ocsp.sectigo.com/
472 B IP
Hash 64a0f4c094e3b99a944a63723a03d4cc
79f17a391f80c910c567574f95cff7768a6ade16
c21ba16c0dccce1dfb936086deaa9b8f415e769c0a0a009103ecc4875c120f1e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 22 May 2023 18:53:25 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 21 May 2023 10:59:58 GMT
Expires: Sun, 28 May 2023 10:59:57 GMT
Etag: "79f17a391f80c910c567574f95cff7768a6ade16"
Cache-Control: max-age=490269,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7cb7430b38c50b06-OSL
www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
200 OK 2.1 kB URL User Request GET HTTP/2 www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
IP
ASN #60781 LeaseWeb Netherlands B.V.
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash d5539163e7a73436947b1ef15f275bba
a46e728b1481edad2ec63bc55eb9914e6da0c9f6
cef180e2dc25a4a7a8256a2ebce9146091d4ef97d3fc5e578b63e67dbd2297f8
GET /?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:25 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; expires=Tue, 23-May-2023 02:53:25 GMT; Max-Age=28800; path=/; secure; SameSite=None
lang=en; expires=Tue, 21-May-2024 18:53:25 GMT; Max-Age=31536000; path=/; secure; SameSite=None
ref_id=135846; expires=Tue, 21-May-2024 18:53:25 GMT; Max-Age=31536000; path=/; secure; SameSite=None
tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; expires=Tue, 21-May-2024 18:53:25 GMT; Max-Age=31536000; path=/; secure; SameSite=None
tc2=11026; expires=Tue, 21-May-2024 18:53:25 GMT; Max-Age=31536000; path=/; secure; SameSite=None
tc3=284; expires=Tue, 21-May-2024 18:53:25 GMT; Max-Age=31536000; path=/; secure; SameSite=None
tc4=%7BPARAMETER%7D; expires=Tue, 21-May-2024 18:53:25 GMT; Max-Age=31536000; path=/; secure; SameSite=None
tc5=ClickAdu-Managed-David; expires=Tue, 21-May-2024 18:53:25 GMT; Max-Age=31536000; path=/; secure; SameSite=None
tc6=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure; SameSite=None
tc7=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure; SameSite=None
tc8=US; expires=Tue, 21-May-2024 18:53:25 GMT; Max-Age=31536000; path=/; secure; SameSite=None
age_verification=1; expires=Tue, 21-May-2024 18:53:25 GMT; Max-Age=31536000; path=/; secure; SameSite=None
HAPBK=web10|ZGu6K; path=/; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
content-length: 2140
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
www.hentaiheroes.com/js/screenfull.js?v=68441153
200 OK 935 B URL GET HTTP/2 www.hentaiheroes.com/js/screenfull.js?v=68441153
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (2863), with no line terminators
Hash 67dbfe9b672c902f618ccb6440d6e8c4
5ee56f41df8abdd06f7fb5a668b95e9cb8076209
6f575774986ea35312c5d750b761fd82298bbfd8664f810d43e499d8c9bdb266
GET /js/screenfull.js?v=68441153 HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; lang=en; ref_id=135846; tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; tc2=11026; tc3=284; tc4=%7BPARAMETER%7D; tc5=ClickAdu-Managed-David; tc8=US; age_verification=1; HAPBK=web10|ZGu6K
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
server: Apache
strict-transport-security: max-age=31536000
last-modified: Thu, 18 May 2023 12:05:30 GMT
etag: "b2f-5fbf69ef44f81-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 935
content-type: application/javascript
X-Firefox-Spdy: h2
www.hentaiheroes.com/css/chat.css?v=68441150
200 OK 16 kB URL GET HTTP/2 www.hentaiheroes.com/css/chat.css?v=68441150
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash e37bbbca361fb65f0f9385dc1963a99d
6b95bbfb7cc89ae3d963b55836c0579c69e4c8cd
1ae5954a0f377ca8737c6374c7caec6a426e0330a34e54b6c6ee478e492cf0a3
GET /css/chat.css?v=68441150 HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; lang=en; ref_id=135846; tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; tc2=11026; tc3=284; tc4=%7BPARAMETER%7D; tc5=ClickAdu-Managed-David; tc8=US; age_verification=1; HAPBK=web10|ZGu6K
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
server: Apache
strict-transport-security: max-age=31536000
last-modified: Thu, 18 May 2023 12:05:09 GMT
etag: "21a7b-5fbf69db21a6b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15729
content-type: text/css
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 8d1ffc63ece540992319c6f7637db168
b84a5580317750f11fea9fb0ca41710c88e66d38
905441c3ec5505f8196be1b4c4123cd1862bc6f03ce2bc5cf5fe37b21e07c907
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 18:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 8d1ffc63ece540992319c6f7637db168
b84a5580317750f11fea9fb0ca41710c88e66d38
905441c3ec5505f8196be1b4c4123cd1862bc6f03ce2bc5cf5fe37b21e07c907
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 18:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
200 OK 31 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
Requested by https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 14:31:15 GMT
expires: Sun, 19 May 2024 14:31:15 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 188531
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Carter+One|Kalam:700|Mr+Dafoe|Alegreya+Sans:700i|Marck+Script
200 OK 1.3 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Carter+One|Kalam:700|Mr+Dafoe|Alegreya+Sans:700i|Marck+Script
IP
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type gzip compressed data, max compression\012- data
Hash a7e288f0f313f95ecb284cbbf8a14794
55c5a03dc6e02edeaed71ea8b5d4a51dae481bc4
2eda4ea177cb3d5eb53229c06602e09dc385c7ef82bf4b4361db0e59e6d0e6e1
GET /css?family=Carter+One|Kalam:700|Mr+Dafoe|Alegreya+Sans:700i|Marck+Script HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 22 May 2023 18:53:26 GMT
date: Mon, 22 May 2023 18:53:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.hentaiheroes.com/js/chat.js?v=68441152
200 OK 113 kB URL GET HTTP/2 www.hentaiheroes.com/js/chat.js?v=68441152
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Size 113 kB (112564 bytes)
Hash 21e061a7a28c7935c13515563469f2ca
158c025c185ac9f4c14c1b6336572f9c5e658609
89c4aaf55c82fe7f7e0de1c461ec3168b6d5b62aedba27a73c5810efb84d208f
GET /js/chat.js?v=68441152 HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; lang=en; ref_id=135846; tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; tc2=11026; tc3=284; tc4=%7BPARAMETER%7D; tc5=ClickAdu-Managed-David; tc8=US; age_verification=1; HAPBK=web10|ZGu6K
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
server: Apache
strict-transport-security: max-age=31536000
last-modified: Thu, 18 May 2023 12:05:29 GMT
etag: "65cda-5fbf69ee5d859-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
X-Firefox-Spdy: h2
ocsp.sectigo.com/
471 B IP
Hash a128290350a435e06b695e9270c6d9ab
b18fa897550b34e602e965f97e4299200429e0ba
8fa21d96ef03f5318599ebea445802c9b0512ea44bc279fb60274238185c7c61
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 22 May 2023 18:53:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 22 May 2023 03:14:37 GMT
Expires: Mon, 29 May 2023 03:14:36 GMT
Etag: "b18fa897550b34e602e965f97e4299200429e0ba"
Cache-Control: max-age=549000,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7cb7430faec30b06-OSL
www.hentaiheroes.com/home.html
200 OK 3.9 kB URL GET HTTP/2 www.hentaiheroes.com/home.html
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1445)
Hash 88e4aeca831983a0116317d6014c9ebb
9846bcf8d6e250d639c51741e8e4f7f532d4855b
759d1a10180033610ebc2ee16cf3bfac17e716fa1174ed7ec55768288669402d
GET /home.html HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; lang=en; ref_id=135846; tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; tc2=11026; tc3=284; tc4=%7BPARAMETER%7D; tc5=ClickAdu-Managed-David; tc8=US; age_verification=1; HAPBK=web10|ZGu6K
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
content-length: 3931
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
hh2.hh-content.com/clubs/ic_xCross.png
200 OK 1.3 kB URL GET HTTP/2 hh2.hh-content.com/clubs/ic_xCross.png
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type PNG image data, 82 x 74, 8-bit colormap, non-interlaced\012- data
Hash 8ae89c096a2186b9ed393a2baa1e8886
53917bc9a063bc304440ec6ae17fb1c583c8f9c4
02c88820b0f0b1292dfc9a5ad88c8cbbfd7941a41ca69f00b769b41deb198be6
GET /clubs/ic_xCross.png HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/png
content-length: 1264
last-modified: Tue, 05 May 2020 14:59:59 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
accept-ranges: bytes
x-cdn-diag: ams5-6139-0-14317-h-0-0---;7619-24-2025----0-0-0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 8ab94d7259411fe8a216956474b19511
48c63eaff708604c5f7af9514c3e77109a1f3f73
1dfd960074784d17f2fab64fab44d8aa41c1a794a7000980b428f6ab6392439a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 18:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
200 OK 31 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
Requested by https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 14:31:15 GMT
expires: Sun, 19 May 2024 14:31:15 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 188531
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/carterone/v17/q5uCsoe5IOB2-pXv9UcNExN8hA.woff2
200 OK 28 kB URL GET HTTP/3 fonts.gstatic.com/s/carterone/v17/q5uCsoe5IOB2-pXv9UcNExN8hA.woff2
IP
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 27984, version 1.0\012- data
Hash 9c01ef3c4862a40bf29bd780e7e88da4
54db29d9cf8092d9c50d477c5d9d9e199c944453
dc6d951120092f271275422fbff657a219671695d03bdd251761e05ee9e86589
GET /s/carterone/v17/q5uCsoe5IOB2-pXv9UcNExN8hA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hentaiheroes.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 May 2023 04:16:06 GMT
expires: Thu, 16 May 2024 04:16:06 GMT
cache-control: public, max-age=31536000
age: 484640
last-modified: Thu, 21 Apr 2022 17:07:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jqueryui/1.10.3/jquery-ui.min.js
200 OK 60 kB URL GET HTTP/3 ajax.googleapis.com/ajax/libs/jqueryui/1.10.3/jquery-ui.min.js
IP
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (32389)
Hash fd255415839568e52a48da5de5af244c
abd6f85a04584792d77e4791c441ff49e9e28c0d
9671f8be70ad94a5362e60f4656d5d53ba214d32ab70a3f9d1603d7dadf9d1c1
GET /ajax/libs/jqueryui/1.10.3/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 60529
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 May 2023 11:49:41 GMT
expires: Fri, 17 May 2024 11:49:41 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 371025
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.hentaiheroes.com/js/quest.js?v=68441152
200 OK 7.8 kB URL GET HTTP/2 www.hentaiheroes.com/js/quest.js?v=68441152
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (32381), with no line terminators
Hash c34afa4f2af3e6f50155bc633afbc136
2f42cdb17e4ff345c3fafa2e51272ff2ec77d345
fd9a850cf524724e86e5067458b26c4ccd6626ffbe5adbabca9137207f773ce4
GET /js/quest.js?v=68441152 HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/home.html
Cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; lang=en; ref_id=135846; tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; tc2=11026; tc3=284; tc4=%7BPARAMETER%7D; tc5=ClickAdu-Managed-David; tc8=US; age_verification=1; HAPBK=web10|ZGu6K
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
server: Apache
strict-transport-security: max-age=31536000
last-modified: Thu, 18 May 2023 12:05:27 GMT
etag: "7e7d-5fbf69ec77308-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7848
content-type: application/javascript
X-Firefox-Spdy: h2
hh2.hh-content.com/design/ic_login.svg
200 OK 8.7 kB URL GET HTTP/2 hh2.hh-content.com/design/ic_login.svg
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5915a8ebac160e3953e4467dedec30b8
df20474ef16fc034e7c9bf27bb1bff222d106032
fec09101a2dbd6d4956c64c59f4898b448ec8dc884cbc01976ce6e6fa6eeb118
GET /design/ic_login.svg HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/svg+xml
content-length: 8722
last-modified: Tue, 05 May 2020 14:59:59 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
vary: Accept-Encoding
accept-ranges: bytes
x-cdn-diag: ams5-7619-0-51939-h-0-0---;7619-23-2025----0-0-0
X-Firefox-Spdy: h2
hh2.hh-content.com/design/ic_legal.svg
200 OK 2.3 kB URL GET HTTP/2 hh2.hh-content.com/design/ic_legal.svg
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e12db90b345490737b33530778cf44ee
e873e0209b1a08f5d87dd0534d6fd3311c9f766f
b8f586101e80adb692675c6b21adaad397a7ba1033d45d61d2f0189b78c6cb91
GET /design/ic_legal.svg HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/svg+xml
content-length: 2320
last-modified: Tue, 05 May 2020 14:59:59 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
vary: Accept-Encoding
accept-ranges: bytes
x-cdn-diag: ams5-6141-0-9685-h-0-0---;7619-23-2025----0-0-0
X-Firefox-Spdy: h2
hh2.hh-content.com/design/ic_join.svg
200 OK 1.4 kB URL GET HTTP/2 hh2.hh-content.com/design/ic_join.svg
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (401), with CRLF line terminators
Hash 8ba97dba6572f93deebde7fe83bd5b69
f4cda4f98492c210aa990cf6063e8a79590ae011
f5557fa48f8dcff13b38b1b5055d04768470bc01be5a1a0971fd9293042b1b79
GET /design/ic_join.svg HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/svg+xml
content-length: 1411
last-modified: Tue, 05 May 2020 14:59:59 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
vary: Accept-Encoding
accept-ranges: bytes
x-cdn-diag: ams5-6249-0-28457-h-0-0---;7619-23-2025----0-0-1
X-Firefox-Spdy: h2
hh2.hh-content.com/quest/ic_eyeclosed.svg
200 OK 1.4 kB URL GET HTTP/2 hh2.hh-content.com/quest/ic_eyeclosed.svg
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ee4ad4b4410fcc5898cab08a69780cd6
a8ed6e8ef5b181c240270cbcc7aa155405eb3003
1221af76045abbae2c6505da09d58cdee9ece408c45c084198f4b6646e60cb84
GET /quest/ic_eyeclosed.svg HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/svg+xml
content-length: 1424
last-modified: Fri, 27 Jul 2018 14:09:41 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
vary: Accept-Encoding
accept-ranges: bytes
x-cdn-diag: ams5-6140-0-12537-h-0-0---;7619-23-2025----0-0-1
X-Firefox-Spdy: h2
hh2.hh-content.com/quest/ic_eyeopen.svg
200 OK 1.1 kB URL GET HTTP/2 hh2.hh-content.com/quest/ic_eyeopen.svg
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d024138a612c10f6f1f53a59ee5e3dd2
eeaf38bfbcc7b8eb245647db978e61db286bcc30
54dc51810c4190a40a490c712bc60a7a2764e6213f8c1b7230836d83de5de996
GET /quest/ic_eyeopen.svg HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/svg+xml
content-length: 1142
last-modified: Tue, 05 May 2020 14:59:59 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
vary: Accept-Encoding
accept-ranges: bytes
x-cdn-diag: ams5-7846-0-32214-h-0-0---;7619-23-2025----0-0-0
X-Firefox-Spdy: h2
www.hentaiheroes.com/js/guest.js?v=68441151
200 OK 529 B URL GET HTTP/2 www.hentaiheroes.com/js/guest.js?v=68441151
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (1367), with no line terminators
Hash e0b082b77c7be4355a7049a6a7c5f353
d915737134d98b3a965cd5fa5cdaca6f65b5057c
9e09472f0d52ddb3a3d195366f5595855fd08ece7a60d3dfb5b38ea02363bfef
GET /js/guest.js?v=68441151 HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/home.html
Cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; lang=en; ref_id=135846; tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; tc2=11026; tc3=284; tc4=%7BPARAMETER%7D; tc5=ClickAdu-Managed-David; tc8=US; age_verification=1; HAPBK=web10|ZGu6K
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
server: Apache
strict-transport-security: max-age=31536000
last-modified: Thu, 18 May 2023 12:05:15 GMT
etag: "557-5fbf69e0b277e-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 529
content-type: application/javascript
X-Firefox-Spdy: h2
hh2.hh-content.com/pictures/design/mob_rotation.gif
200 OK 104 kB URL GET HTTP/2 hh2.hh-content.com/pictures/design/mob_rotation.gif
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type GIF image data, version 89a, 500 x 443\012- data
Size 104 kB (104376 bytes)
Hash 56deb21462c0875468e3d21f85bb61f9
97cb9c682beb7c0f9c7396d47472c9e263e0677a
f849636c8b1d9a0fb7fde5dde56795c2428291e5e76a53ce4c53974e6c32afa8
GET /pictures/design/mob_rotation.gif HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/gif
content-length: 104376
last-modified: Fri, 12 Mar 2021 15:25:52 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
accept-ranges: bytes
x-cdn-diag: ams5-6249-0-28457-h-0-0---;7619-23-2025----0-0-0
X-Firefox-Spdy: h2
hh2.hh-content.com/ic_loading_carrot.svg
200 OK 3.7 kB URL GET HTTP/2 hh2.hh-content.com/ic_loading_carrot.svg
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c7ea21734a64fecf0b2b8f54e582e036
2383ef4319d210f37b256cdd05a6e75de60091bc
bd50e89429493ff3043675f67cbbdeea7da18da0ef2a8e0de870eb39dac8dd25
GET /ic_loading_carrot.svg HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/svg+xml
content-length: 3743
last-modified: Tue, 05 May 2020 14:59:59 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
vary: Accept-Encoding
accept-ranges: bytes
x-cdn-diag: ams5-6140-0-12537-h-0-0---;7619-23-2025----0-0-0
X-Firefox-Spdy: h2
hh2.hh-content.com/pictures/design/ic_favicon_32px.png
200 OK 576 B URL GET HTTP/2 hh2.hh-content.com/pictures/design/ic_favicon_32px.png
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash f76e95aa42153a9047cd4b8bcca0be00
f67a235e807ec1d016d394d9d3790a95846e89fd
cd37f4f58b91e31ceb237b9470026a39bb96cf967b5886698bb2e38e65bf34e2
GET /pictures/design/ic_favicon_32px.png HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/png
content-length: 576
last-modified: Mon, 18 Jun 2018 08:55:04 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
accept-ranges: bytes
x-cdn-diag: ams5-6141-0-9685-h-0-0---;7619-28-2025----0-0-0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 8ab94d7259411fe8a216956474b19511
48c63eaff708604c5f7af9514c3e77109a1f3f73
1dfd960074784d17f2fab64fab44d8aa41c1a794a7000980b428f6ab6392439a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 18:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/carterone/v17/q5uCsoe5IOB2-pXv9UcNExN8hA.woff2
200 OK 28 kB URL GET HTTP/3 fonts.gstatic.com/s/carterone/v17/q5uCsoe5IOB2-pXv9UcNExN8hA.woff2
IP
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 27984, version 1.0\012- data
Hash 9c01ef3c4862a40bf29bd780e7e88da4
54db29d9cf8092d9c50d477c5d9d9e199c944453
dc6d951120092f271275422fbff657a219671695d03bdd251761e05ee9e86589
GET /s/carterone/v17/q5uCsoe5IOB2-pXv9UcNExN8hA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hentaiheroes.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 May 2023 04:16:06 GMT
expires: Thu, 16 May 2024 04:16:06 GMT
cache-control: public, max-age=31536000
age: 484640
last-modified: Thu, 21 Apr 2022 17:07:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hh2.hh-content.com/design/ic_fullscreen.svg
200 OK 9.1 kB URL GET HTTP/2 hh2.hh-content.com/design/ic_fullscreen.svg
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0831c44a1a21d67c02ef25bc69e5b889
b160e53081718dfbde5d57fc71d3d09e7d263eac
ceb0ca832f16fdb1647cbf5d34d6c095dd6ad6b8b842dc2cf7317f15dcbe2f76
GET /design/ic_fullscreen.svg HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/svg+xml
content-length: 9108
last-modified: Tue, 05 May 2020 14:59:59 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
vary: Accept-Encoding
accept-ranges: bytes
x-cdn-diag: ams5-7619-0-51935-h-0-0---;7619-33-2025----0-0-1
X-Firefox-Spdy: h2
www.hentaiheroes.com/phoenix-tr_labels-en-1487.js
200 OK 19 kB URL GET HTTP/2 www.hentaiheroes.com/phoenix-tr_labels-en-1487.js
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File type gzip compressed data, max compression, from Unix\012- data
Hash b421b1d008c26e77b61cd0ee689427cb
abb45c15d94875d9c8b75a403db4cab2cd7eb686
cc6d947caafe7e5aa16d31054943cc27c90df1a89d68fde59381f7dc34daf645
GET /phoenix-tr_labels-en-1487.js HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/home.html
Cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; lang=en; ref_id=135846; tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; tc2=11026; tc3=284; tc4=%7BPARAMETER%7D; tc5=ClickAdu-Managed-David; tc8=US; age_verification=1; HAPBK=web10|ZGu6K
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
server: Apache
content-encoding: gzip
cache-control: private, max-age=604800, pre-check=604800
pragma: private
expires: Thu, 08 Jan 70 01:00:00 +0100
strict-transport-security: max-age=31536000
content-type: application/javascript; charset=utf-8;
X-Firefox-Spdy: h2
hh2.hh-content.com/design/quest_fullscreen/quest_exit_fullscreen.png
200 OK 500 B URL GET HTTP/2 hh2.hh-content.com/design/quest_fullscreen/quest_exit_fullscreen.png
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 0be950aa354017dc58d2523c5d7bb687
d0fc1a220cdc3975fa92ac6f5f7b118048c54902
10bc9639649542c420fdec036e7aceedb3b16a0081c33fc97125c07b90f2b6b8
GET /design/quest_fullscreen/quest_exit_fullscreen.png HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/png
content-length: 500
last-modified: Fri, 23 Sep 2022 06:45:28 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
accept-ranges: bytes
x-cdn-diag: ams5-7619-0-51935-h-0-0---;7619-33-2025----0-0-1
X-Firefox-Spdy: h2
fonts.gstatic.com/s/kalam/v16/YA9Qr0Wd4kDdMtDqHTLMkiQ.woff2
200 OK 22 kB URL GET HTTP/3 fonts.gstatic.com/s/kalam/v16/YA9Qr0Wd4kDdMtDqHTLMkiQ.woff2
IP
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 22144, version 1.0\012- data
Hash f3ad3b3081bb38a18628d88ddf39b8b6
befa33190a885871d06ebf259dc12d0d325fd74c
252063af6ade8b9a744cde4ddad0fc21ea53b8ba711eed121a0c2e8610ea9c93
GET /s/kalam/v16/YA9Qr0Wd4kDdMtDqHTLMkiQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hentaiheroes.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 18:00:01 GMT
expires: Sun, 19 May 2024 18:00:01 GMT
cache-control: public, max-age=31536000
age: 176006
last-modified: Tue, 26 Apr 2022 15:48:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
hh2.hh-content.com/pictures/design/form/ic_XP.png
200 OK 4.4 kB URL GET HTTP/2 hh2.hh-content.com/pictures/design/form/ic_XP.png
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 5a8d57bde80c34a9a0f49ae67eeba882
e7112c1c1ba4b0013ae4089568ba14390a304bbf
645ef1f9c9ef97db46d9ff931b84312e6853df6c6a5e5406677b370d391aa8ad
GET /pictures/design/form/ic_XP.png HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:27 GMT
content-type: image/png
content-length: 4352
last-modified: Tue, 29 May 2018 11:40:00 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
accept-ranges: bytes
x-cdn-diag: ams5-7619-0-51935-h-0-0---;7619-33-2025----0-0-0
X-Firefox-Spdy: h2
hh2.hh-content.com/pictures/design/ic_soft_currency.png
200 OK 4.8 kB URL GET HTTP/2 hh2.hh-content.com/pictures/design/ic_soft_currency.png
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 628032e842e346860ba4132a5b66fe93
d441605bb3c43621520525758d75b9c9bc99831a
1fbde569f6ce61dc1302f088318f2d1acdc24b85475e998bda540fc131c4f04a
GET /pictures/design/ic_soft_currency.png HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:27 GMT
content-type: image/png
content-length: 4783
last-modified: Wed, 13 Mar 2019 16:03:42 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
accept-ranges: bytes
x-cdn-diag: ams5-7619-0-51935-h-0-0---;7619-33-2025----0-0-0
X-Firefox-Spdy: h2
hh2.hh-content.com/pictures/audio/bg_music_2.ogg
206 Partial Content 31 kB URL GET HTTP/2 hh2.hh-content.com/pictures/audio/bg_music_2.ogg
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
Hash 9f239050435104f4eb479ed551bc572e
6fb1f2be5cc8d1c7a37ad1817dc93352032aba7e
254539f96da4f49640a68355510591e55b42825ae910fe5b8f58961f93b7a416
GET /pictures/audio/bg_music_2.ogg HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=1802240-
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Mon, 22 May 2023 18:53:27 GMT
content-type: audio/ogg
content-length: 31368
last-modified: Mon, 22 Feb 2021 09:58:57 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
content-range: bytes 1802240-1833607/1833608
x-cdn-diag: ams5-7846-0-32212-h-0-0---;7619-24-2025----0-0-0
X-Firefox-Spdy: h2
www.hentaiheroes.com/ajax.php
200 OK 16 B URL POST HTTP/2 www.hentaiheroes.com/ajax.php
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /ajax.php HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 60
Origin: https://www.hentaiheroes.com
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/home.html
Cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; lang=en; ref_id=135846; tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; tc2=11026; tc3=284; tc4=%7BPARAMETER%7D; tc5=ClickAdu-Managed-David; tc8=US; age_verification=1; HAPBK=web10|ZGu6K
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:27 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=31536000
content-length: 16
content-type: application/json; charset=utf-8
X-Firefox-Spdy: h2
eggs-content.kinkoid.com/authentication/hide.svg
200 OK 748 B URL GET HTTP/2 eggs-content.kinkoid.com/authentication/hide.svg
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerLet's Encrypt
Subjecteggs-ext.kinkoid.com
FingerprintB2:A9:93:84:FC:92:01:10:9A:49:92:09:5A:62:2E:0E:C3:2A:58:F3
ValidityTue, 02 May 2023 09:41:31 GMT - Mon, 31 Jul 2023 09:41:30 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (748), with no line terminators
Hash cad59edc70e2ae6387ab04e4f961528f
c7bb66aa521e859f4d8a35b6b8da847862e24413
51bdb6a686feff9b34838a4e975c4ed30fb665543036b1f8adc6036be0764192
GET /authentication/hide.svg HTTP/1.1
Host: eggs-content.kinkoid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eggs-ext.kinkoid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 22 May 2023 18:53:27 GMT
content-type: image/svg+xml
content-length: 748
last-modified: Tue, 14 Jul 2020 06:31:25 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
eggs-content.kinkoid.com/authentication/show.svg
200 OK 510 B URL GET HTTP/2 eggs-content.kinkoid.com/authentication/show.svg
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerLet's Encrypt
Subjecteggs-ext.kinkoid.com
FingerprintB2:A9:93:84:FC:92:01:10:9A:49:92:09:5A:62:2E:0E:C3:2A:58:F3
ValidityTue, 02 May 2023 09:41:31 GMT - Mon, 31 Jul 2023 09:41:30 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (510), with no line terminators
Hash aae407daa4dba9e5d6b2ddf37a0f1b41
fa37c7736d6c33b9e62349cc65d0252bc715cb47
84bc80996a1db1c515d60d9fb037042d6220adc9b5be3bf279b06013fc9d6aa2
GET /authentication/show.svg HTTP/1.1
Host: eggs-content.kinkoid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eggs-ext.kinkoid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 22 May 2023 18:53:27 GMT
content-type: image/svg+xml
content-length: 510
last-modified: Tue, 14 Jul 2020 06:31:15 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.hentaiheroes.com/js/default.js?v=68441152
200 OK 578 kB URL GET HTTP/2 www.hentaiheroes.com/js/default.js?v=68441152
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Size 578 kB (578255 bytes)
Hash 37f2e6ac34892f994932e179e1c2f563
a65e5c711621e6ef2cbaf398c226ccdf07db9e73
8d765421caedea32da2d5aa5b60c2711d4ebee70839f9fce35ae48d64e757cb8
GET /js/default.js?v=68441152 HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/home.html
Cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; lang=en; ref_id=135846; tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; tc2=11026; tc3=284; tc4=%7BPARAMETER%7D; tc5=ClickAdu-Managed-David; tc8=US; age_verification=1; HAPBK=web10|ZGu6K
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
server: Apache
strict-transport-security: max-age=31536000
last-modified: Thu, 18 May 2023 12:05:26 GMT
etag: "1dae01-5fbf69eaee9ba-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
X-Firefox-Spdy: h2
use.typekit.net/lfu1uah.css
200 OK 827 B URL GET HTTP/2 use.typekit.net/lfu1uah.css
IP
ASN #20940 Akamai International B.V.
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint5F:2F:EB:47:33:08:97:87:7F:73:06:D1:9A:4B:F5:06:57:11:08:2B
ValidityWed, 14 Sep 2022 00:00:00 GMT - Sun, 15 Oct 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (516)
Hash f700a1644aef73807d614f32f9e1bdff
28241c9890d20c3b05d67911313b52aa032c03b1
da30a55d45a205bc8cf0a7a74b44cf1910cbd426ffdaab739e20d42fa9cec4fc
GET /lfu1uah.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eggs-ext.kinkoid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 827
date: Mon, 22 May 2023 18:53:27 GMT
X-Firefox-Spdy: h2
eggs-content.kinkoid.com/authentication/hentai/forgotten_password.png
200 OK 223 kB URL GET HTTP/2 eggs-content.kinkoid.com/authentication/hentai/forgotten_password.png
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerLet's Encrypt
Subjecteggs-ext.kinkoid.com
FingerprintB2:A9:93:84:FC:92:01:10:9A:49:92:09:5A:62:2E:0E:C3:2A:58:F3
ValidityTue, 02 May 2023 09:41:31 GMT - Mon, 31 Jul 2023 09:41:30 GMT
File type PNG image data, 1200 x 3000, 8-bit colormap, non-interlaced\012- data
Size 223 kB (222857 bytes)
Hash 8ca851d27cfc171809a2df1bcda0d298
4195c1ea0fe0be41c6611f7ac2d3ad04d0c0496f
cb7c3470a20fb0ca125356f550da9f2404aabcba21b595be4b0a147ff8dc542e
GET /authentication/hentai/forgotten_password.png HTTP/1.1
Host: eggs-content.kinkoid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eggs-ext.kinkoid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 22 May 2023 18:53:27 GMT
content-type: image/png
content-length: 222857
last-modified: Tue, 14 Jul 2020 04:40:20 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=lfu1uah&ht=tk&f=34212.34213.34214.34215.34216.34217&a=13331608&app=typekit&e=css
200 OK 5 B URL GET HTTP/2 p.typekit.net/p.css?s=1&k=lfu1uah&ht=tk&f=34212.34213.34214.34215.34216.34217&a=13331608&app=typekit&e=css
IP
ASN #20940 Akamai International B.V.
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint5F:2F:EB:47:33:08:97:87:7F:73:06:D1:9A:4B:F5:06:57:11:08:2B
ValidityWed, 14 Sep 2022 00:00:00 GMT - Sun, 15 Oct 2023 23:59:59 GMT
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=lfu1uah&ht=tk&f=34212.34213.34214.34215.34216.34217&a=13331608&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Mon, 22 May 2023 18:53:27 GMT
X-Firefox-Spdy: h2
eggs-content.kinkoid.com/authentication/hentai/authenticate.png
200 OK 376 kB URL GET HTTP/2 eggs-content.kinkoid.com/authentication/hentai/authenticate.png
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerLet's Encrypt
Subjecteggs-ext.kinkoid.com
FingerprintB2:A9:93:84:FC:92:01:10:9A:49:92:09:5A:62:2E:0E:C3:2A:58:F3
ValidityTue, 02 May 2023 09:41:31 GMT - Mon, 31 Jul 2023 09:41:30 GMT
File type PNG image data, 1200 x 3000, 8-bit colormap, non-interlaced\012- data
Size 376 kB (375725 bytes)
Hash aab6e513d0b432bdcf6dad47cd4bc8ed
fddf92ae7fc344fb7840184cd4f754b41a6adf6c
b6880722169342e566a36393a92ceefac70f35020bb5193f9872e1e0dd8a905b
GET /authentication/hentai/authenticate.png HTTP/1.1
Host: eggs-content.kinkoid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eggs-ext.kinkoid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 22 May 2023 18:53:27 GMT
content-type: image/png
content-length: 375725
last-modified: Tue, 14 Jul 2020 04:40:20 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
eggs-content.kinkoid.com/authentication/hentai/register.png
200 OK 657 kB URL GET HTTP/2 eggs-content.kinkoid.com/authentication/hentai/register.png
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerLet's Encrypt
Subjecteggs-ext.kinkoid.com
FingerprintB2:A9:93:84:FC:92:01:10:9A:49:92:09:5A:62:2E:0E:C3:2A:58:F3
ValidityTue, 02 May 2023 09:41:31 GMT - Mon, 31 Jul 2023 09:41:30 GMT
File type PNG image data, 1200 x 3000, 8-bit colormap, non-interlaced\012- data
Size 657 kB (657088 bytes)
Hash 94e78471d96928c94b8a02a81744ac8d
eed3da5bce576f851fdc86811a9c02f68757ae87
9df1ddbf2d792fc3c08ab0313cb55f85d9206d897e0030d39f1ab5dcb2fa8fb6
GET /authentication/hentai/register.png HTTP/1.1
Host: eggs-content.kinkoid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eggs-ext.kinkoid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 22 May 2023 18:53:27 GMT
content-type: image/png
content-length: 657088
last-modified: Tue, 14 Jul 2020 04:40:20 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/carterone/v17/q5uCsoe5IOB2-pXv9UcNExN8hA.woff2
200 OK 28 kB URL GET HTTP/3 fonts.gstatic.com/s/carterone/v17/q5uCsoe5IOB2-pXv9UcNExN8hA.woff2
IP
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 27984, version 1.0\012- data
Hash 9c01ef3c4862a40bf29bd780e7e88da4
54db29d9cf8092d9c50d477c5d9d9e199c944453
dc6d951120092f271275422fbff657a219671695d03bdd251761e05ee9e86589
GET /s/carterone/v17/q5uCsoe5IOB2-pXv9UcNExN8hA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eggs-ext.kinkoid.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 May 2023 04:16:06 GMT
expires: Thu, 16 May 2024 04:16:06 GMT
cache-control: public, max-age=31536000
age: 484641
last-modified: Thu, 21 Apr 2022 17:07:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
images.hh-content.com/hentai/pictures/design/logo2.png
200 OK 3.4 kB URL GET HTTP/2 images.hh-content.com/hentai/pictures/design/logo2.png
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type PNG image data, 566 x 250, 8-bit colormap, non-interlaced\012- data
Hash bb30651d4829e8d4aa2d2fe1da64b9c9
1607a6cec035df2fc2779732d7505f4c9ecdb5a2
0a9d9b559f56759b74032fa25a5f422cb094864a26e93f7b366a0f0dc8675782
GET /hentai/pictures/design/logo2.png HTTP/1.1
Host: images.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:27 GMT
content-type: image/png
content-length: 3449
last-modified: Tue, 23 Mar 2021 12:09:15 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: images.hh-content.com
accept-ranges: bytes
x-cdn-diag: ams5-7619-0-51939-h-0-0---;7619-24-2025----0-0-0
X-Firefox-Spdy: h2
images.hh-content.com/hentai/pictures/design/logo-apple-touch-icon.png
200 OK 4.0 kB URL GET HTTP/2 images.hh-content.com/hentai/pictures/design/logo-apple-touch-icon.png
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type PNG image data, 150 x 150, 8-bit colormap, non-interlaced\012- data
Hash 4a10bda5a21000b2c5a222d78bcc279b
666fa6f947e14d6404c69058ee3f322d9afba40c
cb1fc8b83789ab447f0e774105cdc070ea28d30c0771497ed0cc1496c8dd5c08
GET /hentai/pictures/design/logo-apple-touch-icon.png HTTP/1.1
Host: images.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:27 GMT
content-type: image/png
content-length: 4006
last-modified: Thu, 17 Dec 2020 17:04:14 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: images.hh-content.com
accept-ranges: bytes
x-cdn-diag: ams5-6141-0-9685-h-0-0---;7619-24-2025----0-0-1
X-Firefox-Spdy: h2
eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
200 OK 115 kB URL GET HTTP/2 eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerLet's Encrypt
Subjecteggs-ext.kinkoid.com
FingerprintB2:A9:93:84:FC:92:01:10:9A:49:92:09:5A:62:2E:0E:C3:2A:58:F3
ValidityTue, 02 May 2023 09:41:31 GMT - Mon, 31 Jul 2023 09:41:30 GMT
Size 115 kB (114668 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /authentication/start_authentication?product_id=1&language=en&purpose=authenticate HTTP/1.1
Host: eggs-ext.kinkoid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: OPTIONS, POST, GET
access-control-max-age: 2592000
access-control-allow-headers: protocol
content-type: text/html; charset=utf-8
date: Mon, 22 May 2023 18:53:27 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Carter+One&display=swap
200 OK 421 B URL GET HTTP/3 fonts.googleapis.com/css2?family=Carter+One&display=swap
IP
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (430), with no line terminators
Hash 346a26dbaa0cd8bede4452e03fa476a7
01e5e4b10f6ef9f0e53ecd89eeeb722445658f56
296e7aeb32e68e9d4d9bd4a66a6d78656c80b41af1a75f0a0e8720836f1ff082
GET /css2?family=Carter+One&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eggs-ext.kinkoid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 22 May 2023 18:53:27 GMT
date: Mon, 22 May 2023 18:53:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.hentaiheroes.com/css/default.css?v=68441150
200 OK 1.8 MB URL GET HTTP/2 www.hentaiheroes.com/css/default.css?v=68441150
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
Size 1.8 MB (1813624 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /css/default.css?v=68441150 HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/home.html
Cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; lang=en; ref_id=135846; tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; tc2=11026; tc3=284; tc4=%7BPARAMETER%7D; tc5=ClickAdu-Managed-David; tc8=US; age_verification=1; HAPBK=web10|ZGu6K
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
server: Apache
strict-transport-security: max-age=31536000
last-modified: Thu, 18 May 2023 12:05:06 GMT
etag: "1bac78-5fbf69d854d92-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
X-Firefox-Spdy: h2
www.hentaiheroes.com/img/quests/1/1/1600x900cut/p1a.jpg
200 OK 192 kB URL GET HTTP/2 www.hentaiheroes.com/img/quests/1/1/1600x900cut/p1a.jpg
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hentaiheroes.com
FingerprintFD:7B:78:D7:42:27:55:F7:18:78:D1:9B:16:07:0C:21:A4:44:71:B0
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 177x177, segment length 16, baseline, precision 8, 1600x900, components 3\012- data
Size 192 kB (192532 bytes)
Hash dd9a85b5ad56a186f3e2df85463d8ddd
7727a8d246f1b59c64e79dac41356713d5222530
9ba821b6ce85c8c5fe87ae75fe80dc7919e7a74525bbfbb15654cecc8c32184f
GET /img/quests/1/1/1600x900cut/p1a.jpg HTTP/1.1
Host: www.hentaiheroes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/home.html
Cookie: HH_SESS_13=di1c4rck3urra6f06tg1r3v1ch; lang=en; ref_id=135846; tc1=HH161ca1372b4f2d89a6a8839f1c5440d0; tc2=11026; tc3=284; tc4=%7BPARAMETER%7D; tc5=ClickAdu-Managed-David; tc8=US; age_verification=1; HAPBK=web10|ZGu6K
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
server: Apache
cache-control: private, max-age=2629000, pre-check=2629000
pragma: private
expires: Sat, 31 Jan 70 11:16:40 +0100
strict-transport-security: max-age=31536000
content-type: image/jpg
X-Firefox-Spdy: h2
eggs-content.kinkoid.com/authentication/hentai/logo.png
200 OK 3.4 kB URL GET HTTP/2 eggs-content.kinkoid.com/authentication/hentai/logo.png
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://eggs-ext.kinkoid.com/authentication/start_authentication?product_id=1&language=en&purpose=authenticate
Certificate IssuerLet's Encrypt
Subjecteggs-ext.kinkoid.com
FingerprintB2:A9:93:84:FC:92:01:10:9A:49:92:09:5A:62:2E:0E:C3:2A:58:F3
ValidityTue, 02 May 2023 09:41:31 GMT - Mon, 31 Jul 2023 09:41:30 GMT
File type PNG image data, 270 x 123, 8-bit colormap, non-interlaced\012- data
Hash 646617323d6d9e7cc959c516687af6d2
692b46ea8a5edbe527788e6b4e497363699cad5d
c95f6a0e76f202044aaf647ad9894d5822b322adf586f3b656c99aabcab6ee4e
GET /authentication/hentai/logo.png HTTP/1.1
Host: eggs-content.kinkoid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eggs-ext.kinkoid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 22 May 2023 18:53:27 GMT
content-type: image/png
content-length: 3379
last-modified: Tue, 14 Jul 2020 06:31:34 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
hh2.hh-content.com/design/menu/sound_on.svg
200 OK 2.3 kB URL GET HTTP/2 hh2.hh-content.com/design/menu/sound_on.svg
IP
ASN #11019 HAPROXY-TECHNOLOGIES
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerSectigo Limited
Subject*.hh-content.com
FingerprintD0:49:42:3F:12:B0:62:CF:5B:0E:1F:F7:AC:4F:3C:D7:20:F4:D8:10
ValidityMon, 04 Jul 2022 00:00:00 GMT - Wed, 19 Jul 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2405), with no line terminators
Hash f6002e537c69957b956269441defde71
5956cb9e2918509558357fe50fb9391895ded799
1782e1768dfe0418751592211456803bb788a52e085d691d8980a26e41bc84ed
GET /design/menu/sound_on.svg HTTP/1.1
Host: hh2.hh-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 22 May 2023 18:53:26 GMT
content-type: image/svg+xml
content-length: 2269
last-modified: Tue, 05 May 2020 14:59:59 GMT
cache-control: public, max-age=2592000
access-control-allow-origin: *
x-vhost-info: hh
vary: Accept-Encoding
accept-ranges: bytes
x-cdn-diag: ams5-6249-0-28456-h-0-0---;7619-33-2025----0-0-0
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,700;1,400&display=swap
200 OK 6.8 kB URL GET HTTP/3 fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,700;1,400&display=swap
IP
Requested by https://www.hentaiheroes.com/home.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (7006), with no line terminators
Hash cecfba686cdacd2b1eadce55e192e25c
737729053283ee3b7aa95978fb6fa6fe4bde882d
3967fe7e0081436e129f5fc47eac08d125a8fa87115bcde5fbc1186c6e1f5361
GET /css2?family=Roboto:ital,wght@0,400;0,700;1,400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hentaiheroes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 22 May 2023 18:53:26 GMT
date: Mon, 22 May 2023 18:53:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tm-offers.gamingadult.com/?offer=284&uid=028fc1a0-06ce-42c2-9bd8-34042c7f6f9e&subid=w52mqvrr15mvkatoiiclil0g&utm_source=ClickAdu-Managed-David&utm_campaign=&utm_content=&subid4=US
302 Found 5.6 kB URL User Request GET HTTP/2 tm-offers.gamingadult.com/?offer=284&uid=028fc1a0-06ce-42c2-9bd8-34042c7f6f9e&subid=w52mqvrr15mvkatoiiclil0g&utm_source=ClickAdu-Managed-David&utm_campaign=&utm_content=&subid4=US
IP
Certificate IssuerLet's Encrypt
Subjecttm-offers.gamingadult.com
Fingerprint09:E3:3F:66:83:12:EF:2D:40:E0:1A:DA:12:A2:3D:C4:D7:E2:CE:E6
ValiditySat, 22 Apr 2023 02:51:31 GMT - Fri, 21 Jul 2023 02:51:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?offer=284&uid=028fc1a0-06ce-42c2-9bd8-34042c7f6f9e&subid=w52mqvrr15mvkatoiiclil0g&utm_source=ClickAdu-Managed-David&utm_campaign=&utm_content=&subid4=US HTTP/1.1
Host: tm-offers.gamingadult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Mon, 22 May 2023 18:53:25 GMT
content-type: text/html; charset=UTF-8
location: https://www.hentaiheroes.com/?ref_id=135846&noagev=1&tc1=HH161ca1372b4f2d89a6a8839f1c5440d0&tc2=11026&tc3=284&tc4={PARAMETER}&tc5=ClickAdu-Managed-David&tc6=&tc7=&tc8=US
set-cookie: HH-offer284=1; expires=Tue, 23-May-2023 06:53:25 GMT; Max-Age=43200; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
5.196.166.128
104.18.32.68
142.250.74.106
23.36.76.186
94.75.250.120