Report - jay156.fanbox.cc/

Report Overview

Submitted URL
jay156.fanbox.cc/
IP
210.140.92.183
ASN
#4694 IDC Frontier Inc.
Submitted
2023-02-03 18:28:28
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
7
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	702 B	1.2 kB	216.58.207.228
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.0 kB	1.9 kB	93.184.220.29
t.co	569	2012-07-25T21:09:44Z	2023-03-13T05:25:19Z	712 B	593 B	104.244.42.133
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	1.4 kB	1.4 kB	142.250.74.67
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	605 B	592 B	173.194.222.157
jay156.fanbox.cc	unknown	2023-02-03T19:28:06Z	2023-02-03T19:28:06Z	794 B	3.3 kB	210.140.92.192
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	3.4 kB	7.0 kB	142.250.74.163
cdn.iframe.ly	31703	2017-06-17T09:03:29Z	2023-03-13T09:43:47Z	358 B	8.7 kB	54.230.111.67
s.pximg.net	76668	2018-04-23T11:20:11Z	2023-03-12T08:08:05Z	5.5 kB	1.1 MB	210.140.92.147
analytics.twitter.com	526	2013-04-10T21:53:18Z	2023-03-13T05:25:19Z	729 B	613 B	104.244.42.195
api.fanbox.cc	370382	2020-06-29T11:37:21Z	2023-03-12T07:52:19Z	2.7 kB	5.1 kB	210.140.92.192
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.186.255.183
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	768 B	123 kB	142.250.74.168
www.fanbox.cc	358280	2020-06-29T11:37:17Z	2023-03-12T22:27:09Z	623 B	800 B	210.140.92.192
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-13T08:39:16Z	1.4 kB	2.5 kB	142.250.74.98
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	95.101.11.115
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	70 kB	34.120.237.76
ocsp.r2m02.amazontrust.com	unknown	2022-10-12T16:01:39Z	2023-03-13T08:10:58Z	350 B	1.0 kB	54.230.80.227
platform.twitter.com	597	2012-05-21T05:34:05Z	2023-03-13T05:09:29Z	934 B	134 kB	93.184.220.66
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	373 B	21 kB	142.250.74.110
static.ads-twitter.com	614	2018-06-24T00:08:39Z	2023-03-13T05:25:18Z	365 B	16 kB	151.101.84.157
syndication.twitter.com	833	2013-09-20T03:46:47Z	2023-03-13T05:26:52Z	457 B	916 B	104.244.42.8

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-03 18:28:48	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-03 18:28:48	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-03 18:28:49	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-03 18:28:52	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-03 18:28:52	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-03 18:28:55	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-03 18:28:55	medium	Client IP	Internal IP	ET DNS Query for .cc TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	s.pximg.net/www/fanbox/check_is_browser.js	77 B	2023-03-10	2024-02-04
Pretty URL s.pximg.net/www/fanbox/check_is_browser.js IP 210.140.92.147 ASN #4694 IDC Frontier Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 03:38:21 Last Seen2024-02-04 23:35:09 Times Seen510 Hash 20bb1bb14de079cf641dd4b620aacd51 2de89adad5054f67e165421d38ad45f3c7ddbae6 394f51bf73f496377e5f938f509201659985cd8bc6c56ea08fe29b2511857932 Loading...

	www.googletagmanager.com/gtag/js?id=AW-647763926	132 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=AW-647763926 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:00:16 Last Seen2023-03-13 16:00:16 Times Seen1 Hash 3be2000a05c7709a3e7420f510e376cc 886cd33211a89b3218f48099ca2c5e6bae373f5b 3339608cb667eb6963257cc7b912f2cc21716143c62ea874c3ec2b522bacd4ed Loading...

	s.pximg.net/www/js/fanbox/proxyStorage.14bd117bcb37f32efe60.js	4.1 kB	2023-03-12	2023-06-06
Pretty URL s.pximg.net/www/js/fanbox/proxyStorage.14bd117bcb37f32efe60.js IP 210.140.92.147 ASN #4694 IDC Frontier Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:10:09 Last Seen2023-06-06 00:45:53 Times Seen68 Hash 9907270b5fca082a0a903a997c7a4b3d 12a33c3714da8d78d1234c3199bb4f8d8b874e71 dafe1612c4da4333fa0cc16ac3f943ea609c7256eb73b765d65e0f926707c06c Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	static.ads-twitter.com/uwt.js	58 kB	2023-03-08	2024-04-20
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:46 Last Seen2024-04-20 17:48:03 Times Seen4329 Hash 32ad004436155ec972bc50e6238b5b67 9b2cdb645c2fa5b98a9d05dcdca521fed4a17b7b cf7fcc9f75c8717897bfaef72f303fab423ce1b70c98512aeb3677e4af988dee Loading...

	www.google.com/pagead/1p-conversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4	43 B	2023-03-07	2024-04-20
Pretty URL www.google.com/pagead/1p-conversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2024-04-20 17:48:03 Times Seen63949 Hash ad8b6f08655797587cdec719a94efe59 182adf5a140796f81e930649d05654dbf22fd5b7 77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6 Loading...

	platform.twitter.com/widgets.js	93 kB	2023-03-13	2024-04-18
Pretty URL platform.twitter.com/widgets.js IP 93.184.220.66 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:53:34 Last Seen2024-04-18 11:27:49 Times Seen3883 Hash 9e99725b7a4cd730a934afba2a438bb5 cca18cd298b243e672b37ba6e6927bec865dd742 392c9fa9cd1273a2a89d1a83a69cd1f63f21d1d55e7be21e1d8f51f25145668b Loading...

	www.googletagmanager.com/gtag/js?id=UA-1830249-145	112 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-1830249-145 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:00:16 Last Seen2023-03-13 16:00:16 Times Seen1 Hash 6d7ea2049f72e557c2e9c65dd188273a 2001be3756b9cc5d42cd530fe58131da54eae083 6d0040449e8415f7ff5f7259daaa72f7c4d02baec547538edb3caea9bc1df173 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PBWZ82P	224 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PBWZ82P IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:00:16 Last Seen2023-03-13 16:00:16 Times Seen1 Hash dcb0551d4ec8a6f700f8343a4d80eac3 8fe44dd53b5e22b2b56416743201d3ad1bf4d957 848ebe50e7445abcd9ebab1eebac8571c91d40e21b4c57121abbd2ab0a2d3eaa Loading...

	jay156.fanbox.cc/	156 B	2023-03-10	2023-04-01
Pretty URL jay156.fanbox.cc/ IP 210.140.92.192 ASN #4694 IDC Frontier Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 03:38:21 Last Seen2023-04-01 10:58:26 Times Seen13 Hash 63291df5e52949c39af86cda43e25cc6 cab81e21887d3fb7d8b874a8de9c1f5a7a4dc27b 7331e89609b1b7580c0dda852f3bafcfe2db2c9d6703f34a00e8c1e1c2c3055b Loading...

	jay156.fanbox.cc/	130 B	2023-03-10	2024-02-04
Pretty URL jay156.fanbox.cc/ IP 210.140.92.192 ASN #4694 IDC Frontier Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 03:38:21 Last Seen2024-02-04 23:35:06 Times Seen259 Hash 027c06f1896f4146a60851d3ec11d1eb 3fab4e0aee1c19bb6f8ec230db238639da1c63f0 9e88c24915abda3063360f28ec8abdfefb95af484ff2abda1250e20b1d7cdb9f Loading...

	s.pximg.net/www/js/fanbox/runtime.023a7c662d3f0e90cfcc.js	9.5 kB	2023-03-13	2023-03-13
Pretty URL s.pximg.net/www/js/fanbox/runtime.023a7c662d3f0e90cfcc.js IP 210.140.92.147 ASN #4694 IDC Frontier Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:58:18 Last Seen2023-03-13 17:53:48 Times Seen1 Hash e9a754d86eaa5ab3b18b55073e3d9542 5b528de7f6574f2ea05ea448739fa702fe6da84c e8f809a113852936f604bf7da43c6629811c16b96ed7f3cb5ffbdcbb767c6af5 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/647763926/?random=1675448933031&cv=11&fst=1675448933031&bg=ffffff&guid=ON&async=1&gtm=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&auid=730870607.1675448932&data=event%3Dgtag.config&rfmt=3&fmt=4	1.9 kB	2023-03-13	2023-03-13
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/647763926/?random=1675448933031&cv=11&fst=1675448933031&bg=ffffff&guid=ON&async=1&gtm=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&auid=730870607.1675448932&data=event%3Dgtag.config&rfmt=3&fmt=4 IP 142.250.74.98 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:00:16 Last Seen2023-03-13 16:00:16 Times Seen1 Hash a53b4bcc738996d80fa3405eabcc0009 4df9e9d144cf944b7fadb595b067095cf7ff1abb 7957b245db6b1c169069d116ccd0cf07ad2df64ee61a9a2629eecc1d92071fa9 Loading...

	jay156.fanbox.cc/	253 B	2023-03-10	2023-04-01
Pretty URL jay156.fanbox.cc/ IP 210.140.92.192 ASN #4694 IDC Frontier Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 03:38:21 Last Seen2023-04-01 10:58:26 Times Seen13 Hash c5f1335253e71dd97bc3043f87400c57 bb7036417bebb9136783b3a1c9515203ef31701a 24ecc6595e743664e6d7c595b8f8f7617f103c0244b73a324673c37de9472baf Loading...

	jay156.fanbox.cc/	435 B	2023-03-10	2023-04-01
Pretty URL jay156.fanbox.cc/ IP 210.140.92.192 ASN #4694 IDC Frontier Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 03:38:21 Last Seen2023-04-01 10:58:26 Times Seen13 Hash 14df65dddd85873b6b231defcffb161f 8c361dbffa88850c714d9a96211817187b779135 2f9ae7c6a6499cd313652ea1bb5e680fae85342c8e0d2b713977af0478e6b9a8 Loading...

	cdn.iframe.ly/embed.js	24 kB	2023-03-13	2024-04-08
Pretty URL cdn.iframe.ly/embed.js IP 54.230.111.67 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:58:18 Last Seen2024-04-08 06:34:06 Times Seen1017 Hash 2d7da02c551158ff6f91de3289efad7f c2a0c8415c36a2e71f80a0eb2f4aac83908e261b 9e89a92b0ee6959fc76460b414049e3bd12fbe00b119e5a6bdc51faf9f37a9cc Loading...

	platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fjay156.fanbox.cc	327 kB	2023-03-13	2024-04-18
Pretty URL platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fjay156.fanbox.cc IP 93.184.220.66 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:53:42 Last Seen2024-04-18 11:27:49 Times Seen2170 Hash ddda7cfc08478ea11fab363ee004f38e e56b886f428cb955f3c594b3c82213cd422b82fd 74df0c960477a1e829b4e135295119fc6d3603d2fbdae3f87bc1854ec5ef0cc4 Loading...

	s.pximg.net/www/js/fanbox/268.7cef55d5dc8deef37837.js	62 kB	2023-03-12	2023-03-13
Pretty URL s.pximg.net/www/js/fanbox/268.7cef55d5dc8deef37837.js IP 210.140.92.147 ASN #4694 IDC Frontier Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 09:54:14 Last Seen2023-03-13 19:57:46 Times Seen1 Hash 404d77109004fc59453f141c82a0de22 9c5586b7ece15571df8d0afd828b9ad98ca548a0 9207a5a36ad26684279876e7f1e70c9ab7061f31dcae551255790b4459d52cac Loading...

		Size	First Seen	Last Seen
	#1 Eval - 688e599d3257ea34130f4f639152a9a9	153 B	2023-03-10	2024-02-04
Pretty Observations First Seen2023-03-10 03:38:21 Last Seen2024-02-04 23:35:07 Times Seen177 Hash 688e599d3257ea34130f4f639152a9a9 1308244827f8aae70735262730faa1bcce624ccb dab3d3707a98d2270d8fb3482a7b3bd9a283f82594df0d56dda89e525908bb32 Loading...

	#2 Eval - 8ef8b11c9a70fef74a322ae1a4129c32	131 B	2023-03-10	2024-02-04
Pretty Observations First Seen2023-03-10 03:38:21 Last Seen2024-02-04 23:35:08 Times Seen177 Hash 8ef8b11c9a70fef74a322ae1a4129c32 98bbd4be7546401f0c9fb535a86f9eee3d4ed04d 271c62e27b34d486b586f9baf55b082adf0836bb81fd37cfadda0068efe9c48e Loading...

	#3 Eval - 4779acfbeec0a6eb135ac76e7c4f75a0	127 B	2023-03-10	2024-02-04
Pretty Observations First Seen2023-03-10 03:38:21 Last Seen2024-02-04 23:35:07 Times Seen177 Hash 4779acfbeec0a6eb135ac76e7c4f75a0 d3f9c2f4c8df5b09f682bc5702a922caa7981360 3990bd47ef34a396f6ee0cd8cbf35c3f1733682f24f9596789026011347842ea Loading...

HTTP Transactions (68)

	URL	IP	Response	Size
	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d4e95d0d8982bcd07804baf6fc88231c 5027abda0875bd2529dd4d6691784c74da71a9ee 373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20969 Expires: Sat, 04 Feb 2023 00:17:45 GMT Date: Fri, 03 Feb 2023 18:28:16 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e935ea42be4feaed61a824b0b903913e f966cfa80d65a805cb9d7c6a53b3340865d7c51a eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18459 Expires: Fri, 03 Feb 2023 23:35:55 GMT Date: Fri, 03 Feb 2023 18:28:16 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash ff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Fri, 03 Feb 2023 17:36:11 GMT content-type: application/json age: 3126 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9a76feabb767086ae0fa54e0ffbf763f 3655d78994a1e9838340669462728b67c8c12e54 bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15827 Expires: Fri, 03 Feb 2023 22:52:04 GMT Date: Fri, 03 Feb 2023 18:28:17 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: cXbkU8b+Ek1GZdh6OliXhcTK++0hZvYMw/QcChGYRmyabuZT9a4TaTHofZkU3n31pi3YmsjSFbk= x-amz-request-id: VV2BC52X3483Q2Z1 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Fri, 03 Feb 2023 18:23:38 GMT age: 279 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:17 GMT content-type: application/json content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Fri, 03 Feb 2023 17:49:06 GMT age: 2351 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8913af0be619500295008bb91f506660 a7b8068ba9aa506205a295b24458c2616997a0d1 6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A" Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14719 Expires: Fri, 03 Feb 2023 22:33:36 GMT Date: Fri, 03 Feb 2023 18:28:17 GMT Connection: keep-alive`

	jay156.fanbox.cc/	210.140.92.192	301 Moved Permanently	162 B
URL HTTP/1.1 jay156.fanbox.cc/ IP 210.140.92.192:0 ASN #4694 IDC Frontier Inc. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET / HTTP/1.1 Host: jay156.fanbox.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Server: nginx Date: Fri, 03 Feb 2023 18:28:17 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://jay156.fanbox.cc/`

	push.services.mozilla.com/	54.186.255.183	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.186.255.183:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: I0j7p11YdivLlnw+ahnDwA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 0HAMvLY6xM3DKNfosgtt+mRYF4Y=`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15475 Expires: Fri, 03 Feb 2023 22:46:14 GMT Date: Fri, 03 Feb 2023 18:28:19 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15475 Expires: Fri, 03 Feb 2023 22:46:14 GMT Date: Fri, 03 Feb 2023 18:28:19 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15475 Expires: Fri, 03 Feb 2023 22:46:14 GMT Date: Fri, 03 Feb 2023 18:28:19 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg	34.120.237.76	200 OK	14 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 14 kB (14071 bytes) Hash 9ab97f766ee1ed6ebbb2b3889a9157b4 f87f165404dec4d65531e6e25146cb77601f3616 f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 14071 x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fiTo4Ek2oAMFs6g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 21:48:01 GMT age: 74418 etag: "f87f165404dec4d65531e6e25146cb77601f3616" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg	34.120.237.76	200 OK	5.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.6 kB (5641 bytes) Hash d4041f3b5316bc84c9e6d88ddbc85b89 4978a4a20836b6f5d863d331bcedad782b7b4ac6 549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5641 x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fuvzpHsXoAMFsuw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0 x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 21:57:49 GMT age: 73830 etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10796 bytes) Hash 3490571dd2de0a747987b9a0e18cccc8 18e9f8f160d3515f1cb31fc7538ac762a6cab344 1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10796 x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fi0XKG93oAMFtsA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: XTZJAn0LMAfFtaQ2bN8z58cCsUT5GzxDMnHVB_iw9E_NskHQ-BgbRQ== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 22:19:26 GMT age: 84437 etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11565 bytes) Hash e366b32074025aaf60bbae8bdb08d330 a52c2883bad98fa20333aa639a5dd3a5bf544c8e 9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11565 x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fboIrFGboAMFyyQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0 x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 21:48:01 GMT age: 74418 etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10166 bytes) Hash 2a6aaf87a867f93dc9268a8b27973b97 f52ccbe6cbced1994acb13a00b05436553b6813e 3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10166 x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fY_4zHEcoAMF1iA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0 x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: hSyEfSDToqgfnFIW68Krz-ANYUNQoUPWhyb-8xDUarI6mnVLXriHDQ== via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 21:59:54 GMT age: 73705 etag: "f52ccbe6cbced1994acb13a00b05436553b6813e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10971 bytes) Hash 24261df857fd20898ed41615ff44efd2 5ebaae7786e95f6daf7e837ce741f96611a64335 b947696fced12e35736691fb27c5cc4ddb28e4b4781cfbb69b8b4011b84aca5b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10971 x-amzn-requestid: 87d6a618-4ddf-4e40-aaeb-f6e38c274c23 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: feH0jHisoAMFgpg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d58683-2de413f446505ec44ab2a390;Sampled=0 x-amzn-remapped-date: Sat, 28 Jan 2023 20:33:07 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: VpgiTDC8Uyvv5rCHOxGUgIREsLddYA7POpvU5eJSO3_K3zm7Hp3AOg== via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 21:43:06 GMT age: 74713 etag: "5ebaae7786e95f6daf7e837ce741f96611a64335" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	jay156.fanbox.cc/	210.140.92.192	200 OK	2.0 kB
URL HTTP/2 jay156.fanbox.cc/ IP 210.140.92.192:0 ASN #4694 IDC Frontier Inc. File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1658), with CRLF, LF line terminators Size 2.0 kB (2027 bytes) Hash 29acada3f7bbea55cedc4fdc6a97c783 b1851b51a11e701ffb6f8daff581b76e52718090 da162f826b789ce2506e9f03967b4ca42d96f49be73fcf3291100b0cc624ed1e HTTP Headers `GET / HTTP/1.1 Host: jay156.fanbox.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:18 GMT content-type: text/html; charset=UTF-8 content-length: 2027 x-host-time: 111 content-security-policy: frame-ancestors 'self' https://*.fanbox.cc expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache set-cookie: FANBOXSESSID=t1gqv903tmbr4mokqpaf3c33106v8u7k; expires=Fri, 03-Feb-2023 19:28:18 GMT; Max-Age=3600; path=/; domain=.fanbox.cc; secure; HttpOnly p_ab_id=8; expires=Wed, 02-Feb-2028 18:28:18 GMT; Max-Age=157680000; path=/; domain=.fanbox.cc; secure p_ab_id_2=5; expires=Wed, 02-Feb-2028 18:28:18 GMT; Max-Age=157680000; path=/; domain=.fanbox.cc; secure p_ab_d_id=183507121; expires=Wed, 02-Feb-2028 18:28:18 GMT; Max-Age=157680000; path=/; domain=.fanbox.cc; secure vary: Accept-Encoding content-encoding: gzip x-frame-options: SAMEORIGIN X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9c45ea25709afbea416f215ee34611b0 117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed 7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn.iframe.ly/embed.js	54.230.111.67	200 OK	8.2 kB
URL HTTP/2 cdn.iframe.ly/embed.js IP 54.230.111.67:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (24307), with no line terminators Size 8.2 kB (8167 bytes) Hash dfea3af27d4628c29f668ad3c577f84b df4a694992e3c203cb86cac2f6376dcab03bf1f1 d767fac762c42fe0d24f9e1be41f27131661d5b66aac1582bc15053e4846b5d2 HTTP Headers `GET /embed.js HTTP/1.1 Host: cdn.iframe.ly User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript server: nginx date: Fri, 03 Feb 2023 14:56:43 GMT last-modified: Fri, 03 Feb 2023 14:45:36 GMT etag: W/"63dd1e10-5ef3" access-control-allow-origin: * cache-control: public, max-age=86400 content-encoding: br vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: kJjDxaCIjvOmhHW_mY77R13NRq5Yq0Rd5mGHlSWQSu04Xq21a6G7vw== age: 12696 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=UA-1830249-145	142.250.74.168	200 OK	44 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-1830249-145 IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1759) Size 44 kB (43886 bytes) Hash 79769e8161606dccc7380c2c9e331f28 d0b8c4615a395c103fed21fb62adc8585d078b8e c5442737fb765468507e4967f734206f5cce8253f415030a98304adde9ff9bed HTTP Headers `GET /gtag/js?id=UA-1830249-145 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 03 Feb 2023 18:28:19 GMT expires: Fri, 03 Feb 2023 18:28:19 GMT cache-control: private, max-age=900 last-modified: Fri, 03 Feb 2023 18:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 43886 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtm.js?id=GTM-PBWZ82P	142.250.74.168	200 OK	78 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PBWZ82P IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (11521) Size 78 kB (78041 bytes) Hash 087341a13d3188e3213df4447c34c360 8b2408c504c2a7b2b505a427c60457836f8fa1d0 4610221c391c8abf548ccf0f682a8b06f594fa7e6c5b4f807445a2698ed5ab59 HTTP Headers `GET /gtm.js?id=GTM-PBWZ82P HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 03 Feb 2023 18:28:19 GMT expires: Fri, 03 Feb 2023 18:28:19 GMT cache-control: private, max-age=900 last-modified: Fri, 03 Feb 2023 18:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 78041 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9c45ea25709afbea416f215ee34611b0 117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed 7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 075e05f05b5a310ac41e03f089553667 b7adaa22bf7007e997bcf4dc630f26f8d804b681 7c3bac11f4883f2bb17bbb9dc8951c7bf0cea1208a32f2794678caf6b0487e5e HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=131290 Date: Fri, 03 Feb 2023 18:28:19 GMT Etag: "63dc97d6-1d7" Expires: Sun, 05 Feb 2023 06:56:29 GMT Last-Modified: Fri, 03 Feb 2023 05:12:54 GMT Server: ECS (nyb/1D1B) X-Cache: Miss from cloudfront Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: hAricDgnSZvAcwJTh-GcBt8gVs0Sc8IZH1Y7v9Dk2cSYjwHsDrE5Uw== Age: 6215

	s.pximg.net/www/js/fanbox/fanbox.5bd0246d2d7aec9c9238.css	210.140.92.147	200 OK	810 B
URL HTTP/2 s.pximg.net/www/js/fanbox/fanbox.5bd0246d2d7aec9c9238.css IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type ASCII text, with very long lines (1843) Size 810 B (810 bytes) Hash bc2186caa0c87f73f12d7cefc69faa60 e861704f4b5592d719aae19867a6331ef442842f 643fbd8e92a2764fb147a8f0a9401213f6be8982cc85ceae23545964eda95488 HTTP Headers `GET /www/js/fanbox/fanbox.5bd0246d2d7aec9c9238.css HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://jay156.fanbox.cc Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:20 GMT content-type: text/css content-length: 810 vary: Accept-Encoding last-modified: Fri, 13 Jan 2023 05:13:15 GMT content-encoding: gzip x-content-type-options: nosniff access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer expires: Tue, 14 Feb 2023 03:22:16 GMT cache-control: max-age=2592000 X-Firefox-Spdy: h2`

	s.pximg.net/www/fanbox/check_is_browser.js	210.140.92.147	200 OK	77 B
URL HTTP/2 s.pximg.net/www/fanbox/check_is_browser.js IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type ASCII text Size 77 B (77 bytes) Hash 20bb1bb14de079cf641dd4b620aacd51 2de89adad5054f67e165421d38ad45f3c7ddbae6 394f51bf73f496377e5f938f509201659985cd8bc6c56ea08fe29b2511857932 HTTP Headers `GET /www/fanbox/check_is_browser.js HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:20 GMT content-type: application/javascript content-length: 77 last-modified: Thu, 27 Oct 2022 13:00:00 GMT x-content-type-options: nosniff access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer expires: Mon, 27 Feb 2023 05:00:32 GMT cache-control: max-age=2592000 accept-ranges: bytes X-Firefox-Spdy: h2`

	s.pximg.net/www/js/fanbox/runtime.023a7c662d3f0e90cfcc.js	210.140.92.147	200 OK	5.5 kB
URL HTTP/2 s.pximg.net/www/js/fanbox/runtime.023a7c662d3f0e90cfcc.js IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type ASCII text, with very long lines (9516), with no line terminators Size 5.5 kB (5508 bytes) Hash 2ff8c3ace8db26a22358436bfa7929a1 72a86e78d287c141dc73a1fb40b0c4945f4ef11d c2d1e36618502f475c03b9448e9f6dcac52aeb42fcdb3af2fdebb9e4952f4a2d HTTP Headers `GET /www/js/fanbox/runtime.023a7c662d3f0e90cfcc.js HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://jay156.fanbox.cc Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:20 GMT content-type: application/javascript content-length: 5508 vary: Accept-Encoding last-modified: Mon, 30 Jan 2023 05:37:11 GMT content-encoding: gzip x-content-type-options: nosniff access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer expires: Wed, 01 Mar 2023 05:39:14 GMT cache-control: max-age=2592000 X-Firefox-Spdy: h2`

	www.fanbox.cc/proxy_storage	210.140.92.192	200 OK	363 B
URL HTTP/2 www.fanbox.cc/proxy_storage IP 210.140.92.192:0 ASN #4694 IDC Frontier Inc. File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (302) Size 363 B (363 bytes) Hash 3073277101f481a126efd1c0f5162cf5 a81d445b198cfdc7ca2c56448c2d9658065f4691 abc43ddbfc6cf16ae6bba51e600a427d6a52520ee4f464d55137aaf49cf4daf4 HTTP Headers GET /proxy_storage HTTP/1.1 Host: www.fanbox.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Cookie: FANBOXSESSID=t1gqv903tmbr4mokqpaf3c33106v8u7k; p_ab_id=8; p_ab_id_2=5; p_ab_d_id=183507121; _gcl_au=1.1.730870607.1675448932 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:21 GMT content-type: text/html; charset=UTF-8 content-length: 363 x-host-time: 015 content-security-policy: frame-ancestors 'self' https://*.fanbox.cc expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache vary: Accept-Encoding content-encoding: gzip strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2`

	s.pximg.net/www/js/fanbox/fanbox.33149a4dabc95074e944.js	210.140.92.147	200 OK	1.0 MB
URL HTTP/2 s.pximg.net/www/js/fanbox/fanbox.33149a4dabc95074e944.js IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type ASCII text, with very long lines (65536), with no line terminators Size 1.0 MB (1012107 bytes) Hash 61d7b7363955231d3248fd97a4234b84 3698cafcb20e35b15cf9d8a3cc0362bfb5e3efa8 575956cafcee6ecb825a8264a717c27f052fec09b306573e734708723ee44722 HTTP Headers `GET /www/js/fanbox/fanbox.33149a4dabc95074e944.js HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://jay156.fanbox.cc Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:20 GMT content-type: application/javascript content-length: 1012107 vary: Accept-Encoding last-modified: Tue, 31 Jan 2023 05:23:10 GMT content-encoding: gzip x-content-type-options: nosniff access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer expires: Thu, 02 Mar 2023 05:26:56 GMT cache-control: max-age=2592000 X-Firefox-Spdy: h2`

	s.pximg.net/www/js/fanbox/proxyStorage.14bd117bcb37f32efe60.js	210.140.92.147	200 OK	1.5 kB
URL HTTP/2 s.pximg.net/www/js/fanbox/proxyStorage.14bd117bcb37f32efe60.js IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type ASCII text, with very long lines (4121), with no line terminators Size 1.5 kB (1461 bytes) Hash 727726f3c065d547f2e0e74b855187c6 61bdf5d283c83018fa21c10c6257912c0be28a26 931c99459ebc6903b7af275e846fbb5ee7e2e1bcad307f363012049cf2892c9a HTTP Headers `GET /www/js/fanbox/proxyStorage.14bd117bcb37f32efe60.js HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.fanbox.cc Connection: keep-alive Referer: https://www.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:21 GMT content-type: application/javascript content-length: 1461 vary: Accept-Encoding last-modified: Thu, 12 Jan 2023 04:32:07 GMT content-encoding: gzip x-content-type-options: nosniff access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer expires: Sat, 11 Feb 2023 04:35:23 GMT cache-control: max-age=2592000 X-Firefox-Spdy: h2`

	platform.twitter.com/widgets.js	93.184.220.66	200 OK	28 kB
URL HTTP/1.1 platform.twitter.com/widgets.js IP 93.184.220.66:0 ASN #15133 EDGECAST File type Unicode text, UTF-8 text, with very long lines (38752) Size 28 kB (27630 bytes) Hash 8aa708f5eebf10bd82e942dabf1623a5 326a6d469222302a80ecf29039e7837d8870ee47 fcfdc2930fdd7f4b3c7f0c1308ce2e89fcc5082ae6a0a1e16ecf0f7e417f1368 HTTP Headers `GET /widgets.js HTTP/1.1 Host: platform.twitter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Encoding: gzip Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Access-Control-Max-Age: 3000 Age: 1458 Cache-Control: public, max-age=1800 Content-Type: application/javascript; charset=utf-8 Date: Fri, 03 Feb 2023 18:28:22 GMT Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip" Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT" Server: ECS (ska/F711) Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ Vary: Accept-Encoding x-amzn-internal-status: 304 X-Cache: HIT x-tw-cdn: VZ Content-Length: 27630

	www.google-analytics.com/analytics.js	142.250.74.110	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.110:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Fri, 03 Feb 2023 17:44:08 GMT expires: Fri, 03 Feb 2023 19:44:08 GMT cache-control: public, max-age=7200 age: 2654 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 4cf0ccf2909be74efd7a89dbe4228ffb b4993da334b48312584d116a3de4be4cd71962cf e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:22 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	static.ads-twitter.com/uwt.js	151.101.84.157	200 OK	15 kB
URL HTTP/2 static.ads-twitter.com/uwt.js IP 151.101.84.157:0 ASN #54113 FASTLY File type ASCII text, with very long lines (57596), with no line terminators Size 15 kB (15375 bytes) Hash 573e6a7f86f6f3063763360ef0672c01 b12eab3b4ac8872d49ac6e15f9cd17741765c0cf 02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7 HTTP Headers `GET /uwt.js HTTP/1.1 Host: static.ads-twitter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK last-modified: Thu, 27 Oct 2022 18:55:37 GMT cache-control: no-cache content-type: application/javascript; charset=utf-8 content-encoding: gzip etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip" accept-ranges: bytes date: Fri, 03 Feb 2023 18:28:22 GMT x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1671-BMA x-cache: HIT, HIT vary: Accept-Encoding,Host p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT" x-tw-cdn: FT content-length: 15375 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9bfd33253208c9d034988400d66abd5d 8811fd76d9bc56c15431433f8f08d648185992ed 6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:22 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9bfd33253208c9d034988400d66abd5d 8811fd76d9bc56c15431433f8f08d648185992ed 6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:22 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	googleads.g.doubleclick.net/pagead/viewthroughconversion/647763926/?random=1675448933031&cv=11&fst=1675448933031&bg=ffffff&guid=ON&async=1&gtm=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&auid=730870607.1675448932&data=event%3Dgtag.config&rfmt=3&fmt=4	142.250.74.98	200 OK	887 B
URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/647763926/?random=1675448933031&cv=11&fst=1675448933031&bg=ffffff&guid=ON&async=1&gtm=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&auid=730870607.1675448932&data=event%3Dgtag.config&rfmt=3&fmt=4 IP 142.250.74.98:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1857), with no line terminators Size 887 B (887 bytes) Hash 5df542c7356b3cccc0b28788af5d669d e10028e578d19a90f25d8302618d72aa2795ab5e 244fba09d308699c2c175c7f7880107ed4f8de18540fe640fa4682d81443979d HTTP Headers GET /pagead/viewthroughconversion/647763926/?random=1675448933031&cv=11&fst=1675448933031&bg=ffffff&guid=ON&async=1&gtm=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&auid=730870607.1675448932&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1 Host: googleads.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 03 Feb 2023 18:28:22 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, must-revalidate content-type: text/javascript; charset=UTF-8 x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: br server: cafe content-length: 887 x-xss-protection: 0 set-cookie: test_cookie=CheckForPermission; expires=Fri, 03-Feb-2023 18:43:22 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/pagead/1p-conversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4	216.58.207.228	302 Found	63 B
URL HTTP/2 www.google.com/pagead/1p-conversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 IP 216.58.207.228:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 63 B (63 bytes) Hash 0339f8f57d1bf75003db591e28957e45 ae2286e497c9f76a02cb40c40a674b73bd293b76 609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26 HTTP Headers GET /pagead/1p-conversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 302 Found p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 03 Feb 2023 18:28:22 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate location: https://www.google.no/pagead/1p-conversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 content-type: text/javascript; charset=UTF-8 content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: gzip server: cafe content-length: 63 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	googleads.g.doubleclick.net/pagead/viewthroughconversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&ct_cookie_present=1	142.250.74.98	200 OK	42 B
URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&ct_cookie_present=1 IP 142.250.74.98:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /pagead/viewthroughconversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&ct_cookie_present=1 HTTP/1.1 Host: googleads.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 03 Feb 2023 18:28:22 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 set-cookie: test_cookie=CheckForPermission; expires=Fri, 03-Feb-2023 18:43:22 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 42f7bb86070a306c0902a2947bfd5db1 679751d86f7520d1e5e30b5bc050015450de75a7 ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:22 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 8176ac8bbb8fa05f36bdfa163da09e0c b936c84c5fa7e781b12a17952c82bca546ca0575 1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:22 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fjay156.fanbox.cc	93.184.220.66	200 OK	105 kB
URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fjay156.fanbox.cc IP 93.184.220.66:0 ASN #15133 EDGECAST File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166) Size 105 kB (105435 bytes) Hash 58f06e7d628e7e207cad8e48c9cc76be 9042f057d52be00c9535ce93b0ce4c03707e0c41 ea6c34f2e7acfea93ba722fe283f2704392dc518c9a0d1eeca0ba03a0b63d789 HTTP Headers GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fjay156.fanbox.cc HTTP/1.1 Host: platform.twitter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Encoding: gzip Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Age: 852308 Cache-Control: public, max-age=315360000 Content-Type: text/html; charset=utf-8 Date: Fri, 03 Feb 2023 18:28:23 GMT Etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip" Last-Modified: Tue, 24 Jan 2023 21:41:13 GMT P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT" Server: ECS (ska/F709) Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ Vary: Accept-Encoding X-Cache: HIT x-tw-cdn: VZ Content-Length: 105435

	s.pximg.net/common/images/fanbox/apple-touch-icon.png	210.140.92.147	200 OK	5.3 kB
URL HTTP/2 s.pximg.net/common/images/fanbox/apple-touch-icon.png IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data Size 5.3 kB (5331 bytes) Hash 31633168007b2cf4ee1ec01a58465909 d543102c4909cdfa1b9dcfa7d8072ad2acb79c00 5f682b9d59cb8f4abdee11cd0203cf8aeeb05cd89b0bcb488bea0a3c413f8fb7 HTTP Headers `GET /common/images/fanbox/apple-touch-icon.png HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:23 GMT content-type: image/png content-length: 5331 last-modified: Thu, 27 Oct 2022 12:59:55 GMT x-content-type-options: nosniff access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer expires: Mon, 27 Feb 2023 05:01:33 GMT cache-control: max-age=2592000 accept-ranges: bytes X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	314 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 314 B (314 bytes) Hash da07b1a085424a7beb3ae06a06294635 4c306ca81691c642b738b2da469b6894ba7da09c 82871724d2a7d2ed7acf571f8e54d0a5ce80c7eb2f91b5197b3b0d3938012a17 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2781 Cache-Control: max-age=151958 Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:23 GMT Etag: "63dcf600-13a" Expires: Sun, 05 Feb 2023 12:41:01 GMT Last-Modified: Fri, 03 Feb 2023 11:54:40 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 314`

	ocsp.digicert.com/	93.184.220.29	200 OK	314 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 314 B (314 bytes) Hash 2fdd4a71f94f887227623bed4f75dcc6 ef9e6c5749f2702c61580fa3e038a16a8bfca94f 7c7d42a969377c086baef4a6f4f6792c7b4dd3c09714876f17fbb39cf6ca8c5e HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4548 Cache-Control: max-age=129234 Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:23 GMT Etag: "63dc9655-13a" Expires: Sun, 05 Feb 2023 06:22:17 GMT Last-Modified: Fri, 03 Feb 2023 05:06:29 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 314`

	s.pximg.net/www/js/fanbox/268.7cef55d5dc8deef37837.js	210.140.92.147	200 OK	21 kB
URL HTTP/2 s.pximg.net/www/js/fanbox/268.7cef55d5dc8deef37837.js IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type Unicode text, UTF-8 text, with very long lines (60774), with no line terminators Size 21 kB (21042 bytes) Hash 68007f633ba7ae5dc3964e63f949b4b1 ec9628cdc3a35b50b3c2b869bf66ee62ccea864c dab6197dd2d8ccff759de1986ec2ac0e908d9377428e7d4bf93e44bd9a63a089 HTTP Headers `GET /www/js/fanbox/268.7cef55d5dc8deef37837.js HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://jay156.fanbox.cc Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:23 GMT content-type: application/javascript content-length: 21042 vary: Accept-Encoding last-modified: Wed, 25 Jan 2023 03:07:44 GMT content-encoding: gzip x-content-type-options: nosniff access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer expires: Fri, 24 Feb 2023 04:05:43 GMT cache-control: max-age=2592000 X-Firefox-Spdy: h2`

	t.co/i/adsct?bci=3&eci=2&event_id=08703585-16bd-4fc8-b2a2-5efcc03145dd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=3607740b-9978-4c34-a103-21de89fff9e1&tw_document_href=https%3A%2F%2Fjay156.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29	104.244.42.133	200 OK	43 B
URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=08703585-16bd-4fc8-b2a2-5efcc03145dd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=3607740b-9978-4c34-a103-21de89fff9e1&tw_document_href=https%3A%2F%2Fjay156.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29 IP 104.244.42.133:0 ASN #13414 TWITTER File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash 377d257f2d2e294916143c069141c1c5 b7cae69682cf31dd670b65088db8395acda6ed3e ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957 HTTP Headers GET /i/adsct?bci=3&eci=2&event_id=08703585-16bd-4fc8-b2a2-5efcc03145dd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=3607740b-9978-4c34-a103-21de89fff9e1&tw_document_href=https%3A%2F%2Fjay156.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29 HTTP/1.1 Host: t.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK date: Fri, 03 Feb 2023 18:28:23 GMT perf: 7626143928 server: tsa_o set-cookie: muc_ads=2300045f-6056-4b19-b4bf-59dc26e88cb6; Max-Age=63072000; Expires=Sun, 02 Feb 2025 18:28:23 GMT; Path=/; Domain=t.co; Secure; SameSite=None content-type: image/gif;charset=utf-8 cache-control: no-cache, no-store, max-age=0 content-length: 43 x-transaction-id: c7bb6813a29e6a04 strict-transport-security: max-age=0 x-response-time: 106 x-connection-hash: 0a63c1becf475ca4e37e13d8e16073e05bcf4c91cc70b3fecbb2655c9666d8be X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 2bef39ac599211fe23ad884ceacf1c9b c19b32a600412658c49a3e55d5d8353a5101c31d 0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:23 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 2bef39ac599211fe23ad884ceacf1c9b c19b32a600412658c49a3e55d5d8353a5101c31d 0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:23 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	syndication.twitter.com/settings?session_id=5b01e6a088e4215fdc4e116940988a7b6307892f	104.244.42.8	200 OK	326 B
URL HTTP/2 syndication.twitter.com/settings?session_id=5b01e6a088e4215fdc4e116940988a7b6307892f IP 104.244.42.8:0 ASN #13414 TWITTER File type JSON data\012- , ASCII text, with very long lines (919), with no line terminators Size 326 B (326 bytes) Hash 11f6a2d6bb52340b52d53f9cf72973e8 ea0c3e5d850a2659b3344d84957b691a6f7942b8 a0b2545f4adeaf91f7a23b95f43c682557bdfd1e59d2cf394d10a01f97c886ff HTTP Headers `GET /settings?session_id=5b01e6a088e4215fdc4e116940988a7b6307892f HTTP/1.1 Host: syndication.twitter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://platform.twitter.com/ Origin: https://platform.twitter.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 200 OK date: Fri, 03 Feb 2023 18:28:23 GMT perf: 7626143928 vary: Origin server: tsa_o content-type: application/json; charset=utf-8 cache-control: must-revalidate, max-age=600 last-modified: Fri, 03 Feb 2023 18:28:23 GMT content-length: 326 content-encoding: gzip x-transaction-id: 845094fb66848b6e strict-transport-security: max-age=631138519 access-control-allow-origin: https://platform.twitter.com access-control-allow-credentials: true x-response-time: 111 x-connection-hash: 562a25f0b2a27fd2ae635cfce17dfa853c74cb9451af7d46269dbd952561dfef X-Firefox-Spdy: h2

	www.google.no/pagead/1p-conversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0	142.250.74.67	200 OK	63 B
URL HTTP/2 www.google.no/pagead/1p-conversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 IP 142.250.74.67:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 63 B (63 bytes) Hash 0339f8f57d1bf75003db591e28957e45 ae2286e497c9f76a02cb40c40a674b73bd293b76 609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26 HTTP Headers GET /pagead/1p-conversion/647763926/?random=1675448931680&cv=11&fst=1675448931680&bg=ffffff&guid=ON&async=1&gtm=45He3210&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=730870607.1675448932&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://jay156.fanbox.cc/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 03 Feb 2023 18:28:23 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: text/javascript; charset=UTF-8 content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: gzip server: cafe content-length: 63 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.no/pagead/1p-user-list/647763926/?random=1675448933031&cv=11&fst=1675447200000&bg=ffffff&guid=ON&async=1&gtm=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3003134306&rmt_tld=1&ipr=y	142.250.74.67	200 OK	42 B
URL HTTP/2 www.google.no/pagead/1p-user-list/647763926/?random=1675448933031&cv=11&fst=1675447200000&bg=ffffff&guid=ON&async=1&gtm=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3003134306&rmt_tld=1&ipr=y IP 142.250.74.67:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /pagead/1p-user-list/647763926/?random=1675448933031&cv=11&fst=1675447200000&bg=ffffff&guid=ON&async=1&gtm=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fjay156.fanbox.cc%2F&tiba=jay156%EF%BD%9CpixivFANBOX&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3003134306&rmt_tld=1&ipr=y HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 03 Feb 2023 18:28:23 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash d748dcaaec947b38996a2f987e98b2b9 7e018ab7e9f0c73d53379d1698a06177b0643687 2ef4873c62fe3cfbc33e7a8f0ab428ab78676b1d01c2aee8bc16d50fafe756d6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6223 Cache-Control: max-age=110033 Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:23 GMT Etag: "63dc44c9-139" Expires: Sun, 05 Feb 2023 01:02:16 GMT Last-Modified: Thu, 02 Feb 2023 23:18:33 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 313`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 2bef39ac599211fe23ad884ceacf1c9b c19b32a600412658c49a3e55d5d8353a5101c31d 0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 18:28:23 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	s.pximg.net/common/images/fanbox/favicon.ico	210.140.92.147	200 OK	15 kB
URL HTTP/2 s.pximg.net/common/images/fanbox/favicon.ico IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Size 15 kB (15086 bytes) Hash 339de3a9888134e04782a73a260c12df b2292d74f3f2cf42357a27976ddb3ac7eae9ea1a 9a48eeff66ada0f1cc093fb6e938a7567df571a03f4ac9fb21ee844db452b4e9 HTTP Headers `GET /common/images/fanbox/favicon.ico HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:23 GMT content-type: image/x-icon content-length: 15086 last-modified: Thu, 27 Oct 2022 12:59:55 GMT x-content-type-options: nosniff expires: Mon, 27 Feb 2023 05:01:09 GMT cache-control: max-age=2592000 access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer accept-ranges: bytes X-Firefox-Spdy: h2`

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-1830249-145&cid=17936804.1675448935&jid=1758473853&gjid=803665869&_gid=525883270.1675448935&_u=YEDAAUAAAAAAACAAI~&z=146027848	173.194.222.157	200 OK	1 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-1830249-145&cid=17936804.1675448935&jid=1758473853&gjid=803665869&_gid=525883270.1675448935&_u=YEDAAUAAAAAAACAAI~&z=146027848 IP 173.194.222.157:0 ASN #15169 GOOGLE File type very short file (no magic) Size 1 B (1 bytes) Hash c4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-1830249-145&cid=17936804.1675448935&jid=1758473853&gjid=803665869&_gid=525883270.1675448935&_u=YEDAAUAAAAAAACAAI~&z=146027848 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://jay156.fanbox.cc Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://jay156.fanbox.cc strict-transport-security: max-age=10886400; includeSubDomains; preload date: Fri, 03 Feb 2023 18:28:23 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 1 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=08703585-16bd-4fc8-b2a2-5efcc03145dd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=3607740b-9978-4c34-a103-21de89fff9e1&tw_document_href=https%3A%2F%2Fjay156.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29	104.244.42.195	200 OK	43 B
URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=08703585-16bd-4fc8-b2a2-5efcc03145dd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=3607740b-9978-4c34-a103-21de89fff9e1&tw_document_href=https%3A%2F%2Fjay156.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29 IP 104.244.42.195:0 ASN #13414 TWITTER File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash 377d257f2d2e294916143c069141c1c5 b7cae69682cf31dd670b65088db8395acda6ed3e ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957 HTTP Headers GET /i/adsct?bci=3&eci=2&event_id=08703585-16bd-4fc8-b2a2-5efcc03145dd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=3607740b-9978-4c34-a103-21de89fff9e1&tw_document_href=https%3A%2F%2Fjay156.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29 HTTP/1.1 Host: analytics.twitter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK date: Fri, 03 Feb 2023 18:28:22 GMT perf: 7626143928 server: tsa_o set-cookie: personalization_id="v1_0fKhTJsbhm9/hcmf/ASmVA=="; Max-Age=63072000; Expires=Sun, 02 Feb 2025 18:28:23 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None content-type: image/gif;charset=utf-8 cache-control: no-cache, no-store, max-age=0 content-length: 43 x-transaction-id: 7cad5cb9ad4a4ea6 strict-transport-security: max-age=631138519 x-response-time: 106 x-connection-hash: 0b4e3a9aeaf1dc79850996833cc8fbf83e7ff4361c2117b0e90af56670f4550d X-Firefox-Spdy: h2

	s.pximg.net/www/js/fanbox/8068a01f50b06fc3cde7c98141bfa428.svg	210.140.92.147	200 OK	920 B
URL HTTP/2 s.pximg.net/www/js/fanbox/8068a01f50b06fc3cde7c98141bfa428.svg IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1871), with no line terminators Size 920 B (920 bytes) Hash bebb5fe78eb6eda6cdb3cc77ed7abfa8 1adec204d442b70beb227be5594a37e0731c95ce 7b30df696f1149965b366143a79fdc89027f83119258298cc7fa7f1f9e5b9423 HTTP Headers `GET /www/js/fanbox/8068a01f50b06fc3cde7c98141bfa428.svg HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:23 GMT content-type: image/svg+xml content-length: 920 vary: Accept-Encoding last-modified: Fri, 20 Jan 2023 07:04:59 GMT content-encoding: gzip x-content-type-options: nosniff access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer expires: Mon, 20 Feb 2023 04:55:44 GMT cache-control: max-age=2592000 X-Firefox-Spdy: h2`

	s.pximg.net/www/js/fanbox/67832a214aece5a8ecd4840472621dd1.svg	210.140.92.147	200 OK	546 B
URL HTTP/2 s.pximg.net/www/js/fanbox/67832a214aece5a8ecd4840472621dd1.svg IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (546), with no line terminators Size 546 B (546 bytes) Hash 90248bc2cb8989a3d875f5a49128c1d8 3d9407ca34834755a2c42a7981f32ea5afdba64c 616133357c2a0b6b51b97a89b44cc014dd451c773eb2681e42504fb658f2470d HTTP Headers `GET /www/js/fanbox/67832a214aece5a8ecd4840472621dd1.svg HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:23 GMT content-type: image/svg+xml content-length: 546 last-modified: Thu, 27 Oct 2022 13:00:03 GMT x-content-type-options: nosniff access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer expires: Mon, 20 Feb 2023 04:56:30 GMT cache-control: max-age=2592000 accept-ranges: bytes X-Firefox-Spdy: h2`

	s.pximg.net/www/js/fanbox/796dbd534e204ca1bb71db31cef97e03.svg	210.140.92.147	200 OK	273 B
URL HTTP/2 s.pximg.net/www/js/fanbox/796dbd534e204ca1bb71db31cef97e03.svg IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators Size 273 B (273 bytes) Hash 9c794c9dfa73306e305247a031bbf169 a692d8384c81216d51791914739bab4cab8b3963 c4993ab2bc0264a59d93383e88f7377373e3625409c9c7aab55abd9dc4e5e1b6 HTTP Headers `GET /www/js/fanbox/796dbd534e204ca1bb71db31cef97e03.svg HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:23 GMT content-type: image/svg+xml content-length: 273 last-modified: Thu, 27 Oct 2022 13:00:03 GMT x-content-type-options: nosniff access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer expires: Mon, 20 Feb 2023 04:56:30 GMT cache-control: max-age=2592000 accept-ranges: bytes X-Firefox-Spdy: h2`

	api.fanbox.cc/tag.getFeatured?creatorId=jay156	210.140.92.192	200 OK	11 B
URL HTTP/2 api.fanbox.cc/tag.getFeatured?creatorId=jay156 IP 210.140.92.192:0 ASN #4694 IDC Frontier Inc. File type JSON data\012- , ASCII text, with no line terminators Size 11 B (11 bytes) Hash 9d21473ecc9cc8dd523caa9176152377 47c67f321682d15c66862638edf1867d9ebd4253 ca26c5077e36ec2e5c48973e9f5c7f8cc06064587780560a8e56046a9a76d566 HTTP Headers GET /tag.getFeatured?creatorId=jay156 HTTP/1.1 Host: api.fanbox.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://jay156.fanbox.cc Connection: keep-alive Referer: https://jay156.fanbox.cc/ Cookie: FANBOXSESSID=t1gqv903tmbr4mokqpaf3c33106v8u7k; p_ab_id=8; p_ab_id_2=5; p_ab_d_id=183507121; _gcl_au=1.1.730870607.1675448932; _ga=GA1.2.17936804.1675448935; _gid=GA1.2.525883270.1675448935; _gat_UA-1830249-145=1 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:23 GMT content-type: application/json; charset=utf-8 content-length: 11 x-host-time: 073 content-security-policy: frame-ancestors 'self' https://*.fanbox.cc vary: Origin access-control-allow-origin: https://jay156.fanbox.cc access-control-allow-headers: Content-Type, X-CSRF-Token access-control-allow-credentials: true expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache x-content-type-options: nosniff x-frame-options: SAMEORIGIN X-Firefox-Spdy: h2

	api.fanbox.cc/plan.listCreator?creatorId=jay156	210.140.92.192	200 OK	957 B
URL HTTP/2 api.fanbox.cc/plan.listCreator?creatorId=jay156 IP 210.140.92.192:0 ASN #4694 IDC Frontier Inc. File type JSON data\012- , ASCII text, with very long lines (2897), with no line terminators Size 957 B (957 bytes) Hash 2a3cb00d67ec12f03261949f0ef5ff7a c0aa5bda0aa00c7b1fd055b180e62388f9c704f5 f94d0de3b9de1d8cf6def0372401febdbc8448c71a0f186c8258f390fcc4a0a5 HTTP Headers GET /plan.listCreator?creatorId=jay156 HTTP/1.1 Host: api.fanbox.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://jay156.fanbox.cc Connection: keep-alive Referer: https://jay156.fanbox.cc/ Cookie: FANBOXSESSID=t1gqv903tmbr4mokqpaf3c33106v8u7k; p_ab_id=8; p_ab_id_2=5; p_ab_d_id=183507121; _gcl_au=1.1.730870607.1675448932; _ga=GA1.2.17936804.1675448935; _gid=GA1.2.525883270.1675448935; _gat_UA-1830249-145=1 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:23 GMT content-type: application/json; charset=utf-8 content-length: 957 x-host-time: 015 content-security-policy: frame-ancestors 'self' https://*.fanbox.cc vary: Origin,Accept-Encoding access-control-allow-origin: https://jay156.fanbox.cc access-control-allow-headers: Content-Type, X-CSRF-Token access-control-allow-credentials: true expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache x-content-type-options: nosniff content-encoding: gzip x-frame-options: SAMEORIGIN X-Firefox-Spdy: h2

	api.fanbox.cc/creator.get?creatorId=jay156	210.140.92.192	200 OK	864 B
URL HTTP/2 api.fanbox.cc/creator.get?creatorId=jay156 IP 210.140.92.192:0 ASN #4694 IDC Frontier Inc. File type JSON data\012- , ASCII text, with very long lines (2731), with no line terminators Size 864 B (864 bytes) Hash 84499229655b7d2994b47cc9dc20b696 5dc3135fa955339f17ecfd1a5aa7936189dd6092 8c4c91da5c7e38704e9d985c2bf725671b892f30a0ae0ab84d5473144216c8c5 HTTP Headers GET /creator.get?creatorId=jay156 HTTP/1.1 Host: api.fanbox.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://jay156.fanbox.cc Connection: keep-alive Referer: https://jay156.fanbox.cc/ Cookie: FANBOXSESSID=t1gqv903tmbr4mokqpaf3c33106v8u7k; p_ab_id=8; p_ab_id_2=5; p_ab_d_id=183507121; _gcl_au=1.1.730870607.1675448932; _ga=GA1.2.17936804.1675448935; _gid=GA1.2.525883270.1675448935; _gat_UA-1830249-145=1 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:23 GMT content-type: application/json; charset=utf-8 content-length: 864 x-host-time: 076 content-security-policy: frame-ancestors 'self' https://*.fanbox.cc vary: Origin,Accept-Encoding access-control-allow-origin: https://jay156.fanbox.cc access-control-allow-headers: Content-Type, X-CSRF-Token access-control-allow-credentials: true expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache x-content-type-options: nosniff content-encoding: gzip x-frame-options: SAMEORIGIN X-Firefox-Spdy: h2

	s.pximg.net/www/js/fanbox/d02bfe15a260a7815a7d3ad9588dbba2.svg	210.140.92.147	200 OK	204 B
URL HTTP/2 s.pximg.net/www/js/fanbox/d02bfe15a260a7815a7d3ad9588dbba2.svg IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators Size 204 B (204 bytes) Hash 9d621af3d7102c1a9f7166a582e69f6c 730512ed1046bf394ab8468262e6122186151b8d cb361bb5ef0600617dbccefed4363ec6a58728798722228cb96c844ab6cef57e HTTP Headers `GET /www/js/fanbox/d02bfe15a260a7815a7d3ad9588dbba2.svg HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:24 GMT content-type: image/svg+xml content-length: 204 last-modified: Thu, 27 Oct 2022 13:00:03 GMT x-content-type-options: nosniff access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer expires: Mon, 20 Feb 2023 04:56:31 GMT cache-control: max-age=2592000 accept-ranges: bytes X-Firefox-Spdy: h2`

	api.fanbox.cc/post.listCreator?creatorId=jay156&limit=5	210.140.92.192	200 OK	859 B
URL HTTP/2 api.fanbox.cc/post.listCreator?creatorId=jay156&limit=5 IP 210.140.92.192:0 ASN #4694 IDC Frontier Inc. File type JSON data\012- , ASCII text, with very long lines (3504), with no line terminators Size 859 B (859 bytes) Hash 77c7e7c5e5cee5031f5d11f751ffd5e0 2c87c53d9bfa0ccd23f96b2ddff687c2c00a49fa 51a5e588d944bb09498e990672e9092be3088934c41404b07839f4bbe34bc574 HTTP Headers GET /post.listCreator?creatorId=jay156&limit=5 HTTP/1.1 Host: api.fanbox.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://jay156.fanbox.cc Connection: keep-alive Referer: https://jay156.fanbox.cc/ Cookie: FANBOXSESSID=t1gqv903tmbr4mokqpaf3c33106v8u7k; p_ab_id=8; p_ab_id_2=5; p_ab_d_id=183507121; _gcl_au=1.1.730870607.1675448932; _ga=GA1.2.17936804.1675448935; _gid=GA1.2.525883270.1675448935; _gat_UA-1830249-145=1; _gat_gtag_UA_1830249_145=1 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:24 GMT content-type: application/json; charset=utf-8 content-length: 859 x-host-time: 140 content-security-policy: frame-ancestors 'self' https://*.fanbox.cc vary: Origin,Accept-Encoding access-control-allow-origin: https://jay156.fanbox.cc access-control-allow-headers: Content-Type, X-CSRF-Token access-control-allow-credentials: true expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache x-content-type-options: nosniff content-encoding: gzip x-frame-options: SAMEORIGIN X-Firefox-Spdy: h2

	s.pximg.net/www/js/fanbox/509a489db064dd678770b65c11c9860e.gif	210.140.92.147	200 OK	0 B
URL HTTP/2 s.pximg.net/www/js/fanbox/509a489db064dd678770b65c11c9860e.gif IP 210.140.92.147:0 ASN #4694 IDC Frontier Inc. File type Size 0 B (0 bytes) Hash HTTP Headers `GET /www/js/fanbox/509a489db064dd678770b65c11c9860e.gif HTTP/1.1 Host: s.pximg.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jay156.fanbox.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 18:28:24 GMT content-type: image/gif content-length: 273166 last-modified: Thu, 27 Oct 2022 13:00:03 GMT x-content-type-options: nosniff expires: Mon, 20 Feb 2023 04:56:37 GMT cache-control: max-age=2592000 access-control-allow-origin: * access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer accept-ranges: bytes X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML