjezFdO4CKt6AaGgS36tW8DdI8teV5P0gj4Tlmd8tVYuNHko2pAzPz12J2le-QtWqzI6UkgbKSzX56d62iDnkU-kasVBNv8bj_rbHbgXQSB4J78tVdqAbVMS6QEbJDvWm9FYuwZBJWZTtQpXFa2zzRpmHshcSydsR44Kb1qQ2DrdTzLSKirmkkDv26hHR17hstcL3jEGEjnX64xEgfcwBN5UyPzKgl8Nx7500kfOtIpOWfQCEENugcnROiroA22QQFgwcO_sFjPNS0TNu1ygbc2bE_6Ttnt1NQIkBT_45-_z0TyL-P6VYagL&im=1&cb=_clvehug8uw70e9f3izartk&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1968193/?pb=ea8462c22923baf65081ce88c4692a511694923588&psp=JIuSXrDmIOgM-IegksI-7kGAhLZ0GTcf9aM2LwntbYe5NKnXJf-2HbjYQnBKz_tDu3Uc9n3pTjhoVOs7KinK5nCubnGKrTWWvENT69YfMne06KmWk-h39AnK9Xnm18qu1E4BH86P5B8mFTKulDqa-4PscT_lYpJOyHCqB6ge3DpSXaZ4yrj6fTMdrZ4ejCIneSxnSagQx6T9fo-6o8kGV4taJwC51YSFATB-5ZGxqENcDzf4vEYN9j5IMva9-TuHPQJEQOKI_YikFXcCIAbZQ2kFBWRjID6Okp8Xzaj8vL7aR95GZcNsN2HcGWiNLt7p5oFCjPl8T7g6SZXqwb0okzncfHdKjN-FbudcBAU0xstKEOIl2iYXPmIaSMqFaioYT7p0DAbvyIukFslqQsTT972Tol5KcMROr6yf_yhZ6a_l7hiA-0rBO1ykWFY8E_lKkTR0JvvqItZk-UB8N1wOr_QJ1bl4a1sQ7ldKdAKynuu9aCdZeQ_jD_ogQHhkTBsoq-1rHrS0YjpZ5Di34tPnVzNPK8LuTFlCaOLKmzQikRASWVmekNI1P975-8ZVoI31jwhh21UnD7PjjYnfdwrb8RKDF6BTD2HcqzSsjfmVvShoNMtExBzEEA8DsTnA-YD3dhCeYjezFdO4CKt6AaGgS36tW8DdI8teV5P0gj4Tlmd8tVYuNHko2pAzPz12J2le-QtWqzI6UkgbKSzX56d62iDnkU-kasVBNv8bj_rbHbgXQSB4J78tVdqAbVMS6QEbJDvWm9FYuwZBJWZTtQpXFa2zzRpmHshcSydsR44Kb1qQ2DrdTzLSKirmkkDv26hHR17hstcL3jEGEjnX64xEgfcwBN5UyPzKgl8Nx7500kfOtIpOWfQCEENugcnROiroA22QQFgwcO_sFjPNS0TNu1ygbc2bE_6Ttnt1NQIkBT_45-_z0TyL-P6VYagL&im=1&cb=_clvehug8uw70e9f3izartk&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerBuypass AS-983163327
Subject
FingerprintB4:97:5A:E0:89:F4:2A:6B:FF:80:77:49:35:55:95:AD:70:3B:79:53
ValidityWed, 31 May 2023 15:31:47 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1968193/?pb=ea8462c22923baf65081ce88c4692a511694923588&psp=JIuSXrDmIOgM-IegksI-7kGAhLZ0GTcf9aM2LwntbYe5NKnXJf-2HbjYQnBKz_tDu3Uc9n3pTjhoVOs7KinK5nCubnGKrTWWvENT69YfMne06KmWk-h39AnK9Xnm18qu1E4BH86P5B8mFTKulDqa-4PscT_lYpJOyHCqB6ge3DpSXaZ4yrj6fTMdrZ4ejCIneSxnSagQx6T9fo-6o8kGV4taJwC51YSFATB-5ZGxqENcDzf4vEYN9j5IMva9-TuHPQJEQOKI_YikFXcCIAbZQ2kFBWRjID6Okp8Xzaj8vL7aR95GZcNsN2HcGWiNLt7p5oFCjPl8T7g6SZXqwb0okzncfHdKjN-FbudcBAU0xstKEOIl2iYXPmIaSMqFaioYT7p0DAbvyIukFslqQsTT972Tol5KcMROr6yf_yhZ6a_l7hiA-0rBO1ykWFY8E_lKkTR0JvvqItZk-UB8N1wOr_QJ1bl4a1sQ7ldKdAKynuu9aCdZeQ_jD_ogQHhkTBsoq-1rHrS0YjpZ5Di34tPnVzNPK8LuTFlCaOLKmzQikRASWVmekNI1P975-8ZVoI31jwhh21UnD7PjjYnfdwrb8RKDF6BTD2HcqzSsjfmVvShoNMtExBzEEA8DsTnA-YD3dhCeYjezFdO4CKt6AaGgS36tW8DdI8teV5P0gj4Tlmd8tVYuNHko2pAzPz12J2le-QtWqzI6UkgbKSzX56d62iDnkU-kasVBNv8bj_rbHbgXQSB4J78tVdqAbVMS6QEbJDvWm9FYuwZBJWZTtQpXFa2zzRpmHshcSydsR44Kb1qQ2DrdTzLSKirmkkDv26hHR17hstcL3jEGEjnX64xEgfcwBN5UyPzKgl8Nx7500kfOtIpOWfQCEENugcnROiroA22QQFgwcO_sFjPNS0TNu1ygbc2bE_6Ttnt1NQIkBT_45-_z0TyL-P6VYagL&im=1&cb=_clvehug8uw70e9f3izartk&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Sun, 20 Oct 2024 02:06:28 GMT; HttpOnly; Secure; SameSite=None
UID=23091621064f437eb700e04df1a2a46ea749; Path=/; Expires=Sun, 20 Oct 2024 02:06:28 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/plugins/ad-inserter-pro/images/ads.png
200 OK 95 B URL GET HTTP/2 www.allpornstream.com/wp-content/plugins/ad-inserter-pro/images/ads.png
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /wp-content/plugins/ad-inserter-pro/images/ads.png HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga_H9QE41NY25=GS1.1.1694916388.1.0.1694916388.60.0.0; _ga=GA1.1.1075486518.1694916389; __PPU___PPU_SESSION_URL=%2Fmatching-set-and-matching-taste%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: image/png
content-length: 95
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Origin
last-modified: Mon, 11 Sep 2023 17:58:13 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
access-control-allow-origin:
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/uploads/2022/09/Just-the-tip-and-in-the-ass-bro.jpg
200 OK 24 kB URL GET HTTP/2 www.allpornstream.com/wp-content/uploads/2022/09/Just-the-tip-and-in-the-ass-bro.jpg
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 403x227, components 3\012- data
Hash aa02e4d2c6b2f1316d34777bfb0ed8db
1d4962fb8dba680741bfef5f8d5a5249e5aa6bfb
d927b8be31c79dd304012381adaca20dd9ef84122748cf0f28b812f5884da3d6
GET /wp-content/uploads/2022/09/Just-the-tip-and-in-the-ass-bro.jpg HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga_H9QE41NY25=GS1.1.1694916388.1.0.1694916388.60.0.0; _ga=GA1.1.1075486518.1694916389; __PPU___PPU_SESSION_URL=%2Fmatching-set-and-matching-taste%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: image/jpeg
content-length: 23527
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Origin
last-modified: Thu, 22 Sep 2022 18:30:04 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
access-control-allow-origin:
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/uploads/2022/08/A-deep-learning-lesson.jpg
200 OK 33 kB URL GET HTTP/2 www.allpornstream.com/wp-content/uploads/2022/08/A-deep-learning-lesson.jpg
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 403x227, components 3\012- data
Hash 664d243dbad04e3bd880d0d10aecbeff
ad293ef1e6d28fb4ac4ee4eb8427b8f340850501
fb9c529e8a24e1dec8e2d09d1871d89b6b14d3288be26cd4ca1fc92e64be3c54
GET /wp-content/uploads/2022/08/A-deep-learning-lesson.jpg HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga_H9QE41NY25=GS1.1.1694916388.1.0.1694916388.60.0.0; _ga=GA1.1.1075486518.1694916389; __PPU___PPU_SESSION_URL=%2Fmatching-set-and-matching-taste%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: image/jpeg
content-length: 32700
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Origin
last-modified: Wed, 03 Aug 2022 10:30:07 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
access-control-allow-origin:
X-Firefox-Spdy: h2
limurol.com/ssp/req/1968193/?pb=ea8462c22923baf65081ce88c4692a511694923588&psp=JIuSXrDmIOgM-IegksI-7kGAhLZ0GTcf9aM2LwntbYe5NKnXJf-2HbjYQnBKz_tDu3Uc9n3pTjhoVOs7KinK5nCubnGKrTWWvENT69YfMne06KmWk-h39AnK9Xnm18qu1E4BH86P5B8mFTKulDqa-4PscT_lYpJOyHCqB6ge3DpSXaZ4yrj6fTMdrZ4ejCIneSxnSagQx6T9fo-6o8kGV4taJwC51YSFATB-5ZGxqENcDzf4vEYN9j5IMva9-TuHPQJEQOKI_YikFXcCIAbZQ2kFBWRjID6Okp8Xzaj8vL7aR95GZcNsN2HcGWiNLt7p5oFCjPl8T7g6SZXqwb0okzncfHdKjN-FbudcBAU0xstKEOIl2iYXPmIaSMqFaioYT7p0DAbvyIukFslqQsTT972Tol5KcMROr6yf_yhZ6a_l7hiA-0rBO1ykWFY8E_lKkTR0JvvqItZk-UB8N1wOr_QJ1bl4a1sQ7ldKdAKynuu9aCdZeQ_jD_ogQHhkTBsoq-1rHrS0YjpZ5Di34tPnVzNPK8LuTFlCaOLKmzQikRASWVmekNI1P975-8ZVoI31jwhh21UnD7PjjYnfdwrb8RKDF6BTD2HcqzSsjfmVvShoNMtExBzEEA8DsTnA-YD3dhCeYjezFdO4CKt6AaGgS36tW8DdI8teV5P0gj4Tlmd8tVYuNHko2pAzPz12J2le-QtWqzI6UkgbKSzX56d62iDnkU-kasVBNv8bj_rbHbgXQSB4J78tVdqAbVMS6QEbJDvWm9FYuwZBJWZTtQpXFa2zzRpmHshcSydsR44Kb1qQ2DrdTzLSKirmkkDv26hHR17hstcL3jEGEjnX64xEgfcwBN5UyPzKgl8Nx7500kfOtIpOWfQCEENugcnROiroA22QQFgwcO_sFjPNS0TNu1ygbc2bE_6Ttnt1NQIkBT_45-_z0TyL-P6VYagL&im=1&cb=_clvehug8uw70e9f3izartk&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1968193/?pb=ea8462c22923baf65081ce88c4692a511694923588&psp=JIuSXrDmIOgM-IegksI-7kGAhLZ0GTcf9aM2LwntbYe5NKnXJf-2HbjYQnBKz_tDu3Uc9n3pTjhoVOs7KinK5nCubnGKrTWWvENT69YfMne06KmWk-h39AnK9Xnm18qu1E4BH86P5B8mFTKulDqa-4PscT_lYpJOyHCqB6ge3DpSXaZ4yrj6fTMdrZ4ejCIneSxnSagQx6T9fo-6o8kGV4taJwC51YSFATB-5ZGxqENcDzf4vEYN9j5IMva9-TuHPQJEQOKI_YikFXcCIAbZQ2kFBWRjID6Okp8Xzaj8vL7aR95GZcNsN2HcGWiNLt7p5oFCjPl8T7g6SZXqwb0okzncfHdKjN-FbudcBAU0xstKEOIl2iYXPmIaSMqFaioYT7p0DAbvyIukFslqQsTT972Tol5KcMROr6yf_yhZ6a_l7hiA-0rBO1ykWFY8E_lKkTR0JvvqItZk-UB8N1wOr_QJ1bl4a1sQ7ldKdAKynuu9aCdZeQ_jD_ogQHhkTBsoq-1rHrS0YjpZ5Di34tPnVzNPK8LuTFlCaOLKmzQikRASWVmekNI1P975-8ZVoI31jwhh21UnD7PjjYnfdwrb8RKDF6BTD2HcqzSsjfmVvShoNMtExBzEEA8DsTnA-YD3dhCeYjezFdO4CKt6AaGgS36tW8DdI8teV5P0gj4Tlmd8tVYuNHko2pAzPz12J2le-QtWqzI6UkgbKSzX56d62iDnkU-kasVBNv8bj_rbHbgXQSB4J78tVdqAbVMS6QEbJDvWm9FYuwZBJWZTtQpXFa2zzRpmHshcSydsR44Kb1qQ2DrdTzLSKirmkkDv26hHR17hstcL3jEGEjnX64xEgfcwBN5UyPzKgl8Nx7500kfOtIpOWfQCEENugcnROiroA22QQFgwcO_sFjPNS0TNu1ygbc2bE_6Ttnt1NQIkBT_45-_z0TyL-P6VYagL&im=1&cb=_clvehug8uw70e9f3izartk&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerBuypass AS-983163327
Subject
FingerprintB4:97:5A:E0:89:F4:2A:6B:FF:80:77:49:35:55:95:AD:70:3B:79:53
ValidityWed, 31 May 2023 15:31:47 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1968193/?pb=ea8462c22923baf65081ce88c4692a511694923588&psp=JIuSXrDmIOgM-IegksI-7kGAhLZ0GTcf9aM2LwntbYe5NKnXJf-2HbjYQnBKz_tDu3Uc9n3pTjhoVOs7KinK5nCubnGKrTWWvENT69YfMne06KmWk-h39AnK9Xnm18qu1E4BH86P5B8mFTKulDqa-4PscT_lYpJOyHCqB6ge3DpSXaZ4yrj6fTMdrZ4ejCIneSxnSagQx6T9fo-6o8kGV4taJwC51YSFATB-5ZGxqENcDzf4vEYN9j5IMva9-TuHPQJEQOKI_YikFXcCIAbZQ2kFBWRjID6Okp8Xzaj8vL7aR95GZcNsN2HcGWiNLt7p5oFCjPl8T7g6SZXqwb0okzncfHdKjN-FbudcBAU0xstKEOIl2iYXPmIaSMqFaioYT7p0DAbvyIukFslqQsTT972Tol5KcMROr6yf_yhZ6a_l7hiA-0rBO1ykWFY8E_lKkTR0JvvqItZk-UB8N1wOr_QJ1bl4a1sQ7ldKdAKynuu9aCdZeQ_jD_ogQHhkTBsoq-1rHrS0YjpZ5Di34tPnVzNPK8LuTFlCaOLKmzQikRASWVmekNI1P975-8ZVoI31jwhh21UnD7PjjYnfdwrb8RKDF6BTD2HcqzSsjfmVvShoNMtExBzEEA8DsTnA-YD3dhCeYjezFdO4CKt6AaGgS36tW8DdI8teV5P0gj4Tlmd8tVYuNHko2pAzPz12J2le-QtWqzI6UkgbKSzX56d62iDnkU-kasVBNv8bj_rbHbgXQSB4J78tVdqAbVMS6QEbJDvWm9FYuwZBJWZTtQpXFa2zzRpmHshcSydsR44Kb1qQ2DrdTzLSKirmkkDv26hHR17hstcL3jEGEjnX64xEgfcwBN5UyPzKgl8Nx7500kfOtIpOWfQCEENugcnROiroA22QQFgwcO_sFjPNS0TNu1ygbc2bE_6Ttnt1NQIkBT_45-_z0TyL-P6VYagL&im=1&cb=_clvehug8uw70e9f3izartk&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: CHCK=1; UID=23091621064f437eb700e04df1a2a46ea749
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Sun, 20 Oct 2024 02:06:28 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
6.1 kB URL GET mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6062), with no line terminators
Hash c95870fcc7b3a4eb8b7f3a175014c3f0
63ca4931a1c10f497dca2bd33967e3e5916ab3c9
214741c435b64f2d6391fc6157e332061cc5a5f1fb0aa5ef78e95b107fc5a41f
GET /video/8d3d7e8ca2dc7c98ca/ HTTP/1.1
Host: mydaddy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 17 Sep 2023 02:06:28 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.16
Set-Cookie: md_v_s=s; expires=Sun, 17-Sep-2023 04:06:28 GMT; path=/
Expires: Sun, 17 Sep 2023 02:06:27 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
limurol.com/ssp/req/1968193/?pb=ea8462c22923baf65081ce88c4692a511694923588&psp=JIuSXrDmIOgM-IegksI-7kGAhLZ0GTcf9aM2LwntbYe5NKnXJf-2HbjYQnBKz_tDu3Uc9n3pTjhoVOs7KinK5nCubnGKrTWWvENT69YfMne06KmWk-h39AnK9Xnm18qu1E4BH86P5B8mFTKulDqa-4PscT_lYpJOyHCqB6ge3DpSXaZ4yrj6fTMdrZ4ejCIneSxnSagQx6T9fo-6o8kGV4taJwC51YSFATB-5ZGxqENcDzf4vEYN9j5IMva9-TuHPQJEQOKI_YikFXcCIAbZQ2kFBWRjID6Okp8Xzaj8vL7aR95GZcNsN2HcGWiNLt7p5oFCjPl8T7g6SZXqwb0okzncfHdKjN-FbudcBAU0xstKEOIl2iYXPmIaSMqFaioYT7p0DAbvyIukFslqQsTT972Tol5KcMROr6yf_yhZ6a_l7hiA-0rBO1ykWFY8E_lKkTR0JvvqItZk-UB8N1wOr_QJ1bl4a1sQ7ldKdAKynuu9aCdZeQ_jD_ogQHhkTBsoq-1rHrS0YjpZ5Di34tPnVzNPK8LuTFlCaOLKmzQikRASWVmekNI1P975-8ZVoI31jwhh21UnD7PjjYnfdwrb8RKDF6BTD2HcqzSsjfmVvShoNMtExBzEEA8DsTnA-YD3dhCeYjezFdO4CKt6AaGgS36tW8DdI8teV5P0gj4Tlmd8tVYuNHko2pAzPz12J2le-QtWqzI6UkgbKSzX56d62iDnkU-kasVBNv8bj_rbHbgXQSB4J78tVdqAbVMS6QEbJDvWm9FYuwZBJWZTtQpXFa2zzRpmHshcSydsR44Kb1qQ2DrdTzLSKirmkkDv26hHR17hstcL3jEGEjnX64xEgfcwBN5UyPzKgl8Nx7500kfOtIpOWfQCEENugcnROiroA22QQFgwcO_sFjPNS0TNu1ygbc2bE_6Ttnt1NQIkBT_45-_z0TyL-P6VYagL&im=1&cb=_clvehug8uw70e9f3izartk&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1968193/?pb=ea8462c22923baf65081ce88c4692a511694923588&psp=JIuSXrDmIOgM-IegksI-7kGAhLZ0GTcf9aM2LwntbYe5NKnXJf-2HbjYQnBKz_tDu3Uc9n3pTjhoVOs7KinK5nCubnGKrTWWvENT69YfMne06KmWk-h39AnK9Xnm18qu1E4BH86P5B8mFTKulDqa-4PscT_lYpJOyHCqB6ge3DpSXaZ4yrj6fTMdrZ4ejCIneSxnSagQx6T9fo-6o8kGV4taJwC51YSFATB-5ZGxqENcDzf4vEYN9j5IMva9-TuHPQJEQOKI_YikFXcCIAbZQ2kFBWRjID6Okp8Xzaj8vL7aR95GZcNsN2HcGWiNLt7p5oFCjPl8T7g6SZXqwb0okzncfHdKjN-FbudcBAU0xstKEOIl2iYXPmIaSMqFaioYT7p0DAbvyIukFslqQsTT972Tol5KcMROr6yf_yhZ6a_l7hiA-0rBO1ykWFY8E_lKkTR0JvvqItZk-UB8N1wOr_QJ1bl4a1sQ7ldKdAKynuu9aCdZeQ_jD_ogQHhkTBsoq-1rHrS0YjpZ5Di34tPnVzNPK8LuTFlCaOLKmzQikRASWVmekNI1P975-8ZVoI31jwhh21UnD7PjjYnfdwrb8RKDF6BTD2HcqzSsjfmVvShoNMtExBzEEA8DsTnA-YD3dhCeYjezFdO4CKt6AaGgS36tW8DdI8teV5P0gj4Tlmd8tVYuNHko2pAzPz12J2le-QtWqzI6UkgbKSzX56d62iDnkU-kasVBNv8bj_rbHbgXQSB4J78tVdqAbVMS6QEbJDvWm9FYuwZBJWZTtQpXFa2zzRpmHshcSydsR44Kb1qQ2DrdTzLSKirmkkDv26hHR17hstcL3jEGEjnX64xEgfcwBN5UyPzKgl8Nx7500kfOtIpOWfQCEENugcnROiroA22QQFgwcO_sFjPNS0TNu1ygbc2bE_6Ttnt1NQIkBT_45-_z0TyL-P6VYagL&im=1&cb=_clvehug8uw70e9f3izartk&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerBuypass AS-983163327
Subject
FingerprintB4:97:5A:E0:89:F4:2A:6B:FF:80:77:49:35:55:95:AD:70:3B:79:53
ValidityWed, 31 May 2023 15:31:47 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1968193/?pb=ea8462c22923baf65081ce88c4692a511694923588&psp=JIuSXrDmIOgM-IegksI-7kGAhLZ0GTcf9aM2LwntbYe5NKnXJf-2HbjYQnBKz_tDu3Uc9n3pTjhoVOs7KinK5nCubnGKrTWWvENT69YfMne06KmWk-h39AnK9Xnm18qu1E4BH86P5B8mFTKulDqa-4PscT_lYpJOyHCqB6ge3DpSXaZ4yrj6fTMdrZ4ejCIneSxnSagQx6T9fo-6o8kGV4taJwC51YSFATB-5ZGxqENcDzf4vEYN9j5IMva9-TuHPQJEQOKI_YikFXcCIAbZQ2kFBWRjID6Okp8Xzaj8vL7aR95GZcNsN2HcGWiNLt7p5oFCjPl8T7g6SZXqwb0okzncfHdKjN-FbudcBAU0xstKEOIl2iYXPmIaSMqFaioYT7p0DAbvyIukFslqQsTT972Tol5KcMROr6yf_yhZ6a_l7hiA-0rBO1ykWFY8E_lKkTR0JvvqItZk-UB8N1wOr_QJ1bl4a1sQ7ldKdAKynuu9aCdZeQ_jD_ogQHhkTBsoq-1rHrS0YjpZ5Di34tPnVzNPK8LuTFlCaOLKmzQikRASWVmekNI1P975-8ZVoI31jwhh21UnD7PjjYnfdwrb8RKDF6BTD2HcqzSsjfmVvShoNMtExBzEEA8DsTnA-YD3dhCeYjezFdO4CKt6AaGgS36tW8DdI8teV5P0gj4Tlmd8tVYuNHko2pAzPz12J2le-QtWqzI6UkgbKSzX56d62iDnkU-kasVBNv8bj_rbHbgXQSB4J78tVdqAbVMS6QEbJDvWm9FYuwZBJWZTtQpXFa2zzRpmHshcSydsR44Kb1qQ2DrdTzLSKirmkkDv26hHR17hstcL3jEGEjnX64xEgfcwBN5UyPzKgl8Nx7500kfOtIpOWfQCEENugcnROiroA22QQFgwcO_sFjPNS0TNu1ygbc2bE_6Ttnt1NQIkBT_45-_z0TyL-P6VYagL&im=1&cb=_clvehug8uw70e9f3izartk&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: CHCK=1; UID=23091621064f437eb700e04df1a2a46ea749
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Sun, 20 Oct 2024 02:06:29 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
mydaddy.cc/fa/css/font-awesome.min.css
200 OK 28 kB URL GET HTTP/1.1 mydaddy.cc/fa/css/font-awesome.min.css
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subject*.mydaddy.cc
Fingerprint48:52:C1:DE:A4:A1:79:09:66:7E:6C:54:B8:6F:F8:14:0A:C5:0D:64
ValiditySun, 20 Nov 2022 00:00:00 GMT - Sat, 25 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (27303)
Hash 4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5
GET /fa/css/font-awesome.min.css HTTP/1.1
Host: mydaddy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: text/css
Content-Length: 27466
Last-Modified: Mon, 23 May 2022 11:12:38 GMT
Connection: keep-alive
ETag: "628b6c26-6b4a"
Expires: Sun, 17 Sep 2023 02:06:28 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
200 OK 34 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
IP
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
File type ASCII text, with very long lines (32038)
Hash f03e5a3bf534f4a738bc350631fd05bd
37b1db88b57438f1072a8ebc7559c909c9d3a682
aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947
GET /ajax/libs/jquery/1.11.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33507
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 12 Sep 2023 23:43:34 GMT
expires: Wed, 11 Sep 2024 23:43:34 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 354175
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mydaddy.cc/frame.css
200 OK 2.3 kB IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subject*.mydaddy.cc
Fingerprint48:52:C1:DE:A4:A1:79:09:66:7E:6C:54:B8:6F:F8:14:0A:C5:0D:64
ValiditySun, 20 Nov 2022 00:00:00 GMT - Sat, 25 Nov 2023 23:59:59 GMT
File type ASCII text, with CRLF, LF line terminators
Hash a44ef08aac4dfdc4fe4f6e69c7e9d685
90e6735a90ff6ae391eccad0cbd1ba62b5aea0cc
b89cf885372f665382fdb3a6262efdf598e9b07e5cd9cda415d938267e95283c
GET /frame.css HTTP/1.1
Host: mydaddy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: text/css
Content-Length: 2342
Last-Modified: Mon, 23 May 2022 10:41:46 GMT
Connection: keep-alive
ETag: "628b64ea-926"
Expires: Sun, 17 Sep 2023 02:06:28 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
mydaddy.cc/ads/banner.js
200 OK 21 B IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subject*.mydaddy.cc
Fingerprint48:52:C1:DE:A4:A1:79:09:66:7E:6C:54:B8:6F:F8:14:0A:C5:0D:64
ValiditySun, 20 Nov 2022 00:00:00 GMT - Sat, 25 Nov 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 8a68886c66c8ca4dccac563705f5891c
9481593b3ed889a48d7fabe175f419547735f010
abd9155ac0fe0e62fdb9e2c1c333357cd33107972a57eff5224b0f3d0d2df316
GET /ads/banner.js HTTP/1.1
Host: mydaddy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 21
Last-Modified: Mon, 23 May 2022 10:31:36 GMT
Connection: keep-alive
ETag: "628b6288-15"
Expires: Sun, 17 Sep 2023 02:06:28 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
fvcwqkkqmuv.com/aas/r45d/vki/1968193/0ce75115.js
200 OK 45 kB URL GET HTTP/2 fvcwqkkqmuv.com/aas/r45d/vki/1968193/0ce75115.js
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint9A:2F:14:29:BF:3A:F6:04:3C:73:42:7B:73:9F:C1:FE:76:C6:D5:0F
ValidityWed, 31 May 2023 13:01:06 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash c612aa385f72950ea9b567d6687feab1
2b7c609abc3ed52efd1bc81cbbb825f1eb88c1d1
4c9f6761297b8e8d6b502bcf48e658c34fdb9d82b6a1b6f33443b453bf37ec32
GET /aas/r45d/vki/1968193/0ce75115.js HTTP/1.1
Host: fvcwqkkqmuv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
last-modified: Thu, 14 Sep 2023 12:16:28 GMT
vary: Accept-Encoding
etag: W/"6502f99c-1494f"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/uploads/2020/02/cropped-logo_transparent_big-32x32.png
200 OK 1.8 kB URL GET HTTP/2 www.allpornstream.com/wp-content/uploads/2020/02/cropped-logo_transparent_big-32x32.png
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 9dbb6a9066c51cc465e20e8d6a704aa4
fb583431ad60eb5effb247187370abf609b5227d
929aec9514421d926126f1044d7c8202a5ec76be80ac65911d8f5a0f4b53c7f5
GET /wp-content/uploads/2020/02/cropped-logo_transparent_big-32x32.png HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga_H9QE41NY25=GS1.1.1694916388.1.0.1694916388.60.0.0; _ga=GA1.1.1075486518.1694916389; __PPU___PPU_SESSION_URL=%2Fmatching-set-and-matching-taste%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:29 GMT
content-type: image/png
content-length: 1849
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Origin
last-modified: Sat, 22 Feb 2020 19:06:32 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:29 GMT
access-control-allow-origin:
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 21 kB URL GET HTTP/2 www.google-analytics.com/analytics.js
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintE6:F7:82:C1:10:AC:08:76:A1:97:70:B7:56:B7:EF:92:30:BA:1E:12
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (2343)
Hash 575b5480531da4d14e7453e2016fe0bc
e5c5f3134fe29e60b591c87ea85951f0aea36ee1
de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20994
date: Sun, 17 Sep 2023 01:48:52 GMT
expires: Sun, 17 Sep 2023 03:48:52 GMT
cache-control: public, max-age=7200
age: 1057
last-modified: Mon, 12 Jun 2023 18:23:07 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash a075e7193d6db080e3af70e7262b7cc7
d3542cf868fa99b9d7e24eda60b5e7b73d5315ab
732f048540e7923a71a9e6f3eea18faf07ba32687ec23b88ce4d2338b82fd36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 17 Sep 2023 02:06:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-H9QE41NY25>m=45je39d0&_p=997947533&_gaz=1&cid=1075486518.1694916389&ul=en-us&sr=1280x1024&_s=1&sid=1694916388&sct=1&seg=0&dl=https%3A%2F%2Fwww.allpornstream.com%2Fmatching-set-and-matching-taste%2F&dt=Matching%20set%20and%20matching%20taste%20%7C%20All%20Porn%20Stream&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-H9QE41NY25>m=45je39d0&_p=997947533&_gaz=1&cid=1075486518.1694916389&ul=en-us&sr=1280x1024&_s=1&sid=1694916388&sct=1&seg=0&dl=https%3A%2F%2Fwww.allpornstream.com%2Fmatching-set-and-matching-taste%2F&dt=Matching%20set%20and%20matching%20taste%20%7C%20All%20Porn%20Stream&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintE6:F7:82:C1:10:AC:08:76:A1:97:70:B7:56:B7:EF:92:30:BA:1E:12
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-H9QE41NY25>m=45je39d0&_p=997947533&_gaz=1&cid=1075486518.1694916389&ul=en-us&sr=1280x1024&_s=1&sid=1694916388&sct=1&seg=0&dl=https%3A%2F%2Fwww.allpornstream.com%2Fmatching-set-and-matching-taste%2F&dt=Matching%20set%20and%20matching%20taste%20%7C%20All%20Porn%20Stream&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Sun, 17 Sep 2023 02:06:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mydaddy.cc/fluid-player-3.9.0/fluidplayer-m.js
200 OK 245 kB URL GET HTTP/1.1 mydaddy.cc/fluid-player-3.9.0/fluidplayer-m.js
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subject*.mydaddy.cc
Fingerprint48:52:C1:DE:A4:A1:79:09:66:7E:6C:54:B8:6F:F8:14:0A:C5:0D:64
ValiditySun, 20 Nov 2022 00:00:00 GMT - Sat, 25 Nov 2023 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (46372), with CRLF line terminators
Size 245 kB (245036 bytes)
Hash c01ad113993503ce5be9f430e48a5842
5b6a06a191007b7d3da8847429bb78d803d911b9
8d93743bd452482b482d02ccbc580ce3085b594309de29e39554968d6303a849
GET /fluid-player-3.9.0/fluidplayer-m.js HTTP/1.1
Host: mydaddy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 245036
Last-Modified: Wed, 15 Mar 2023 20:49:47 GMT
Connection: keep-alive
ETag: "64122f6b-3bd2c"
Expires: Sun, 17 Sep 2023 02:06:28 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
ocsp.sectigo.com/
471 B IP
Hash e6c2f5900db17a75b68d51b89cd2d08f
53262aa9375b9ec77790e88b54ea489e33c1158d
195bc88e92e1d0f7e4dcea6601e3a2403f3976d3ae67285908d5c2458d043b57
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 13 Sep 2023 16:59:12 GMT
Expires: Wed, 20 Sep 2023 16:59:11 GMT
Etag: "53262aa9375b9ec77790e88b54ea489e33c1158d"
Cache-Control: max-age=312443,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 807dca488bf55697-OSL
ocsp.pki.goog/gts1c3
472 B IP
Hash 6baf1d8a31b46b31d2194fa3d66d08bd
e22400364dd8ef4742854ce14a2ae125efbc94ca
5baf7a3cffc50d8a196828ec49da7527c6b99a513a1e14344a1e3d3c4df40f3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 17 Sep 2023 02:06:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-H9QE41NY25&cid=1075486518.1694916389>m=45je39d0&aip=1&z=1755226367
200 OK 42 B URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-H9QE41NY25&cid=1075486518.1694916389>m=45je39d0&aip=1&z=1755226367
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.no
FingerprintA9:73:A0:31:29:61:39:35:FE:99:2D:00:46:00:53:42:2E:6E:EE:78
ValidityMon, 14 Aug 2023 08:24:31 GMT - Mon, 06 Nov 2023 08:24:30 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-H9QE41NY25&cid=1075486518.1694916389>m=45je39d0&aip=1&z=1755226367 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 17 Sep 2023 02:06:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.tsyndicate.com/sdk/v1/p.js
200 OK 4.3 kB URL GET HTTP/2 cdn.tsyndicate.com/sdk/v1/p.js
IP
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subjectcdn.tsyndicate.com
FingerprintB6:87:8F:D6:E3:48:CF:61:4E:55:B9:6B:66:FC:B2:13:7F:A0:0D:BA
ValidityWed, 14 Jun 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (8989)
Hash b54f0585f5b1a92d2efe96670107c7ef
661a6a364a49f690cc4b093b2d6a8d48404b7a64
5952926b793296dfc72c3800e97fb8fdec3e95bcfbbbb2ca3932b2f764042ee5
GET /sdk/v1/p.js HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:29 GMT
content-type: application/javascript
content-length: 4326
server: nginx
last-modified: Wed, 13 Sep 2023 12:24:35 GMT
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
etag: W/"6501aa03-2369"
content-encoding: gzip
age: 307520
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 204dc4508682430cea131c8edf8cc1ac
77d2dc085cc97e91bfc621387d0b4ca92fc02851
5ab39ba246261d0207aeab582b9782c48a915b3272c3b1daafb171de9b987478
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 17 Sep 2023 02:06:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 204dc4508682430cea131c8edf8cc1ac
77d2dc085cc97e91bfc621387d0b4ca92fc02851
5ab39ba246261d0207aeab582b9782c48a915b3272c3b1daafb171de9b987478
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 17 Sep 2023 02:06:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.allpornstream.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 16 Sep 2023 11:13:54 GMT
expires: Sun, 15 Sep 2024 11:13:54 GMT
cache-control: public, max-age=31536000
age: 53555
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash a075e7193d6db080e3af70e7262b7cc7
d3542cf868fa99b9d7e24eda60b5e7b73d5315ab
732f048540e7923a71a9e6f3eea18faf07ba32687ec23b88ce4d2338b82fd36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 17 Sep 2023 02:06:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 204dc4508682430cea131c8edf8cc1ac
77d2dc085cc97e91bfc621387d0b4ca92fc02851
5ab39ba246261d0207aeab582b9782c48a915b3272c3b1daafb171de9b987478
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 17 Sep 2023 02:06:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.allpornstream.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 15 Sep 2023 10:05:24 GMT
expires: Sat, 14 Sep 2024 10:05:24 GMT
cache-control: public, max-age=31536000
age: 144065
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.allpornstream.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 14 Sep 2023 04:50:55 GMT
expires: Fri, 13 Sep 2024 04:50:55 GMT
cache-control: public, max-age=31536000
age: 249334
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydaddy.cc
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 14 Sep 2023 18:15:40 GMT
expires: Fri, 13 Sep 2024 18:15:40 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
age: 201049
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 204dc4508682430cea131c8edf8cc1ac
77d2dc085cc97e91bfc621387d0b4ca92fc02851
5ab39ba246261d0207aeab582b9782c48a915b3272c3b1daafb171de9b987478
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 17 Sep 2023 02:06:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mydaddy.cc/hf.html
200 OK 1.4 kB IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subject*.mydaddy.cc
Fingerprint48:52:C1:DE:A4:A1:79:09:66:7E:6C:54:B8:6F:F8:14:0A:C5:0D:64
ValiditySun, 20 Nov 2022 00:00:00 GMT - Sat, 25 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash da8e9846b4e8457b878d9130fd2d47aa
04a9f864fad1a24eed253067ff33368237a01fd2
6319141be12b603a561b53342d63002d4a8088815a8bfb40b0b17b91a592706e
GET /hf.html HTTP/1.1
Host: mydaddy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1395
Last-Modified: Tue, 30 May 2023 11:36:07 GMT
Connection: keep-alive
ETag: "6475dfa7-573"
Expires: Sun, 17 Sep 2023 02:06:28 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
mydaddy.cc/fluid-player-3.9.0/webvtt.aa10f918ed62b0525d0f.min.js
200 OK 8.3 kB URL GET HTTP/1.1 mydaddy.cc/fluid-player-3.9.0/webvtt.aa10f918ed62b0525d0f.min.js
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subject*.mydaddy.cc
Fingerprint48:52:C1:DE:A4:A1:79:09:66:7E:6C:54:B8:6F:F8:14:0A:C5:0D:64
ValiditySun, 20 Nov 2022 00:00:00 GMT - Sat, 25 Nov 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (8334), with no line terminators
Hash 4872bf1a062a7ca75b3e938397ba32d5
5cdcf226a15bdb5ee9545d37fc4a7ef792477916
1468289cff488b6bbb12834a17367d08ac9e606b5f3f0ac7e3a27c418ea441b3
GET /fluid-player-3.9.0/webvtt.aa10f918ed62b0525d0f.min.js HTTP/1.1
Host: mydaddy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 8339
Last-Modified: Thu, 01 Dec 2022 13:45:58 GMT
Connection: keep-alive
ETag: "6388b016-2093"
Expires: Sun, 17 Sep 2023 02:06:28 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
cdn.tsyndicate.com/sdk/v1/puengine.js
200 OK 34 kB URL GET HTTP/2 cdn.tsyndicate.com/sdk/v1/puengine.js
IP
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subjectcdn.tsyndicate.com
FingerprintB6:87:8F:D6:E3:48:CF:61:4E:55:B9:6B:66:FC:B2:13:7F:A0:0D:BA
ValidityWed, 14 Jun 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash c495ad40af8735dd306d62ef02c34a1f
0e51a0a423ded63b3c69cd207504213f5fd77ee0
016066d634922630d7cbb5bf83b022cd5cd07f8c346d4a21608ec1d6644ef2e0
GET /sdk/v1/puengine.js HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:29 GMT
content-type: application/javascript
content-length: 33968
server: nginx
last-modified: Thu, 19 Jan 2023 15:15:58 GMT
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
etag: W/"63c95eae-15db6"
content-encoding: gzip
age: 3904970
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.tsyndicate.com/sdk/v1/master.spot.js
200 OK 11 kB URL GET HTTP/2 cdn.tsyndicate.com/sdk/v1/master.spot.js
IP
Requested by https://mydaddy.cc/hf.html
Certificate IssuerSectigo Limited
Subjectcdn.tsyndicate.com
FingerprintB6:87:8F:D6:E3:48:CF:61:4E:55:B9:6B:66:FC:B2:13:7F:A0:0D:BA
ValidityWed, 14 Jun 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (29134)
Hash e9d8addb23a7bc5e33a68bca73bb3c0a
0e8c4d032af66bb6b3d6b8862ad8514f36f2c040
a70c7582aae89e4ca995d2050b8e3290af54f89f377a12532bee19652c379e96
GET /sdk/v1/master.spot.js HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:29 GMT
content-type: application/javascript
content-length: 11220
server: nginx
last-modified: Fri, 08 Sep 2023 08:39:39 GMT
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
etag: W/"64faddcb-898b"
content-encoding: gzip
age: 751733
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
472 B IP
Hash 1267c3d23c1f81632887fba864b1adec
24400b98e8f48ba45528b409aac1da3d084b6602
ac514d5ea4521d9de05e588b9be59b184a6f9ad9f7e29c9a5d1ebf0ea4636fbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 16 Sep 2023 17:12:51 GMT
Expires: Sat, 23 Sep 2023 17:12:50 GMT
Etag: "24400b98e8f48ba45528b409aac1da3d084b6602"
Cache-Control: max-age=573401,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 807dca4afe1c5689-OSL
ocsp.sectigo.com/
472 B IP
Hash 1267c3d23c1f81632887fba864b1adec
24400b98e8f48ba45528b409aac1da3d084b6602
ac514d5ea4521d9de05e588b9be59b184a6f9ad9f7e29c9a5d1ebf0ea4636fbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 16 Sep 2023 17:12:51 GMT
Expires: Sat, 23 Sep 2023 17:12:50 GMT
Etag: "24400b98e8f48ba45528b409aac1da3d084b6602"
Cache-Control: max-age=572671,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 807dca4b8d175697-OSL
s78.bigcdn.cc/pubs/65065f24e07cb0.68791733/tile.vtt
200 OK 17 kB URL GET HTTP/1.1 s78.bigcdn.cc/pubs/65065f24e07cb0.68791733/tile.vtt
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subject*.bigcdn.cc
FingerprintF1:B3:73:92:9F:76:38:76:75:9A:2B:8F:1E:AB:ED:17:F6:5A:D5:18
ValiditySun, 20 Nov 2022 00:00:00 GMT - Sat, 25 Nov 2023 23:59:59 GMT
Hash ec037b1ae760468ae124114d7573f755
1b4628b37b359a48aca0497ad315d7fedcbe71a5
887ef95786eae933b2126e9e2a134ca1c9d40f40c4fe1d0a80e5a13e27621065
GET /pubs/65065f24e07cb0.68791733/tile.vtt HTTP/1.1
Host: s78.bigcdn.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydaddy.cc
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: application/octet-stream
Content-Length: 17178
Last-Modified: Wed, 02 Aug 2023 01:31:13 GMT
Connection: keep-alive
ETag: "64c9b1e1-431a"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
s78.bigcdn.cc/pubs/65065f24e07cb0.68791733/main.jpg
200 OK 93 kB URL GET HTTP/1.1 s78.bigcdn.cc/pubs/65065f24e07cb0.68791733/main.jpg
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subject*.bigcdn.cc
FingerprintF1:B3:73:92:9F:76:38:76:75:9A:2B:8F:1E:AB:ED:17:F6:5A:D5:18
ValiditySun, 20 Nov 2022 00:00:00 GMT - Sat, 25 Nov 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.47.103", baseline, precision 8, 1280x720, components 3\012- data
Hash dbf9236a7a258c4c836e610218a64bf8
7b5fec9cef0027a94de33d1bb7f42feb11822e2a
5328eeaa079b569796eebed8d668d13b66404fa9ad4b14af28b18de05cdb2a7f
GET /pubs/65065f24e07cb0.68791733/main.jpg HTTP/1.1
Host: s78.bigcdn.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: image/jpeg
Content-Length: 93137
Last-Modified: Wed, 02 Aug 2023 01:30:12 GMT
Connection: keep-alive
ETag: "64c9b1a4-16bd1"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
stat.mydaddy.cc/e.php
200 OK 2 B IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subject*.mydaddy.cc
Fingerprint48:52:C1:DE:A4:A1:79:09:66:7E:6C:54:B8:6F:F8:14:0A:C5:0D:64
ValiditySun, 20 Nov 2022 00:00:00 GMT - Sat, 25 Nov 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /e.php HTTP/1.1
Host: stat.mydaddy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 64
Origin: https://mydaddy.cc
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sun, 17 Sep 2023 02:06:29 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.16
Access-Control-Allow-Origin: *
achcdn.com/script/ut.js?cb=1694916389966
200 OK 29 kB URL GET HTTP/3 achcdn.com/script/ut.js?cb=1694916389966
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subjectachcdn.com
FingerprintF8:6C:F4:21:7F:BA:D3:76:63:EC:22:B6:E6:4E:57:E1:D6:F5:FD:E5
ValiditySat, 26 Aug 2023 09:19:45 GMT - Fri, 24 Nov 2023 09:19:44 GMT
File type Unicode text, UTF-8 text, with very long lines (65444)
Hash 7b345ac84f43dce247e4d14b7fc85dd1
a497ac80609cc7728cb65759b53eab70409167f4
a7e2195f37f21b45611d802096d8e882a44c55cd571f05bbf7dbeb31bf77378f
GET /script/ut.js?cb=1694916389966 HTTP/1.1
Host: achcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:29 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdvTjbI3ygr4_-tV_Ur81bzMEhkfAslbO9N240ZdHzI_qNDKQ9t5czS3JxMh6txE2Sfg92emMzUcPXJUprrAWvD7eg
x-goog-generation: 1692174265266008
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 82296
x-goog-hash: crc32c=O4hKMg==, md5=ezRayE9D3OJH5NFLf8hd0Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sun, 17 Sep 2023 02:21:09 GMT
cache-control: public, max-age=14400
last-modified: Wed, 16 Aug 2023 08:24:25 GMT
etag: W/"7b345ac84f43dce247e4d14b7fc85dd1"
age: 1820
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0HU0DJ9449%2BnnKRnLduQsrO2VQBKM01oy0mm5mg2twtmgE1Xzk41wXWnpnKvtUHnn4RktVhdNpHSVokiskVFtvhhYPcElPdu72vp2P4OT6bwCQl8RXKZ3kELZrL1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca4c7f161c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.sectigo.com/
472 B IP
Hash 4a34471e82a2db397223d2cf825a72e0
34708fe3723a8ee19804bae9230bcca09e19ce32
59cbcd0c2326e4d89ee7243429833bdb7bbfb62c0c41d20f4825c56cc9637b43
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 17 Sep 2023 02:06:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2023 08:36:36 GMT
Expires: Thu, 21 Sep 2023 08:36:35 GMT
Etag: "34708fe3723a8ee19804bae9230bcca09e19ce32"
Cache-Control: max-age=369872,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 807dca501fea5689-OSL
ocsp.sectigo.com/
472 B IP
Hash 4a34471e82a2db397223d2cf825a72e0
34708fe3723a8ee19804bae9230bcca09e19ce32
59cbcd0c2326e4d89ee7243429833bdb7bbfb62c0c41d20f4825c56cc9637b43
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 17 Sep 2023 02:06:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2023 08:36:36 GMT
Expires: Thu, 21 Sep 2023 08:36:35 GMT
Etag: "34708fe3723a8ee19804bae9230bcca09e19ce32"
Cache-Control: max-age=369872,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 807dca501e8a5697-OSL
tsyndicate.com/do2/NO8grhO5dMF1m2CTRXX4xwKnvspGo0f1/master?w=1280&h=1024&keywords=&tz=0&count=2
200 OK 6.7 kB URL GET HTTP/2 tsyndicate.com/do2/NO8grhO5dMF1m2CTRXX4xwKnvspGo0f1/master?w=1280&h=1024&keywords=&tz=0&count=2
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mydaddy.cc/hf.html
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
Fingerprint6F:0A:52:34:11:74:C9:81:80:1B:8A:77:92:6C:D3:13:DB:AF:DA:65
ValidityTue, 12 Sep 2023 09:07:30 GMT - Mon, 11 Dec 2023 09:07:29 GMT
File type JSON data\012- , ASCII text, with very long lines (15120)
Hash 8034f9d546a24d8fa4d4319385a5ec70
61d35ecc09d55696a6c37169a92e8e2c039b3414
9884cae6bb79a138249088bc600ec48e5892d36238b5cfc9813b882aa47e832e
GET /do2/NO8grhO5dMF1m2CTRXX4xwKnvspGo0f1/master?w=1280&h=1024&keywords=&tz=0&count=2 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydaddy.cc
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://mydaddy.cc
access-control-allow-methods: POST, GET, HEAD
access-control-allow-headers: Accept, X-Requested-With, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Legacy
access-control-allow-credentials: true
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-api-version: 2
link: <https://lcdn.tsyndicate.com/sdk/v1/b.b.js>; rel=preload; as=script, <https://lcdn.tsyndicate.com/sdk/v1/b.b.js>; rel=preload; as=script
x-request-id: 5106a7ff60ee22ad
set-cookie: ts_uid=0fbb0caf-55e0-4723-be11-6cfc2ec8897c; expires=Sun, 17 Mar 2024 02:06:30 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
lcdn.tsyndicate.com/sdk/v1/b.b.js
200 OK 2.6 kB URL GET HTTP/2 lcdn.tsyndicate.com/sdk/v1/b.b.js
IP
Requested by https://mydaddy.cc/hf.html
Certificate IssuerSectigo Limited
Subjectlcdn.tsyndicate.com
FingerprintAA:DB:E6:65:05:5A:83:46:D1:77:83:25:84:3D:B2:B5:F5:99:97:00
ValidityWed, 08 Mar 2023 00:00:00 GMT - Sun, 07 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2590)
Hash b0a8eae036a72f605538b002e33f7023
5916ea9eeb0b676d6f44637601c40d0dc69542d1
7b9affd37cf01ac1a4c5f4a4ccb1936f0412ff771fb24e36a55682d2bf0ac554
GET /sdk/v1/b.b.js HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Cookie: ts_uid=0fbb0caf-55e0-4723-be11-6cfc2ec8897c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: application/javascript
content-length: 2640
server: nginx
last-modified: Tue, 25 Jul 2023 12:28:26 GMT
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
etag: W/"64bfbfea-1f37"
content-encoding: gzip
age: 3904978
accept-ranges: bytes
X-Firefox-Spdy: h2
go.xlivrdr.com/smartpop/c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=552826&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&p1=4296372
302 Found 0 B URL GET HTTP/2 go.xlivrdr.com/smartpop/c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=552826&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&p1=4296372
IP
Requested by https://mydaddy.cc/hf.html
Certificate IssuerCloudflare, Inc.
Subjectxlivrdr.com
FingerprintDA:D9:AC:E4:B1:E8:44:C4:D9:A4:0E:1B:DF:33:4B:24:74:45:7D:0E
ValidityWed, 03 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smartpop/c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=552826&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&p1=4296372 HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 17 Sep 2023 02:06:30 GMT
content-length: 0
location: https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: _var=775628.31685_N2UxOTUwM2E=; Path=/; Expires=Tue, 17 Oct 2023 02:06:30 GMT; HttpOnly; SameSite=Strict
__cflb=0H28upDCGznfDm9XVDEEFVkNrzLraWx4Q2x9v2zk1uN; SameSite=None; Secure; path=/; expires=Mon, 18-Sep-23 02:06:30 GMT; HttpOnly
server: cloudflare
cf-ray: 807dca50be74b4fa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
go.xlivrdr.com/smartpop/c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=552826&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&p1=4296372
302 Found 0 B URL GET HTTP/2 go.xlivrdr.com/smartpop/c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=552826&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&p1=4296372
IP
Requested by https://mydaddy.cc/hf.html
Certificate IssuerCloudflare, Inc.
Subjectxlivrdr.com
FingerprintDA:D9:AC:E4:B1:E8:44:C4:D9:A4:0E:1B:DF:33:4B:24:74:45:7D:0E
ValidityWed, 03 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smartpop/c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=552826&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&p1=4296372 HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sun, 17 Sep 2023 02:06:30 GMT
content-length: 0
location: https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: _var=775628.31685_N2UxOTUwM2E=; Path=/; Expires=Tue, 17 Oct 2023 02:06:30 GMT; HttpOnly; SameSite=Strict
__cflb=0H28upDCGznfDm9XVD3SofQ5NjJpXSdymQzLHB7XWKE; SameSite=None; Secure; path=/; expires=Mon, 18-Sep-23 02:06:30 GMT; HttpOnly
server: cloudflare
cf-ray: 807dca50ce7bb4fa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.kbnmnl.com/
Origin: https://creative.kbnmnl.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: pTt1W6VxKSTwgxzPLpuYiw5uEadPV+fxthDjx4mFribrR1cir90Mb3n69xD0tzkgMmgu8TuS13Y=
x-amz-request-id: W0C2PPK2AW2D0CV9
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.kbnmnl.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 5382
expires: Sun, 17 Sep 2023 06:06:30 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca532e281bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.kbnmnl.com/
Origin: https://creative.kbnmnl.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: pTt1W6VxKSTwgxzPLpuYiw5uEadPV+fxthDjx4mFribrR1cir90Mb3n69xD0tzkgMmgu8TuS13Y=
x-amz-request-id: W0C2PPK2AW2D0CV9
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.kbnmnl.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 5382
expires: Sun, 17 Sep 2023 06:06:30 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca534e2f1bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XYEIMjzIwyN2S0oCHDBoyRMWLYaCGGBg0yLczAwJGjTI4ZYsaMKSNDxMMwdcZkDEPjBo2dMMy0KFNDRoyRM2DQaBEmxxgxLciQqVkmRlUYYWyU8QmRjB2KRWPgeAinjpiFN2rIrQgRDpyFJHPkgPFwDpyJOvLamBHyYRu_gAUTnvFwTJu7OuTKwFHyJxkzC2XceCjGjZuFM0jCUMtYRBs3GBnOkCGDrwg4p1PHoJFyrYg6MTKioUMHzhwdL16ceeMCD5s0duSQkeNizJs2L-a0CSOn9xs4L8bYyBFjhsyGMKTWuDEGhhgyHGvkuFHGBhmSOGyEqXE0hgwzOMiMsQ9jTBgY8oElhgw1wHDDDKvRFFEYYfxQxxwIJUFGD2TEEJ4ZN1wWgxgz4NAUeeqZIcN_MexkQw35iWEGR2Jstx0NVtm3Hw3bqUSDGTTMpFKGNIRRYhhc1BFeSXO8UYccO0nYg2SU2RDkkDa0UUYbYkQ4IRFxJHGEHGvYUUQSVbTwxhNFqJEFDWeUwcYMcsgRBht1mIFFWGXU0YINWDRRhRR0XFGGGXS4IQOXRLQAhx5BRDEDHjnU4AYaRriBRxQ2TKHEDUzMkYMQcNxBwxRC3PFFDHJUwQQeYzxBBBFRXGEEEmHcgAYcit4Qpg1rMCEEFmfEcIMeS8wRxRdnVJEEEVJUkcaTMJQERww9KBYSWWQ8l1EbeZBhEBl5NCdUY2EAtsUMMXTBFpKgldECDA6JoOJCMLgwWmOwfQEHujrE26xcD8lhB2QNPVTGGLDBK29pddSRRkZJiSFGf2EoJVcZJxUlwwwsdfWUDWOYMYYMA-NAE3lkpQGZCNy5sJcLJLnQEA1kyfGFyRmlvHLLL5NVRxgZNfGGHmmwwUYYL9QgLwgoYJHSDiAwkYYbdeABAh7xfWEDDUz7yxAMOcibAghHDLzGGy-0ZuFoo4FgRBpy_PkGHi-kFIO8ZOmUkRNPkPWGzHbrIALeZLEhlN9FOEFtGXZ80TYbFI13Aw4z2IBDeP2e8ZkOBOKwmQgHJS6GHAuJ_FDnX7TxBhmZxUfXcm-A9tAbCmF-7tt54NXvn7rx5htwL2CrrVbd6vQCWXdkZN_kZKFhfLMw9-VvRnK8QUe4e7dQhxtp0NGCUy7oZx-1g3Nexhfe92RRGxS9yN1ge53fE0PqqzTDXuy2a5DiZfj1Rbjp5wCj_DQRWOLehBA6xG4LvjIXRMQAGPGZAShsmAhbBAevxqQGBn1QQEAA&s=1c22eb1743d53d8a26d904522c4f05ceb4fe03a56ac1eea47a975239aa17ac0b1694916390&w=t&r=1&d=379&priv=true
200 OK 24 B URL GET HTTP/2 pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XYEIMjzIwyN2S0oCHDBoyRMWLYaCGGBg0yLczAwJGjTI4ZYsaMKSNDxMMwdcZkDEPjBo2dMMy0KFNDRoyRM2DQaBEmxxgxLciQqVkmRlUYYWyU8QmRjB2KRWPgeAinjpiFN2rIrQgRDpyFJHPkgPFwDpyJOvLamBHyYRu_gAUTnvFwTJu7OuTKwFHyJxkzC2XceCjGjZuFM0jCUMtYRBs3GBnOkCGDrwg4p1PHoJFyrYg6MTKioUMHzhwdL16ceeMCD5s0duSQkeNizJs2L-a0CSOn9xs4L8bYyBFjhsyGMKTWuDEGhhgyHGvkuFHGBhmSOGyEqXE0hgwzOMiMsQ9jTBgY8oElhgw1wHDDDKvRFFEYYfxQxxwIJUFGD2TEEJ4ZN1wWgxgz4NAUeeqZIcN_MexkQw35iWEGR2Jstx0NVtm3Hw3bqUSDGTTMpFKGNIRRYhhc1BFeSXO8UYccO0nYg2SU2RDkkDa0UUYbYkQ4IRFxJHGEHGvYUUQSVbTwxhNFqJEFDWeUwcYMcsgRBht1mIFFWGXU0YINWDRRhRR0XFGGGXS4IQOXRLQAhx5BRDEDHjnU4AYaRriBRxQ2TKHEDUzMkYMQcNxBwxRC3PFFDHJUwQQeYzxBBBFRXGEEEmHcgAYcit4Qpg1rMCEEFmfEcIMeS8wRxRdnVJEEEVJUkcaTMJQERww9KBYSWWQ8l1EbeZBhEBl5NCdUY2EAtsUMMXTBFpKgldECDA6JoOJCMLgwWmOwfQEHujrE26xcD8lhB2QNPVTGGLDBK29pddSRRkZJiSFGf2EoJVcZJxUlwwwsdfWUDWOYMYYMA-NAE3lkpQGZCNy5sJcLJLnQEA1kyfGFyRmlvHLLL5NVRxgZNfGGHmmwwUYYL9QgLwgoYJHSDiAwkYYbdeABAh7xfWEDDUz7yxAMOcibAghHDLzGGy-0ZuFoo4FgRBpy_PkGHi-kFIO8ZOmUkRNPkPWGzHbrIALeZLEhlN9FOEFtGXZ80TYbFI13Aw4z2IBDeP2e8ZkOBOKwmQgHJS6GHAuJ_FDnX7TxBhmZxUfXcm-A9tAbCmF-7tt54NXvn7rx5htwL2CrrVbd6vQCWXdkZN_kZKFhfLMw9-VvRnK8QUe4e7dQhxtp0NGCUy7oZx-1g3Nexhfe92RRGxS9yN1ge53fE0PqqzTDXuy2a5DiZfj1Rbjp5wCj_DQRWOLehBA6xG4LvjIXRMQAGPGZAShsmAhbBAevxqQGBn1QQEAA&s=1c22eb1743d53d8a26d904522c4f05ceb4fe03a56ac1eea47a975239aa17ac0b1694916390&w=t&r=1&d=379&priv=true
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mydaddy.cc/hf.html
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
Fingerprint6F:0A:52:34:11:74:C9:81:80:1B:8A:77:92:6C:D3:13:DB:AF:DA:65
ValidityTue, 12 Sep 2023 09:07:30 GMT - Mon, 11 Dec 2023 09:07:29 GMT
File type ASCII text, with no line terminators
Hash 0959ba36d476b6dc1994ba3c678b07c4
d30b94da72daa02766965206a85b7e0356375f5e
897410b87e27e3dfba3a7d6caab315a5e69cc941bb96d91fc74878a9b051843a
GET /api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XYEIMjzIwyN2S0oCHDBoyRMWLYaCGGBg0yLczAwJGjTI4ZYsaMKSNDxMMwdcZkDEPjBo2dMMy0KFNDRoyRM2DQaBEmxxgxLciQqVkmRlUYYWyU8QmRjB2KRWPgeAinjpiFN2rIrQgRDpyFJHPkgPFwDpyJOvLamBHyYRu_gAUTnvFwTJu7OuTKwFHyJxkzC2XceCjGjZuFM0jCUMtYRBs3GBnOkCGDrwg4p1PHoJFyrYg6MTKioUMHzhwdL16ceeMCD5s0duSQkeNizJs2L-a0CSOn9xs4L8bYyBFjhsyGMKTWuDEGhhgyHGvkuFHGBhmSOGyEqXE0hgwzOMiMsQ9jTBgY8oElhgw1wHDDDKvRFFEYYfxQxxwIJUFGD2TEEJ4ZN1wWgxgz4NAUeeqZIcN_MexkQw35iWEGR2Jstx0NVtm3Hw3bqUSDGTTMpFKGNIRRYhhc1BFeSXO8UYccO0nYg2SU2RDkkDa0UUYbYkQ4IRFxJHGEHGvYUUQSVbTwxhNFqJEFDWeUwcYMcsgRBht1mIFFWGXU0YINWDRRhRR0XFGGGXS4IQOXRLQAhx5BRDEDHjnU4AYaRriBRxQ2TKHEDUzMkYMQcNxBwxRC3PFFDHJUwQQeYzxBBBFRXGEEEmHcgAYcit4Qpg1rMCEEFmfEcIMeS8wRxRdnVJEEEVJUkcaTMJQERww9KBYSWWQ8l1EbeZBhEBl5NCdUY2EAtsUMMXTBFpKgldECDA6JoOJCMLgwWmOwfQEHujrE26xcD8lhB2QNPVTGGLDBK29pddSRRkZJiSFGf2EoJVcZJxUlwwwsdfWUDWOYMYYMA-NAE3lkpQGZCNy5sJcLJLnQEA1kyfGFyRmlvHLLL5NVRxgZNfGGHmmwwUYYL9QgLwgoYJHSDiAwkYYbdeABAh7xfWEDDUz7yxAMOcibAghHDLzGGy-0ZuFoo4FgRBpy_PkGHi-kFIO8ZOmUkRNPkPWGzHbrIALeZLEhlN9FOEFtGXZ80TYbFI13Aw4z2IBDeP2e8ZkOBOKwmQgHJS6GHAuJ_FDnX7TxBhmZxUfXcm-A9tAbCmF-7tt54NXvn7rx5htwL2CrrVbd6vQCWXdkZN_kZKFhfLMw9-VvRnK8QUe4e7dQhxtp0NGCUy7oZx-1g3Nexhfe92RRGxS9yN1ge53fE0PqqzTDXuy2a5DiZfj1Rbjp5wCj_DQRWOLehBA6xG4LvjIXRMQAGPGZAShsmAhbBAevxqQGBn1QQEAA&s=1c22eb1743d53d8a26d904522c4f05ceb4fe03a56ac1eea47a975239aa17ac0b1694916390&w=t&r=1&d=379&priv=true HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Cookie: ts_uid=0fbb0caf-55e0-4723-be11-6cfc2ec8897c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: text/plain; charset=utf-8
content-length: 24
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0WImQFDTA0yMmS0MBMmRpgWNMqYIdMCR40bJ29whBHjRkEZZmrQEPEwTJ0xGcPQuEFjTBkYZlqUqSEjBkqONFqEyTFGTAsyZHKUKWMyB4wwNsrwhEjGDsWhMXA8hFNHzMIbNeJWhAgHzkIaMnJ4fTgHzkQdeHPYmHFDxsM2ff8GHizz4Zg2dnXElYFDho2eZMwslHHjoRg3bhbOwEsTx4zDbjAynBESxto2qc_GSPuwToyMaOjQgTNHx4sXZ964wMMmjR05ZOS4GPOmzYs5bcLI2f0GzosxNnLEmGGGZg0YMGi8HNORjBiXOWzaIIMXh40wOsfEwImDjHwZMMaEgfH-qxgZ38nEGg45RBRGGD_UMQdCSZDRAxkxgGfGDZnFsJFLnI1RQw5myLBfDEbZUEN9YphxnhjZZUcDVfPJR0N2MdhAgxk0wIBDjBTSUJJ-XNQBnmVzvFGHHEY12MNkldnQ4482tFFGG2Iw6OAcVxAhxRplvZEEGy0kAYcadNxxRhFKsKGGFXO4MQUNbwyRhlJfSGGDGmwwkQMTZCzxRQtZRAFDGjfUIQQVOIihho1TFFFDXWiQ8YYMUCihRww0oPFFEGvUoAYOerARhxJQPBGFFkg8MYMVYeARAxJ5HJEFGnPEAEcObMQZ0QxNPOGEHE18cUYVSVhZRRpLwmAZHDH0sBhhMozlaBsZtZEHGQaRkcdyQDkWxl9bzBBDF2sRKVoZLcDgkEaa6QCDCzQ5BkcbX8AhrrrsAniuHHZE1tBDZYzx7kLrwnCaCHXUkUZGSIkhRn5hJBXXUSgVNkMLUc7Wgg1jmDGGDP3iQOAN2YqQRmQiaOeCVy7g5UJDOz0kxxcjZ2QyyiqzPFYdYWTUxBt6pMEGG2G8UAO7IKCAxWw7gMBEGm7UgQcIeLj3hYxJ48sQDDmwmwIIR_S7xhsv4BchTTSBYEQacqj0Bh4vzBYDu2ONAZQOIjjxxFhvvCx3RnaPxcbcIhThhLNl2PFF2mxQ9NINptmAA3gunxGaDgDi0JkIBxkuhhwLefxQ5l-08QYZm7k3V3JviPbQGwpRHu7aedzlskq46cabby9ISy1W18r9wlh3ZDTf42OhIbyxLYswB74ZyfEGHdvm3UIdbqRBRwtNuWDffM4CftAX2zdrEbQMqajdYHuJQEcbzZafw4oxzuCVuecadHgZfX2xLUXmx08gv4YLAxsQQofWbaEm4IKIGP6COZX4hA0TWcvfAOYY1cCgDwoICA%3D%3D&s=7100d201618d271e0e26ad642e0219d12d08ed48d51b28faab140cdc48631b431694916390&w=t&r=1&d=413&priv=true
200 OK 24 B URL GET HTTP/2 pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0WImQFDTA0yMmS0MBMmRpgWNMqYIdMCR40bJ29whBHjRkEZZmrQEPEwTJ0xGcPQuEFjTBkYZlqUqSEjBkqONFqEyTFGTAsyZHKUKWMyB4wwNsrwhEjGDsWhMXA8hFNHzMIbNeJWhAgHzkIaMnJ4fTgHzkQdeHPYmHFDxsM2ff8GHizz4Zg2dnXElYFDho2eZMwslHHjoRg3bhbOwEsTx4zDbjAynBESxto2qc_GSPuwToyMaOjQgTNHx4sXZ964wMMmjR05ZOS4GPOmzYs5bcLI2f0GzosxNnLEmGGGZg0YMGi8HNORjBiXOWzaIIMXh40wOsfEwImDjHwZMMaEgfH-qxgZ38nEGg45RBRGGD_UMQdCSZDRAxkxgGfGDZnFsJFLnI1RQw5myLBfDEbZUEN9YphxnhjZZUcDVfPJR0N2MdhAgxk0wIBDjBTSUJJ-XNQBnmVzvFGHHEY12MNkldnQ4482tFFGG2Iw6OAcVxAhxRplvZEEGy0kAYcadNxxRhFKsKGGFXO4MQUNbwyRhlJfSGGDGmwwkQMTZCzxRQtZRAFDGjfUIQQVOIihho1TFFFDXWiQ8YYMUCihRww0oPFFEGvUoAYOerARhxJQPBGFFkg8MYMVYeARAxJ5HJEFGnPEAEcObMQZ0QxNPOGEHE18cUYVSVhZRRpLwmAZHDH0sBhhMozlaBsZtZEHGQaRkcdyQDkWxl9bzBBDF2sRKVoZLcDgkEaa6QCDCzQ5BkcbX8AhrrrsAniuHHZE1tBDZYzx7kLrwnCaCHXUkUZGSIkhRn5hJBXXUSgVNkMLUc7Wgg1jmDGGDP3iQOAN2YqQRmQiaOeCVy7g5UJDOz0kxxcjZ2QyyiqzPFYdYWTUxBt6pMEGG2G8UAO7IKCAxWw7gMBEGm7UgQcIeLj3hYxJ48sQDDmwmwIIR_S7xhsv4BchTTSBYEQacqj0Bh4vzBYDu2ONAZQOIjjxxFhvvCx3RnaPxcbcIhThhLNl2PFF2mxQ9NINptmAA3gunxGaDgDi0JkIBxkuhhwLefxQ5l-08QYZm7k3V3JviPbQGwpRHu7aedzlskq46cabby9ISy1W18r9wlh3ZDTf42OhIbyxLYswB74ZyfEGHdvm3UIdbqRBRwtNuWDffM4CftAX2zdrEbQMqajdYHuJQEcbzZafw4oxzuCVuecadHgZfX2xLUXmx08gv4YLAxsQQofWbaEm4IKIGP6COZX4hA0TWcvfAOYY1cCgDwoICA%3D%3D&s=7100d201618d271e0e26ad642e0219d12d08ed48d51b28faab140cdc48631b431694916390&w=t&r=1&d=413&priv=true
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mydaddy.cc/hf.html
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
Fingerprint6F:0A:52:34:11:74:C9:81:80:1B:8A:77:92:6C:D3:13:DB:AF:DA:65
ValidityTue, 12 Sep 2023 09:07:30 GMT - Mon, 11 Dec 2023 09:07:29 GMT
File type ASCII text, with no line terminators
Hash 0959ba36d476b6dc1994ba3c678b07c4
d30b94da72daa02766965206a85b7e0356375f5e
897410b87e27e3dfba3a7d6caab315a5e69cc941bb96d91fc74878a9b051843a
GET /api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0WImQFDTA0yMmS0MBMmRpgWNMqYIdMCR40bJ29whBHjRkEZZmrQEPEwTJ0xGcPQuEFjTBkYZlqUqSEjBkqONFqEyTFGTAsyZHKUKWMyB4wwNsrwhEjGDsWhMXA8hFNHzMIbNeJWhAgHzkIaMnJ4fTgHzkQdeHPYmHFDxsM2ff8GHizz4Zg2dnXElYFDho2eZMwslHHjoRg3bhbOwEsTx4zDbjAynBESxto2qc_GSPuwToyMaOjQgTNHx4sXZ964wMMmjR05ZOS4GPOmzYs5bcLI2f0GzosxNnLEmGGGZg0YMGi8HNORjBiXOWzaIIMXh40wOsfEwImDjHwZMMaEgfH-qxgZ38nEGg45RBRGGD_UMQdCSZDRAxkxgGfGDZnFsJFLnI1RQw5myLBfDEbZUEN9YphxnhjZZUcDVfPJR0N2MdhAgxk0wIBDjBTSUJJ-XNQBnmVzvFGHHEY12MNkldnQ4482tFFGG2Iw6OAcVxAhxRplvZEEGy0kAYcadNxxRhFKsKGGFXO4MQUNbwyRhlJfSGGDGmwwkQMTZCzxRQtZRAFDGjfUIQQVOIihho1TFFFDXWiQ8YYMUCihRww0oPFFEGvUoAYOerARhxJQPBGFFkg8MYMVYeARAxJ5HJEFGnPEAEcObMQZ0QxNPOGEHE18cUYVSVhZRRpLwmAZHDH0sBhhMozlaBsZtZEHGQaRkcdyQDkWxl9bzBBDF2sRKVoZLcDgkEaa6QCDCzQ5BkcbX8AhrrrsAniuHHZE1tBDZYzx7kLrwnCaCHXUkUZGSIkhRn5hJBXXUSgVNkMLUc7Wgg1jmDGGDP3iQOAN2YqQRmQiaOeCVy7g5UJDOz0kxxcjZ2QyyiqzPFYdYWTUxBt6pMEGG2G8UAO7IKCAxWw7gMBEGm7UgQcIeLj3hYxJ48sQDDmwmwIIR_S7xhsv4BchTTSBYEQacqj0Bh4vzBYDu2ONAZQOIjjxxFhvvCx3RnaPxcbcIhThhLNl2PFF2mxQ9NINptmAA3gunxGaDgDi0JkIBxkuhhwLefxQ5l-08QYZm7k3V3JviPbQGwpRHu7aedzlskq46cabby9ISy1W18r9wlh3ZDTf42OhIbyxLYswB74ZyfEGHdvm3UIdbqRBRwtNuWDffM4CftAX2zdrEbQMqajdYHuJQEcbzZafw4oxzuCVuecadHgZfX2xLUXmx08gv4YLAxsQQofWbaEm4IKIGP6COZX4hA0TWcvfAOYY1cCgDwoICA%3D%3D&s=7100d201618d271e0e26ad642e0219d12d08ed48d51b28faab140cdc48631b431694916390&w=t&r=1&d=413&priv=true HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Cookie: ts_uid=0fbb0caf-55e0-4723-be11-6cfc2ec8897c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: text/plain; charset=utf-8
content-length: 24
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1694916330/48371204_webp
200 OK 21 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/48371204_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f7ea50e1a7ab3014f908cfe15dace1a2
b40c8e7e1a01f45adb6c3a62d1021009ff671393
a2951ff9414e6bcfe13be6bb491f3b054e7d967691f0befa2988dfe971beabbf
GET /thumbs/1694916330/48371204_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 20806
etag: "f7ea50e1a7ab3014f908cfe15dace1a2"
last-modified: Sun, 17 Sep 2023 02:04:47 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 49
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca547dc6568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1694916330/127702148_webp
200 OK 13 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/127702148_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 86090154cdaef0544f3938726200f8e0
879636cc9c1ad01dbaeac0492878f94584766426
531ef8cdfb5715d2427af406e89cf07ea1117d95fb029e0cbc57a492c972af20
GET /thumbs/1694916330/127702148_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 13082
etag: "86090154cdaef0544f3938726200f8e0"
last-modified: Sun, 17 Sep 2023 02:04:52 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 50
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca547dc7568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1694916330/90182656_webp
200 OK 5.4 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/90182656_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1f08bd562d728539e811288b7ad179e9
38a810b2634c6e1d57704211342fd9ef84e4d50a
cd03bb0e8326a352aaf0897aacba32ca198ca06d850d7d4670bdb62ff4dc8a8b
GET /thumbs/1694916330/90182656_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 5392
etag: "1f08bd562d728539e811288b7ad179e9"
last-modified: Sun, 17 Sep 2023 02:05:05 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 42
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca547dc8568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1694916330/92243616_webp
200 OK 7.5 kB URL GET HTTP/2 img.strpst.com/thumbs/1694916330/92243616_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dbbaea74cdc061e0e1feb3c310cebc23
9915c376f9c7a7d8eec7034a20ebf7fa835f8703
7206d6c82494020aa384ca7a4121db83ab6ad09ac791ae1fc5a56d5db0a71cea
GET /thumbs/1694916330/92243616_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 7480
etag: "dbbaea74cdc061e0e1feb3c310cebc23"
last-modified: Sun, 17 Sep 2023 02:05:18 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 50
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca547dc4568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1694916330/87890417_webp
200 OK 13 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/87890417_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a14d65f735c0e7d14f03c104cafccb78
c48562d963b0b7269fe2ae2376ed261d874f3686
aba2edfe61f1acb79ed4308d8e4c6b1e636f324b443b6ec3c8ebea82aabe72e4
GET /thumbs/1694916330/87890417_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 12966
etag: "a14d65f735c0e7d14f03c104cafccb78"
last-modified: Sun, 17 Sep 2023 02:05:08 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 35
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca547dce568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1694916330/79037252_webp
200 OK 18 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/79037252_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ef87240c5c22c547dd04c2e4335bdf00
a5b00b0ecf3cf79e159c72a3aeba17dd77e0850c
6879f6e0f406dbb67ee973763b42b05e4f36db6b32115ca3d8e54c9a786a58f7
GET /thumbs/1694916330/79037252_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 17854
etag: "ef87240c5c22c547dd04c2e4335bdf00"
last-modified: Sun, 17 Sep 2023 02:04:34 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 49
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca548dd3568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
go.kbnmnl.com/abc.gif?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=10&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fmydaddy.cc%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A368%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A224%2C%22duration%22%3A36%2C%22transferSize%22%3A80518%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A224%2C%22duration%22%3A29%2C%22transferSize%22%3A4625%7D%5D&mh=-391740839
200 OK 103 B URL GET HTTP/3 go.kbnmnl.com/abc.gif?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=10&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fmydaddy.cc%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A368%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A224%2C%22duration%22%3A36%2C%22transferSize%22%3A80518%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A224%2C%22duration%22%3A29%2C%22transferSize%22%3A4625%7D%5D&mh=-391740839
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=10&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fmydaddy.cc%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A368%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A224%2C%22duration%22%3A36%2C%22transferSize%22%3A80518%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A224%2C%22duration%22%3A29%2C%22transferSize%22%3A4625%7D%5D&mh=-391740839 HTTP/1.1
Host: go.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Cookie: __cflb=0H28upDCGznfDm9XVDQoiPUVymMcUWiZmh2ybs9nsSC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 807dca547e72b511-OSL
alt-svc: h3=":443"; ma=86400
img.strpst.com/thumbs/1694916330/106494554_webp
200 OK 16 kB URL GET HTTP/2 img.strpst.com/thumbs/1694916330/106494554_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b60a8c85dcb40690db53c5e2058062dd
79e8f5e8bb3dcc642bfe5657ec915e40fa9e0204
3d8b00eeb12beaa5d34b05f6f3080722eab1d266edb7d546dc90cb1f8e7be354
GET /thumbs/1694916330/106494554_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 16462
etag: "b60a8c85dcb40690db53c5e2058062dd"
last-modified: Sun, 17 Sep 2023 02:05:29 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 42
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca549ddd568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1694916330/2935682_webp
200 OK 5.4 kB URL GET HTTP/2 img.strpst.com/thumbs/1694916330/2935682_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 202x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a9f5a715c5cbd4d46d415ce8503fffba
dffddfb4a1a3697da71444cb3341a7d2407f18da
f6d428cd03997b512997ec7eed5dead970a8266e64cd70a441cc3bde5c5fe11c
GET /thumbs/1694916330/2935682_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 5448
etag: "a9f5a715c5cbd4d46d415ce8503fffba"
last-modified: Sun, 17 Sep 2023 02:05:17 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 49
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca548dd8568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1694916330/71463224_webp
200 OK 24 kB URL GET HTTP/2 img.strpst.com/thumbs/1694916330/71463224_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dc297da963412546322ad4fa5a7cfba3
efe86f4e712f62944ac5173b73967f16d58ac494
235d7544e66929731ee68c03303c02bc68cafff3d801fd82fbf08ef0c1846a19
GET /thumbs/1694916330/71463224_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 23912
etag: "dc297da963412546322ad4fa5a7cfba3"
last-modified: Sun, 17 Sep 2023 02:05:06 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 49
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca54adef568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1694916330/98475691_webp
200 OK 25 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/98475691_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 759fcb11e31ef53d8b82be823b0ff8b9
8284daa7de4f5e07208d4b49d116c5a50d238958
5fd40c064d621161fec9e52cf3b5b267147bdbf40dbd63f92b255066078f5a5f
GET /thumbs/1694916330/98475691_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 25028
etag: "759fcb11e31ef53d8b82be823b0ff8b9"
last-modified: Sun, 17 Sep 2023 02:05:15 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 39
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca54adf0568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1694916330/106494554_webp
200 OK 16 kB URL GET HTTP/2 img.strpst.com/thumbs/1694916330/106494554_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b60a8c85dcb40690db53c5e2058062dd
79e8f5e8bb3dcc642bfe5657ec915e40fa9e0204
3d8b00eeb12beaa5d34b05f6f3080722eab1d266edb7d546dc90cb1f8e7be354
GET /thumbs/1694916330/106494554_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 16462
etag: "b60a8c85dcb40690db53c5e2058062dd"
last-modified: Sun, 17 Sep 2023 02:05:29 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 42
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca55fb3056c3-OSL
alt-svc: h3=":443"; ma=86400
img.strpst.com/thumbs/1694916330/79037252_webp
200 OK 18 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/79037252_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ef87240c5c22c547dd04c2e4335bdf00
a5b00b0ecf3cf79e159c72a3aeba17dd77e0850c
6879f6e0f406dbb67ee973763b42b05e4f36db6b32115ca3d8e54c9a786a58f7
GET /thumbs/1694916330/79037252_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 17854
etag: "ef87240c5c22c547dd04c2e4335bdf00"
last-modified: Sun, 17 Sep 2023 02:04:34 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 49
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca55fb3156c3-OSL
alt-svc: h3=":443"; ma=86400
img.strpst.com/thumbs/1694916330/92243616_webp
200 OK 7.5 kB URL GET HTTP/2 img.strpst.com/thumbs/1694916330/92243616_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dbbaea74cdc061e0e1feb3c310cebc23
9915c376f9c7a7d8eec7034a20ebf7fa835f8703
7206d6c82494020aa384ca7a4121db83ab6ad09ac791ae1fc5a56d5db0a71cea
GET /thumbs/1694916330/92243616_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 7480
etag: "dbbaea74cdc061e0e1feb3c310cebc23"
last-modified: Sun, 17 Sep 2023 02:05:18 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 50
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca560b3256c3-OSL
alt-svc: h3=":443"; ma=86400
img.strpst.com/thumbs/1694916330/2935682_webp
200 OK 5.4 kB URL GET HTTP/2 img.strpst.com/thumbs/1694916330/2935682_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 202x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a9f5a715c5cbd4d46d415ce8503fffba
dffddfb4a1a3697da71444cb3341a7d2407f18da
f6d428cd03997b512997ec7eed5dead970a8266e64cd70a441cc3bde5c5fe11c
GET /thumbs/1694916330/2935682_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 5448
etag: "a9f5a715c5cbd4d46d415ce8503fffba"
last-modified: Sun, 17 Sep 2023 02:05:17 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 49
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca560b3356c3-OSL
alt-svc: h3=":443"; ma=86400
img.strpst.com/thumbs/1694916330/71463224_webp
200 OK 24 kB URL GET HTTP/2 img.strpst.com/thumbs/1694916330/71463224_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dc297da963412546322ad4fa5a7cfba3
efe86f4e712f62944ac5173b73967f16d58ac494
235d7544e66929731ee68c03303c02bc68cafff3d801fd82fbf08ef0c1846a19
GET /thumbs/1694916330/71463224_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 23912
etag: "dc297da963412546322ad4fa5a7cfba3"
last-modified: Sun, 17 Sep 2023 02:05:06 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 49
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca560b3456c3-OSL
alt-svc: h3=":443"; ma=86400
img.strpst.com/thumbs/1694916330/98475691_webp
200 OK 25 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/98475691_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 759fcb11e31ef53d8b82be823b0ff8b9
8284daa7de4f5e07208d4b49d116c5a50d238958
5fd40c064d621161fec9e52cf3b5b267147bdbf40dbd63f92b255066078f5a5f
GET /thumbs/1694916330/98475691_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 25028
etag: "759fcb11e31ef53d8b82be823b0ff8b9"
last-modified: Sun, 17 Sep 2023 02:05:15 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 39
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca560b3656c3-OSL
alt-svc: h3=":443"; ma=86400
img.strpst.com/thumbs/1694916330/48371204_webp
200 OK 21 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/48371204_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f7ea50e1a7ab3014f908cfe15dace1a2
b40c8e7e1a01f45adb6c3a62d1021009ff671393
a2951ff9414e6bcfe13be6bb491f3b054e7d967691f0befa2988dfe971beabbf
GET /thumbs/1694916330/48371204_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 20806
etag: "f7ea50e1a7ab3014f908cfe15dace1a2"
last-modified: Sun, 17 Sep 2023 02:04:47 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 49
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca560b3756c3-OSL
alt-svc: h3=":443"; ma=86400
img.strpst.com/thumbs/1694916330/127702148_webp
200 OK 13 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/127702148_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 86090154cdaef0544f3938726200f8e0
879636cc9c1ad01dbaeac0492878f94584766426
531ef8cdfb5715d2427af406e89cf07ea1117d95fb029e0cbc57a492c972af20
GET /thumbs/1694916330/127702148_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 13082
etag: "86090154cdaef0544f3938726200f8e0"
last-modified: Sun, 17 Sep 2023 02:04:52 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 50
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca560b3856c3-OSL
alt-svc: h3=":443"; ma=86400
img.strpst.com/thumbs/1694916330/90182656_webp
200 OK 5.4 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/90182656_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1f08bd562d728539e811288b7ad179e9
38a810b2634c6e1d57704211342fd9ef84e4d50a
cd03bb0e8326a352aaf0897aacba32ca198ca06d850d7d4670bdb62ff4dc8a8b
GET /thumbs/1694916330/90182656_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 5392
etag: "1f08bd562d728539e811288b7ad179e9"
last-modified: Sun, 17 Sep 2023 02:05:05 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 42
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca560b3956c3-OSL
alt-svc: h3=":443"; ma=86400
img.strpst.com/thumbs/1694916330/87890417_webp
200 OK 13 kB URL GET HTTP/3 img.strpst.com/thumbs/1694916330/87890417_webp
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a14d65f735c0e7d14f03c104cafccb78
c48562d963b0b7269fe2ae2376ed261d874f3686
aba2edfe61f1acb79ed4308d8e4c6b1e636f324b443b6ec3c8ebea82aabe72e4
GET /thumbs/1694916330/87890417_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/webp
content-length: 12966
etag: "a14d65f735c0e7d14f03c104cafccb78"
last-modified: Sun, 17 Sep 2023 02:05:08 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 35
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca560b3e56c3-OSL
alt-svc: h3=":443"; ma=86400
go.kbnmnl.com/abc.gif?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=10&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fmydaddy.cc%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A401%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A262%2C%22duration%22%3A32%2C%22transferSize%22%3A80518%7D%5D&mh=-1037297378
200 OK 103 B URL GET HTTP/3 go.kbnmnl.com/abc.gif?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=10&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fmydaddy.cc%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A401%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A262%2C%22duration%22%3A32%2C%22transferSize%22%3A80518%7D%5D&mh=-1037297378
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=10&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fmydaddy.cc%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A401%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A262%2C%22duration%22%3A32%2C%22transferSize%22%3A80518%7D%5D&mh=-1037297378 HTTP/1.1
Host: go.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/
Cookie: __cflb=0H28upDCGznfDm9XVDQoiPUVymMcUWiZmh2ybs9nsSC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 807dca560edbb511-OSL
alt-svc: h3=":443"; ma=86400
ocsp.sectigo.com/
471 B IP
Hash 453a79e8cdcd3b40ba0f9a5df2460a23
f76e4edd8731c0e3a745cc2920a31d995a9da5ea
3307269db2e555866a874035e8f0c55f157c2c011413d364f75ee41fccf5075e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 17 Sep 2023 02:06:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 16 Sep 2023 17:12:56 GMT
Expires: Sat, 23 Sep 2023 17:12:55 GMT
Etag: "f76e4edd8731c0e3a745cc2920a31d995a9da5ea"
Cache-Control: max-age=573504,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 807dcaae4ab85689-OSL
mydaddy.cc/hf.html
200 OK 1.4 kB IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerSectigo Limited
Subject*.mydaddy.cc
Fingerprint48:52:C1:DE:A4:A1:79:09:66:7E:6C:54:B8:6F:F8:14:0A:C5:0D:64
ValiditySun, 20 Nov 2022 00:00:00 GMT - Sat, 25 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash da8e9846b4e8457b878d9130fd2d47aa
04a9f864fad1a24eed253067ff33368237a01fd2
6319141be12b603a561b53342d63002d4a8088815a8bfb40b0b17b91a592706e
GET /hf.html HTTP/1.1
Host: mydaddy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 17 Sep 2023 02:06:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1395
Last-Modified: Tue, 30 May 2023 11:36:07 GMT
Connection: keep-alive
ETag: "6475dfa7-573"
Expires: Sun, 17 Sep 2023 02:06:44 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
200 OK 811 B URL GET HTTP/2 creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
IP
Requested by https://mydaddy.cc/hf.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (872), with no line terminators
Hash 17fa1bbd330dbff3acaa048cf96baebc
f1ae5e002903be6b6e9f96d4f04295c333073a82
0048b7c2fe1e8aeeda2ee555c1a289ebf582592b6dbc2f0132971bf8e15663b2
GET /widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1 HTTP/1.1
Host: creative.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydaddy.cc/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: text/html
last-modified: Thu, 14 Sep 2023 12:16:52 GMT
expires: Sun, 17 Sep 2023 02:06:20 GMT
cache-control: max-age=10
strict-transport-security: max-age=15768000
pragma: public
report-to: { "endpoints":[{ "url": "https://go.stripchat.com/report" }], "group": "default", "max_age": 1048576 }
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 9
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca511a8c56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
go.kbnmnl.com/api/models?webp=1&forceClient=1&stripcashR=0&limit=NaN&usePreroll
200 OK 15 kB URL GET HTTP/3 go.kbnmnl.com/api/models?webp=1&forceClient=1&stripcashR=0&limit=NaN&usePreroll
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (15173), with no line terminators
Hash 6209ff7561618f08ea6a647fa9b95cf0
346c18740dbd3bbe80fc8b3e63649627418b6e4f
2489b0ed7888a7ff9b06da0d414621142052d5d99e367efecc0e029e0faca988
GET /api/models?webp=1&forceClient=1&stripcashR=0&limit=NaN&usePreroll HTTP/1.1
Host: go.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.kbnmnl.com/
Origin: https://creative.kbnmnl.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: application/json
access-control-allow-origin: https://creative.kbnmnl.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Sun, 17 Sep 2023 02:05:46 GMT
cf-cache-status: EXPIRED
set-cookie: __cflb=0H28upDCGznfDm9XVDQoiPUVymMcUWiZmh2ybs9nsSC; SameSite=None; Secure; path=/; expires=Mon, 18-Sep-23 02:06:31 GMT; HttpOnly
server: cloudflare
cf-ray: 807dca53ee3db511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
go.kbnmnl.com/config?url=https%3A%2F%2Fcreative.kbnmnl.com%2Fwidgets%2Fv4%2FUniversal%3Faction%3DsbSignupWithModel%26campaignId%3Dc6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa%26campaignType%3Dsmartpop%26creativeId%3D3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660%26iterationId%3D717987%26masterSmartpopId%3D1605%26memberId%3DsWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi%26mlView%3D1%26p1%3D4296372%26ruleId%3D3%26smartpopId%3D1062%26sourceId%3D552826%26userId%3Dd100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca%26variationId%3D31685%26webp%3D1
200 OK 6.6 kB URL GET HTTP/2 go.kbnmnl.com/config?url=https%3A%2F%2Fcreative.kbnmnl.com%2Fwidgets%2Fv4%2FUniversal%3Faction%3DsbSignupWithModel%26campaignId%3Dc6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa%26campaignType%3Dsmartpop%26creativeId%3D3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660%26iterationId%3D717987%26masterSmartpopId%3D1605%26memberId%3DsWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi%26mlView%3D1%26p1%3D4296372%26ruleId%3D3%26smartpopId%3D1062%26sourceId%3D552826%26userId%3Dd100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca%26variationId%3D31685%26webp%3D1
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (8665), with no line terminators
Hash ee15d9a42a998a5b793ea8fda3fafb91
d7adc8033e9c52833985229d9dec3b254ba90fdf
a81eee416e770591da406ec3b807d3ea44f1147966cb8e953bde92be96957da4
GET /config?url=https%3A%2F%2Fcreative.kbnmnl.com%2Fwidgets%2Fv4%2FUniversal%3Faction%3DsbSignupWithModel%26campaignId%3Dc6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa%26campaignType%3Dsmartpop%26creativeId%3D3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660%26iterationId%3D717987%26masterSmartpopId%3D1605%26memberId%3DsWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi%26mlView%3D1%26p1%3D4296372%26ruleId%3D3%26smartpopId%3D1062%26sourceId%3D552826%26userId%3Dd100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca%26variationId%3D31685%26webp%3D1 HTTP/1.1
Host: go.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.kbnmnl.com/
Origin: https://creative.kbnmnl.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: application/json
access-control-allow-origin: https://creative.kbnmnl.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Sun, 17 Sep 2023 02:06:30 GMT
cf-cache-status: MISS
set-cookie: __cflb=02DiuDFRFiBZBvMSLtr4jPouUtFUmSRgcHCTs2VvN95QG; SameSite=None; Secure; path=/; expires=Mon, 18-Sep-23 02:06:30 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca534ac75688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
mydaddy.cc/video/8d3d7e8ca2dc7c98ca/&alt
0 B URL GET mydaddy.cc/video/8d3d7e8ca2dc7c98ca/&alt
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerSectigo Limited
Subject*.mydaddy.cc
Fingerprint48:52:C1:DE:A4:A1:79:09:66:7E:6C:54:B8:6F:F8:14:0A:C5:0D:64
ValiditySun, 20 Nov 2022 00:00:00 GMT - Sat, 25 Nov 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video/8d3d7e8ca2dc7c98ca/&alt HTTP/1.1
Host: mydaddy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
creative.kbnmnl.com/widgets/v4/Universal/main.db756385c0227d15048c.js
200 OK 282 kB URL GET HTTP/3 creative.kbnmnl.com/widgets/v4/Universal/main.db756385c0227d15048c.js
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Size 282 kB (281634 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/v4/Universal/main.db756385c0227d15048c.js HTTP/1.1
Host: creative.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 14 Sep 2023 12:18:22 GMT
etag: W/"6502fa0e-44c22"
expires: Sun, 17 Sep 2023 02:06:28 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 3
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca523db9b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.allpornstream.com/wp-admin/admin-ajax.php
200 OK 0 B URL POST HTTP/2 www.allpornstream.com/wp-admin/admin-ajax.php
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 48
Origin: https://www.allpornstream.com
DNT: 1
Connection: keep-alive
Cookie: _ga_H9QE41NY25=GS1.1.1694916388.1.0.1694916388.60.0.0; _ga=GA1.1.1075486518.1694916389; __PPU___PPU_SESSION_URL=%2Fmatching-set-and-matching-taste%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: text/html; charset=UTF-8
server: Apache
x-powered-by: PHP/8.1
access-control-allow-origin: https://www.allpornstream.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: X-Forwarded-Proto,Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
x-ua-compatible: IE=edge,chrome=1
referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
X-Firefox-Spdy: h2
go.kbnmnl.com/event/ml
200 OK 244 B IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (307), with no line terminators
Hash 933547256894d290439b4a2d61b90913
f0b4178fc79d6baf6841534db91a02e9f5697966
2a4a7e99533bac66e8227465711baea051a1cb5900bb746b202dd433ddd53597
POST /event/ml HTTP/1.1
Host: go.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.kbnmnl.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 169
Origin: https://creative.kbnmnl.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: application/json
access-control-allow-origin: https://creative.kbnmnl.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtr4jPouUtFUmSRgcHwHPE4ZzQjtg; SameSite=None; Secure; path=/; expires=Mon, 18-Sep-23 02:06:31 GMT; HttpOnly
server: cloudflare
cf-ray: 807dca56af0bb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.realsrv.com/ad-provider.js
200 OK 107 kB URL GET HTTP/2 a.realsrv.com/ad-provider.js
IP
ASN #60068 Datacamp Limited
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintCC:B9:27:44:89:99:7C:9F:94:A5:01:B6:FD:90:95:3E:AA:18:D8:7B
ValiditySun, 23 Jul 2023 14:21:20 GMT - Sat, 21 Oct 2023 14:21:19 GMT
File type ASCII text, with very long lines (32336)
Size 107 kB (107316 bytes)
Hash b26b564c35534d6ba3a86eafc0b894f8
2f94c1c1095e45200c3df80e36bff85f6aa79c59
d6d032f1a715d421d3344d496b15e02644afe6f80bf0e6b38d49751aff00a9a5
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.allpornstream.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2f94c1c1095e45200c3df80e36b"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Thu, 14 Sep 2023 18:35:30 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ3JEr//PhQAAA
x-77-nzt-ray: c0a4cc284b99c8aa245f06656ea0f90a
x-accel-expires: @1694922006
x-accel-date: 1694911206
x-cache: HIT
x-age: 5182
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 5182
content-encoding: gzip
X-Firefox-Spdy: h2
creative.kbnmnl.com/widgets/v4/Universal/main.db756385c0227d15048c.js
200 OK 282 kB URL GET HTTP/3 creative.kbnmnl.com/widgets/v4/Universal/main.db756385c0227d15048c.js
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Size 282 kB (281634 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/v4/Universal/main.db756385c0227d15048c.js HTTP/1.1
Host: creative.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 14 Sep 2023 12:18:22 GMT
etag: W/"6502fa0e-44c22"
expires: Sun, 17 Sep 2023 02:06:28 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 3
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca523db7b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
go.kbnmnl.com/config?url=https%3A%2F%2Fcreative.kbnmnl.com%2Fwidgets%2Fv4%2FUniversal%3Faction%3DsbSignupWithModel%26campaignId%3Dc6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa%26campaignType%3Dsmartpop%26creativeId%3D3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660%26iterationId%3D717987%26masterSmartpopId%3D1605%26memberId%3DDqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi%26mlView%3D1%26p1%3D4296372%26ruleId%3D3%26smartpopId%3D1062%26sourceId%3D552826%26userId%3Dd100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca%26variationId%3D31685%26webp%3D1
200 OK 6.6 kB URL GET HTTP/2 go.kbnmnl.com/config?url=https%3A%2F%2Fcreative.kbnmnl.com%2Fwidgets%2Fv4%2FUniversal%3Faction%3DsbSignupWithModel%26campaignId%3Dc6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa%26campaignType%3Dsmartpop%26creativeId%3D3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660%26iterationId%3D717987%26masterSmartpopId%3D1605%26memberId%3DDqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi%26mlView%3D1%26p1%3D4296372%26ruleId%3D3%26smartpopId%3D1062%26sourceId%3D552826%26userId%3Dd100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca%26variationId%3D31685%26webp%3D1
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (8665), with no line terminators
Hash b97cd04be0c90a525136b00ebe13d0f5
755fa5fb3e254bff0d4d357d98a1527665651c75
29d58469140491794519e89f6ea9f0e470cbaaa8cf3cea756d813863982c5a6d
GET /config?url=https%3A%2F%2Fcreative.kbnmnl.com%2Fwidgets%2Fv4%2FUniversal%3Faction%3DsbSignupWithModel%26campaignId%3Dc6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa%26campaignType%3Dsmartpop%26creativeId%3D3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660%26iterationId%3D717987%26masterSmartpopId%3D1605%26memberId%3DDqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi%26mlView%3D1%26p1%3D4296372%26ruleId%3D3%26smartpopId%3D1062%26sourceId%3D552826%26userId%3Dd100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca%26variationId%3D31685%26webp%3D1 HTTP/1.1
Host: go.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.kbnmnl.com/
Origin: https://creative.kbnmnl.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: application/json
access-control-allow-origin: https://creative.kbnmnl.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Sun, 17 Sep 2023 02:06:30 GMT
cf-cache-status: MISS
set-cookie: __cflb=0H28upDCGznfDm9XVDEEFVkNrzLraWx4Q2x9v2zk1uN; SameSite=None; Secure; path=/; expires=Mon, 18-Sep-23 02:06:30 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca532abe5688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.allpornstream.com/wp-content/uploads/2020/02/cropped-logo_transparent_big-192x192.png
200 OK 13 kB URL GET HTTP/2 www.allpornstream.com/wp-content/uploads/2020/02/cropped-logo_transparent_big-192x192.png
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash fdd429f30f7f4313f776039960584a02
8aae6491aba9174d5bd31e23494af72f80a6a186
97d1ec092a8cdaf1f161ab36ba99f464527a738f845d6a5bc35c1a9c4f3148d4
GET /wp-content/uploads/2020/02/cropped-logo_transparent_big-192x192.png HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga_H9QE41NY25=GS1.1.1694916388.1.0.1694916388.60.0.0; _ga=GA1.1.1075486518.1694916389; __PPU___PPU_SESSION_URL=%2Fmatching-set-and-matching-taste%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:29 GMT
content-type: image/png
content-length: 13011
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Origin
last-modified: Sat, 22 Feb 2020 19:06:32 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:29 GMT
access-control-allow-origin:
X-Firefox-Spdy: h2
go.kbnmnl.com/event/ml
200 OK 244 B IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (307), with no line terminators
Hash 933547256894d290439b4a2d61b90913
f0b4178fc79d6baf6841534db91a02e9f5697966
2a4a7e99533bac66e8227465711baea051a1cb5900bb746b202dd433ddd53597
POST /event/ml HTTP/1.1
Host: go.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.kbnmnl.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 169
Origin: https://creative.kbnmnl.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: application/json
access-control-allow-origin: https://creative.kbnmnl.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtsgHAjogiG8Ahr7ZWwP8fg9VZYUC; SameSite=None; Secure; path=/; expires=Mon, 18-Sep-23 02:06:31 GMT; HttpOnly
server: cloudflare
cf-ray: 807dca561edfb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
200 OK 811 B URL GET HTTP/2 creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
IP
Requested by https://mydaddy.cc/hf.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (872), with no line terminators
Hash 17fa1bbd330dbff3acaa048cf96baebc
f1ae5e002903be6b6e9f96d4f04295c333073a82
0048b7c2fe1e8aeeda2ee555c1a289ebf582592b6dbc2f0132971bf8e15663b2
GET /widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1 HTTP/1.1
Host: creative.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydaddy.cc/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: text/html
last-modified: Thu, 14 Sep 2023 12:16:52 GMT
expires: Sun, 17 Sep 2023 02:06:20 GMT
cache-control: max-age=10
strict-transport-security: max-age=15768000
pragma: public
report-to: { "endpoints":[{ "url": "https://go.stripchat.com/report" }], "group": "default", "max_age": 1048576 }
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 9
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca510a8256bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
achcdn.com/script/suv4.js
200 OK 199 kB URL GET HTTP/2 achcdn.com/script/suv4.js
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subjectachcdn.com
FingerprintF8:6C:F4:21:7F:BA:D3:76:63:EC:22:B6:E6:4E:57:E1:D6:F5:FD:E5
ValiditySat, 26 Aug 2023 09:19:45 GMT - Fri, 24 Nov 2023 09:19:44 GMT
Size 199 kB (199324 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/suv4.js HTTP/1.1
Host: achcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdvc0KKXYH9vqgv_xBVACxAf42MVU4KGwuN-n4vzQ9NqcyiLMXxNZlUtGK2kby-BSyUmev1IxaHFvgYNG613iOX0Cg
expires: Sun, 17 Sep 2023 01:57:32 GMT
cache-control: public, max-age=14400
last-modified: Fri, 15 Sep 2023 14:31:39 GMT
etag: W/"cae256a266b02618718e8025a92faeef"
x-goog-generation: 1694788299593729
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 199324
x-goog-hash: crc32c=xVeklg==, md5=yuJWomawJhhxjoAlqS+u7w==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
cf-cache-status: HIT
age: 697
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NqV9lIPRUjdRsUzBBR9XaYfcXlK6xJqTztXvK1oZG8VqvqtswRYA6ty8C46Y2f0TwH15F8kloHtwDXnGMrSFBLVRG3oPwc%2FKOGyWtWg3aoHdN5yG4JUoWwqaiI%2BZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca422831b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
go.kbnmnl.com/api/models?webp=1&forceClient=1&stripcashR=0&limit=NaN&usePreroll
200 OK 15 kB URL GET HTTP/3 go.kbnmnl.com/api/models?webp=1&forceClient=1&stripcashR=0&limit=NaN&usePreroll
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (15173), with no line terminators
Hash 319d450454dd1120a786df40ee526483
19ba3db2261ccc48ad02dab5ec7025004a2001fb
487faceb4386f298af0eb810bad4a8f76bd4259183e815aa04d29c68f53c45e1
GET /api/models?webp=1&forceClient=1&stripcashR=0&limit=NaN&usePreroll HTTP/1.1
Host: go.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.kbnmnl.com/
Origin: https://creative.kbnmnl.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:31 GMT
content-type: application/json
access-control-allow-origin: https://creative.kbnmnl.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Sun, 17 Sep 2023 02:03:55 GMT
cf-cache-status: EXPIRED
set-cookie: __cflb=04dToPfSdwpmYL4m1jJR4AaLHvZoKDnTTt1Lww3oFr; SameSite=None; Secure; path=/; expires=Mon, 18-Sep-23 02:06:31 GMT; HttpOnly
server: cloudflare
cf-ray: 807dca53be31b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
youradexchange.com/ut/hb.php?cb=0.5398866877381436
204 No Content 0 B URL POST HTTP/2 youradexchange.com/ut/hb.php?cb=0.5398866877381436
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subjectyouradexchange.com
Fingerprint7B:F1:5C:73:C7:3C:53:37:BB:24:9A:8A:7A:DA:D8:B5:D3:13:DD:0D
ValiditySat, 19 Aug 2023 06:58:12 GMT - Fri, 17 Nov 2023 06:58:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.5398866877381436 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 1175
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 17 Sep 2023 02:06:30 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VlHG%2FueCizf%2BTVhi1FM8NQJRhyNf%2Bw3BC4Be8TxSXZDvkgUo0S1GvM7kf6zARazMJ4FeCtDTLuZlJ8vEAGcscb0wi3H39tOTs946JiGVmSexbN0kmstRr4wY0d9%2F1qvFqKNl9i4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 807dca4d99202406-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
creative.kbnmnl.com/widgets/v4/Universal/lang/en.json
200 OK 172 B URL GET HTTP/3 creative.kbnmnl.com/widgets/v4/Universal/lang/en.json
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 402f4a06b5dcf96d25dd4ff1f840784b
edebb253af01ef1882f424ee6278368485898d62
bd570b38d9d687c593545a7b250570605c601381f3d3d5263346b295e12a55ba
GET /widgets/v4/Universal/lang/en.json HTTP/1.1
Host: creative.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=sWDRkdvoIl-IpjtwgEJljVsnS4oCi-e_R6jlL9LdK_-YQ0i7uBT8bj08SE5pphdo2PJz14h_Ak5j8zlqJPOQZHO3Vax1HyGYhs1p9l_Rac3MONrM_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: application/json
last-modified: Thu, 14 Sep 2023 12:16:52 GMT
etag: W/"6502f9b4-ac"
expires: Sun, 17 Sep 2023 02:06:33 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 3
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca531df8b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Open+Sans:400,600
200 OK 5.5 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Open+Sans:400,600
IP
Requested by https://mydaddy.cc/video/8d3d7e8ca2dc7c98ca/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
File type ASCII text, with very long lines (5648), with no line terminators
Hash 13134fd49baa7b4d4d9140a83b917b16
4cc20e506ffe42a7ac5c0b4a13ec43af3ab28062
85034747e6ff2ad856194549c68c4d3777cb531a5791aa215c19522ff787c0ca
GET /css?family=Open+Sans:400,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mydaddy.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 17 Sep 2023 02:06:29 GMT
date: Sun, 17 Sep 2023 02:06:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
achcdn.com/script/suv5.js
200 OK 97 kB URL GET HTTP/3 achcdn.com/script/suv5.js
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subjectachcdn.com
FingerprintF8:6C:F4:21:7F:BA:D3:76:63:EC:22:B6:E6:4E:57:E1:D6:F5:FD:E5
ValiditySat, 26 Aug 2023 09:19:45 GMT - Fri, 24 Nov 2023 09:19:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/suv5.js HTTP/1.1
Host: achcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdvdkmf4uQy2Xu9Bk5SKo0LzbyeLdmlnQNlqG02tbJgdJFytJ3tUiBvU6LsrFlWtOmhoJgWvavwFcfQl-sNNQseVANXwAw9X
expires: Sun, 17 Sep 2023 02:16:54 GMT
cache-control: public, max-age=14400
last-modified: Fri, 15 Sep 2023 14:32:06 GMT
etag: W/"c3b8e9f57aa874fa4a62e380522d2fdd"
x-goog-generation: 1694788326136649
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 96607
x-goog-hash: crc32c=xkYzIQ==, md5=w7jp9XqodPpKYuOAUi0v3Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wa2WZy%2B9FsALiF87o1KlWzUNkyAgV7f8jWghZrjFjOU%2B00PLaGbswnWrSjDF0cHBixt%2BGJUxKXLIm7W7TQw8ualt57Gv5TSwt4%2FSCbcTmYNwNHYHNhMstPU0F4zu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca43cd581c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Roboto%3A400%2C300italic%2C300%2C400italic%2C700&display=swap
200 OK 11 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto%3A400%2C300italic%2C300%2C400italic%2C700&display=swap
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
Hash dc7d72feaf349d848d046a626517e0e3
91f86df0cfdf2cf03c145ba86fa34f9217cd49c7
f42b635b6f603ed83914a7f8fbd963969f0339850d39b8a854f9ba44b50f6619
GET /css?family=Roboto%3A400%2C300italic%2C300%2C400italic%2C700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.allpornstream.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 17 Sep 2023 02:06:29 GMT
date: Sun, 17 Sep 2023 02:06:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
creative.kbnmnl.com/widgets/v4/Universal/main.db756385c0227d15048c.css
200 OK 13 kB URL GET HTTP/3 creative.kbnmnl.com/widgets/v4/Universal/main.db756385c0227d15048c.css
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (13396), with no line terminators
Hash d55b785d72863fbb8425a36b7d675ec2
546cda15b6fb2a67ce1f102dc82eefb6f749f9c3
a4d09f6a50b6d96e7f22ab12f406dcf44be0d815105018cc5c7f1105fbf597f7
GET /widgets/v4/Universal/main.db756385c0227d15048c.css HTTP/1.1
Host: creative.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: text/css
last-modified: Thu, 14 Sep 2023 12:18:22 GMT
etag: W/"6502fa0e-3454"
expires: Sun, 17 Sep 2023 02:06:28 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 3
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca523db6b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.allpornstream.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
200 OK 88 kB URL GET HTTP/2 www.allpornstream.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerLet's Encrypt
Subjectadatradepool.com
Fingerprint35:67:39:4B:51:9C:28:4B:3B:F6:E9:4F:78:27:1F:18:CD:48:31:E3
ValidityThu, 14 Sep 2023 07:48:22 GMT - Wed, 13 Dec 2023 07:48:21 GMT
File type ASCII text, with very long lines (65447)
Hash ff04dd1ef5c67998d8652330c0441689
5e6ff5bd5240181a8bdea983837f39ac231dac4d
5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: www.allpornstream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allpornstream.com/matching-set-and-matching-taste/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: application/javascript
content-length: 30343
server: Apache
x-content-type-options: nosniff
vary: X-Forwarded-Proto,Accept-Encoding,Origin
last-modified: Tue, 08 Aug 2023 21:33:46 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sun, 17 Sep 2023 02:21:28 GMT
content-encoding: gzip
access-control-allow-origin:
X-Firefox-Spdy: h2
fvcwqkkqmuv.com/get/1968193?zoneid=1968193&jp=_cllhmjpltxrwm3yyvuk696&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=1&im=1&cid=7147952458179166
200 OK 4.1 kB URL GET HTTP/2 fvcwqkkqmuv.com/get/1968193?zoneid=1968193&jp=_cllhmjpltxrwm3yyvuk696&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=1&im=1&cid=7147952458179166
IP
Requested by https://www.allpornstream.com/matching-set-and-matching-taste/
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint9A:2F:14:29:BF:3A:F6:04:3C:73:42:7B:73:9F:C1:FE:76:C6:D5:0F
ValidityWed, 31 May 2023 13:01:06 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with very long lines (4443), with no line terminators
Hash b46ed9ef768918a5206556a28f57361b
088539da6949924856bac7ffa2b4343353ad1328
a8635f53176a6bd71716956bdcc87b624a95c33252db5afdc6df3e2f5496b7bc
GET /get/1968193?zoneid=1968193&jp=_cllhmjpltxrwm3yyvuk696&nojs=0&ix=0&abvar=0&febuild=1.0.147&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=1&im=1&cid=7147952458179166 HTTP/1.1
Host: fvcwqkkqmuv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 17 Sep 2023 02:06:28 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Sun, 20 Oct 2024 02:06:28 GMT; HttpOnly; Secure; SameSite=None
UID=2309162106178376d8ba3b409d8045471624; Path=/; Expires=Sun, 20 Oct 2024 02:06:28 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
creative.kbnmnl.com/widgets/v4/Universal/lang/en.json
200 OK 172 B URL GET HTTP/3 creative.kbnmnl.com/widgets/v4/Universal/lang/en.json
IP
Requested by https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4D:A7:D4:32:0E:B2:37:8D:7A:2A:1F:BF:AD:4F:65:CC:44:53:D7:9D
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 402f4a06b5dcf96d25dd4ff1f840784b
edebb253af01ef1882f424ee6278368485898d62
bd570b38d9d687c593545a7b250570605c601381f3d3d5263346b295e12a55ba
GET /widgets/v4/Universal/lang/en.json HTTP/1.1
Host: creative.kbnmnl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.kbnmnl.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c6913f01500457c0bdb8597e6d4286a54c12f8dc120ca06a0ab250733289acaa&campaignType=smartpop&creativeId=3672fc27bfb593b05d38e7fde02505c3103c2218a2ae9c36d69ba41396748660&iterationId=717987&masterSmartpopId=1605&memberId=DqIGrkvEIU-oOEjY4gel3rralufXa6eu-6XMURtWeftn2rkD-pzAQ3x95nhFnxQ6SJ7Ls9Bpw4SBw_1rULxcODDQWFHa7hpQ37U-6kLBXg17zKsQ_gUIDRUi&mlView=1&p1=4296372&ruleId=3&smartpopId=1062&sourceId=552826&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31685&webp=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 17 Sep 2023 02:06:30 GMT
content-type: application/json
last-modified: Thu, 14 Sep 2023 12:16:52 GMT
etag: W/"6502f9b4-ac"
expires: Sun, 17 Sep 2023 02:06:33 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 3
vary: Accept-Encoding
server: cloudflare
cf-ray: 807dca52ddeeb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
188.165.4.35
142.250.74.131
95.211.178.209
23.36.76.200
104.18.51.106
185.76.9.19
78.46.97.249
0.0.0.0