upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
301 Moved Permanently 0 B URL HTTP/1.1 upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036 HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Sep 2022 05:45:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 05 Sep 2022 06:45:19 GMT
Location: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hN5HTmPXV214ig4sp5wixx67Mn7SfoGE3O0cXqIVoDdcKwBjyw67qu7kP3guMLgtkwj%2BZl7T1z4YJ6jimIs8tZM3b50H3Lw8hvMkdXItnOH6ZxCVPmrxNNbsWC2gDA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745ca87aa8ff06d1-LHR
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 05:24:34 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2V9N73HMpLtS_NS0NgMC_jKXgnO08x5PgJLLsw4BXisF9mJKZ1q7Bw==
Age: 1245
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6111
Expires: Mon, 05 Sep 2022 07:27:11 GMT
Date: Mon, 05 Sep 2022 05:45:20 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:15:19 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sadk78t1FOazaG8vUNt8zQaMoYaWI-p3OZlshDkLVThXKahejv-BsQ==
age: 16203
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
upornia.com/upd/20220818.093453.41400/static/js/video.js
200 OK 11 kB URL HTTP/2 upornia.com/upd/20220818.093453.41400/static/js/video.js
IP
File type ASCII text, with very long lines (41400), with no line terminators
Hash 9372392bbfb8e08accf184f862467671
13af7be6fea950404e8cd754baa8555eb45616c5
28720970b802756b8c09818ea4392a30213909aa3a3933a1dfa32dec36b035e4
GET /upd/20220818.093453.41400/static/js/video.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 09:34:53 GMT
vary: Accept-Encoding
etag: W/"62fe07bd-a1b8"
expires: Mon, 05 Sep 2022 06:11:52 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 209
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=grejF2AGq5why16dY5Ri72UpBQOek0YE6O0gIu6ONe%2F3zi8BF2IZUm1JFNSJS9ZlMIa2pskMW%2FSxWSrLU7ciMnxbgNPLvEqENqmEXQjb7ITzD%2F9uwOgUwX31MKCGhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca87e4bda777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a73c40e0fed317f31e35a24d5b5e2d0d
fb19e9d403e37956762ebb527260576860161872
4a38f2cc8997dada402e2cce06bbd8776cbad2075b00696d00efa59ad5388644
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 194d72d26ddeaa8a8a266839eb707300
86427a0db92a3b4bd2690ad361109559c7212992
ab77f42ccfa0c649217777139f0d14a6742039596ee37a045c5fe96e7ca32338
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 194d72d26ddeaa8a8a266839eb707300
86427a0db92a3b4bd2690ad361109559c7212992
ab77f42ccfa0c649217777139f0d14a6742039596ee37a045c5fe96e7ca32338
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 04df6b1bd20e66f1dac4b8ec3bd6b37e
c3676acf165216b976530390bb08c74446555910
ebb7dbcdadcae8426f6be7fb938d1bd78cb7babd8824d747222d2565477797e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB7DBCDADCAE8426F6BE7FB938D1BD78CB7BABD8824D747222D2565477797E9"
Last-Modified: Sun, 04 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5204
Expires: Mon, 05 Sep 2022 07:12:04 GMT
Date: Mon, 05 Sep 2022 05:45:20 GMT
Connection: keep-alive
www.googletagmanager.com/gtm.js?id=GTM-MVMB4DG
200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MVMB4DG
IP
File type ASCII text, with very long lines (2198)
Hash 528dec20e74b81545806798a4749f8fd
85f07f567e1c15a6afd53107333537cca53a088f
a56f65ddf35b1651508814564f17c101d5cb3e1d077120be0273cf143db1f2c4
GET /gtm.js?id=GTM-MVMB4DG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Sep 2022 05:45:20 GMT
expires: Mon, 05 Sep 2022 05:45:20 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37724
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WSSWGK
200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WSSWGK
IP
File type ASCII text, with very long lines (3018)
Hash a56c2dd72f438a9801cefb0e818ef2c3
09bbe8f5a12d7e1c17de6c3de1f4a0acc3efb898
bdfa004cd6d8137d6ae438ca18b95d85918048f10f038a583e697c7d5e87a82b
GET /gtm.js?id=GTM-WSSWGK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Sep 2022 05:45:20 GMT
expires: Mon, 05 Sep 2022 05:45:20 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46264
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 194d72d26ddeaa8a8a266839eb707300
86427a0db92a3b4bd2690ad361109559c7212992
ab77f42ccfa0c649217777139f0d14a6742039596ee37a045c5fe96e7ca32338
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
news-muheji.com/code/https.js?uid=166105&site=8048335&banadu=0&sub1=sub1
200 OK 8.8 kB URL HTTP/2 news-muheji.com/code/https.js?uid=166105&site=8048335&banadu=0&sub1=sub1
IP
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (8839), with no line terminators
Hash b34a1c4d5dbfbf0bba3a04a9c71763fa
f95c34da69d4009b416fd63580452ef460a173d0
8cba24a3fb990a5f61c95d095b08a563d52b89761b6f5ec5aa7ece4681c0048e
GET /code/https.js?uid=166105&site=8048335&banadu=0&sub1=sub1 HTTP/1.1
Host: news-muheji.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: application/javascript
content-length: 8839
last-modified: Sat, 03 Sep 2022 06:37:20 GMT
etag: "6312f620-2287"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 05 Sep 2022 05:38:16 GMT
Cache-Control: max-age=3600
Expires: Mon, 05 Sep 2022 06:15:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7akqEYQfMd6MgtWcYFS6Ku0Pc6ZKZTnoNmofpAvc8p84T93GjwZQfA==
Age: 424
upornia.com/upd/20220818.093453.332484/static/js/chunk-common.js
200 OK 89 kB URL HTTP/2 upornia.com/upd/20220818.093453.332484/static/js/chunk-common.js
IP
File type Unicode text, UTF-8 text, with very long lines (65520), with no line terminators
Hash f7a61a9e0ad31e197c83043b6c760c1b
9cf8b9f4bbe90b74ea6bf14ac4e536f786f89169
2df6b49a095e99b82df40d3959cc078ff64aacfa3111c1366f5a5d0bfed1d810
GET /upd/20220818.093453.332484/static/js/chunk-common.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 09:34:53 GMT
vary: Accept-Encoding
etag: W/"62fe07bd-512c4"
expires: Mon, 05 Sep 2022 06:03:45 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 696
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qSoSJQIviaH91AoNOYc7wViPlX8f6y2GgM4AZFDTLv4UnMScKeeJPkMuIyNVo46fwnN26ExkGlev3Sin2v3kENapa1qbBBku2h0dFVFLoGhw4HM1rdYD50P89QYTgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca87e4bd8777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@300;400;500;900&display=swap
200 OK 2.1 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@300;400;500;900&display=swap
IP
Hash 8a3adc3c47229f7a45d4b43af2725d8d
cfc0b68f7268320fc32bac601e95509d8d456197
84a0a82c99726a9b08f42f60397b1437c00109badc2a086c9dba200f7edad687
GET /css2?family=Roboto:wght@300;400;500;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Sep 2022 05:45:20 GMT
date: Mon, 05 Sep 2022 05:45:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
upornia.com/upd/20220818.093453.176694/static/css/chunk-common.css
200 OK 26 kB URL HTTP/2 upornia.com/upd/20220818.093453.176694/static/css/chunk-common.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 51d709b44ec03a1c1958fe309220a139
54d3a5df7fd7a563eab87448d2aa2ab0244727d6
58cdb4926fb3f83a4fe4389ebddd41033925ae0dbd17322ef04ffc25fe83596b
GET /upd/20220818.093453.176694/static/css/chunk-common.css HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: text/css
last-modified: Thu, 18 Aug 2022 09:34:53 GMT
vary: Accept-Encoding
etag: W/"62fe07bd-2b236"
expires: Mon, 05 Sep 2022 06:02:57 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 744
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bh%2FeCIKjB2UGNaXxtxG1kfXYhi9Xgp9ZfOVk2nuYAH%2Fd6FUMDxuM3YotWXWuGCdky%2Fk7ZT9D%2BH%2F0blIoRO20Nb8q7yy%2BSFkujgdT8JCZeS8gizotS78EZxffIPjpOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca87e4bdc777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/images/favicons/favicon-16x16.png
200 OK 722 B URL HTTP/2 upornia.com/images/favicons/favicon-16x16.png
IP
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash e1a60451744dc606581f8f5a12d912bb
56f64fdf2827ccfb3dec93e9d1a5ae6fec424d73
c2e8c8fff9daa3c581d86cd1b0b2913b0bdf5ef783e6055e59f343b75ea90f0e
GET /images/favicons/favicon-16x16.png HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: image/png
content-length: 722
last-modified: Fri, 22 Jul 2022 07:40:01 GMT
etag: "62da5451-2d2"
expires: Sun, 11 Sep 2022 08:55:22 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2062199
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z%2BHe8%2BZVHprRrKOA%2BV%2Fr3zJdCvJvoL25lGd8bHM7P%2B17tuJMeF5wSLJvjxHi8AdRgIKdATHrlnDGMqh20k%2BofwpjO54%2FrYSapIYJLjuXae7R2bEjVekU3nGYVKVtqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745ca8821fcc777f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/images/favicons/apple-touch-icon.png
200 OK 4.3 kB URL HTTP/2 upornia.com/images/favicons/apple-touch-icon.png
IP
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 8a7e5a3ed397a80c26370efe5a077619
48ebe798dd2bca364b8b08e546d6b2106a6a2ff6
a83aa6e080c94bb5dbc18deb52a620fead2d0309c5b2ed46f80400b37d3d7ca1
GET /images/favicons/apple-touch-icon.png HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: image/png
content-length: 4296
last-modified: Fri, 22 Jul 2022 07:40:01 GMT
etag: "62da5451-10c8"
expires: Sun, 11 Sep 2022 08:55:07 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2062215
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c430jKMTq8NVdPlGGRM1R0nfYYpWlwDbZ8iD3thQnDtePdhnBpqe7AYyjq2SO5Dt2kHMRUhh3b46mxQzuDEuFeK387xXCvuHMxp%2FoxNkhkTj2ow1vCJSrx0t4vU7Ug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745ca8821fca777f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.exosrv.com/ads.js
200 OK 972 B IP
File type ASCII text, with very long lines (2474), with no line terminators
Hash 7d9604b94c86720afb5884077110afc0
ff271b314f322f21e76ff297026be2c8fa7ea027
48c044514d04c243384bdfee5b66cbea06d1dcf9e21597361dbe5597b6d6d7c4
GET /ads.js HTTP/1.1
Host: a.exosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 05:45:21 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 972
Content-Type: application/javascript
Accept-Ranges: bytes
Server: nginx
etag: W/"b60fdcc211f42a1f246a8c80b56"
Cache-Control: max-age=10800
X-HW: 1662356720.dop202.sk1.t,1662356721.cds217.sk1.shn,1662356721.cds217.sk1.c
Access-Control-Allow-Origin: *, *
ocsp.digicert.com/
200 OK 471 B IP
Hash 77d035f38a45e8a1ec30d5fe9611880b
01cf34de95257da64dac90edf5a86203f1160271
7dc687d6bb1679ba5567e58b4f8c1e78766e7ee36273ba7f62068c595d57f7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1894
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:21 GMT
Last-Modified: Mon, 05 Sep 2022 05:13:47 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
a.realsrv.com/ad-provider.js
200 OK 24 kB URL HTTP/1.1 a.realsrv.com/ad-provider.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 93847b4fcf5aa0b6bda249d90c522139
77da55ffcb95f1b793b48c656aa24a0f765c6fd4
6f1b4c8323258030e79776838a788c52b1b2f845f4436078ef31a49831d78f47
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.realsrv.com/iframe.php?idzone=693913&output=noscript&type=300x250
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 05:45:21 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 23721
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"4b8742770a4d1fdfd0603a54e5a"
X-HW: 1662356720.dop023.sk1.t,1662356720.cds014.sk1.shn,1662356720.dop023.sk1.t,1662356721.cds226.sk1.c
Access-Control-Allow-Origin: *, *
ocsp.globalsign.com/gseccovsslca2018
200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash d54685ee94294d0a0ba196e704be40a9
935e61eadeb84844d78591e1c62ebc30ecbfd64f
0da906f9beb924f94fbf12853a1da3efeec9bc160cbf2faf4ec9682ed1043bbd
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 05:45:21 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Fri, 09 Sep 2022 02:54:07 GMT
ETag: "935e61eadeb84844d78591e1c62ebc30ecbfd64f"
Last-Modified: Mon, 05 Sep 2022 02:54:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3317
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745ca8833b360b45-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upornia.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 382273
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upornia.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 02:02:22 GMT
expires: Sun, 03 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 186179
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upornia.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:40:23 GMT
expires: Thu, 31 Aug 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 381898
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
a.realsrv.com/iframe.php?idzone=3069158&output=img&type=728x90
200 OK 1.3 kB URL HTTP/1.1 a.realsrv.com/iframe.php?idzone=3069158&output=img&type=728x90
IP
File type HTML document, ASCII text
Hash 23bc2e6368ca6331aa1d3314ec81c7ad
763c6a98f1fb44e96773a44adce8e92e16cc441a
8b157c2c08a16235609ad5167330f14ab8c11f7c70dcfc533ec321741ba4c261
GET /iframe.php?idzone=3069158&output=img&type=728x90 HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 05:45:21 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 1347
Content-Type: text/html; charset=UTF-8
Accept-Ranges: bytes
Server: nginx
Cache-Control: max-age=10800
X-HW: 1662356720.dop023.sk1.t,1662356720.cds014.sk1.shn,1662356720.dop023.sk1.t,1662356721.cds226.sk1.c
Access-Control-Allow-Origin: *, *
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 05 Sep 2022 04:41:12 GMT
expires: Mon, 05 Sep 2022 06:41:12 GMT
cache-control: public, max-age=7200
age: 3849
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6fc51789da2bf37cd16be0c8c4f0d08e
944d466a793762cc85abe2d8f614454a035a6868
a66fcb55bba61e54b02e349d1c07af7a8be3b3aef7ac9503ac240698429bb27d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A66FCB55BBA61E54B02E349D1C07AF7A8BE3B3AEF7AC9503AC240698429BB27D"
Last-Modified: Sat, 03 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6020
Expires: Mon, 05 Sep 2022 07:25:41 GMT
Date: Mon, 05 Sep 2022 05:45:21 GMT
Connection: keep-alive
upornia.com/api/json/videos_related/20200611/str/relevance/72/0/263000/263492.all.1.json
200 OK 10 kB URL HTTP/2 upornia.com/api/json/videos_related/20200611/str/relevance/72/0/263000/263492.all.1.json
IP
File type JSON data\012- , ASCII text, with very long lines (33186), with no line terminators
Hash 60afd364e7634bf1de8d2015d165fb04
938984a995863a23c06c1dd2ebac724957160bdf
08feb587631b42d9464fc497dc71712d66e31dbbf5d8e2583f1faa52c7bf0575
GET /api/json/videos_related/20200611/str/relevance/72/0/263000/263492.all.1.json HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: application/json
last-modified: Sat, 27 Aug 2022 20:05:43 GMT
vary: Accept-Encoding
etag: W/"630a7917-81a2"
expires: Mon, 05 Sep 2022 05:50:21 GMT
cache-control: max-age=300
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xi2BotnKBJgEtwXs5yCda0e%2FvT2OCzk4cjFJmF3Fa%2FU2XveL2SfKv4lGthOYu4z0kC3JXU8vpAgwb%2FF6UHjmN5x9zO75CGhMJAlMMDyPinqCWBEJUg7V%2B%2FEzNwHgcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca881af49777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kqTsFzJ/0As46vhJE3wjEg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AGoCB7wAGwljbKmZ2az/0hRWCAs=
upornia.com/contents/avatars/43000/43921.jpg
200 OK 23 kB URL HTTP/2 upornia.com/contents/avatars/43000/43921.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 180x180, components 3\012- data
Hash 935255e0163d1336f74eb6fd2b0153ba
07fc5c4fcaad4bc3061e9b88a4c2e2d82e3484a4
60ca61bfc0749baa14b2b4f056de3953007d0ba641412222796297940eb66d27
GET /contents/avatars/43000/43921.jpg HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en; _ga=GA1.2.324479761.1662356717; _gid=GA1.2.924131252.1662356717; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: image/jpeg
content-length: 22635
last-modified: Tue, 16 Jun 2015 08:51:29 GMT
etag: "557fe391-586b"
expires: Sun, 11 Sep 2022 08:59:30 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2061952
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j4f2Ur8Gjtow7vhxsiD3Fo8iq9gltHLD9YmDyY6EiceqPGdSteqJXbMCmSXpLRxuGRjsUqZ4a9BRINy17TwObgP4uM6aHlZ6gw9MzE7fzI2urIb8CFqpfuoY5gKKAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745ca8844a4a777f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1195e3c5f4493544d33ca26d9c26fdd5
b7a82b98ff4a3a03e10970bb9ed4ce2f7b76c05b
0b6c7fbd93b0aa28eda5237e7bb5643eebe6145c94364aa2a6bb2c3fe85d5cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0B6C7FBD93B0AA28EDA5237E7BB5643EEBE6145C94364AA2A6BB2C3FE85D5CB9"
Last-Modified: Sat, 03 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3652
Expires: Mon, 05 Sep 2022 06:46:13 GMT
Date: Mon, 05 Sep 2022 05:45:21 GMT
Connection: keep-alive
syndication.realsrv.com/v1/api.php
200 OK 1.0 kB URL HTTP/1.1 syndication.realsrv.com/v1/api.php
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (1371), with no line terminators
Hash 3ce189435ce1a78532a392c4251c98e6
827a1f899c14a9527022343536d2501c0f7e8fe7
3434bd929583434ce680510ba76fc8694663a31c9a10c62bce55b66bac6fad7f
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 292
Origin: https://a.realsrv.com
Connection: keep-alive
Referer: https://a.realsrv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 05:45:21 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.realsrv.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
syndication.realsrv.com/v1/api.php
200 OK 1.0 kB URL HTTP/1.1 syndication.realsrv.com/v1/api.php
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (1407), with no line terminators
Hash 65013581809662679d7a10afe96ea8ef
023c0fee2a7f0efab6bedf1820972ad1c22ac2d9
014f1319bb538a418142f5a5351812989d6734ac3dff767f85a629bf1222ec60
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 292
Origin: https://a.realsrv.com
Connection: keep-alive
Referer: https://a.realsrv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 05:45:21 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.realsrv.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
tn.upornia.com/contents/videos_sources/263000/263492/screenshots/2.jpg
200 OK 11 kB URL HTTP/2 tn.upornia.com/contents/videos_sources/263000/263492/screenshots/2.jpg
IP
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, baseline, precision 8, 428x240, components 3\012- data
Hash 166442965cfbc1f194f9389df71ef427
9026854522afa14f905fcb98bf95aef0acd00847
90bce85829a0aebdcc62e96ea7dc48c66ca161c0635f7468e1907a5250274197
GET /contents/videos_sources/263000/263492/screenshots/2.jpg HTTP/1.1
Host: tn.upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: image/jpeg
content-length: 11368
server: nginx/1.12.2
last-modified: Thu, 16 Oct 2014 21:55:08 GMT
etag: "54403ebc-2c68"
cache-control: max-age=15552000
expires: Sat, 04 Mar 2023 05:45:21 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.realsrv.com/v1/api.php
200 OK 2.4 kB URL HTTP/1.1 syndication.realsrv.com/v1/api.php
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (5234), with no line terminators
Hash ea9b5e117b50ff1e33cec446c219d357
09f0e8b003ad502bc76bbbe554a9334e922ab48c
c50a2e1b3051223d02a38e6c6c1aac2faba03ce61e5e565036c174acfe5556a8
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 292
Origin: https://a.realsrv.com
Connection: keep-alive
Referer: https://a.realsrv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 05:45:21 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.realsrv.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
mc.yandex.ru/metrika/watch.js
200 OK 57 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (569)
Hash c88af7521379660d8b1c4cfaad1362f4
f4a277fbd562a31d329bf4561878c2512be3b4a0
3e33643c480df9268cc54e0086082dd14e1791ba6bc161c0ec81c5855b0acca5
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 56896
date: Mon, 05 Sep 2022 05:45:21 GMT
access-control-allow-origin: *
etag: "6312122a-de40"
expires: Mon, 05 Sep 2022 06:45:21 GMT
last-modified: Fri, 02 Sep 2022 17:24:42 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ads.exoclick.com/ads.js
200 OK 974 B IP
File type ASCII text, with very long lines (2476), with no line terminators
Hash 92af51b4341a31ff621022c2a648c05e
3761459319128e7349981f338926abcd89ba58e0
6dd1f44f60b3c9584b3d9a54af5348c3fc36c7e13585f593f205ed42a0fa7e9f
GET /ads.js HTTP/1.1
Host: ads.exoclick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 05:45:21 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 974
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"8f3c7314efe500b41baba9f571b"
X-HW: 1662356721.dop016.sk1.t,1662356721.cds226.sk1.shn,1662356721.cds226.sk1.c
Access-Control-Allow-Origin: *, *
mc.yandex.ru/metrika/tag.js
200 OK 72 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (681)
Hash 034d4604beaddff5783b9878fadfaee6
64d5e1e0dbbbd62d6a64349dd964763b7ab4cbea
f8a957ee3468693f465da61d899438a2b674369b80c9d5c9ffff1111a7091290
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 71985
date: Mon, 05 Sep 2022 05:45:21 GMT
access-control-allow-origin: *
etag: "6312122a-11931"
expires: Mon, 05 Sep 2022 06:45:21 GMT
last-modified: Fri, 02 Sep 2022 17:24:42 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cb16b96a22a0b75bec4c4d40b49bd9db
dd65ad2b0e12781844928e71a55fa5303cb3b6c3
27a25d544e06aec43c5ee8b500831574e1eed140bceff48dd118483c3eab33e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "27A25D544E06AEC43C5EE8B500831574E1EED140BCEFF48DD118483C3EAB33E9"
Last-Modified: Sat, 03 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8616
Expires: Mon, 05 Sep 2022 08:08:57 GMT
Date: Mon, 05 Sep 2022 05:45:21 GMT
Connection: keep-alive
btds.zog.link/in/dl/?screen_resolution=1280x1024&dt=1662356717334&ad_sub=14036&mo=&ve=&katds_labels=&site_id=33008329&p=https%3A//upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/%3Fpromo%3D14036&zone=up_hardlink&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&title=Japanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&katds_rcc=2
200 OK 328 B URL HTTP/2 btds.zog.link/in/dl/?screen_resolution=1280x1024&dt=1662356717334&ad_sub=14036&mo=&ve=&katds_labels=&site_id=33008329&p=https%3A//upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/%3Fpromo%3D14036&zone=up_hardlink&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&title=Japanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&katds_rcc=2
IP
Hash da89d40321ffec8c8d47d6838ca7fa67
01f122c412327835ef12bb2bae72a9fa64f014d8
dc3ffb3b8167ae1ce32be9a9bd24d254ae5761e0cece569680edd3f55af1ca32
GET /in/dl/?screen_resolution=1280x1024&dt=1662356717334&ad_sub=14036&mo=&ve=&katds_labels=&site_id=33008329&p=https%3A//upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/%3Fpromo%3D14036&zone=up_hardlink&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&title=Japanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&katds_rcc=2 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: 953.73385=1; expires=Tue, 06 Sep 2022 05:45:21 GMT; path=/; secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1OQU7EMAz8Ch9oZDt2muwZriAt2ge0iVdCYoVUEOphHk/SRes5eGyPPRYSmahMZE/EJ7WTMAqHQkElsCle385Qxs++76F+3RClmAk4MiWFxMxlRiqxiMEowyKXnAWzJaKSEtgQQR1iUfVgifByOePy/gwKpWQGQxCJdjHqfHhCBmPQPjZay5mZU6px9pQau3Orua0ts+e1DSGWsPny+b39Ho/SHYGsu477/w1E1igqmPhRKHoQjvHHdVtuDjz0d8yHRf9IdaSriZNWz9qSV6prXJsvs7a1U/frH1dTFs5YAQAA
200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1OQU7EMAz8Ch9oZDt2muwZriAt2ge0iVdCYoVUEOphHk/SRes5eGyPPRYSmahMZE/EJ7WTMAqHQkElsCle385Qxs++76F+3RClmAk4MiWFxMxlRiqxiMEowyKXnAWzJaKSEtgQQR1iUfVgifByOePy/gwKpWQGQxCJdjHqfHhCBmPQPjZay5mZU6px9pQau3Orua0ts+e1DSGWsPny+b39Ho/SHYGsu477/w1E1igqmPhRKHoQjvHHdVtuDjz0d8yHRf9IdaSriZNWz9qSV6prXJsvs7a1U/frH1dTFs5YAQAA
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz1OQU7EMAz8Ch9oZDt2muwZriAt2ge0iVdCYoVUEOphHk/SRes5eGyPPRYSmahMZE/EJ7WTMAqHQkElsCle385Qxs++76F+3RClmAk4MiWFxMxlRiqxiMEowyKXnAWzJaKSEtgQQR1iUfVgifByOePy/gwKpWQGQxCJdjHqfHhCBmPQPjZay5mZU6px9pQau3Orua0ts+e1DSGWsPny+b39Ho/SHYGsu477/w1E1igqmPhRKHoQjvHHdVtuDjz0d8yHRf9IdaSriZNWz9qSV6prXJsvs7a1U/frH1dTFs5YAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.realsrv.com
Connection: keep-alive
Referer: https://a.realsrv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 05:45:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1931a32d83e4feb5268887bcb07fcc1e
6fb75c21ced29544dd6d7c3b0ef79adf65718a39
d794fae0b82097a2e97af2f21b6c243832081f88036a2a56bbeeabb08790d88d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAzVPSUoEUQy9iheoIuP/Sa91q9DSB6gRBBuhFKnFO7xVX83bJPCmCIl0lB35A/HF/CKM5D6pN+nZDc8vVxjja9/3fvq4wz00CKxMxSAanBUlNVnhFDCVWjhQgqVQCtihoAPiata2Qni6XXF7fQT1mcFgCJRoFz+sWybk3Bi0n4rwnJW8ms0rTZGVh2nkqgtPmVT8JGLot2V4/9y+W1GCejkecNMoRw65txhqYCgfVU3QndLfw3AMoRHe1m24L8Af/x+1JRnY7DRZaqxL1ihFac4xlshhriljzF5mjR+5+39FXwEAAA==
200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAzVPSUoEUQy9iheoIuP/Sa91q9DSB6gRBBuhFKnFO7xVX83bJPCmCIl0lB35A/HF/CKM5D6pN+nZDc8vVxjja9/3fvq4wz00CKxMxSAanBUlNVnhFDCVWjhQgqVQCtihoAPiata2Qni6XXF7fQT1mcFgCJRoFz+sWybk3Bi0n4rwnJW8ms0rTZGVh2nkqgtPmVT8JGLot2V4/9y+W1GCejkecNMoRw65txhqYCgfVU3QndLfw3AMoRHe1m24L8Af/x+1JRnY7DRZaqxL1ihFac4xlshhriljzF5mjR+5+39FXwEAAA==
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAzVPSUoEUQy9iheoIuP/Sa91q9DSB6gRBBuhFKnFO7xVX83bJPCmCIl0lB35A/HF/CKM5D6pN+nZDc8vVxjja9/3fvq4wz00CKxMxSAanBUlNVnhFDCVWjhQgqVQCtihoAPiata2Qni6XXF7fQT1mcFgCJRoFz+sWybk3Bi0n4rwnJW8ms0rTZGVh2nkqgtPmVT8JGLot2V4/9y+W1GCejkecNMoRw65txhqYCgfVU3QndLfw3AMoRHe1m24L8Af/x+1JRnY7DRZaqxL1ihFac4xlshhriljzF5mjR+5+39FXwEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.realsrv.com
Connection: keep-alive
Referer: https://a.realsrv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 05:45:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1PW2rDMBC8Si9gsS+ttflufxNIyQGU2IZCQ8EtxR9z+EoOjQbE7GN2Z4VEBoqB8gvxwfJBGMEpKJkkzobj6Qxj/Gzblm5fd7ioM4OVyQ2ihWOEh0YTZirQ4BxemqaMWozAGQpqkKxmnSUiEjjh7XLG5f21ZSJKmwkhtL+v7NQap61LCystFsYNUxTPMi3ZJx9V6lxjb0RN61w/v9ff3Sc9kFhd+uT/BJRNxQQDPwNDe4S9/LGs9T4Dz/6HZ4z7jo5+51Qi3JmMpubAxW+y0HwVqVce6Q8VRGwHVQEAAA==
200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1PW2rDMBC8Si9gsS+ttflufxNIyQGU2IZCQ8EtxR9z+EoOjQbE7GN2Z4VEBoqB8gvxwfJBGMEpKJkkzobj6Qxj/Gzblm5fd7ioM4OVyQ2ihWOEh0YTZirQ4BxemqaMWozAGQpqkKxmnSUiEjjh7XLG5f21ZSJKmwkhtL+v7NQap61LCystFsYNUxTPMi3ZJx9V6lxjb0RN61w/v9ff3Sc9kFhd+uT/BJRNxQQDPwNDe4S9/LGs9T4Dz/6HZ4z7jo5+51Qi3JmMpubAxW+y0HwVqVce6Q8VRGwHVQEAAA==
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz1PW2rDMBC8Si9gsS+ttflufxNIyQGU2IZCQ8EtxR9z+EoOjQbE7GN2Z4VEBoqB8gvxwfJBGMEpKJkkzobj6Qxj/Gzblm5fd7ioM4OVyQ2ihWOEh0YTZirQ4BxemqaMWozAGQpqkKxmnSUiEjjh7XLG5f21ZSJKmwkhtL+v7NQap61LCystFsYNUxTPMi3ZJx9V6lxjb0RN61w/v9ff3Sc9kFhd+uT/BJRNxQQDPwNDe4S9/LGs9T4Dz/6HZ4z7jo5+51Qi3JmMpubAxW+y0HwVqVce6Q8VRGwHVQEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.realsrv.com
Connection: keep-alive
Referer: https://a.realsrv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 05:45:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
upornia.com/assets//jwplayer-8.21.2.3/jwplayer.js
200 OK 37 kB URL HTTP/2 upornia.com/assets//jwplayer-8.21.2.3/jwplayer.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 80d0b89cc0c6857d9a6f6b1e1bdf7116
b07b29fe401b50459406f611bc01b3b53eb8d5e5
abc5e7b76fd04875539af5a9d302466b9387ebb21c143b39255f2cf3f7a16dcd
GET /assets//jwplayer-8.21.2.3/jwplayer.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en; _ga=GA1.2.324479761.1662356717; _gid=GA1.2.924131252.1662356717; _gat=1; _gat_UA-31745569-46=1; _ym_uid=1662356718784393520; _ym_d=1662356718
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: application/javascript
last-modified: Fri, 22 Jul 2022 07:40:26 GMT
vary: Accept-Encoding
etag: W/"62da546a-1b527"
expires: Sun, 11 Sep 2022 08:55:01 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2062221
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hm4XnuZdkAebnpBc3ekMysOZ5X5eeONd%2BgnpNIjUB9EjFWlbXeRZPyeyl6LWbusYChH1b5daYOD4LyXoho%2BMkWSOS76Kr7Im8ejJf9RtZSDqbPyluV7a5aYyGt%2BXQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca8874d73777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/api/videofile.php?video_id=263492&lifetime=8640000
200 OK 242 B URL HTTP/2 upornia.com/api/videofile.php?video_id=263492&lifetime=8640000
IP
File type JSON data\012- , ASCII text, with very long lines (333), with no line terminators
Hash 84c40f8583de9042b43a8378896c8577
9b918bc2a8b1479df3ba4b0b654d79dd2c24ff9e
3ed1bd8f1064e87daa5f56f9ce12c5fb4318273701909cca238149eeb1fe96f1
GET /api/videofile.php?video_id=263492&lifetime=8640000 HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: application/json
vary: Accept-Encoding
x-powered-by: PHP/7.2.34
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lc9dgQO42W9wGDvptHMP%2Fg6a%2Fcam0%2B62umNLsDGOYOFV%2FovIklCyGyjD7tjsTPqDlr6gPsbwD23F8qWo%2B1m5XXV6GU6caNcluA9pKqz8LUBgIFYkz5QZtYLNW1g%2F4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca8841a1b777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/558380/46c0770009c505c803031e2f7c0d1239b1df8c56.mp4
206 Partial Content 33 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/558380/46c0770009c505c803031e2f7c0d1239b1df8c56.mp4
IP
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash f5751ae46f67e8f2f14596ee97936dac
02d621a17e7d2dbd39146b69adfcf28db1b0917e
ee5c0cd5a6e957217f26c5c043ac00f508608670451191467edcdca43a7ef6e1
GET /library/558380/46c0770009c505c803031e2f7c0d1239b1df8c56.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://a.realsrv.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: video/mp4
content-length: 33631
last-modified: Sun, 17 Oct 2021 17:34:09 GMT
etag: "616c5e91-835f"
expires: Fri, 30 Jun 2023 11:08:53 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195974
server: CDN77-Turbo
x-77-nzt: AblMCRTqyzX/6+xWAA
x-77-nzt-ray: LRAmnzr6EVU
x-cache: HIT
x-age: 5696747
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-33630/33631
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1931a32d83e4feb5268887bcb07fcc1e
6fb75c21ced29544dd6d7c3b0ef79adf65718a39
d794fae0b82097a2e97af2f21b6c243832081f88036a2a56bbeeabb08790d88d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
12112336.pix-cdn.org/dli/whatshot.svg
200 OK 1.1 kB URL HTTP/2 12112336.pix-cdn.org/dli/whatshot.svg
IP
ASN #39572 DataWeb Global Group B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (652), with CRLF line terminators
Hash 92d4b3c9db72fefd9d6d927ec40be29b
efb550da28d7b18d7e2beb7698577415fde2b24f
7ad9fcb297f4600edf827b026deca9e0ed695be37ab46ac2d9fee35040611130
GET /dli/whatshot.svg HTTP/1.1
Host: 12112336.pix-cdn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: image/svg+xml
content-length: 1064
server: nginx/1.12.2
last-modified: Tue, 16 Jun 2020 16:25:10 GMT
etag: "5ee8f266-428"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b16a7a3371574c0dc160c85e3dbf3d76
2e9364e715f202c267ae3c9ef7398b1532566916
5f75deec628d1b03d5fcc4d0f2714a6cf24be8210e4c6185ccc0d59358dc000e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F75DEEC628D1B03D5FCC4D0F2714A6CF24BE8210E4C6185CCC0D59358DC000E"
Last-Modified: Sat, 03 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4804
Expires: Mon, 05 Sep 2022 07:05:26 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 05609c8ab6811eb47a091690b0418d7c
cd7aa2d6ecffe67f1abac4932d177a84f7eb830f
c5124ee2fd4674a4dc6a420880f635dac738bc6dbd05da0923e020d48fdf6f3a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5124EE2FD4674A4DC6A420880F635DAC738BC6DBD05DA0923E020D48FDF6F3A"
Last-Modified: Fri, 02 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5120
Expires: Mon, 05 Sep 2022 07:10:42 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 05609c8ab6811eb47a091690b0418d7c
cd7aa2d6ecffe67f1abac4932d177a84f7eb830f
c5124ee2fd4674a4dc6a420880f635dac738bc6dbd05da0923e020d48fdf6f3a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5124EE2FD4674A4DC6A420880F635DAC738BC6DBD05DA0923E020D48FDF6F3A"
Last-Modified: Fri, 02 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5120
Expires: Mon, 05 Sep 2022 07:10:42 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
vast.yomeno.xyz/vast
204 No Content 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /vast HTTP/1.1
Host: vast.yomeno.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://upornia.com/
Origin: https://upornia.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:22 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://upornia.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
content-type: text/plain; charset=utf-8
content-length: 0
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 919933e8e1e6013662a532e6d1bbabaf
b155f7a79d90c076b2545159398d732c5eac56f0
8095a078190f241e30545609b91b4d02b469566fad45b75d64fe167d3d08f03c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8095A078190F241E30545609B91B4D02B469566FAD45B75D64FE167D3D08F03C"
Last-Modified: Fri, 02 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3740
Expires: Mon, 05 Sep 2022 06:47:42 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
js.wpadmngr.com/npc/sdk/wp-banners.js
200 OK 0 B URL HTTP/2 js.wpadmngr.com/npc/sdk/wp-banners.js
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Mon, 05 Sep 2022 05:50:22 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
vast.yomeno.xyz/vast
200 OK 1.4 kB IP
File type JSON data\012- , ASCII text, with very long lines (1983), with no line terminators
Hash 8458c4b7b0cdb3561ad7ad38adb55280
7d2f1cfe6942c691ccc468fc9d9560ccc19e38f6
0671c14c746665cb01574bf8f50c371138e8162e191a565b328e75ed5f6c92f7
POST /vast HTTP/1.1
Host: vast.yomeno.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json; charset=utf-8
Content-Length: 641
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: application/json; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
vary: Accept-Encoding, *
access-control-allow-credentials: true
access-control-allow-origin: https://upornia.com
access-control-expose-headers: Content-Length,Content-Range
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash caf0005749f0f8c30ec84fe32b043e8e
709d3587257af580199479442e5dc67dc6a18521
e889b7d1690daade24cc938ace448668ea028233260c4de777ba4bf66857b756
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E889B7D1690DAADE24CC938ACE448668EA028233260C4DE777BA4BF66857B756"
Last-Modified: Sun, 04 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11334
Expires: Mon, 05 Sep 2022 08:54:16 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
vast.yomeno.xyz/prepare
204 No Content 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prepare HTTP/1.1
Host: vast.yomeno.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1089
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:22 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://upornia.com
access-control-expose-headers: Content-Length,Content-Range
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=822
204 No Content 0 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=822
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=822 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://upornia.com/
Origin: https://upornia.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://upornia.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
ceeefac62f.5eff011dd5.com/in/track?data=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
200 OK 0 B URL HTTP/2 ceeefac62f.5eff011dd5.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjE0MDM2LCJ1c2VyX2lkIjoiMTU4MzMyMzU2ODkxODk5NTQwMDAiLCJ0aW1lem9uZSI6MCwidmVyIjoiMy42LjEiLCJ0YWdfaWQiOjgyMiwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjowLjMyLCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjAsInVzZXJfa2V5d29yZHMiOiJKYXBhbmVzZSUyQ0dyYW5ueSUyQ0NyZWFtZWQlMkNieSUyQ25vdCUyQ2hlciUyQ0dyYW5kc29uJTJDKFVuY2Vuc29yZWQpJTJDVXBvcm5pYS5jb20lMkNKYXBhbmVzZSUyQ0dyYW5ueSUyQ0NyZWFtZWQlMkNieSUyQ25vdCUyQ2hlciUyQ0dyYW5kc29uJTJDKFVuY2Vuc29yZWQpJTJDUG9ybiUyQ01vdmllcyUyQ1Vwb3JuaWEuY29tJTJDcG9ybiUyQ3R1YmUlMkN4eHglMkN0dWJlJTJDZnJlZSUyQ3Bvcm4lMkN2aWRlb3MlMkNwb3JuJTJDeHh4JTJDbW92aWVzJTJDeHh4JTJDdHViZSUyQ3ZpZGVvJTJDeHh4JTJDdmlkZW8lMkNjbGlwcyUyQ0hEJTJDcG9ybiUyQ3ZpZGVvcyUyQ0phcGFuZXNlJTJDR3Jhbm55JTJDQ3JlYW1lZCUyQ2J5JTJDbm90JTJDaGVyJTJDR3JhbmRzb24lMkMoVW5jZW5zb3JlZCklMkNmcm9tJTJDUG9ybiUyQ01vdmllcyUyQ1RoZSUyQ0xhcmdlc3QlMkNEYXRhYmFzZSUyQ29mJTJDRnJlZSUyQ1Bvcm4lMkNNb3ZpZXMlMjAifQ==
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /in/track?data=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 HTTP/1.1
Host: ceeefac62f.5eff011dd5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9375a8bb15c7a37f48fa1892af85bf0a
2c0b1199c04d7404d90192c16ca54bb862bfd2b8
872a9f851bec0448d56a1363cc27a8103bf7695d2afd4c64c850e4449c098bfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "872A9F851BEC0448D56A1363CC27A8103BF7695D2AFD4C64C850E4449C098BFA"
Last-Modified: Sat, 03 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14513
Expires: Mon, 05 Sep 2022 09:47:15 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9375a8bb15c7a37f48fa1892af85bf0a
2c0b1199c04d7404d90192c16ca54bb862bfd2b8
872a9f851bec0448d56a1363cc27a8103bf7695d2afd4c64c850e4449c098bfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "872A9F851BEC0448D56A1363CC27A8103BF7695D2AFD4C64C850E4449C098BFA"
Last-Modified: Sat, 03 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14513
Expires: Mon, 05 Sep 2022 09:47:15 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 338aceb6d6aba0e44f58e77fa07c8fb8
85f204bdb0187f22d706b3c3d92385c6813cbbb0
07c1f9b9d1c2413e2f1546cbb05ff76fd6bf28ac250e1d6820461c6280190b3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "07C1F9B9D1C2413E2F1546CBB05FF76FD6BF28AC250E1D6820461C6280190B3F"
Last-Modified: Sat, 03 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12285
Expires: Mon, 05 Sep 2022 09:10:07 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9375a8bb15c7a37f48fa1892af85bf0a
2c0b1199c04d7404d90192c16ca54bb862bfd2b8
872a9f851bec0448d56a1363cc27a8103bf7695d2afd4c64c850e4449c098bfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "872A9F851BEC0448D56A1363CC27A8103BF7695D2AFD4C64C850E4449C098BFA"
Last-Modified: Sat, 03 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14513
Expires: Mon, 05 Sep 2022 09:47:15 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9375a8bb15c7a37f48fa1892af85bf0a
2c0b1199c04d7404d90192c16ca54bb862bfd2b8
872a9f851bec0448d56a1363cc27a8103bf7695d2afd4c64c850e4449c098bfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "872A9F851BEC0448D56A1363CC27A8103BF7695D2AFD4C64C850E4449C098BFA"
Last-Modified: Sat, 03 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14513
Expires: Mon, 05 Sep 2022 09:47:15 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9375a8bb15c7a37f48fa1892af85bf0a
2c0b1199c04d7404d90192c16ca54bb862bfd2b8
872a9f851bec0448d56a1363cc27a8103bf7695d2afd4c64c850e4449c098bfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "872A9F851BEC0448D56A1363CC27A8103BF7695D2AFD4C64C850E4449C098BFA"
Last-Modified: Sat, 03 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14513
Expires: Mon, 05 Sep 2022 09:47:15 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
js.wpshsdk.com/npc/sdk/wp-banners.js
200 OK 0 B URL HTTP/2 js.wpshsdk.com/npc/sdk/wp-banners.js
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpshsdk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Mon, 05 Sep 2022 05:50:22 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2580
Expires: Mon, 05 Sep 2022 06:28:22 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1944c2a5-23d6-45f7-ab9f-78685b5e5be8.jpeg
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1944c2a5-23d6-45f7-ab9f-78685b5e5be8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1556a0afcd327679e471ac6373ca29f
15ac095f9a744d85d7054d6c48af8a3f9ec9fc3a
d3537c985a20cf69290064fbd46778a6fbe6604cb6b37b272c8058142f02ffdf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1944c2a5-23d6-45f7-ab9f-78685b5e5be8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4452
x-amzn-requestid: 882486d7-8cdc-4986-8562-6ec196c2a8e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xt-dIFk7IAMFs4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630f1120-5a4edfae33e2ef3f133e22f6;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 07:43:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AbTFZ3Y-e5K4Ljph7Qn-Xhl0jk1VpgDxs0djpD3IMpppsAEadePgfQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 05:46:10 GMT
age: 86352
etag: "15ac095f9a744d85d7054d6c48af8a3f9ec9fc3a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2580
Expires: Mon, 05 Sep 2022 06:28:22 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30bf854fd3e27e2313a3d26fc43b9990
032acf1bfb0c8e2cbce8f2ff4d2964424b044951
7641be64dd25487edf4f845d1fbb0b07daa80fa8fb58863dd09081d9d169bd13
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: de0e8998-4a52-4651-bcd6-3068c50193b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey2Eq4oAMFZlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-15da44d87bf486cb1738fe18;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nqxzicnkQPrjStpPaMIZAukyjtUBQaXfuxWzIs77YGDyJmnirlMsxw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 21:54:51 GMT
age: 28231
etag: "032acf1bfb0c8e2cbce8f2ff4d2964424b044951"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2580
Expires: Mon, 05 Sep 2022 06:28:22 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe013b89a-59b7-4bdf-8ed4-bbf5fdcbccbe.jpeg
200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe013b89a-59b7-4bdf-8ed4-bbf5fdcbccbe.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f310cf841fc88141f5e14d6c73e2d67
e0cd950b33882be4e4ff76d392648823e0d4ebe7
6bac58b0fa14de14754093383f9875059c10706ffaf01eda8718a71624bb3f7b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe013b89a-59b7-4bdf-8ed4-bbf5fdcbccbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5825
x-amzn-requestid: 65a3ff9f-d3fe-416e-a9a1-767b8add6b68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey3Ex2IAMF7Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-00da48525f5bdad776b62fa6;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 23NoJI_4ogUWyNzMsJgWbYQ-TGUs7lgH3IXSxEWZEWQRmNV5OaHqYQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 21:45:28 GMT
age: 28794
etag: "e0cd950b33882be4e4ff76d392648823e0d4ebe7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2580
Expires: Mon, 05 Sep 2022 06:28:22 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0c070a1-cfda-4086-99d7-f4d72a7f9d8f.jpeg
200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0c070a1-cfda-4086-99d7-f4d72a7f9d8f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d19ae40ba0a61c69d0bbc87ed8da454
064232b77c890404a294500597e562b3945453be
a2d2bfe5d44394511949665e36492706dd655a46198bf7ae555033eedfa46d83
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0c070a1-cfda-4086-99d7-f4d72a7f9d8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6486
x-amzn-requestid: 94ff7301-4895-4fad-81db-a2774c8db061
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3OeaFDYIAMFQBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312c45c-450abb734f447a2c2db18aae;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 03:05:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PuxGNBXMMm2SeJckWUMNQfuKBX6IbhwaIyGPuDGjnRI6C5YIor9flQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 03:43:50 GMT
age: 7292
etag: "064232b77c890404a294500597e562b3945453be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2580
Expires: Mon, 05 Sep 2022 06:28:22 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b72072c-e8d1-4d87-8b3d-88a344002b6a.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b72072c-e8d1-4d87-8b3d-88a344002b6a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3fa914e288ca54908967c65ae6000607
b470ee66546236df6932247b8de7982a081e3170
04dc2796377fdd129e03e1a1902207ba57f23933f4296908794097353f2de13f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b72072c-e8d1-4d87-8b3d-88a344002b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9632
x-amzn-requestid: aee8c394-86b7-4b7e-8a1b-134b4de8454f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTxZF0rIAMFodg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c666f-2f2a9e20556d8899447fc662;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:10:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 77bXbuBtQ1AUHqlplB8HwTfSd83WZTTsmHsN2hZiTk83XvP5Bdpfhg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 14:24:28 GMT
age: 55254
etag: "b470ee66546236df6932247b8de7982a081e3170"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2436f1ff0e3f7af4fa6c0dd4c09226df
65a7f726df36a84b061934eed478966b76e4f210
d4a10eed10567cdc3238bc4beef2b13ae4de8fd83d0db6cb6599c97fb3638529
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D4A10EED10567CDC3238BC4BEEF2B13AE4DE8FD83D0DB6CB6599C97FB3638529"
Last-Modified: Sun, 04 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10361
Expires: Mon, 05 Sep 2022 08:38:03 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
rtbrennab.com/banner/in/show/?mid=845152566&pid=0&site=31247&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=12774&price=0&is_cpm=1&cpm=0.0048&ecpm=0.0048&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-1&site_id=0&spot_id=31247&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=iframeAd&iabcat=IAB25&min_cpm=0.00457377&placement_type_id=8&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31247&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=%2F%2Fin16.zog.link%2Fin%2Ftishow%2F%3Fkatds_ep%3DT7KbbxqVeS8SkEq-RsYWcEtmrJamiwNre-T-gpaMR0nFFi41v6ESymQoRjXAn5wH_LoQMUlY1ju9LkjjkG5XND1WwdvDC67z-yuUgOHMbc5L4TJ7CvSZaN13ojLNtV3FeawPwuy8dLMzjDYzHA2EBzwJ5viEIDi4Rci7vfZtWDnmebCHejma5K3fu5LSYgjSiNrZPLmRYNFVft_EheB9M3RDAQMctCnXvoYLOEFeXl-zpyGrqoGcGXg9WxnBqH42jDl84mCw9mKI8vzyZuBYNxxlsZoNG4n3mZXzW7YGXAYLfKT3zi3hvYBICEJdFgrUNdn_4zJmdeaUDZA-r7JqYMzVlRE7dfufsqLzFbUCq27pm76GF1dsdjNeXkBeWqLxZNF2yr_Pdn3MGlg4ijEJv_0T8I-eP5c0QD_-SERRNLRYsJJ61WfRcGlkisR5fagE5gCexJQ3NqqvvDvuJBY558wX-7wNbYbezZ3Oz3bMy-YvTjCkkoJd7gwcjP8R5NSpyCHWoUHjx78yFw4NZn2dQODNOw1qH8KyLl3MPG7PtZ7l6Vd3SDLjFMo4Q0ZFh9wBNwcWXW1ysY-Minn4kES1Fw5SA0nTEEQX99Iikd8pfDx4MxWj8vebwDpvfRu0ObszHucspvD_G1AgiLryTxqeYzF-foU6NDoW87ZuHhB6oyphebDAjjxgs8MNrLUvqW4OEvExNFgCvTiFtNYf8N3FCYiKA0c-_zzQjVnkISNfLGD1Y3UNqT7VNoKt0ThbdkszwtJArv-VMr3ctuEw50psqvLmMXxqJ4xMsAHJMeLpPDz3nuyDd4JIyTouduvAxUdCfNxHm0xdqXhWZ9HgH1Wjob5cPrDzNF9GJ5qUMjxPJnb8PVzwgJSTnTr9dHXjHGRAGi1vEJsjJ_x3208E-4rqTRapxmCTymfcvnFqxF2tv95HdPmShl6a392DfRDtx49nxj0MbHuiEoibXCstVomT5RcRMXQ598Y74AkJswlP8AE1jxaTHBD8xdrM9yEcHuo5AJtCV3icX5ZdjjMrlDHk75x6qnsSPt6KRbUldSnRRMNoE0drm6xti9im1jkqpql4c4o4g0BuJ6LgOPKUEfiE_Hs_tQfhhEhPqKSl3R9zUk8fmvAXwISwPKk7IIobUr9Rc5cbiwpX0R9wHtiwevSKfQuWhi_7eWyJRWo5EdDOyDBPGmg4hRDWuN6bM6fswBrpwpAKqRejL0QfGWnNyxt6Ww9f2KBlXXovjr7GNjkXNviULipw_T2JEtKA-CdbotXtw-O1ObcGYV84Tro4mi3GSMwiIHDS-yOJMVzpzoW7XBRU0gOW0kQ2AHBTZpvCdMgI9-cS8ih0Ioh1SoTXxRGY8rCV_X0YDjcp-gRLG_YwyT0RIA8SNjRe8yRaNRlC89IPNn_HehtA5BYfkS_8U5YzLfAnTH2FvILUMN25cxz27BJKsKnAhp9D9IdUUPoChpPFJlNXUZGJBLQ0xYKIkkegsVhoebL8QWjcIcdPzZA6OgJB1nJCLgHY0AYhGuhlHTRU59dpHZoDlX8r9dv0EdD9OB8CJr9qRDHEkBfvaj5x5Q2vedIVU5cfacoaCQ_1Xqq0OCAnf5Ju9q8K4cco_nv8jSy6yarQKETCQSgs2LtOb3MyUXrcMpnvl8qbz0mKzWFQWmX4Y7WK9ulkna1MpPDpl9LXCy1myewi9RJqP9hnv9lnPKd_E415UeKfAMc3opZA7wbBnxbe7cyBCd-KzVk5ca2Y8J2txR4eU_pTYIHki3UYj9HSW-gA5ED1JnHI1qxSwiOh_h8uNABRBiFc1_et89KjCgt3W8LFGim3Zvf9AgyO_vEH0tZMYPcAosTCHfiUzgxSRa-ieKkolrilXbc47dLxhnQmcqql44qhaq2k2v4V36qDtfgASgRH0eYq5CcF9ODN3ztMjgGAbrIOC9bicxr1QEaSQC_dC6uN-oBgBLX86J0PJ71-uBGw5QDKSeZznXD46Lw8435kRpT6LTGb_VfCwnvn7vbba-l65bO-g6WzgGbmdI8Y0sKfkNGDYBLMqakoCdIejWtc%26sp%3D%24%7BSECOND_PRICE%7D&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=845152566&pid=0&site=31247&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=12774&price=0&is_cpm=1&cpm=0.0048&ecpm=0.0048&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-1&site_id=0&spot_id=31247&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=iframeAd&iabcat=IAB25&min_cpm=0.00457377&placement_type_id=8&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31247&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=%2F%2Fin16.zog.link%2Fin%2Ftishow%2F%3Fkatds_ep%3DT7KbbxqVeS8SkEq-RsYWcEtmrJamiwNre-T-gpaMR0nFFi41v6ESymQoRjXAn5wH_LoQMUlY1ju9LkjjkG5XND1WwdvDC67z-yuUgOHMbc5L4TJ7CvSZaN13ojLNtV3FeawPwuy8dLMzjDYzHA2EBzwJ5viEIDi4Rci7vfZtWDnmebCHejma5K3fu5LSYgjSiNrZPLmRYNFVft_EheB9M3RDAQMctCnXvoYLOEFeXl-zpyGrqoGcGXg9WxnBqH42jDl84mCw9mKI8vzyZuBYNxxlsZoNG4n3mZXzW7YGXAYLfKT3zi3hvYBICEJdFgrUNdn_4zJmdeaUDZA-r7JqYMzVlRE7dfufsqLzFbUCq27pm76GF1dsdjNeXkBeWqLxZNF2yr_Pdn3MGlg4ijEJv_0T8I-eP5c0QD_-SERRNLRYsJJ61WfRcGlkisR5fagE5gCexJQ3NqqvvDvuJBY558wX-7wNbYbezZ3Oz3bMy-YvTjCkkoJd7gwcjP8R5NSpyCHWoUHjx78yFw4NZn2dQODNOw1qH8KyLl3MPG7PtZ7l6Vd3SDLjFMo4Q0ZFh9wBNwcWXW1ysY-Minn4kES1Fw5SA0nTEEQX99Iikd8pfDx4MxWj8vebwDpvfRu0ObszHucspvD_G1AgiLryTxqeYzF-foU6NDoW87ZuHhB6oyphebDAjjxgs8MNrLUvqW4OEvExNFgCvTiFtNYf8N3FCYiKA0c-_zzQjVnkISNfLGD1Y3UNqT7VNoKt0ThbdkszwtJArv-VMr3ctuEw50psqvLmMXxqJ4xMsAHJMeLpPDz3nuyDd4JIyTouduvAxUdCfNxHm0xdqXhWZ9HgH1Wjob5cPrDzNF9GJ5qUMjxPJnb8PVzwgJSTnTr9dHXjHGRAGi1vEJsjJ_x3208E-4rqTRapxmCTymfcvnFqxF2tv95HdPmShl6a392DfRDtx49nxj0MbHuiEoibXCstVomT5RcRMXQ598Y74AkJswlP8AE1jxaTHBD8xdrM9yEcHuo5AJtCV3icX5ZdjjMrlDHk75x6qnsSPt6KRbUldSnRRMNoE0drm6xti9im1jkqpql4c4o4g0BuJ6LgOPKUEfiE_Hs_tQfhhEhPqKSl3R9zUk8fmvAXwISwPKk7IIobUr9Rc5cbiwpX0R9wHtiwevSKfQuWhi_7eWyJRWo5EdDOyDBPGmg4hRDWuN6bM6fswBrpwpAKqRejL0QfGWnNyxt6Ww9f2KBlXXovjr7GNjkXNviULipw_T2JEtKA-CdbotXtw-O1ObcGYV84Tro4mi3GSMwiIHDS-yOJMVzpzoW7XBRU0gOW0kQ2AHBTZpvCdMgI9-cS8ih0Ioh1SoTXxRGY8rCV_X0YDjcp-gRLG_YwyT0RIA8SNjRe8yRaNRlC89IPNn_HehtA5BYfkS_8U5YzLfAnTH2FvILUMN25cxz27BJKsKnAhp9D9IdUUPoChpPFJlNXUZGJBLQ0xYKIkkegsVhoebL8QWjcIcdPzZA6OgJB1nJCLgHY0AYhGuhlHTRU59dpHZoDlX8r9dv0EdD9OB8CJr9qRDHEkBfvaj5x5Q2vedIVU5cfacoaCQ_1Xqq0OCAnf5Ju9q8K4cco_nv8jSy6yarQKETCQSgs2LtOb3MyUXrcMpnvl8qbz0mKzWFQWmX4Y7WK9ulkna1MpPDpl9LXCy1myewi9RJqP9hnv9lnPKd_E415UeKfAMc3opZA7wbBnxbe7cyBCd-KzVk5ca2Y8J2txR4eU_pTYIHki3UYj9HSW-gA5ED1JnHI1qxSwiOh_h8uNABRBiFc1_et89KjCgt3W8LFGim3Zvf9AgyO_vEH0tZMYPcAosTCHfiUzgxSRa-ieKkolrilXbc47dLxhnQmcqql44qhaq2k2v4V36qDtfgASgRH0eYq5CcF9ODN3ztMjgGAbrIOC9bicxr1QEaSQC_dC6uN-oBgBLX86J0PJ71-uBGw5QDKSeZznXD46Lw8435kRpT6LTGb_VfCwnvn7vbba-l65bO-g6WzgGbmdI8Y0sKfkNGDYBLMqakoCdIejWtc%26sp%3D%24%7BSECOND_PRICE%7D&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=845152566&pid=0&site=31247&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=12774&price=0&is_cpm=1&cpm=0.0048&ecpm=0.0048&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-1&site_id=0&spot_id=31247&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=iframeAd&iabcat=IAB25&min_cpm=0.00457377&placement_type_id=8&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31247&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=%2F%2Fin16.zog.link%2Fin%2Ftishow%2F%3Fkatds_ep%3DT7KbbxqVeS8SkEq-RsYWcEtmrJamiwNre-T-gpaMR0nFFi41v6ESymQoRjXAn5wH_LoQMUlY1ju9LkjjkG5XND1WwdvDC67z-yuUgOHMbc5L4TJ7CvSZaN13ojLNtV3FeawPwuy8dLMzjDYzHA2EBzwJ5viEIDi4Rci7vfZtWDnmebCHejma5K3fu5LSYgjSiNrZPLmRYNFVft_EheB9M3RDAQMctCnXvoYLOEFeXl-zpyGrqoGcGXg9WxnBqH42jDl84mCw9mKI8vzyZuBYNxxlsZoNG4n3mZXzW7YGXAYLfKT3zi3hvYBICEJdFgrUNdn_4zJmdeaUDZA-r7JqYMzVlRE7dfufsqLzFbUCq27pm76GF1dsdjNeXkBeWqLxZNF2yr_Pdn3MGlg4ijEJv_0T8I-eP5c0QD_-SERRNLRYsJJ61WfRcGlkisR5fagE5gCexJQ3NqqvvDvuJBY558wX-7wNbYbezZ3Oz3bMy-YvTjCkkoJd7gwcjP8R5NSpyCHWoUHjx78yFw4NZn2dQODNOw1qH8KyLl3MPG7PtZ7l6Vd3SDLjFMo4Q0ZFh9wBNwcWXW1ysY-Minn4kES1Fw5SA0nTEEQX99Iikd8pfDx4MxWj8vebwDpvfRu0ObszHucspvD_G1AgiLryTxqeYzF-foU6NDoW87ZuHhB6oyphebDAjjxgs8MNrLUvqW4OEvExNFgCvTiFtNYf8N3FCYiKA0c-_zzQjVnkISNfLGD1Y3UNqT7VNoKt0ThbdkszwtJArv-VMr3ctuEw50psqvLmMXxqJ4xMsAHJMeLpPDz3nuyDd4JIyTouduvAxUdCfNxHm0xdqXhWZ9HgH1Wjob5cPrDzNF9GJ5qUMjxPJnb8PVzwgJSTnTr9dHXjHGRAGi1vEJsjJ_x3208E-4rqTRapxmCTymfcvnFqxF2tv95HdPmShl6a392DfRDtx49nxj0MbHuiEoibXCstVomT5RcRMXQ598Y74AkJswlP8AE1jxaTHBD8xdrM9yEcHuo5AJtCV3icX5ZdjjMrlDHk75x6qnsSPt6KRbUldSnRRMNoE0drm6xti9im1jkqpql4c4o4g0BuJ6LgOPKUEfiE_Hs_tQfhhEhPqKSl3R9zUk8fmvAXwISwPKk7IIobUr9Rc5cbiwpX0R9wHtiwevSKfQuWhi_7eWyJRWo5EdDOyDBPGmg4hRDWuN6bM6fswBrpwpAKqRejL0QfGWnNyxt6Ww9f2KBlXXovjr7GNjkXNviULipw_T2JEtKA-CdbotXtw-O1ObcGYV84Tro4mi3GSMwiIHDS-yOJMVzpzoW7XBRU0gOW0kQ2AHBTZpvCdMgI9-cS8ih0Ioh1SoTXxRGY8rCV_X0YDjcp-gRLG_YwyT0RIA8SNjRe8yRaNRlC89IPNn_HehtA5BYfkS_8U5YzLfAnTH2FvILUMN25cxz27BJKsKnAhp9D9IdUUPoChpPFJlNXUZGJBLQ0xYKIkkegsVhoebL8QWjcIcdPzZA6OgJB1nJCLgHY0AYhGuhlHTRU59dpHZoDlX8r9dv0EdD9OB8CJr9qRDHEkBfvaj5x5Q2vedIVU5cfacoaCQ_1Xqq0OCAnf5Ju9q8K4cco_nv8jSy6yarQKETCQSgs2LtOb3MyUXrcMpnvl8qbz0mKzWFQWmX4Y7WK9ulkna1MpPDpl9LXCy1myewi9RJqP9hnv9lnPKd_E415UeKfAMc3opZA7wbBnxbe7cyBCd-KzVk5ca2Y8J2txR4eU_pTYIHki3UYj9HSW-gA5ED1JnHI1qxSwiOh_h8uNABRBiFc1_et89KjCgt3W8LFGim3Zvf9AgyO_vEH0tZMYPcAosTCHfiUzgxSRa-ieKkolrilXbc47dLxhnQmcqql44qhaq2k2v4V36qDtfgASgRH0eYq5CcF9ODN3ztMjgGAbrIOC9bicxr1QEaSQC_dC6uN-oBgBLX86J0PJ71-uBGw5QDKSeZznXD46Lw8435kRpT6LTGb_VfCwnvn7vbba-l65bO-g6WzgGbmdI8Y0sKfkNGDYBLMqakoCdIejWtc%26sp%3D%24%7BSECOND_PRICE%7D&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem= HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtbrennab.com/get/?go=1&data=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
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: //in16.zog.link/in/tishow/?katds_ep=T7KbbxqVeS8SkEq-RsYWcEtmrJamiwNre-T-gpaMR0nFFi41v6ESymQoRjXAn5wH_LoQMUlY1ju9LkjjkG5XND1WwdvDC67z-yuUgOHMbc5L4TJ7CvSZaN13ojLNtV3FeawPwuy8dLMzjDYzHA2EBzwJ5viEIDi4Rci7vfZtWDnmebCHejma5K3fu5LSYgjSiNrZPLmRYNFVft_EheB9M3RDAQMctCnXvoYLOEFeXl-zpyGrqoGcGXg9WxnBqH42jDl84mCw9mKI8vzyZuBYNxxlsZoNG4n3mZXzW7YGXAYLfKT3zi3hvYBICEJdFgrUNdn_4zJmdeaUDZA-r7JqYMzVlRE7dfufsqLzFbUCq27pm76GF1dsdjNeXkBeWqLxZNF2yr_Pdn3MGlg4ijEJv_0T8I-eP5c0QD_-SERRNLRYsJJ61WfRcGlkisR5fagE5gCexJQ3NqqvvDvuJBY558wX-7wNbYbezZ3Oz3bMy-YvTjCkkoJd7gwcjP8R5NSpyCHWoUHjx78yFw4NZn2dQODNOw1qH8KyLl3MPG7PtZ7l6Vd3SDLjFMo4Q0ZFh9wBNwcWXW1ysY-Minn4kES1Fw5SA0nTEEQX99Iikd8pfDx4MxWj8vebwDpvfRu0ObszHucspvD_G1AgiLryTxqeYzF-foU6NDoW87ZuHhB6oyphebDAjjxgs8MNrLUvqW4OEvExNFgCvTiFtNYf8N3FCYiKA0c-_zzQjVnkISNfLGD1Y3UNqT7VNoKt0ThbdkszwtJArv-VMr3ctuEw50psqvLmMXxqJ4xMsAHJMeLpPDz3nuyDd4JIyTouduvAxUdCfNxHm0xdqXhWZ9HgH1Wjob5cPrDzNF9GJ5qUMjxPJnb8PVzwgJSTnTr9dHXjHGRAGi1vEJsjJ_x3208E-4rqTRapxmCTymfcvnFqxF2tv95HdPmShl6a392DfRDtx49nxj0MbHuiEoibXCstVomT5RcRMXQ598Y74AkJswlP8AE1jxaTHBD8xdrM9yEcHuo5AJtCV3icX5ZdjjMrlDHk75x6qnsSPt6KRbUldSnRRMNoE0drm6xti9im1jkqpql4c4o4g0BuJ6LgOPKUEfiE_Hs_tQfhhEhPqKSl3R9zUk8fmvAXwISwPKk7IIobUr9Rc5cbiwpX0R9wHtiwevSKfQuWhi_7eWyJRWo5EdDOyDBPGmg4hRDWuN6bM6fswBrpwpAKqRejL0QfGWnNyxt6Ww9f2KBlXXovjr7GNjkXNviULipw_T2JEtKA-CdbotXtw-O1ObcGYV84Tro4mi3GSMwiIHDS-yOJMVzpzoW7XBRU0gOW0kQ2AHBTZpvCdMgI9-cS8ih0Ioh1SoTXxRGY8rCV_X0YDjcp-gRLG_YwyT0RIA8SNjRe8yRaNRlC89IPNn_HehtA5BYfkS_8U5YzLfAnTH2FvILUMN25cxz27BJKsKnAhp9D9IdUUPoChpPFJlNXUZGJBLQ0xYKIkkegsVhoebL8QWjcIcdPzZA6OgJB1nJCLgHY0AYhGuhlHTRU59dpHZoDlX8r9dv0EdD9OB8CJr9qRDHEkBfvaj5x5Q2vedIVU5cfacoaCQ_1Xqq0OCAnf5Ju9q8K4cco_nv8jSy6yarQKETCQSgs2LtOb3MyUXrcMpnvl8qbz0mKzWFQWmX4Y7WK9ulkna1MpPDpl9LXCy1myewi9RJqP9hnv9lnPKd_E415UeKfAMc3opZA7wbBnxbe7cyBCd-KzVk5ca2Y8J2txR4eU_pTYIHki3UYj9HSW-gA5ED1JnHI1qxSwiOh_h8uNABRBiFc1_et89KjCgt3W8LFGim3Zvf9AgyO_vEH0tZMYPcAosTCHfiUzgxSRa-ieKkolrilXbc47dLxhnQmcqql44qhaq2k2v4V36qDtfgASgRH0eYq5CcF9ODN3ztMjgGAbrIOC9bicxr1QEaSQC_dC6uN-oBgBLX86J0PJ71-uBGw5QDKSeZznXD46Lw8435kRpT6LTGb_VfCwnvn7vbba-l65bO-g6WzgGbmdI8Y0sKfkNGDYBLMqakoCdIejWtc&sp=${SECOND_PRICE}
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2436f1ff0e3f7af4fa6c0dd4c09226df
65a7f726df36a84b061934eed478966b76e4f210
d4a10eed10567cdc3238bc4beef2b13ae4de8fd83d0db6cb6599c97fb3638529
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D4A10EED10567CDC3238BC4BEEF2B13AE4DE8FD83D0DB6CB6599C97FB3638529"
Last-Modified: Sun, 04 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10361
Expires: Mon, 05 Sep 2022 08:38:03 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2436f1ff0e3f7af4fa6c0dd4c09226df
65a7f726df36a84b061934eed478966b76e4f210
d4a10eed10567cdc3238bc4beef2b13ae4de8fd83d0db6cb6599c97fb3638529
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D4A10EED10567CDC3238BC4BEEF2B13AE4DE8FD83D0DB6CB6599C97FB3638529"
Last-Modified: Sun, 04 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10361
Expires: Mon, 05 Sep 2022 08:38:03 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F404ac7e7-f8ba-4b04-b736-5cab0995739f.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F404ac7e7-f8ba-4b04-b736-5cab0995739f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8a5ed2a9c430f2f02da773c400d096e0
618252c5082ccfeeb8bc92aecba4485c48ac4206
948158a29f15f5f5ab45f541b665269d43bfc1e3b444ee4ecb9ba715d5b616d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F404ac7e7-f8ba-4b04-b736-5cab0995739f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11003
x-amzn-requestid: 29b9c3bc-4b10-44ed-9bc0-111a672c1d25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqpJpGjxoAMFzSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630dbbd7-1547b64d2fc3052e510f6218;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:27:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TGpnDyF8_8hy5bs5denuqKSMzLl98Oz7YHx4MAOMr_Ah-POktYDXSA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:03:42 GMT
age: 27700
etag: "618252c5082ccfeeb8bc92aecba4485c48ac4206"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=2079025731&pid=0&site=31253&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-7&site_id=0&spot_id=31253&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.002512&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31253&banner_width=728&banner_height=90&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31253%26source%3D14036%26idzone%3D3540793%26w%3D728%26h%3D90%26mo%3D%26ve%3D%26site_id%3D31253%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31253%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=2079025731&pid=0&site=31253&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-7&site_id=0&spot_id=31253&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.002512&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31253&banner_width=728&banner_height=90&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31253%26source%3D14036%26idzone%3D3540793%26w%3D728%26h%3D90%26mo%3D%26ve%3D%26site_id%3D31253%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31253%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=2079025731&pid=0&site=31253&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-7&site_id=0&spot_id=31253&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.002512&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31253&banner_width=728&banner_height=90&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31253%26source%3D14036%26idzone%3D3540793%26w%3D728%26h%3D90%26mo%3D%26ve%3D%26site_id%3D31253%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31253%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem= HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtbrennab.com/get/?go=1&data=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
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://btds.zog.link/in/912/?sid=31253&source=14036&idzone=3540793&w=728&h=90&mo=&ve=&site_id=31253&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31253&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=698964449&pid=0&site=31244&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-2&site_id=0&spot_id=31244&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.00673284&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31244&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31244%26source%3D14036%26idzone%3D1500742%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31244%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31244%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=698964449&pid=0&site=31244&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-2&site_id=0&spot_id=31244&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.00673284&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31244&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31244%26source%3D14036%26idzone%3D1500742%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31244%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31244%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=698964449&pid=0&site=31244&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-2&site_id=0&spot_id=31244&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.00673284&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31244&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31244%26source%3D14036%26idzone%3D1500742%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31244%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31244%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem= HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtbrennab.com/get/?go=1&data=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
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://btds.zog.link/in/912/?sid=31244&source=14036&idzone=1500742&w=300&h=250&mo=&ve=&site_id=31244&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31244&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=2047131199&pid=0&site=31245&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-5&site_id=0&spot_id=31245&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.00478279&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31245&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31245%26source%3D14036%26idzone%3D1500748%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31245%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31245%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=2047131199&pid=0&site=31245&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-5&site_id=0&spot_id=31245&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.00478279&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31245&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31245%26source%3D14036%26idzone%3D1500748%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31245%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31245%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=2047131199&pid=0&site=31245&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-5&site_id=0&spot_id=31245&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.00478279&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31245&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31245%26source%3D14036%26idzone%3D1500748%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31245%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31245%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem= HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtbrennab.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNDk2LCJzcGFjZWlkIjozMTI0NSwidHlwZSI6InBvcCIsImlkem9uZSI6MTUwMDc0OCwiYWRfdGFncyI6IlN0cmFpZ2h0JTJDSmFwYW5lc2UiLCJsYWJlbHMiOiIiLCJhbGxvd2VkX2xhYmVscyI6IiIsInRpdGxlIjoiIiwic3ViaWQiOiIxNDAzNiIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjMxMjQ1LCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjo4LCJzdHJhdGFnZW0iOm51bGwsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzc1OH0sImJhbm5lciI6eyJ3IjozMDAsImgiOjI1MH19XSwic2l0ZSI6eyJpZCI6IjMxMjQ1IiwiY2F0IjpbIklBQjI1Il0sInBhZ2UiOiJodHRwczovL3Vwb3JuaWEuY29tL3ZpZGVvcy8yNjM0OTIvamFwYW5lc2UtZ3Jhbm55LWNyZWFtZWQtYnktbm90LWhlci1ncmFuZHNvbi11bmNlbnNvcmVkLz9wcm9tbz0xNDAzNiJ9LCJkZXZpY2UiOnsidyI6MTI4MCwiaCI6MTAyNH0sInVzZXIiOnsiaWQiOiI5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OCJ9LCJleHQiOnsiZHQiOjE2NjIzNTY3MTgxNzh9fQ==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://btds.zog.link/in/912/?sid=31245&source=14036&idzone=1500748&w=300&h=250&mo=&ve=&site_id=31245&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31245&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
X-Firefox-Spdy: h2
mc.yandex.ru/watch/33008329?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A964295414991%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A1031925893%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/33008329?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A964295414991%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A1031925893%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch/33008329?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A964295414991%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A1031925893%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/33008329/1?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A964295414991%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A1031925893%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20%28Uncensored%29%20%7C%20Upornia.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Mon, 05 Sep 2022 05:45:21 GMT
access-control-allow-origin: https://upornia.com
set-cookie: yandexuid=8286145681662356721; Expires=Tue, 05-Sep-2023 05:45:21 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=8286145681662356721; Expires=Tue, 05-Sep-2023 05:45:21 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1516831251662356721; Path=/; SameSite=None; Secure
i=zjGLFy5NNvSfZgss3wNRFIquwWv63KUAEnnZ02HKqYN3JfvQKVsH1hfJY6NNTX4hdV5tdvQ+kE4fnCKmFmYc/pVL9O8=; Expires=Thu, 02-Sep-2032 05:45:19 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1693892721.yrts.1662356721#1693892721.yrtsi.1662356721; Expires=Tue, 05-Sep-2023 05:45:21 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Sep-2022 05:45:21 GMT
last-modified: Mon, 05-Sep-2022 05:45:21 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
upornia.com/kop/fame.js
200 OK 64 B IP
File type ASCII text, with no line terminators
Hash 6b66eeb43c6b287623ed83b4507be956
e6c15a2bfc8403e2f26784f98b859543753304db
c2dfd3d32507586e8314760296f249749c6ef2930772798a57e169a880619e26
GET /kop/fame.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: source=14036; kt_lang=en; _ga=GA1.2.324479761.1662356717; _gid=GA1.2.924131252.1662356717; _gat=1; _gat_UA-31745569-46=1; _ym_uid=1662356718784393520; _ym_d=1662356718
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: application/javascript
last-modified: Fri, 22 Jul 2022 07:51:23 GMT
vary: Accept-Encoding
etag: W/"62da56fb-43"
expires: Sun, 11 Sep 2022 08:54:56 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2062227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HbBlyxdpOrn1InAOqBQloi%2BoXgXadlclsfXtld9zOUHaKXC3lPITRqE3OFeNxCt5FLdIJ7GV01jqnhXc0wGtQMgVlPFNRRxKuP8Q6xvMC0VSlJTocDna5UNycnBGXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca88beaa6777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
btds.zog.link/in/912/?sid=31244&source=14036&idzone=1500742&w=300&h=250&mo=&ve=&site_id=31244&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31244&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
302 Found 0 B URL HTTP/2 btds.zog.link/in/912/?sid=31244&source=14036&idzone=1500742&w=300&h=250&mo=&ve=&site_id=31244&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31244&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/912/?sid=31244&source=14036&idzone=1500742&w=300&h=250&mo=&ve=&site_id=31244&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31244&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://12007250.pix-cdn.org/a/pjexo.html?idzone=1500742&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
vary: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
set-cookie: 912.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
1240.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
1242.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=2054449546&pid=0&site=31255&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=10765&price=0&is_cpm=1&cpm=0.006015786&ecpm=0.006015786&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-10&site_id=0&spot_id=31255&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=imageAd&iabcat=IAB25&min_cpm=0.00012799657434622844&placement_type_id=10&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31255&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs.optnx.com%2Fcimp.php%3Fdata%3DTVRZMk1qTTFOamN5TW53eVpqVTBabVJsTURRNFpXRmtaR0V3WmpVMU9UQmhOV1ZqWWpKall6VmxaQS0tfC9saWJyYXJ5LzcyMzY2Mi82MTlhODA5ZDYwZjMyMGRkZWMyZjQxNjM0OTA4NzRlZmNmMDZiZDI4LmdpZnxodHRwc3w5MS45MC40Mi4xNTR8Tk9SfDQxfHVwb3JuaWEuY29tfDcyMzY2Mnw2NjYxNzN8OTAxMDg4fDQxNzYxODh8NTA4fDUzMTQxNjB8NzU1NjMxNzR8MTV8M3wwfDB8MjUzNDR8MHwxfDcwfEVVUnxFVVJ8MXwxLjAwMTV8MjF8MzAweDI1MHwxfE5PUnx8MjB8NHwxfHw5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OHxmZWM1YmQzMzg4NjJiZmM5MDExY2U3MjI3Y2U1Yjc4OXwxfDB8dXBvcm5pYS5jb218MHwwfDB8MC4wMnwxfDB8ZXhjaGFuZ2VfYmFubmVyfDB8MHwzMTQzMjQyfC0xfDB8MzE0MzI0NHx8fDF8MTQ0MHx8MHwwfDB8MHwwfDB8MXwwfHw4fDF8TW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjB8T0t8ZjIzODEwM2YzOTlkZjU5OWJlNmVkNzFjZDFmMzFlZmU-&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=2054449546&pid=0&site=31255&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=10765&price=0&is_cpm=1&cpm=0.006015786&ecpm=0.006015786&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-10&site_id=0&spot_id=31255&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=imageAd&iabcat=IAB25&min_cpm=0.00012799657434622844&placement_type_id=10&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31255&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs.optnx.com%2Fcimp.php%3Fdata%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-&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=2054449546&pid=0&site=31255&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=10765&price=0&is_cpm=1&cpm=0.006015786&ecpm=0.006015786&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-10&site_id=0&spot_id=31255&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=imageAd&iabcat=IAB25&min_cpm=0.00012799657434622844&placement_type_id=10&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31255&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs.optnx.com%2Fcimp.php%3Fdata%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-&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem= HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtbrennab.com/get/?go=1&data=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://s.optnx.com/cimp.php?data=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-
X-Firefox-Spdy: h2
nereserv.com/in/dip?site=native-push&wl=1&event_id=f0e316a2-413e-467d-b76d-73bf20a7b94c&subid=14036&sid=3985322802&spot_id=437&created_at=2022-09-05&timezone=0&ver=7.2.0&is_native=1
200 OK 0 B URL HTTP/2 nereserv.com/in/dip?site=native-push&wl=1&event_id=f0e316a2-413e-467d-b76d-73bf20a7b94c&subid=14036&sid=3985322802&spot_id=437&created_at=2022-09-05&timezone=0&ver=7.2.0&is_native=1
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/dip?site=native-push&wl=1&event_id=f0e316a2-413e-467d-b76d-73bf20a7b94c&subid=14036&sid=3985322802&spot_id=437&created_at=2022-09-05&timezone=0&ver=7.2.0&is_native=1 HTTP/1.1
Host: nereserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=119398068&pid=0&site=31246&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-8&site_id=0&spot_id=31246&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0047265&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31246&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31246%26source%3D14036%26idzone%3D1500752%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31246%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31246%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=119398068&pid=0&site=31246&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-8&site_id=0&spot_id=31246&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0047265&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31246&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31246%26source%3D14036%26idzone%3D1500752%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31246%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31246%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=119398068&pid=0&site=31246&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-8&site_id=0&spot_id=31246&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0047265&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31246&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31246%26source%3D14036%26idzone%3D1500752%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31246%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31246%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem= HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtbrennab.com/get/?go=1&data=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
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://btds.zog.link/in/912/?sid=31246&source=14036&idzone=1500752&w=300&h=250&mo=&ve=&site_id=31246&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31246&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 01b61129dc4e1618464944f9f7771f3f
b788c3d9ca291be1394b9bc33a199589f7b21731
a38a15bfcc85ef688470cad4c86696466b6d1538b06c5c2e7c95d41959c2a47d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A38A15BFCC85EF688470CAD4C86696466B6D1538B06C5C2E7C95D41959C2A47D"
Last-Modified: Mon, 05 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17112
Expires: Mon, 05 Sep 2022 10:30:34 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
btds.zog.link/in/912/?sid=31245&source=14036&idzone=1500748&w=300&h=250&mo=&ve=&site_id=31245&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31245&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
302 Found 0 B URL HTTP/2 btds.zog.link/in/912/?sid=31245&source=14036&idzone=1500748&w=300&h=250&mo=&ve=&site_id=31245&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31245&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/912/?sid=31245&source=14036&idzone=1500748&w=300&h=250&mo=&ve=&site_id=31245&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31245&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://12007250.pix-cdn.org/a/pjexo.html?idzone=1500748&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
vary: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
set-cookie: 912.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
1240.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
1242.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
btds.zog.link/in/912/?sid=31246&source=14036&idzone=1500752&w=300&h=250&mo=&ve=&site_id=31246&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31246&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
302 Found 0 B URL HTTP/2 btds.zog.link/in/912/?sid=31246&source=14036&idzone=1500752&w=300&h=250&mo=&ve=&site_id=31246&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31246&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/912/?sid=31246&source=14036&idzone=1500752&w=300&h=250&mo=&ve=&site_id=31246&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31246&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Cookie: 912.0=1; 1624.0=1; 1625.0=1; 1240.0=1; 1242.0=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://12007250.pix-cdn.org/a/pjexo.html?idzone=1500752&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
pragma: no-cache
vary: *
cache-control: no-cache, no-store, must-revalidate
set-cookie: 912.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
1240.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
1241.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
1242.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
in16.zog.link/in/tishow/?katds_ep=T7KbbxqVeS8SkEq-RsYWcEtmrJamiwNre-T-gpaMR0nFFi41v6ESymQoRjXAn5wH_LoQMUlY1ju9LkjjkG5XND1WwdvDC67z-yuUgOHMbc5L4TJ7CvSZaN13ojLNtV3FeawPwuy8dLMzjDYzHA2EBzwJ5viEIDi4Rci7vfZtWDnmebCHejma5K3fu5LSYgjSiNrZPLmRYNFVft_EheB9M3RDAQMctCnXvoYLOEFeXl-zpyGrqoGcGXg9WxnBqH42jDl84mCw9mKI8vzyZuBYNxxlsZoNG4n3mZXzW7YGXAYLfKT3zi3hvYBICEJdFgrUNdn_4zJmdeaUDZA-r7JqYMzVlRE7dfufsqLzFbUCq27pm76GF1dsdjNeXkBeWqLxZNF2yr_Pdn3MGlg4ijEJv_0T8I-eP5c0QD_-SERRNLRYsJJ61WfRcGlkisR5fagE5gCexJQ3NqqvvDvuJBY558wX-7wNbYbezZ3Oz3bMy-YvTjCkkoJd7gwcjP8R5NSpyCHWoUHjx78yFw4NZn2dQODNOw1qH8KyLl3MPG7PtZ7l6Vd3SDLjFMo4Q0ZFh9wBNwcWXW1ysY-Minn4kES1Fw5SA0nTEEQX99Iikd8pfDx4MxWj8vebwDpvfRu0ObszHucspvD_G1AgiLryTxqeYzF-foU6NDoW87ZuHhB6oyphebDAjjxgs8MNrLUvqW4OEvExNFgCvTiFtNYf8N3FCYiKA0c-_zzQjVnkISNfLGD1Y3UNqT7VNoKt0ThbdkszwtJArv-VMr3ctuEw50psqvLmMXxqJ4xMsAHJMeLpPDz3nuyDd4JIyTouduvAxUdCfNxHm0xdqXhWZ9HgH1Wjob5cPrDzNF9GJ5qUMjxPJnb8PVzwgJSTnTr9dHXjHGRAGi1vEJsjJ_x3208E-4rqTRapxmCTymfcvnFqxF2tv95HdPmShl6a392DfRDtx49nxj0MbHuiEoibXCstVomT5RcRMXQ598Y74AkJswlP8AE1jxaTHBD8xdrM9yEcHuo5AJtCV3icX5ZdjjMrlDHk75x6qnsSPt6KRbUldSnRRMNoE0drm6xti9im1jkqpql4c4o4g0BuJ6LgOPKUEfiE_Hs_tQfhhEhPqKSl3R9zUk8fmvAXwISwPKk7IIobUr9Rc5cbiwpX0R9wHtiwevSKfQuWhi_7eWyJRWo5EdDOyDBPGmg4hRDWuN6bM6fswBrpwpAKqRejL0QfGWnNyxt6Ww9f2KBlXXovjr7GNjkXNviULipw_T2JEtKA-CdbotXtw-O1ObcGYV84Tro4mi3GSMwiIHDS-yOJMVzpzoW7XBRU0gOW0kQ2AHBTZpvCdMgI9-cS8ih0Ioh1SoTXxRGY8rCV_X0YDjcp-gRLG_YwyT0RIA8SNjRe8yRaNRlC89IPNn_HehtA5BYfkS_8U5YzLfAnTH2FvILUMN25cxz27BJKsKnAhp9D9IdUUPoChpPFJlNXUZGJBLQ0xYKIkkegsVhoebL8QWjcIcdPzZA6OgJB1nJCLgHY0AYhGuhlHTRU59dpHZoDlX8r9dv0EdD9OB8CJr9qRDHEkBfvaj5x5Q2vedIVU5cfacoaCQ_1Xqq0OCAnf5Ju9q8K4cco_nv8jSy6yarQKETCQSgs2LtOb3MyUXrcMpnvl8qbz0mKzWFQWmX4Y7WK9ulkna1MpPDpl9LXCy1myewi9RJqP9hnv9lnPKd_E415UeKfAMc3opZA7wbBnxbe7cyBCd-KzVk5ca2Y8J2txR4eU_pTYIHki3UYj9HSW-gA5ED1JnHI1qxSwiOh_h8uNABRBiFc1_et89KjCgt3W8LFGim3Zvf9AgyO_vEH0tZMYPcAosTCHfiUzgxSRa-ieKkolrilXbc47dLxhnQmcqql44qhaq2k2v4V36qDtfgASgRH0eYq5CcF9ODN3ztMjgGAbrIOC9bicxr1QEaSQC_dC6uN-oBgBLX86J0PJ71-uBGw5QDKSeZznXD46Lw8435kRpT6LTGb_VfCwnvn7vbba-l65bO-g6WzgGbmdI8Y0sKfkNGDYBLMqakoCdIejWtc&sp=${SECOND_PRICE}
302 Found 0 B URL HTTP/2 in16.zog.link/in/tishow/?katds_ep=T7KbbxqVeS8SkEq-RsYWcEtmrJamiwNre-T-gpaMR0nFFi41v6ESymQoRjXAn5wH_LoQMUlY1ju9LkjjkG5XND1WwdvDC67z-yuUgOHMbc5L4TJ7CvSZaN13ojLNtV3FeawPwuy8dLMzjDYzHA2EBzwJ5viEIDi4Rci7vfZtWDnmebCHejma5K3fu5LSYgjSiNrZPLmRYNFVft_EheB9M3RDAQMctCnXvoYLOEFeXl-zpyGrqoGcGXg9WxnBqH42jDl84mCw9mKI8vzyZuBYNxxlsZoNG4n3mZXzW7YGXAYLfKT3zi3hvYBICEJdFgrUNdn_4zJmdeaUDZA-r7JqYMzVlRE7dfufsqLzFbUCq27pm76GF1dsdjNeXkBeWqLxZNF2yr_Pdn3MGlg4ijEJv_0T8I-eP5c0QD_-SERRNLRYsJJ61WfRcGlkisR5fagE5gCexJQ3NqqvvDvuJBY558wX-7wNbYbezZ3Oz3bMy-YvTjCkkoJd7gwcjP8R5NSpyCHWoUHjx78yFw4NZn2dQODNOw1qH8KyLl3MPG7PtZ7l6Vd3SDLjFMo4Q0ZFh9wBNwcWXW1ysY-Minn4kES1Fw5SA0nTEEQX99Iikd8pfDx4MxWj8vebwDpvfRu0ObszHucspvD_G1AgiLryTxqeYzF-foU6NDoW87ZuHhB6oyphebDAjjxgs8MNrLUvqW4OEvExNFgCvTiFtNYf8N3FCYiKA0c-_zzQjVnkISNfLGD1Y3UNqT7VNoKt0ThbdkszwtJArv-VMr3ctuEw50psqvLmMXxqJ4xMsAHJMeLpPDz3nuyDd4JIyTouduvAxUdCfNxHm0xdqXhWZ9HgH1Wjob5cPrDzNF9GJ5qUMjxPJnb8PVzwgJSTnTr9dHXjHGRAGi1vEJsjJ_x3208E-4rqTRapxmCTymfcvnFqxF2tv95HdPmShl6a392DfRDtx49nxj0MbHuiEoibXCstVomT5RcRMXQ598Y74AkJswlP8AE1jxaTHBD8xdrM9yEcHuo5AJtCV3icX5ZdjjMrlDHk75x6qnsSPt6KRbUldSnRRMNoE0drm6xti9im1jkqpql4c4o4g0BuJ6LgOPKUEfiE_Hs_tQfhhEhPqKSl3R9zUk8fmvAXwISwPKk7IIobUr9Rc5cbiwpX0R9wHtiwevSKfQuWhi_7eWyJRWo5EdDOyDBPGmg4hRDWuN6bM6fswBrpwpAKqRejL0QfGWnNyxt6Ww9f2KBlXXovjr7GNjkXNviULipw_T2JEtKA-CdbotXtw-O1ObcGYV84Tro4mi3GSMwiIHDS-yOJMVzpzoW7XBRU0gOW0kQ2AHBTZpvCdMgI9-cS8ih0Ioh1SoTXxRGY8rCV_X0YDjcp-gRLG_YwyT0RIA8SNjRe8yRaNRlC89IPNn_HehtA5BYfkS_8U5YzLfAnTH2FvILUMN25cxz27BJKsKnAhp9D9IdUUPoChpPFJlNXUZGJBLQ0xYKIkkegsVhoebL8QWjcIcdPzZA6OgJB1nJCLgHY0AYhGuhlHTRU59dpHZoDlX8r9dv0EdD9OB8CJr9qRDHEkBfvaj5x5Q2vedIVU5cfacoaCQ_1Xqq0OCAnf5Ju9q8K4cco_nv8jSy6yarQKETCQSgs2LtOb3MyUXrcMpnvl8qbz0mKzWFQWmX4Y7WK9ulkna1MpPDpl9LXCy1myewi9RJqP9hnv9lnPKd_E415UeKfAMc3opZA7wbBnxbe7cyBCd-KzVk5ca2Y8J2txR4eU_pTYIHki3UYj9HSW-gA5ED1JnHI1qxSwiOh_h8uNABRBiFc1_et89KjCgt3W8LFGim3Zvf9AgyO_vEH0tZMYPcAosTCHfiUzgxSRa-ieKkolrilXbc47dLxhnQmcqql44qhaq2k2v4V36qDtfgASgRH0eYq5CcF9ODN3ztMjgGAbrIOC9bicxr1QEaSQC_dC6uN-oBgBLX86J0PJ71-uBGw5QDKSeZznXD46Lw8435kRpT6LTGb_VfCwnvn7vbba-l65bO-g6WzgGbmdI8Y0sKfkNGDYBLMqakoCdIejWtc&sp=${SECOND_PRICE}
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/tishow/?katds_ep=T7KbbxqVeS8SkEq-RsYWcEtmrJamiwNre-T-gpaMR0nFFi41v6ESymQoRjXAn5wH_LoQMUlY1ju9LkjjkG5XND1WwdvDC67z-yuUgOHMbc5L4TJ7CvSZaN13ojLNtV3FeawPwuy8dLMzjDYzHA2EBzwJ5viEIDi4Rci7vfZtWDnmebCHejma5K3fu5LSYgjSiNrZPLmRYNFVft_EheB9M3RDAQMctCnXvoYLOEFeXl-zpyGrqoGcGXg9WxnBqH42jDl84mCw9mKI8vzyZuBYNxxlsZoNG4n3mZXzW7YGXAYLfKT3zi3hvYBICEJdFgrUNdn_4zJmdeaUDZA-r7JqYMzVlRE7dfufsqLzFbUCq27pm76GF1dsdjNeXkBeWqLxZNF2yr_Pdn3MGlg4ijEJv_0T8I-eP5c0QD_-SERRNLRYsJJ61WfRcGlkisR5fagE5gCexJQ3NqqvvDvuJBY558wX-7wNbYbezZ3Oz3bMy-YvTjCkkoJd7gwcjP8R5NSpyCHWoUHjx78yFw4NZn2dQODNOw1qH8KyLl3MPG7PtZ7l6Vd3SDLjFMo4Q0ZFh9wBNwcWXW1ysY-Minn4kES1Fw5SA0nTEEQX99Iikd8pfDx4MxWj8vebwDpvfRu0ObszHucspvD_G1AgiLryTxqeYzF-foU6NDoW87ZuHhB6oyphebDAjjxgs8MNrLUvqW4OEvExNFgCvTiFtNYf8N3FCYiKA0c-_zzQjVnkISNfLGD1Y3UNqT7VNoKt0ThbdkszwtJArv-VMr3ctuEw50psqvLmMXxqJ4xMsAHJMeLpPDz3nuyDd4JIyTouduvAxUdCfNxHm0xdqXhWZ9HgH1Wjob5cPrDzNF9GJ5qUMjxPJnb8PVzwgJSTnTr9dHXjHGRAGi1vEJsjJ_x3208E-4rqTRapxmCTymfcvnFqxF2tv95HdPmShl6a392DfRDtx49nxj0MbHuiEoibXCstVomT5RcRMXQ598Y74AkJswlP8AE1jxaTHBD8xdrM9yEcHuo5AJtCV3icX5ZdjjMrlDHk75x6qnsSPt6KRbUldSnRRMNoE0drm6xti9im1jkqpql4c4o4g0BuJ6LgOPKUEfiE_Hs_tQfhhEhPqKSl3R9zUk8fmvAXwISwPKk7IIobUr9Rc5cbiwpX0R9wHtiwevSKfQuWhi_7eWyJRWo5EdDOyDBPGmg4hRDWuN6bM6fswBrpwpAKqRejL0QfGWnNyxt6Ww9f2KBlXXovjr7GNjkXNviULipw_T2JEtKA-CdbotXtw-O1ObcGYV84Tro4mi3GSMwiIHDS-yOJMVzpzoW7XBRU0gOW0kQ2AHBTZpvCdMgI9-cS8ih0Ioh1SoTXxRGY8rCV_X0YDjcp-gRLG_YwyT0RIA8SNjRe8yRaNRlC89IPNn_HehtA5BYfkS_8U5YzLfAnTH2FvILUMN25cxz27BJKsKnAhp9D9IdUUPoChpPFJlNXUZGJBLQ0xYKIkkegsVhoebL8QWjcIcdPzZA6OgJB1nJCLgHY0AYhGuhlHTRU59dpHZoDlX8r9dv0EdD9OB8CJr9qRDHEkBfvaj5x5Q2vedIVU5cfacoaCQ_1Xqq0OCAnf5Ju9q8K4cco_nv8jSy6yarQKETCQSgs2LtOb3MyUXrcMpnvl8qbz0mKzWFQWmX4Y7WK9ulkna1MpPDpl9LXCy1myewi9RJqP9hnv9lnPKd_E415UeKfAMc3opZA7wbBnxbe7cyBCd-KzVk5ca2Y8J2txR4eU_pTYIHki3UYj9HSW-gA5ED1JnHI1qxSwiOh_h8uNABRBiFc1_et89KjCgt3W8LFGim3Zvf9AgyO_vEH0tZMYPcAosTCHfiUzgxSRa-ieKkolrilXbc47dLxhnQmcqql44qhaq2k2v4V36qDtfgASgRH0eYq5CcF9ODN3ztMjgGAbrIOC9bicxr1QEaSQC_dC6uN-oBgBLX86J0PJ71-uBGw5QDKSeZznXD46Lw8435kRpT6LTGb_VfCwnvn7vbba-l65bO-g6WzgGbmdI8Y0sKfkNGDYBLMqakoCdIejWtc&sp=${SECOND_PRICE} HTTP/1.1
Host: in16.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
location: https://12112336.pix-cdn.org/m/p/0/11/11508/yPndOg0m.html?__OS_FAMILY__={{ __OS_FAMILY__ }}&__OS_TYPE__={{ __OS_TYPE__ }}&__GEOIP_COUNTRY_SHORT__={{ __GEOIP_COUNTRY_SHORT__ }}&__IP2L_MOBILE__={{ __IP2L_MOBILE__ }}&__BROWSER_FAMILY__={{ __BROWSER_FAMILY__ }}&OS_FAMILY=[OS_FAMILY]&OS_TYPE=[OS_TYPE]&COUNTRY_ISO_CODE=[COUNTRY_ISO_CODE]&MOBILE_BRAND=[MOBILE_BRAND]&BROWSER_FAMILY=[BROWSER_FAMILY]&DOMAIN=upornia.com&PRICE=0.0050&PRICING_MODEL=[PRICING_MODEL]&CAMPAIGN_ID=6435&CLICK_ID=cfa78e2a-a697-4b30-87ec-5a89f9b05a25&id_zone=[idzone]&site={{ site }}&out_name=37319%7C4317%7Ccpm%7C0.0048%7C%24%200.0050&campaign_id=37319&price=0.0050&bidding_price=0.0048&pricebox_price=0.0200&pricing_model=cpm&click_id=cfa78e2a-a697-4b30-87ec-5a89f9b05a25&priority=[PRIORITY]&ad_sub=173501021&utm1=tcb&utm2=878669509-100&utm3=249-6435-14933&utm4=0-10346131-0
vary: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
set-cookie: 2325.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
s.optnx.com/cimp.php?data=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-
302 Found 0 B URL HTTP/1.1 s.optnx.com/cimp.php?data=TVRZMk1qTTFOamN5TW53eVpqVTBabVJsTURRNFpXRmtaR0V3WmpVMU9UQmhOV1ZqWWpKall6VmxaQS0tfC9saWJyYXJ5LzcyMzY2Mi82MTlhODA5ZDYwZjMyMGRkZWMyZjQxNjM0OTA4NzRlZmNmMDZiZDI4LmdpZnxodHRwc3w5MS45MC40Mi4xNTR8Tk9SfDQxfHVwb3JuaWEuY29tfDcyMzY2Mnw2NjYxNzN8OTAxMDg4fDQxNzYxODh8NTA4fDUzMTQxNjB8NzU1NjMxNzR8MTV8M3wwfDB8MjUzNDR8MHwxfDcwfEVVUnxFVVJ8MXwxLjAwMTV8MjF8MzAweDI1MHwxfE5PUnx8MjB8NHwxfHw5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OHxmZWM1YmQzMzg4NjJiZmM5MDExY2U3MjI3Y2U1Yjc4OXwxfDB8dXBvcm5pYS5jb218MHwwfDB8MC4wMnwxfDB8ZXhjaGFuZ2VfYmFubmVyfDB8MHwzMTQzMjQyfC0xfDB8MzE0MzI0NHx8fDF8MTQ0MHx8MHwwfDB8MHwwfDB8MXwwfHw4fDF8TW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjB8T0t8ZjIzODEwM2YzOTlkZjU5OWJlNmVkNzFjZDFmMzFlZmU-
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cimp.php?data=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- HTTP/1.1
Host: s.optnx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 05 Sep 2022 05:45:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263158cf2b11338.715513152649055961%22%3B%7D; expires=Wed, 04 Sep 2024 05:45:22 GMT; path=; domain=.optnx.com; Secure; SameSite=none
Location: https://s3t3d2y8.afcdn.net/library/723662/619a809d60f320ddec2f4163490874efcf06bd28.gif
s3t3d2y8.afcdn.net/library/723662/619a809d60f320ddec2f4163490874efcf06bd28.gif
200 OK 74 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/723662/619a809d60f320ddec2f4163490874efcf06bd28.gif
IP
ASN #60068 Datacamp Limited
File type GIF image data, version 89a, 300 x 250\012- data
Hash e5b7084733771dbf111a735cf65f1f3e
619a809d60f320ddec2f4163490874efcf06bd28
3081115a8f85ecf98a0a12d773928c7e88d3a952f09e67f9d90072e95505fa03
GET /library/723662/619a809d60f320ddec2f4163490874efcf06bd28.gif HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: image/gif
content-length: 74160
last-modified: Wed, 31 Aug 2022 13:14:28 GMT
etag: "630f5eb4-121b0"
expires: Thu, 31 Aug 2023 13:21:27 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693490090
server: CDN77-Turbo
x-77-nzt: AblMCRSxrSv/yCQGAA
x-77-nzt-ray: c5ni/1hhF7A
x-cache: HIT
x-age: 402632
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3402a93938c9a4f9006b77d426e86677
86dbf5f1fdccfb332c63962471934cd98ade1d68
d89f2ae4e43b80b80cfcafd44b1753893724472172d3e016ef8ccda7b3d5ae0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D89F2AE4E43B80B80CFCAFD44B1753893724472172D3E016EF8CCDA7B3D5AE0D"
Last-Modified: Mon, 05 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9141
Expires: Mon, 05 Sep 2022 08:17:43 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3402a93938c9a4f9006b77d426e86677
86dbf5f1fdccfb332c63962471934cd98ade1d68
d89f2ae4e43b80b80cfcafd44b1753893724472172d3e016ef8ccda7b3d5ae0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D89F2AE4E43B80B80CFCAFD44B1753893724472172D3E016EF8CCDA7B3D5AE0D"
Last-Modified: Mon, 05 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9141
Expires: Mon, 05 Sep 2022 08:17:43 GMT
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: keep-alive
upornia.com/ffhhpgmr/kwlrqgszz.js
200 OK 8.6 kB URL HTTP/2 upornia.com/ffhhpgmr/kwlrqgszz.js
IP
File type ASCII text, with very long lines (18518)
Hash 725894953ae4d2ee0c1a93f20ecd4453
ecb2794b9e2c1a84057b81ed57a8e459780ab755
88f0e6de3eb21babe526cf030ae7be8deb4c2cec9e068275b706482492ab9dfa
GET /ffhhpgmr/kwlrqgszz.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en; _ga=GA1.2.324479761.1662356717; _gid=GA1.2.924131252.1662356717; _gat=1; _gat_UA-31745569-46=1; _ym_uid=1662356718784393520; _ym_d=1662356718
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 05:00:23 GMT
vary: Accept-Encoding
etag: W/"63158267-5157"
expires: Wed, 05 Oct 2022 05:00:29 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2694
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=77hIqpmcU4WErSJyzzl5gZICdzXcgrEcBCLlCTDr6EcsHvr92%2Fjux9t2RgDTosz1lI9FHNEKaWqUDdISkItt%2BUWFMYBi71L3SVhMwKAMVpuCBHPxP7oNg33RlcoAiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca889e813777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/ffhhpgmr/hsytyqsh.js
200 OK 48 kB URL HTTP/2 upornia.com/ffhhpgmr/hsytyqsh.js
IP
File type Unicode text, UTF-8 text, with very long lines (36664), with NEL line terminators
Hash c2e72e3a39f293d4edc52e3135c4d068
3467bf538bbee6770f3248bb867dbcf42f066df5
12e22f90b0f3a723999dd40e52254ee320beb7d165324e065fda1479f16afbfd
GET /ffhhpgmr/hsytyqsh.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en; _ga=GA1.2.324479761.1662356717; _gid=GA1.2.924131252.1662356717; _gat=1; _gat_UA-31745569-46=1; _ym_uid=1662356718784393520; _ym_d=1662356718
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 05:00:23 GMT
vary: Accept-Encoding
etag: W/"63158267-2171b"
expires: Wed, 05 Oct 2022 05:00:29 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2694
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YPYYlvj5bXWX2TP9C1xkFsJ4mLJEFY4bwO7%2BEE72IY%2Fbu%2Fb6lwjSkwScs59Qhx6FiJYHeLMTJlW14CXwgXlBeq4QkdiG4%2FS1ube5hUWm7kL51YBWvDfNDFGcTxr%2F%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca889d808777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=847297628&pid=0&site=31248&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-1&site_id=0&spot_id=31248&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0036229&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31248&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31248%26source%3D14036%26idzone%3D1500766%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31248%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31248%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=847297628&pid=0&site=31248&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-1&site_id=0&spot_id=31248&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0036229&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31248&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31248%26source%3D14036%26idzone%3D1500766%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31248%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31248%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=847297628&pid=0&site=31248&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-1&site_id=0&spot_id=31248&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0036229&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31248&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31248%26source%3D14036%26idzone%3D1500766%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31248%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31248%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem= HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtbrennab.com/get/?go=1&data=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
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://btds.zog.link/in/912/?sid=31248&source=14036&idzone=1500766&w=300&h=250&mo=&ve=&site_id=31248&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31248&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
X-Firefox-Spdy: h2
kts.visitstats.com/in/372/?screen_resolution=1280x1024&dt=1662356717789&ad_sub=14036&mo=&ve=&katds_labels=&katds_nocountuniq=1&site_id=33008329&tzof=0&zone=up_preroll&idzone=2215569&user_id=2526490cda471dd8339cb45a64b32590&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&title=Japanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&skipoffset=10&
200 OK 40 kB URL HTTP/2 kts.visitstats.com/in/372/?screen_resolution=1280x1024&dt=1662356717789&ad_sub=14036&mo=&ve=&katds_labels=&katds_nocountuniq=1&site_id=33008329&tzof=0&zone=up_preroll&idzone=2215569&user_id=2526490cda471dd8339cb45a64b32590&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&title=Japanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&skipoffset=10&
IP
Hash 4315af6556a7e192c076613f4826e4bb
319bfd784ab4c637d1dc4176c70cfffe8f993971
155c620ea3276f2496b48eeecf49718f0ff9a6fd020c7a9471f99d61b1702172
GET /in/372/?screen_resolution=1280x1024&dt=1662356717789&ad_sub=14036&mo=&ve=&katds_labels=&katds_nocountuniq=1&site_id=33008329&tzof=0&zone=up_preroll&idzone=2215569&user_id=2526490cda471dd8339cb45a64b32590&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&title=Japanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&skipoffset=10& HTTP/1.1
Host: kts.visitstats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://upornia.com
pragma: no-cache
vary: Accept-Encoding, *
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=38487217&pid=0&site=31249&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-0&site_id=0&spot_id=31249&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.00436221&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31249&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31249%26source%3D14036%26idzone%3D1500772%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31249%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31249%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=38487217&pid=0&site=31249&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-0&site_id=0&spot_id=31249&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.00436221&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31249&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31249%26source%3D14036%26idzone%3D1500772%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31249%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31249%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=38487217&pid=0&site=31249&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-0&site_id=0&spot_id=31249&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.00436221&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31249&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D31249%26source%3D14036%26idzone%3D1500772%26w%3D300%26h%3D250%26mo%3D%26ve%3D%26site_id%3D31249%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D31249%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem= HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtbrennab.com/get/?go=1&data=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
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://btds.zog.link/in/912/?sid=31249&source=14036&idzone=1500772&w=300&h=250&mo=&ve=&site_id=31249&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31249&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=1273837890&pid=0&site=31256&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=10765&price=0&is_cpm=1&cpm=0.000780566280858&ecpm=0.000780566280858&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-5&site_id=0&spot_id=31256&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=imageAd&iabcat=IAB25&min_cpm=0.00012799657434622844&placement_type_id=10&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31256&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs.optnx.com%2Fcimp.php%3Fdata%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&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=1273837890&pid=0&site=31256&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=10765&price=0&is_cpm=1&cpm=0.000780566280858&ecpm=0.000780566280858&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-5&site_id=0&spot_id=31256&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=imageAd&iabcat=IAB25&min_cpm=0.00012799657434622844&placement_type_id=10&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31256&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs.optnx.com%2Fcimp.php%3Fdata%3DTVRZMk1qTTFOamN5TW53eVpqVTBabVJsTURRNFpXRmtaR0V3WmpVMU9UQmhOV1ZqWWpKall6VmxaQS0tfC9saWJyYXJ5LzQyODUxNS9iNjdiNzYzNGQ2YmYxZmJjYTg0OGIzZmNhZWY3NWQxYTgwYmI2YmFjLmpwZ3xodHRwc3w5MS45MC40Mi4xNTR8Tk9SfDQxfHVwb3JuaWEuY29tfDQyODUxNXw2NjYxNzN8OTAxMDg4fDQxNzYxODh8NTA4fDQ4NjU0ODh8NzAwOTY0OTJ8MTV8M3wwfDB8MjUzNDR8MHwwLjEzfDcwfEVVUnxVU0R8MC45OTgxfDF8MjF8MzAweDI1MHwxfE5PUnx8NDB8NHwxfHw5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OHxmZWM1YmQzMzg4NjJiZmM5MDExY2U3MjI3Y2U1Yjc4OXwxfDB8dXBvcm5pYS5jb218MHwwfDB8MC4wMnwxfDB8ZXhjaGFuZ2VfYmFubmVyfDB8MHwzMTQzMjQyfC0xfDB8MzE0MzI0NHx8fDR8NjB8fDB8MHwwfDB8MHwwfDF8MHx8OHwxfE1vemlsbGEvNS4wIChYMTE7IExpbnV4IHg4Nl82NDsgcnY6OTYuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC85Ni4wfE9LfGMyYjU5NTg0NjM2YTY5NTEzMjI2YzZiY2M3MWEzNmQ4&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=1273837890&pid=0&site=31256&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=10765&price=0&is_cpm=1&cpm=0.000780566280858&ecpm=0.000780566280858&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-5&site_id=0&spot_id=31256&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=imageAd&iabcat=IAB25&min_cpm=0.00012799657434622844&placement_type_id=10&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=31256&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs.optnx.com%2Fcimp.php%3Fdata%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&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem= HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rtbrennab.com/get/?go=1&data=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://s.optnx.com/cimp.php?data=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
X-Firefox-Spdy: h2
rtbrennab.com/get/?go=1&data=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
200 OK 1.0 kB URL HTTP/2 rtbrennab.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNDk2LCJzcGFjZWlkIjozMTI0NiwidHlwZSI6InBvcCIsImlkem9uZSI6MTUwMDc1MiwiYWRfdGFncyI6IlN0cmFpZ2h0JTJDSmFwYW5lc2UiLCJsYWJlbHMiOiIiLCJhbGxvd2VkX2xhYmVscyI6IiIsInRpdGxlIjoiIiwic3ViaWQiOiIxNDAzNiIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjMxMjQ2LCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjo4LCJzdHJhdGFnZW0iOm51bGwsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzc1OH0sImJhbm5lciI6eyJ3IjozMDAsImgiOjI1MH19XSwic2l0ZSI6eyJpZCI6IjMxMjQ2IiwiY2F0IjpbIklBQjI1Il0sInBhZ2UiOiJodHRwczovL3Vwb3JuaWEuY29tL3ZpZGVvcy8yNjM0OTIvamFwYW5lc2UtZ3Jhbm55LWNyZWFtZWQtYnktbm90LWhlci1ncmFuZHNvbi11bmNlbnNvcmVkLz9wcm9tbz0xNDAzNiJ9LCJkZXZpY2UiOnsidyI6MTI4MCwiaCI6MTAyNH0sInVzZXIiOnsiaWQiOiI5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OCJ9LCJleHQiOnsiZHQiOjE2NjIzNTY3MTgxNzl9fQ==
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1404)
Hash fc3ed4afe52b6489fb6fffc535fc34ef
e86f024aff69d6ad7c5a74e9f99205bfcc90e360
989f194245eec6d17ed548de28e8dfb27c03f871b8daf68daef2de859c0d9364
GET /get/?go=1&data=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 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
rtbrennab.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNDk2LCJzcGFjZWlkIjozMTI0NywidHlwZSI6InBvcCIsImlkem9uZSI6MTUwMDc1NiwiYWRfdGFncyI6IlN0cmFpZ2h0JTJDSmFwYW5lc2UiLCJsYWJlbHMiOiIiLCJhbGxvd2VkX2xhYmVscyI6IiIsInRpdGxlIjoiIiwic3ViaWQiOiIxNDAzNiIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjMxMjQ3LCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjo4LCJzdHJhdGFnZW0iOm51bGwsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzc1OH0sImJhbm5lciI6eyJ3IjozMDAsImgiOjI1MH19XSwic2l0ZSI6eyJpZCI6IjMxMjQ3IiwiY2F0IjpbIklBQjI1Il0sInBhZ2UiOiJodHRwczovL3Vwb3JuaWEuY29tL3ZpZGVvcy8yNjM0OTIvamFwYW5lc2UtZ3Jhbm55LWNyZWFtZWQtYnktbm90LWhlci1ncmFuZHNvbi11bmNlbnNvcmVkLz9wcm9tbz0xNDAzNiJ9LCJkZXZpY2UiOnsidyI6MTI4MCwiaCI6MTAyNH0sInVzZXIiOnsiaWQiOiI5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OCJ9LCJleHQiOnsiZHQiOjE2NjIzNTY3MTgxODF9fQ==
200 OK 2.6 kB URL HTTP/2 rtbrennab.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNDk2LCJzcGFjZWlkIjozMTI0NywidHlwZSI6InBvcCIsImlkem9uZSI6MTUwMDc1NiwiYWRfdGFncyI6IlN0cmFpZ2h0JTJDSmFwYW5lc2UiLCJsYWJlbHMiOiIiLCJhbGxvd2VkX2xhYmVscyI6IiIsInRpdGxlIjoiIiwic3ViaWQiOiIxNDAzNiIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjMxMjQ3LCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjo4LCJzdHJhdGFnZW0iOm51bGwsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzc1OH0sImJhbm5lciI6eyJ3IjozMDAsImgiOjI1MH19XSwic2l0ZSI6eyJpZCI6IjMxMjQ3IiwiY2F0IjpbIklBQjI1Il0sInBhZ2UiOiJodHRwczovL3Vwb3JuaWEuY29tL3ZpZGVvcy8yNjM0OTIvamFwYW5lc2UtZ3Jhbm55LWNyZWFtZWQtYnktbm90LWhlci1ncmFuZHNvbi11bmNlbnNvcmVkLz9wcm9tbz0xNDAzNiJ9LCJkZXZpY2UiOnsidyI6MTI4MCwiaCI6MTAyNH0sInVzZXIiOnsiaWQiOiI5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OCJ9LCJleHQiOnsiZHQiOjE2NjIzNTY3MTgxODF9fQ==
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3169)
Hash d7e654cc147a0fff517eedd3e93076a9
aa711f8329cad5022436b63d27cbcbc9227f76b3
7269f29c0ef54e934d84386c7ac76c53f44b5921b388196d4b2c46a94c1ba45e
GET /get/?go=1&data=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 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
twinrdack.com/link.engine?z=56811&guid=a3bc1dde-f9bd-4224-a9b7-110334f78385&tid=14036&kw=Straight,Japanese
302 Found 1.1 kB URL HTTP/2 twinrdack.com/link.engine?z=56811&guid=a3bc1dde-f9bd-4224-a9b7-110334f78385&tid=14036&kw=Straight,Japanese
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1270), with CRLF line terminators
Hash a659c143ea33ef4a0b93b0bb203ba136
649f031fab4173633cd98690a0afc5391e088a50
c90bee1705cfbf366dcd65e33b9ca1d0fee79ff3e843c5755deb2fbc03fc1af7
GET /link.engine?z=56811&guid=a3bc1dde-f9bd-4224-a9b7-110334f78385&tid=14036&kw=Straight,Japanese HTTP/1.1
Host: twinrdack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=utf-8
location: https://twinrdack.com/Redirect.eng?MediaSegmentId=44788&dcid=3_ctx_e1c1d0a2-91e2-46cf-878f-d9da11a1c835&vmId=00000000-0000-0000-0000-000000000000&abr=false&timeZoneOffset=&v=SanU2qghxCfxfmcO3cWOgg9wM5ucFqqlv51PY56usZAG7sYaKvoUQGuBr3fOs4NgHSL_zXJi7aIH2GP1mvhnLqzN0rV4M1gL_PG7x4zL4T57dZl-vJIDPJ4Bos8oD2mf2-1AYFybQapAHnoaddzf453TRX86fJ-_QNV__KNG-3cRp4hxV2pjHXuHXmKRxt9Mb7nfzzx-nIYvmEsbArYC1_VZEjYo_RVDho6PoZWa-rtzDB7qpJWZ3jeAZsHfKvhU5h615Hv8-DeQ-PtozJQz7iCDUYrncKcvoJhKQwMIuadOHQgN9NKSRxQJZEcV2nqZ9WQhZZwPpNoXZrvl4D5jeXsUp9w8axl-Ve6kgHZrZrLb0OhWb7MfQ00uKA-UOiNOh3bdKWsoKA9M0EXoJiLaB5Nt4BZzRTNcEDX8yFFiBx3Ish2JidEU8_dvC9ug8d2ZCebiQ-dFuMYWnhOkKjZ1kCRgFu_ddKT1deHaOk5l26uw-hmdOndjEMR-rj1DLccIxLn28_aCA-4e3uGJnL4HkDa5JS1v5Zd9_Xbrr9JIiy78USGbjpyk6-6SkgxzrrQXrSxh7YuU1BGNcNapQg0o29FCQTWRp8TGiIP0SxRy7qFZc5mtiISDah4tARHxm3zKUMu3AqOdvng9WdcMqaOm5_q8Xf4-gbPnoPG05k97yuOzP3ECBgdWmRduavBQrH6n78F7XRG75L1rPoSSLHNYd-xra7ptPCjS6-BQoP_kkFsptQ1oXZjWcrEZ04L8Z0dxDl6jo_C6GLJkNF6_qT7dhf1BQV4ZDG4FHEcD6lOUNjdxvX4oA4oIVVsA91nRQkwQhwzbyiLv1etS8yLfZZ2U25Uq9rQYT8vk5wpe98C2vWlxpX2OX1KZYvSD_irzS4iq95-QmJMmfWIlq8iRkVFUtFEBcLxz8QmCImbto0B2PG91n-O0gkitwCznH0bxkkbwNP8iCm5AOL3nHM8DKpfKPQ2&kw=Straight%2cJapanese&mw=728&mh=90
vary: Accept-Encoding
cache-control: private, no-transform
content-encoding: gzip
p3p: CP="CAO PSA OUR IND"
access-control-allow-origin: *
set-cookie: IKSR={}; path=/; SameSite=None; secure
INF_DFL8=false; path=/; SameSite=None; secure
IUID=817dc50a-df69-404b-913e-a7eadf870436; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure
ISSH=65BB75; path=/; SameSite=None; secure
VMI=; path=/; SameSite=None; secure
IPLH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IPLH_Q=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
CHN=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
MSSH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
MSRH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ILP=null; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure
ILPLU=#1/1/0001 12:00:00 AM; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ILEALC=#1/1/0001 12:00:00 AM; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ILMPF=#False; expires=Mon, 05-Sep-2022 09:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IPMPLU=#; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IPMUID=#; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
BSWUID=#; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IKSR={}; path=/; SameSite=None; secure
IBL=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
PZK={"P":"mxi/AREsutD9C/ZuUsZiH8Hmi8BAaXKAGG4YG1IuOqgvLJS/2V2zxNXdCxa4y92d","B":[106],"UD":1662356722}; expires=Wed, 05-Oct-2022 05:45:22 GMT; path=/; SameSite=None; secure
IPLSH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IPLSH_Q=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IZH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IZH_Q=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IMCH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IMCH_Q=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IMH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IMH_Q=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ISH=#{"14234":[{"SId":"65BB75","D":"22/9/4T22:45:22"}]}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ISH_Q=#[14234]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ISPH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ISPH_Q=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ICH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ICH_Q=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UiSsHUsldczOhKa9wJC%2B4%2BYbiiknkJiOeivjzW%2ByWCV2yYOIHnXfUaZLjKr5OShVXdGE%2BJ11uwriv4IjzXA%2BRjWO5RVD4U4l72vYAP5OCC%2FDdulmnUFiCw6HMr5kr1o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca88ca9cfb523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
12007250.pix-cdn.org/a/pjexo.html?idzone=1500748&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
200 OK 391 B URL HTTP/2 12007250.pix-cdn.org/a/pjexo.html?idzone=1500748&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 18be7c35751aead7e793103f27bc4ccd
32d328e67b94fe85dd2c2d2ec0b27784337f2efb
7a82fde7afb24b945f8fa1272cf0bd901b6490c3587992f851d0130b42fbfaa4
GET /a/pjexo.html?idzone=1500748&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese HTTP/1.1
Host: 12007250.pix-cdn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=utf-8
last-modified: Wed, 20 May 2020 13:08:32 GMT
cache-control: max-age=3600
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZGHs6ZIm2EKM8uD8ryDFsmZuR0LYZkxx1Jx1UQRt7e%2Fu8uGMZQHAkM7K720y4Lm0NcggcTMa%2Ff9tLXsE3gt0JMCEprXgncbzTGvTz2rWDPThs4YVv6z7hlCvE2Wz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 745c631b9bebb3a4-MUC
content-encoding: gzip
alt-svc: h2=":443"; ma=60
expires: Mon, 05 Sep 2022 06:45:22 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
btds.zog.link/in/912/?sid=31249&source=14036&idzone=1500772&w=300&h=250&mo=&ve=&site_id=31249&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31249&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
302 Found 0 B URL HTTP/2 btds.zog.link/in/912/?sid=31249&source=14036&idzone=1500772&w=300&h=250&mo=&ve=&site_id=31249&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31249&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/912/?sid=31249&source=14036&idzone=1500772&w=300&h=250&mo=&ve=&site_id=31249&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31249&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Cookie: 912.0=1; 1624.0=1; 1625.0=1; 1240.0=1; 1242.0=1; 1241.0=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://twinrdack.com/link.engine?z=56808&guid=a3bc1dde-f9bd-4224-a9b7-110334f78385&tid=14036&kw=Straight,Japanese
vary: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
set-cookie: 912.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
1624.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
1625.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
12007250.pix-cdn.org/a/pjexo.html?idzone=1500742&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
200 OK 391 B URL HTTP/2 12007250.pix-cdn.org/a/pjexo.html?idzone=1500742&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 18be7c35751aead7e793103f27bc4ccd
32d328e67b94fe85dd2c2d2ec0b27784337f2efb
7a82fde7afb24b945f8fa1272cf0bd901b6490c3587992f851d0130b42fbfaa4
GET /a/pjexo.html?idzone=1500742&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese HTTP/1.1
Host: 12007250.pix-cdn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=utf-8
last-modified: Wed, 20 May 2020 13:08:32 GMT
cache-control: max-age=3600
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EsY753YoYt7ZGbzQtOtGaS6ZPOiceWvl2IpIKC6jBg3x0r3jwrptdJHy04k4X%2BcRp9TK7dqr8tnruMqfcNGMfR96r2Ynbv32ihJlWvYHjmuvnvcCwe81Jc2a1ES6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 744be0516d0e1bd5-MUC
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
expires: Mon, 05 Sep 2022 06:45:22 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
btds.zog.link/in/912/?sid=31250&source=14036&idzone=1500788&w=300&h=250&mo=&ve=&site_id=31250&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31250&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
302 Found 0 B URL HTTP/2 btds.zog.link/in/912/?sid=31250&source=14036&idzone=1500788&w=300&h=250&mo=&ve=&site_id=31250&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31250&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/912/?sid=31250&source=14036&idzone=1500788&w=300&h=250&mo=&ve=&site_id=31250&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=31250&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Cookie: 912.0=1; 1624.0=1; 1625.0=1; 1240.0=1; 1242.0=1; 1241.0=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://12007250.pix-cdn.org/a/pjexo.html?idzone=1500788&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
pragma: no-cache
vary: *
cache-control: no-cache, no-store, must-revalidate
set-cookie: 912.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
1240.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
1242.0=1; expires=Tue, 06 Sep 2022 05:45:22 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
s.optnx.com/cimp.php?data=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
302 Found 0 B URL HTTP/1.1 s.optnx.com/cimp.php?data=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
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cimp.php?data=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 HTTP/1.1
Host: s.optnx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263158cf2b11338.715513152649055961%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 05 Sep 2022 05:45:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263158cf2b11338.715513152649055961%22%3B%7D; expires=Wed, 04 Sep 2024 05:45:22 GMT; path=; domain=.optnx.com; Secure; SameSite=none
Location: https://s3t3d2y8.afcdn.net/library/428515/f304e888109ca16eda71e99bc6c0c0212cd6dc5c.gif
upornia.com/api/input.php?
200 OK 1.9 kB URL HTTP/2 upornia.com/api/input.php?
IP
Hash 6db7cd3f7aa7c0860590c5338ba1c9c0
eefab5d95a6b632cdf23bdc02be2bcdb439508d8
ddb2ab12c74606ff65047e4dfc97181da517388bd9337e446a1080a9c551ed24
POST /api/input.php? HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 39
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en; _ga=GA1.2.324479761.1662356717; _gid=GA1.2.924131252.1662356717; _gat=1; _gat_UA-31745569-46=1; _ym_uid=1662356718784393520; _ym_d=1662356718
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: application/json
vary: Accept-Encoding
x-powered-by: PHP/7.2.34
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6iThE5Mk%2FEkQwx%2FfnYXGS%2FCuhtNkVUyW6QMlfc7Pogzl09UpfnBmaM1M8GmRkw%2BFUfmAFqAef0LSg4Ri4ifcqa7c54rjpAxB6LLaQ4dtrGkkCiQ8AGW5gu2av8kCmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca88a0848777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.realsrv.com/ads.js
200 OK 974 B IP
File type ASCII text, with very long lines (2475), with no line terminators
Hash f2e9f79e4bd643ca1264fca98531c71e
7acaa14a18676a38bdc3043d0e016e8cfacb275a
db8cf84b422102aa8bc89c36a569921dc69ed556703a96ca44434d2fe98af57b
GET /ads.js HTTP/1.1
Host: ads.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12007250.pix-cdn.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 05:45:22 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 974
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"f4fddb85b686269b678e3caf766"
X-HW: 1662356722.dop205.sk1.t,1662356722.cds208.sk1.shn,1662356722.cds208.sk1.c
Access-Control-Allow-Origin: *, *
s3t3d2y8.afcdn.net/library/428515/f304e888109ca16eda71e99bc6c0c0212cd6dc5c.gif
200 OK 211 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/428515/f304e888109ca16eda71e99bc6c0c0212cd6dc5c.gif
IP
ASN #60068 Datacamp Limited
File type GIF image data, version 89a, 300 x 250\012- data
Size 211 kB (211378 bytes)
Hash a4b52f1fa42d2e45102fe8e4c974ede1
f304e888109ca16eda71e99bc6c0c0212cd6dc5c
958b3a870512b56a253e48829548523e08b953bf58cf787b8b4e2414cd9cedb0
GET /library/428515/f304e888109ca16eda71e99bc6c0c0212cd6dc5c.gif HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: image/gif
content-length: 211378
last-modified: Fri, 31 Dec 2021 10:19:17 GMT
etag: "61ced925-339b2"
expires: Fri, 30 Jun 2023 11:20:22 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195262
server: CDN77-Turbo
x-77-nzt: AblMCRSR0Gz/tO9WAA
x-77-nzt-ray: qq/rOJheYE0
x-cache: HIT
x-age: 5697460
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s.optnx.com/cimp.php?data=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
302 Found 0 B URL HTTP/1.1 s.optnx.com/cimp.php?data=TVRZMk1qTTFOamN5TW53eVpqVTBabVJsTURRNFpXRmtaR0V3WmpVMU9UQmhOV1ZqWWpKall6VmxaQS0tfC9saWJyYXJ5LzQyODUxNS9iNjdiNzYzNGQ2YmYxZmJjYTg0OGIzZmNhZWY3NWQxYTgwYmI2YmFjLmpwZ3xodHRwc3w5MS45MC40Mi4xNTR8Tk9SfDQxfHVwb3JuaWEuY29tfDQyODUxNXw2NjYxNzN8OTAxMDg4fDQxNzYxODh8NTA4fDQ4NjU0ODh8NzAwOTY0OTJ8MTV8M3wwfDB8MjUzNDR8MHwwLjEzfDcwfEVVUnxVU0R8MC45OTgxfDF8MjF8MzAweDI1MHwxfE5PUnx8NDB8NHwxfHw5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OHxmZWM1YmQzMzg4NjJiZmM5MDExY2U3MjI3Y2U1Yjc4OXwxfDB8dXBvcm5pYS5jb218MHwwfDB8MC4wMnwxfDB8ZXhjaGFuZ2VfYmFubmVyfDB8MHwzMTQzMjQyfC0xfDB8MzE0MzI0NHx8fDR8NjB8fDB8MHwwfDB8MHwwfDF8MHx8OHwxfE1vemlsbGEvNS4wIChYMTE7IExpbnV4IHg4Nl82NDsgcnY6OTYuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC85Ni4wfE9LfGMyYjU5NTg0NjM2YTY5NTEzMjI2YzZiY2M3MWEzNmQ4
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cimp.php?data=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 HTTP/1.1
Host: s.optnx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263158cf2b11338.715513152649055961%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 05 Sep 2022 05:45:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263158cf2b11338.715513152649055961%22%3B%7D; expires=Wed, 04 Sep 2024 05:45:22 GMT; path=; domain=.optnx.com; Secure; SameSite=none
Location: https://s3t3d2y8.afcdn.net/library/428515/b67b7634d6bf1fbca848b3fcaef75d1a80bb6bac.jpg
12007250.pix-cdn.org/a/pjexo.html?idzone=1500788&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
200 OK 28 kB URL HTTP/2 12007250.pix-cdn.org/a/pjexo.html?idzone=1500788&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
IP
ASN #39572 DataWeb Global Group B.V.
Hash 0c070d9c60bd948228a64373dde6a91e
4bed14d4faf571dbd4dc92fb1f01e26f36adad46
3a8253a1741ef3cd5720144580ad07368a281602afbb911cb66bc20c9085dd4d
GET /a/pjexo.html?idzone=1500788&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese HTTP/1.1
Host: 12007250.pix-cdn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=utf-8
last-modified: Wed, 20 May 2020 13:08:32 GMT
cache-control: max-age=3600
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lRlKG8rwMpVLo2PyOjxGpJ4DyT1uBq9%2BO%2BMGCTKNep0puX4sKuF2AiV7zQB5hXKlduy1UYkSbUFfKnrxQjfJDskBqKCr%2BVQkQBaQraeyEMTWjaOiCcmVnotsZMBW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 745bfb50bf941e5d-MUC
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
expires: Mon, 05 Sep 2022 06:45:22 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Mon, 05 Sep 2022 05:45:23 GMT
access-control-allow-origin: *
etag: "6312122a-2b"
expires: Mon, 05 Sep 2022 06:45:23 GMT
accept-ranges: bytes
last-modified: Fri, 02 Sep 2022 17:24:42 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/49315045/1?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A1177838884924%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A771925214%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20%28Uncensored%29%20%7C%20Upornia.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/49315045/1?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A1177838884924%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A771925214%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20%28Uncensored%29%20%7C%20Upornia.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash 0c96fc2f383daef56c889c6d82f04bfe
d5e17dfd13d3ed229405f93a1c26b77841a2458e
b3492eec2efd4d7e82a73a38a3d44ba1eae2d9c10300a227b01df34a913cc1b1
GET /watch/49315045/1?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A1177838884924%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A771925214%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20%28Uncensored%29%20%7C%20Upornia.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upornia.com
Referer: https://upornia.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Mon, 05 Sep 2022 05:45:23 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://upornia.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Sep-2022 05:45:23 GMT
last-modified: Mon, 05-Sep-2022 05:45:23 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/33008329/1?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A964295414991%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A1031925893%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20%28Uncensored%29%20%7C%20Upornia.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/33008329/1?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A964295414991%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A1031925893%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20%28Uncensored%29%20%7C%20Upornia.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash 0dde80d861931111b6a56c461a8d2120
18dcd4717823860b9ab58fc834e09bb7fdc906fb
8e75a82023119c55a1647b8a3384e061ce59017dc816c551eb6ff06253a441a2
GET /watch/33008329/1?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A964295414991%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A1031925893%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20%28Uncensored%29%20%7C%20Upornia.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upornia.com
Referer: https://upornia.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Mon, 05 Sep 2022 05:45:23 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://upornia.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Sep-2022 05:45:23 GMT
last-modified: Mon, 05-Sep-2022 05:45:23 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
a2880b7019.5eff011dd5.com/get/
200 OK 1.8 kB URL HTTP/2 a2880b7019.5eff011dd5.com/get/
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with very long lines (1776), with no line terminators
Hash ccb54973abb09a95ba3aa0e91002d19b
57b3304ba608525acfd6037cfdef8169020c0fa6
1e8e09c5fc7d4e0057a978c1289d3699ee478f52ab7bf2b770346d8f5d7a5d15
Analyzer Verdict Alert quad9 Sinkholed
POST /get/ HTTP/1.1
Host: a2880b7019.5eff011dd5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upornia.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://upornia.com
Content-Length: 564
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.16.0
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/json
content-length: 1776
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
12007250.pix-cdn.org/a/pjexo.html?idzone=1500762&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
200 OK 393 B URL HTTP/2 12007250.pix-cdn.org/a/pjexo.html?idzone=1500762&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
IP
ASN #39572 DataWeb Global Group B.V.
Hash 77b8c415bddcf5a31fb6784a1bf65da2
40fcdd082b884e8a97357a1fd82afbbfb8b66252
0ca91629da038861c26d9a540c2c4b121cb6af769be959c81d5baeab4d8a3662
GET /a/pjexo.html?idzone=1500762&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese HTTP/1.1
Host: 12007250.pix-cdn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=utf-8
last-modified: Wed, 20 May 2020 13:08:32 GMT
cache-control: max-age=3600
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vk1NMbAR5saPU07H1jXHdEROcwOT1BcXQWHbMP0PBkwB9hyB9Ci2rLbqK99o%2BK%2FePZWaXfQW5cQULw9ou293EHhs276FtoRKF72hSN3TCrVIs7NY0o136g4coQNm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 745c631c3c7bb3a4-MUC
content-encoding: gzip
alt-svc: h2=":443"; ma=60
expires: Mon, 05 Sep 2022 06:45:22 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
syndication.realsrv.com/ads-iframe-display.php?idzone=1500752&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718849&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22
200 OK 1.3 kB URL HTTP/1.1 syndication.realsrv.com/ads-iframe-display.php?idzone=1500752&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718849&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1208)
Hash a195327c772ea602b8bee91262a3448e
75f76ff7eafdbcd3f07a8e5f80f225faf45fa120
36380a89b846ab63a93e81c76951c16c97455a8ac3a156a2e3554c9283e97677
GET /ads-iframe-display.php?idzone=1500752&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718849&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22 HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12007250.pix-cdn.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 05:45:23 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263158cf3018be7.633947131415344487%22%3B%7D; expires=Wed, 04 Sep 2024 05:45:23 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
impressions=mxmssbsanxgxaraaxosbageicxbmsboenxgxaaosselcsgeialeblerenxgxarmeomobrgeimxmbasacnxgxaraaoasaageicxbmsbcenxgxaaossrbbageialeblecenxgxaralsbsaxgeimxmbasmbnxgxaraaolroageioslmrxbrnxgxaaosellbbgeicxbmsbocnxgxaaoocoxcogeimsclxcabnxgxaramcssbcgeicxbmsbxcnxgxaaosclmcogeialbserxenxgxaaxbsccmxgeioslmrxlrnxgxaaosxbcmogeimscamxrbnxgxaramxrbclgeimsclxreenxgxaramcssbcgeimxmssbrenxgxaramcsmccgeicraxcrebnxgxarmcrsxcxgeislsarosxnxgxaaosselcsgeicmexsleonxgxarabcxolegeioslmrxbmnxgxaaosroexsgeirsxcecsenxgxarabbcraxgeialbserebnxgxaaoomcaccgeioslmroemnxgxaaossrccogeicmexsblcnxgxarmrcmolageiaaoboxbonxgxaralmcosrgeiamxmbxbonxgxaralsbsolgeimscamxccnxgxaralsbsaxgeiaaoabboonxgxarmeomobrgeislsaroornxgxaaxollooxgeimooxbxeanxgxarmescrbbgeirsxcecsbnxgxarmelblebgeicmexslxcnxgxarmcbccrbgeicraxcrocnxgxarmsoerxxgeicraxcclanxgxarmxmcmmcgeicmexslecnxgxarmsembabgeicraxcreanxgxarmaarabageirsxcecccnxgxarmoocmexgeicraxcrxanxgxarmarlrxmgeialbserxonxgxaaoobreargeimcelelronxgxarbsrmlaageirsxcecxanxgxarbccmbcsgeirbabxabbnxgxaaosclmcogeicmeecrxcnxgxarmbexrmogeicmeecclonxgxarmorasemgeialbsereanxgxaaxsosbblgeicmexslxonxgxarmcxcaregeicaxsscmbnxgxaaxbsccmxgeicmeexcaenxgxarmcxsxcageimcelelrcnxgxarmcxsxcageimcelelcenxgxarmcxsxcageimcoexclonxgxarmcxsxcageialbserecnxgxaaoecxelogeicmeeccbcnxgxarmcarxemgeicmexsblenxgxarmarlrxmgeimcoexaabnxgxaaeosmmecgeimcoexasbnxgxaaeosmmecgeicmeecrecnxgxarmrxsamageicraxcroonxgxarmrasloageicmexrxxonxgxarmaarabageimcoexaxonxgxarbblarblgeicaormbbenxgxarlexsrrageimcebllronxgxarmarlrxmgeirbabxalenxgxarmabbsmmgeicraxcroenxgxarmbexrmogeirsxcecsonxgxarmbrrcsegeimcoexxlonxgxarbsasblxgeimcoexasanxgxaaoecxelogeiroeaablbnxgxarlrlxmeegeimcoexarenxgxarlcbxlxageimcoexabbnxgxarbxeocasgeimcoexrlonxgxarbblarblgeimooxbelbnxgxarbexxealgeirsxcecebnxgxarbsasblxgeimcoexrlcnxgxarlcbxlxageimcoexaaanxgxarlcbxlxageirsxcecxenxgxarbxxxolxgeiraaoxbbcnxgxarbellsrxgeimcelelcanxgxaaxarbxxegeioslmrxlsnxgxaaosclmcogeicaormbmanxgxaaxxlcxbmgeicaormlxcnxgxarbobbbbmgeicaormbbanxgxaaeoxexsxgeicaormlxanxgxarbobbbbmgeimcelelranxgxarbsrmlaageimcersrocnxgxarbsasblxgeimcoexaxcnxgxarbcslxbcgeisaeeasslnxgxaaoomsarogeimcersxbenxgxaaxacacesgeimcersxacnxgxarbroammrgeicaormloenxgxaaeoxexsxgeimcersoeenxgxarbroammrgeimcelelaanxgxarbrboxregeimcelelbenxgxarbrboxregeimcoexaxbnxgxaaoecxelogeimcoexamenxgxarbblarblgeimcoexabanxgxarbblarblgeimcoexacanxgxarbblarblgeimcoexaoonxgxarblslrsxgeimcclsxbcnxgxaaeosmmecgeimcclsoeonxgxaaoxbsallgeicaormleanxgxaaxxemrecgeimcclsebcnxgxarlexorssgeimcclsxmenxgxaaeoaolesgeimcclossbnxgxaaelalbbbgeimcclsxlenxgxaaoosmroegeimcclsxsonxgxaaexxllbrgeimcclsxxcnxgxarlalasssgeimcclsxlanxgxaaemmeambgeimcclsxscnxgxaaoeorrelgeicaormbmbnxgxaaemaolsbgeimcclselcnxgxarleomllegeimccloscenxgxaaersaolbgeimcclsxaanxgxarlesreebgeimcclselanxgxaaebsleobgeimcclsebbnxgxarlcbxlxageicaormbmcnxgxarloeaexageicaormlxonxgxarlmbxoosgeiclsmrrrenxgxarloalasrgeiclsmarcanxgxarloalasrgeiclsmrbronxgxarloalasrgeimcclsxronxgxaaxarbxxegeimcclsxmanxgxaaexxsoasgeimcclossanxgxaaexxllbrgeimcclsxaonxgxaaxarbxxegeimcoexasonxgxarlcbxlxageimcclsxabnxgxarlreooaageimcclosscnxgxaaoxbsallgeimcclsxlbnxgxaaxbsaslsgeimcclsxbbnxgxarlalasssgeicaormbbonxgxaaeoxexsxgeimcclsxcanxgxaaxxcmeaegeimcclsxmbnxgxaaeebrxsegeimcclsxxonxgxaaxobsolageimcclsxsbnxgxaaxlomxrlgeimcclsxcbnxgxaaexxllbrgeimcclsxmonxgxaaexoembogeimcclsxconxgxaaxbxlaaogeimcclselenxgxaaesmsscageimcclsxmcnxgxaaeosmmecgeimcoexacbnxgxaaoecxelogeimcclsxbanxgxaaeoaolesgeimcclsebanxgxaaesobbblgeimcclsxxanxgxaaesalmmsgeimcclsxacnxgxaaxlcabocgeimcoexcccnxgxaaecebcslgeimcclsxocnxgxaaesmsscageimcclsxbenxgxaaesalmlageimcclsxsenxgxaaeassbmlgeimcclsxrenxgxaaesmsscageimcclosccnxgxaaecexaasgeimcclsxobnxgxaaoxbsabcgeimcelelsanxgxaaecebcslgeimcelelmanxgxaaecebcslgeimcclsxlonxgxaaoxbsallgeimcclsxlcnxgxaaxsxrlcsgeimcclosconxgxaaoobxxlxgeimrerbboanxgxaaemsosmogeicaormlxenxgxaaoomsarogeicaormbbcnxgxaaoomsarogeimrscomecnxgxaaxeeaxaegeimcclsxsanxgxaaoosalmcgeimcrxsbobnxgxaaosxbcmogeimcoexsacnxgxaaxxcmeaegeimrscomeenxgxaaxsbxmrcgeimrcrbrxenxgxaaxrxelsbgeimcersxlbnxgxaaxacacesgeimcelelrenxgxaaxarbxxegeimrerbbsbnxgxaaoxasxrcgeimrerbbccnxgxaaoeemarogeimrerbmlenxgxaaxlocooageimccloscanxgxaaxlslrergeimrerbmlanxgxaaoeemarogeiclsmrbocnxgxaaooxbxsrgeiclsmrrccnxgxaaooxbxsrgeiclsmrmocnxgxaaooxbxsrgeiccmblmmonxgxaaosxbcmogeiccmblmmbnxgxaaosellbbgeimeembecenxgxaaoomecsbgxcceimxlbalscnogxaaoomecsbgxcceimclsaoxbnbgxaaoomxxxcgxcceimrrbosxbnxsgxaaoomxxxcgxcceimeembescnsgxaaoomoerogxcceimxcbrxbenxgxaaoomosaogxcceimcssmlrencgxaaoomomaogxcceimrracoaenxgxaaoomomaogxcceimrxccosancgxaaoomolcmgxcceicxexraernxgxaaoomsemmgxcceimrxccosbnogxaaoomsemmgxcceiallxlmscnxgxaaoomsarogxcceialblcxmenxgxaaoomsarsgxcceimocbmmmcnxgxaaoomsarsgxcceimocbmmmenxgxaaoomsarsgxcceiallxlmoenxgxaaoomsarsgxcceimexxlrbenxgxaaoomsarsgxcceimxeoxsbencgxaaoomcaccgxcceimxlbmxlcnogxaaoomcaccgxcceimrrboraenogxaaoomrmcegxcceimrrcrrbbnxegxaaoomrmcxgxcceimrracoranxgxaaoomrmcxgxcceimrsreamonsgxaaoommrxagxcceimrsreamansgxaaoommmoagxcceimxlbmoscnogxaaoomlxsagxcceimxomsmconxgxaaoomllscgxcceimrcaeesbnrgxaaoobemesgxcceiaaxcabaonxgxaaoobemecgxcceimrrascacnxgxaaoobemecgxcceimcssmlronsgxaaoobemecgxcceimclobexbnxgxaaoobemergxcceimxxerreonxgxaaoobxxlxgxcceiccmblmmanxgxaaossrccogeimeelaclonsgxaaoobxxlogxcceimcoaxmxcncgxaaoobxxlogxcceiccblrxrbnxgxaaoobxcxsgxcceiccblrxaanxgxaaoobxcxsgxcceialbbebsanxgxaaoobxcxcgxcceimxlbmxbbnogxaaoobsobegxcceimrrcrrlencgxaaoobsmlrgxcceimoobcomonxgxaaoobsbsbgxcceimoobcobenxgxaaoobsbsbgxcceimrorsroanxgxaaoobcmragxcceimrxccoscnogxaaoobrrcxgxcceimrrcrrlonmgxaaoobaxamgxcceicrasmsrcnxgxaaoobamrlgxcceiarmcbbbbnxgxaaoolelamgxcceimxcbrxcbnxgxaaoolrxsegxcceimcoaxmxoncgxaaoollrosgxcceimememseonxgxaaoollrorgxcceimxlbmosanogxaaoseolllgxcceimcssxmscnxgxaaosecoxrgxcceiaxbscbconxgxaaosemlcegxcceimrrascmanxgxaaoselemsgxcceimxlbmoobnogxaaoselemsgxcceislmbecesnxgxaaosellbbgxoaeimxxerreanxgxaaosellbbgxcceimrxsscxcnsgxaaosxeeasgxcceimrxaaxxbnxgxaaosxexmxgxcceiceecmorsnxgxaaosxexmxgxcceicloaxxoenxgxaaosxemxmgxcceimcrxeoccnxgxaaosxemxlgxcceimcrxeomcnxgxaaosxemxlgxcceimcrxeoacnxgxaaosxemxlgxcceimcrxeoaenxgxaaosxemxlgxcceimcrxeocbnxgxaaosxemxlgxcceimcrxeobenxgxaaosxemoegxcceimcrxeorcnxgxaaosxemoegxcceimcrxeosbnxgxaaosxemoegxcceimcrxeoaanxgxaaosxemoegxcceimocbmmbenxgxaaosxemoegxcceimrcmxlaonxgxaaosxemoegxcceimrsreaboncgxaaosxxmrogxcceimrsreambnsgxaaosxxmrogxcceimrcaoaoanrgxaaosxorxagxcceimrracoaonxgxaaosxsebogxcceimeembeconxgxaaosxsocagxcceimrracorcnxgxaaosxclaogxcceimocolroansgxaaosxrxmcgxcceimxlbmosonogxaaosxrxmcgxcceixaoosscrnxgxaaosxasosgxcceialaroxrcnxgxaaosxboaegxcceicbbmelmcnxgxaaosxbcmogxcceimxeemblenxgxaaosxbcmsgxcceimrrascmbnxgxaaosoexssgxcceimraeecxanxgxaaosoexssgxcceimxeemleenogxaaosoexssgxcceimraeecxbnxgxaaosoxsrogxcceimorolaronxgxaaosoxsrogxcceiaaxcamlenxgxaaosoclrxgxcceimxlbmxlenogxaaosorbsrgxcceimrrrommenxgxaaosorbsrgxcceimxxrecsanxgxaaosoalsbgxcceimxlbmoconogxaaosoalsbgxcceimrrasxmonxgxaaosomrmogxcceimrcmxlaanxgxaaosobsslgxcceimrrbosxcnsgxaaosobsslgxcceixaoossalnxgxaaosserbbgxcceialrexeoonxgxaaosserbbgxcceimxxerrxenxgxaaosselcsgxcceialbbebrenxgxaaosselcsgxcceimocolrocnogxaaossxmxcgxcceimeembesonxgxaaossocacgxcceicmarxbbonsgxaaossocacgxcceimcscroconxgxaaossocacgxcceicrcorbccnxgxaaossocargxcceicxexraxxnxgxaaossocargxcceimrrasxbonxgxaaosssobmgxcceimxeemblanxgxaaosssobmgxcceimrrasxbenxgxaaosssobmgxcceimrrasxmcnxgxaaosscslmgxcceimrrascaanxgxaaosscaxbgxcceimxlbalcenogxaaosscaxbgxcceimcssmlrcnsgxaaossrccogxcceimrrascmonxgxaaossrccogxcceimxlbmxlonogxaaossrcccgxcceimxeoxsacnogxaaossrcccgxcceimrrascabnxgxaaossrrcrgxcceimxlbalsbnogxaaossrbbrgxcceimrrascaonxgxaaossrbbagxcceiclarsaeenxgxaaoscoxoogxcceicloaxxmenxgxaaoscsaebgxcceimxlbmosenxgxaaoscsaebgxcceimrxccosenogxaaoscrloogxcceicloaxxacnxgxaaoscrlrsgxcceimrsreaabnxgxaaoscleamgxcceimrrascaenxgxaaosclmcogxcceislmbeslrnxgxaaosclmcogxoaeimrrascmcnxgxaaosrerxcgxcceimxcbrxlonxgxaaosroexsgxcceialbbebsbnxgxaaosroexsgxcceimsacexoonxgxaaosroexsgxcceicxmecmcanxgxaaosroossgxcceicloaxxmonxgxaaosrsasrgxcceimexexabbnxgxaaosrsasagxcceimcorllcanxgxaaosrrabsgxcceimrcaoxbanxgxaaosracccgxcceicloaecoanxgxaaosracccgxcceimraeelaanxgxaaosramoxgxcceiabxoaelonxgxaaosramoxgxcceimraeelabnxgxaaosramosgxcce; expires=Tue, 06 Sep 2022 05:45:23 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Content-Encoding: gzip
syndication.realsrv.com/ads-iframe-display.php?idzone=1500742&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718858&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22
200 OK 1.4 kB URL HTTP/1.1 syndication.realsrv.com/ads-iframe-display.php?idzone=1500742&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718858&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1208)
Hash e4103e0fa5b2f2bc5ce3be5c3dc492a2
6161091c52f6756635db60ddb41ddd10559dfb4d
c5eb79a7e8c2355edc686df3245f00a76b6df2eff7b74794acf01a2b0ff29132
GET /ads-iframe-display.php?idzone=1500742&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718858&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22 HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12007250.pix-cdn.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 05:45:23 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263158cf3030cb9.055533793408371682%22%3B%7D; expires=Wed, 04 Sep 2024 05:45:23 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
impressions=mxmssbsanxgxaraaxosbageicxbmsboenxgxaaosselcsgeialeblerenxgxarmeomobrgeimxmbasacnxgxaraaoasaageicxbmsbcenxgxaaossrbbageialeblecenxgxaralsbsaxgeimxmbasmbnxgxaraaolroageioslmrxbrnxgxaaosellbbgeicxbmsbocnxgxaaoocoxcogeimsclxcabnxgxaramcssbcgeicxbmsbxcnxgxaaosclmcogeialbserxenxgxaaxbsccmxgeioslmrxlrnxgxaaosxbcmogeimscamxrbnxgxaramxrbclgeimsclxreenxgxaramcssbcgeimxmssbrenxgxaramcsmccgeicraxcrebnxgxarmcrsxcxgeislsarosxnxgxaaosselcsgeicmexsleonxgxarabcxolegeioslmrxbmnxgxaaosroexsgeirsxcecsenxgxarabbcraxgeialbserebnxgxaaoomcaccgeioslmroemnxgxaaossrccogeicmexsblcnxgxarmrcmolageiaaoboxbonxgxaralmcosrgeiamxmbxbonxgxaralsbsolgeimscamxccnxgxaralsbsaxgeiaaoabboonxgxarmeomobrgeislsaroornxgxaaxollooxgeimooxbxeanxgxarmescrbbgeirsxcecsbnxgxarmelblebgeicmexslxcnxgxarmcbccrbgeicraxcrocnxgxarmsoerxxgeicraxcclanxgxarmxmcmmcgeicmexslecnxgxarmsembabgeicraxcreanxgxarmaarabageirsxcecccnxgxarmoocmexgeicraxcrxanxgxarmarlrxmgeialbserxonxgxaaoobreargeimcelelronxgxarbsrmlaageirsxcecxanxgxarbccmbcsgeirbabxabbnxgxaaosclmcogeicmeecrxcnxgxarmbexrmogeicmeecclonxgxarmorasemgeialbsereanxgxaaxsosbblgeicmexslxonxgxarmcxcaregeicaxsscmbnxgxaaxbsccmxgeicmeexcaenxgxarmcxsxcageimcelelrcnxgxarmcxsxcageimcelelcenxgxarmcxsxcageimcoexclonxgxarmcxsxcageialbserecnxgxaaoecxelogeicmeeccbcnxgxarmcarxemgeicmexsblenxgxarmarlrxmgeimcoexaabnxgxaaeosmmecgeimcoexasbnxgxaaeosmmecgeicmeecrecnxgxarmrxsamageicraxcroonxgxarmrasloageicmexrxxonxgxarmaarabageimcoexaxonxgxarbblarblgeicaormbbenxgxarlexsrrageimcebllronxgxarmarlrxmgeirbabxalenxgxarmabbsmmgeicraxcroenxgxarmbexrmogeirsxcecsonxgxarmbrrcsegeimcoexxlonxgxarbsasblxgeimcoexasanxgxaaoecxelogeiroeaablbnxgxarlrlxmeegeimcoexarenxgxarlcbxlxageimcoexabbnxgxarbxeocasgeimcoexrlonxgxarbblarblgeimooxbelbnxgxarbexxealgeirsxcecebnxgxarbsasblxgeimcoexrlcnxgxarlcbxlxageimcoexaaanxgxarlcbxlxageirsxcecxenxgxarbxxxolxgeiraaoxbbcnxgxarbellsrxgeimcelelcanxgxaaxarbxxegeioslmrxlsnxgxaaosclmcogeicaormbmanxgxaaxxlcxbmgeicaormlxcnxgxarbobbbbmgeicaormbbanxgxaaeoxexsxgeicaormlxanxgxarbobbbbmgeimcelelranxgxarbsrmlaageimcersrocnxgxarbsasblxgeimcoexaxcnxgxarbcslxbcgeisaeeasslnxgxaaoomsarogeimcersxbenxgxaaxacacesgeimcersxacnxgxarbroammrgeicaormloenxgxaaeoxexsxgeimcersoeenxgxarbroammrgeimcelelaanxgxarbrboxregeimcelelbenxgxarbrboxregeimcoexaxbnxgxaaoecxelogeimcoexamenxgxarbblarblgeimcoexabanxgxarbblarblgeimcoexacanxgxarbblarblgeimcoexaoonxgxarblslrsxgeimcclsxbcnxgxaaeosmmecgeimcclsoeonxgxaaoxbsallgeicaormleanxgxaaxxemrecgeimcclsebcnxgxarlexorssgeimcclsxmenxgxaaeoaolesgeimcclossbnxgxaaelalbbbgeimcclsxlenxgxaaoosmroegeimcclsxsonxgxaaexxllbrgeimcclsxxcnxgxarlalasssgeimcclsxlanxgxaaemmeambgeimcclsxscnxgxaaoeorrelgeicaormbmbnxgxaaemaolsbgeimcclselcnxgxarleomllegeimccloscenxgxaaersaolbgeimcclsxaanxgxarlesreebgeimcclselanxgxaaebsleobgeimcclsebbnxgxarlcbxlxageicaormbmcnxgxarloeaexageicaormlxonxgxarlmbxoosgeiclsmrrrenxgxarloalasrgeiclsmarcanxgxarloalasrgeiclsmrbronxgxarloalasrgeimcclsxronxgxaaxarbxxegeimcclsxmanxgxaaexxsoasgeimcclossanxgxaaexxllbrgeimcclsxaonxgxaaxarbxxegeimcoexasonxgxarlcbxlxageimcclsxabnxgxarlreooaageimcclosscnxgxaaoxbsallgeimcclsxlbnxgxaaxbsaslsgeimcclsxbbnxgxarlalasssgeicaormbbonxgxaaeoxexsxgeimcclsxcanxgxaaxxcmeaegeimcclsxmbnxgxaaeebrxsegeimcclsxxonxgxaaxobsolageimcclsxsbnxgxaaxlomxrlgeimcclsxcbnxgxaaexxllbrgeimcclsxmonxgxaaexoembogeimcclsxconxgxaaxbxlaaogeimcclselenxgxaaesmsscageimcclsxmcnxgxaaeosmmecgeimcoexacbnxgxaaoecxelogeimcclsxbanxgxaaeoaolesgeimcclsebanxgxaaesobbblgeimcclsxxanxgxaaesalmmsgeimcclsxacnxgxaaxlcabocgeimcoexcccnxgxaaecebcslgeimcclsxocnxgxaaesmsscageimcclsxbenxgxaaesalmlageimcclsxsenxgxaaeassbmlgeimcclsxrenxgxaaesmsscageimcclosccnxgxaaecexaasgeimcclsxobnxgxaaoxbsabcgeimcelelsanxgxaaecebcslgeimcelelmanxgxaaecebcslgeimcclsxlonxgxaaoxbsallgeimcclsxlcnxgxaaxsxrlcsgeimcclosconxgxaaoobxxlxgeimrerbboanxgxaaemsosmogeicaormlxenxgxaaoomsarogeicaormbbcnxgxaaoomsarogeimrscomecnxgxaaxeeaxaegeimcclsxsanxgxaaoosalmcgeimcrxsbobnxgxaaosxbcmogeimcoexsacnxgxaaxxcmeaegeimrscomeenxgxaaxsbxmrcgeimrcrbrxenxgxaaxrxelsbgeimcersxlbnxgxaaxacacesgeimcelelrenxgxaaxarbxxegeimrerbbsbnxgxaaoxasxrcgeimrerbbccnxgxaaoeemarogeimrerbmlenxgxaaxlocooageimccloscanxgxaaxlslrergeimrerbmlanxgxaaoeemarogeiclsmrbocnxgxaaooxbxsrgeiclsmrrccnxgxaaooxbxsrgeiclsmrmocnxgxaaooxbxsrgeiccmblmmonxgxaaosxbcmogeiccmblmmbnxgxaaosellbbgeimeembecenxgxaaoomecsbgxcceimxlbalscnogxaaoomecsbgxcceimclsaoxbnbgxaaoomxxxcgxcceimrrbosxbnxsgxaaoomxxxcgxcceimeembescnsgxaaoomoerogxcceimxcbrxbenxgxaaoomosaogxcceimcssmlrencgxaaoomomaogxcceimrracoaenxgxaaoomomaogxcceimrxccosancgxaaoomolcmgxcceicxexraernxgxaaoomsemmgxcceimrxccosbnogxaaoomsemmgxcceiallxlmscnxgxaaoomsarogxcceialblcxmenxgxaaoomsarsgxcceimocbmmmcnxgxaaoomsarsgxcceimocbmmmenxgxaaoomsarsgxcceiallxlmoenxgxaaoomsarsgxcceimexxlrbenxgxaaoomsarsgxcceimxeoxsbencgxaaoomcaccgxcceimxlbmxlcnogxaaoomcaccgxcceimrrboraenogxaaoomrmcegxcceimrrcrrbbnxegxaaoomrmcxgxcceimrracoranxgxaaoomrmcxgxcceimrsreamonsgxaaoommrxagxcceimrsreamansgxaaoommmoagxcceimxlbmoscnogxaaoomlxsagxcceimxomsmconxgxaaoomllscgxcceimrcaeesbnrgxaaoobemesgxcceiaaxcabaonxgxaaoobemecgxcceimrrascacnxgxaaoobemecgxcceimcssmlronsgxaaoobemecgxcceimclobexbnxgxaaoobemergxcceimxxerreonxgxaaoobxxlxgxcceiccmblmmanxgxaaossrccogeimeelaclonsgxaaoobxxlogxcceimcoaxmxcncgxaaoobxxlogxcceiccblrxrbnxgxaaoobxcxsgxcceiccblrxaanxgxaaoobxcxsgxcceialbbebsanxgxaaoobxcxcgxcceimxlbmxbbnogxaaoobsobegxcceimrrcrrlencgxaaoobsmlrgxcceimoobcomonxgxaaoobsbsbgxcceimoobcobenxgxaaoobsbsbgxcceimrorsroanxgxaaoobcmragxcceimrxccoscnogxaaoobrrcxgxcceimrrcrrlonmgxaaoobaxamgxcceicrasmsrcnxgxaaoobamrlgxcceiarmcbbbbnxgxaaoolelamgxcceimxcbrxcbnxgxaaoolrxsegxcceimcoaxmxoncgxaaoollrosgxcceimememseonxgxaaoollrorgxcceimxlbmosanogxaaoseolllgxcceimcssxmscnxgxaaosecoxrgxcceiaxbscbconxgxaaosemlcegxcceimrrascmanxgxaaoselemsgxcceimxlbmoobnogxaaoselemsgxcceislmbecesnxgxaaosellbbgxoaeimxxerreanxgxaaosellbbgxcceimrxsscxcnsgxaaosxeeasgxcceimrxaaxxbnxgxaaosxexmxgxcceiceecmorsnxgxaaosxexmxgxcceicloaxxoenxgxaaosxemxmgxcceimcrxeoccnxgxaaosxemxlgxcceimcrxeomcnxgxaaosxemxlgxcceimcrxeoacnxgxaaosxemxlgxcceimcrxeoaenxgxaaosxemxlgxcceimcrxeocbnxgxaaosxemxlgxcceimcrxeobenxgxaaosxemoegxcceimcrxeorcnxgxaaosxemoegxcceimcrxeosbnxgxaaosxemoegxcceimcrxeoaanxgxaaosxemoegxcceimocbmmbenxgxaaosxemoegxcceimrcmxlaonxgxaaosxemoegxcceimrsreaboncgxaaosxxmrogxcceimrsreambnsgxaaosxxmrogxcceimrcaoaoanrgxaaosxorxagxcceimrracoaonxgxaaosxsebogxcceimeembeconxgxaaosxsocagxcceimrracorcnxgxaaosxclaogxcceimocolroansgxaaosxrxmcgxcceimxlbmosonogxaaosxrxmcgxcceixaoosscrnxgxaaosxasosgxcceialaroxrcnxgxaaosxboaegxcceicbbmelmcnxgxaaosxbcmogxcceimxeemblenxgxaaosxbcmsgxcceimrrascmbnxgxaaosoexssgxcceimraeecxanxgxaaosoexssgxcceimxeemleenogxaaosoexssgxcceimraeecxbnxgxaaosoxsrogxcceimorolaronxgxaaosoxsrogxcceiaaxcamlenxgxaaosoclrxgxcceimxlbmxlenogxaaosorbsrgxcceimrrrommenxgxaaosorbsrgxcceimxxrecsanxgxaaosoalsbgxcceimxlbmoconogxaaosoalsbgxcceimrrasxmonxgxaaosomrmogxcceimrcmxlaanxgxaaosobsslgxcceimrrbosxcnsgxaaosobsslgxcceixaoossalnxgxaaosserbbgxcceialrexeoonxgxaaosserbbgxcceimxxerrxenxgxaaosselcsgxcceialbbebrenxgxaaosselcsgxcceimocolrocnogxaaossxmxcgxcceimeembesonxgxaaossocacgxcceicmarxbbonsgxaaossocacgxcceimcscroconxgxaaossocacgxcceicrcorbccnxgxaaossocargxcceicxexraxxnxgxaaossocargxcceimrrasxbonxgxaaosssobmgxcceimxeemblanxgxaaosssobmgxcceimrrasxbenxgxaaosssobmgxcceimrrasxmcnxgxaaosscslmgxcceimrrascaanxgxaaosscaxbgxcceimxlbalcenogxaaosscaxbgxcceimcssmlrcnsgxaaossrccogxcceimrrascmonxgxaaossrccogxcceimxlbmxlonogxaaossrcccgxcceimxeoxsacnogxaaossrcccgxcceimrrascabnxgxaaossrrcrgxcceimxlbalsbnogxaaossrbbrgxcceimrrascaonxgxaaossrbbagxcceiclarsaeenxgxaaoscoxoogxcceicloaxxmenxgxaaoscsaebgxcceimxlbmosenxgxaaoscsaebgxcceimrxccosenogxaaoscrloogxcceicloaxxacnxgxaaoscrlrsgxcceimrsreaabnxgxaaoscleamgxcceimrrascaenxgxaaosclmcogxcceislmbeslrnxgxaaosclmcogxoaeimrrascmcnxgxaaosrerxcgxcceimxcbrxlonxgxaaosroexsgxcceialbbebsbnxgxaaosroexsgxcceimsacexoonxgxaaosroexsgxcceicxmecmcanxgxaaosroossgxcceicloaxxmonxgxaaosrsasrgxcceimexexabbnxgxaaosrsasagxcceimcorllcanxgxaaosrrabsgxcceimrcaoxbanxgxaaosracccgxcceicloaecoanxgxaaosracccgxcceimraeelaanxgxaaosramoxgxcceiabxoaelonxgxaaosramoxgxcceimrrasxmanxgxaaosramosgxcce; expires=Tue, 06 Sep 2022 05:45:23 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Content-Encoding: gzip
syndication.realsrv.com/ads-iframe-display.php?idzone=1500748&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718846&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22
200 OK 1.3 kB URL HTTP/1.1 syndication.realsrv.com/ads-iframe-display.php?idzone=1500748&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718846&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1208)
Hash 57a2ea745a649e0bfdaca3f477afb743
b75fe05931cb75ffbd0a0e75bbbaa571b6f801b4
1cb241a0d15b2fc1b228fe74883d471743a46d759f11bfb525119f70eb468261
GET /ads-iframe-display.php?idzone=1500748&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718846&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22 HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12007250.pix-cdn.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 05:45:23 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%2263158cf3002c36.17931567135257021%22%3B%7D; expires=Wed, 04 Sep 2024 05:45:23 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
impressions=mxmssbsanxgxaraaxosbageicxbmsboenxgxaaosselcsgeialeblerenxgxarmeomobrgeimxmbasacnxgxaraaoasaageicxbmsbcenxgxaaossrbbageialeblecenxgxaralsbsaxgeimxmbasmbnxgxaraaolroageioslmrxbrnxgxaaosellbbgeicxbmsbocnxgxaaoocoxcogeimsclxcabnxgxaramcssbcgeicxbmsbxcnxgxaaosclmcogeialbserxenxgxaaxbsccmxgeioslmrxlrnxgxaaosxbcmogeimscamxrbnxgxaramxrbclgeimsclxreenxgxaramcssbcgeimxmssbrenxgxaramcsmccgeicraxcrebnxgxarmcrsxcxgeislsarosxnxgxaaosselcsgeicmexsleonxgxarabcxolegeioslmrxbmnxgxaaosroexsgeirsxcecsenxgxarabbcraxgeialbserebnxgxaaoomcaccgeioslmroemnxgxaaossrccogeicmexsblcnxgxarmrcmolageiaaoboxbonxgxaralmcosrgeiamxmbxbonxgxaralsbsolgeimscamxccnxgxaralsbsaxgeiaaoabboonxgxarmeomobrgeislsaroornxgxaaxollooxgeimooxbxeanxgxarmescrbbgeirsxcecsbnxgxarmelblebgeicmexslxcnxgxarmcbccrbgeicraxcrocnxgxarmsoerxxgeicraxcclanxgxarmxmcmmcgeicmexslecnxgxarmsembabgeicraxcreanxgxarmaarabageirsxcecccnxgxarmoocmexgeicraxcrxanxgxarmarlrxmgeialbserxonxgxaaoobreargeimcelelronxgxarbsrmlaageirsxcecxanxgxarbccmbcsgeirbabxabbnxgxaaosclmcogeicmeecrxcnxgxarmbexrmogeicmeecclonxgxarmorasemgeialbsereanxgxaaxsosbblgeicmexslxonxgxarmcxcaregeicaxsscmbnxgxaaxbsccmxgeicmeexcaenxgxarmcxsxcageimcelelrcnxgxarmcxsxcageimcelelcenxgxarmcxsxcageimcoexclonxgxarmcxsxcageialbserecnxgxaaoecxelogeicmeeccbcnxgxarmcarxemgeicmexsblenxgxarmarlrxmgeimcoexaabnxgxaaeosmmecgeimcoexasbnxgxaaeosmmecgeicmeecrecnxgxarmrxsamageicraxcroonxgxarmrasloageicmexrxxonxgxarmaarabageimcoexaxonxgxarbblarblgeicaormbbenxgxarlexsrrageimcebllronxgxarmarlrxmgeirbabxalenxgxarmabbsmmgeicraxcroenxgxarmbexrmogeirsxcecsonxgxarmbrrcsegeimcoexxlonxgxarbsasblxgeimcoexasanxgxaaoecxelogeiroeaablbnxgxarlrlxmeegeimcoexarenxgxarlcbxlxageimcoexabbnxgxarbxeocasgeimcoexrlonxgxarbblarblgeimooxbelbnxgxarbexxealgeirsxcecebnxgxarbsasblxgeimcoexrlcnxgxarlcbxlxageimcoexaaanxgxarlcbxlxageirsxcecxenxgxarbxxxolxgeiraaoxbbcnxgxarbellsrxgeimcelelcanxgxaaxarbxxegeioslmrxlsnxgxaaosclmcogeicaormbmanxgxaaxxlcxbmgeicaormlxcnxgxarbobbbbmgeicaormbbanxgxaaeoxexsxgeicaormlxanxgxarbobbbbmgeimcelelranxgxarbsrmlaageimcersrocnxgxarbsasblxgeimcoexaxcnxgxarbcslxbcgeisaeeasslnxgxaaoomsarogeimcersxbenxgxaaxacacesgeimcersxacnxgxarbroammrgeicaormloenxgxaaeoxexsxgeimcersoeenxgxarbroammrgeimcelelaanxgxarbrboxregeimcelelbenxgxarbrboxregeimcoexaxbnxgxaaoecxelogeimcoexamenxgxarbblarblgeimcoexabanxgxarbblarblgeimcoexacanxgxarbblarblgeimcoexaoonxgxarblslrsxgeimcclsxbcnxgxaaeosmmecgeimcclsoeonxgxaaoxbsallgeicaormleanxgxaaxxemrecgeimcclsebcnxgxarlexorssgeimcclsxmenxgxaaeoaolesgeimcclossbnxgxaaelalbbbgeimcclsxlenxgxaaoosmroegeimcclsxsonxgxaaexxllbrgeimcclsxxcnxgxarlalasssgeimcclsxlanxgxaaemmeambgeimcclsxscnxgxaaoeorrelgeicaormbmbnxgxaaemaolsbgeimcclselcnxgxarleomllegeimccloscenxgxaaersaolbgeimcclsxaanxgxarlesreebgeimcclselanxgxaaebsleobgeimcclsebbnxgxarlcbxlxageicaormbmcnxgxarloeaexageicaormlxonxgxarlmbxoosgeiclsmrrrenxgxarloalasrgeiclsmarcanxgxarloalasrgeiclsmrbronxgxarloalasrgeimcclsxronxgxaaxarbxxegeimcclsxmanxgxaaexxsoasgeimcclossanxgxaaexxllbrgeimcclsxaonxgxaaxarbxxegeimcoexasonxgxarlcbxlxageimcclsxabnxgxarlreooaageimcclosscnxgxaaoxbsallgeimcclsxlbnxgxaaxbsaslsgeimcclsxbbnxgxarlalasssgeicaormbbonxgxaaeoxexsxgeimcclsxcanxgxaaxxcmeaegeimcclsxmbnxgxaaeebrxsegeimcclsxxonxgxaaxobsolageimcclsxsbnxgxaaxlomxrlgeimcclsxcbnxgxaaexxllbrgeimcclsxmonxgxaaexoembogeimcclsxconxgxaaxbxlaaogeimcclselenxgxaaesmsscageimcclsxmcnxgxaaeosmmecgeimcoexacbnxgxaaoecxelogeimcclsxbanxgxaaeoaolesgeimcclsebanxgxaaesobbblgeimcclsxxanxgxaaesalmmsgeimcclsxacnxgxaaxlcabocgeimcoexcccnxgxaaecebcslgeimcclsxocnxgxaaesmsscageimcclsxbenxgxaaesalmlageimcclsxsenxgxaaeassbmlgeimcclsxrenxgxaaesmsscageimcclosccnxgxaaecexaasgeimcclsxobnxgxaaoxbsabcgeimcelelsanxgxaaecebcslgeimcelelmanxgxaaecebcslgeimcclsxlonxgxaaoxbsallgeimcclsxlcnxgxaaxsxrlcsgeimcclosconxgxaaoobxxlxgeimrerbboanxgxaaemsosmogeicaormlxenxgxaaoomsarogeicaormbbcnxgxaaoomsarogeimrscomecnxgxaaxeeaxaegeimcclsxsanxgxaaoosalmcgeimcrxsbobnxgxaaosxbcmogeimcoexsacnxgxaaxxcmeaegeimrscomeenxgxaaxsbxmrcgeimrcrbrxenxgxaaxrxelsbgeimcersxlbnxgxaaxacacesgeimcelelrenxgxaaxarbxxegeimrerbbsbnxgxaaoxasxrcgeimrerbbccnxgxaaoeemarogeimrerbmlenxgxaaxlocooageimccloscanxgxaaxlslrergeimrerbmlanxgxaaoeemarogeiclsmrbocnxgxaaooxbxsrgeiclsmrrccnxgxaaooxbxsrgeiclsmrmocnxgxaaooxbxsrgeiccmblmmonxgxaaosxbcmogeiccmblmmbnxgxaaosellbbgeimeembecenxgxaaoomecsbgxcceimxlbalscnogxaaoomecsbgxcceimclsaoxbnbgxaaoomxxxcgxcceimrrbosxbnxsgxaaoomxxxcgxcceimeembescnsgxaaoomoerogxcceimxcbrxbenxgxaaoomosaogxcceimcssmlrencgxaaoomomaogxcceimrracoaenxgxaaoomomaogxcceimrxccosancgxaaoomolcmgxcceicxexraernxgxaaoomsemmgxcceimrxccosbnogxaaoomsemmgxcceiallxlmscnxgxaaoomsarogxcceialblcxmenxgxaaoomsarsgxcceimocbmmmcnxgxaaoomsarsgxcceimocbmmmenxgxaaoomsarsgxcceiallxlmoenxgxaaoomsarsgxcceimexxlrbenxgxaaoomsarsgxcceimxeoxsbencgxaaoomcaccgxcceimxlbmxlcnogxaaoomcaccgxcceimrrboraenogxaaoomrmcegxcceimrrcrrbbnxegxaaoomrmcxgxcceimrracoranxgxaaoomrmcxgxcceimrsreamonsgxaaoommrxagxcceimrsreamansgxaaoommmoagxcceimxlbmoscnogxaaoomlxsagxcceimxomsmconxgxaaoomllscgxcceimrcaeesbnrgxaaoobemesgxcceiaaxcabaonxgxaaoobemecgxcceimrrascacnxgxaaoobemecgxcceimcssmlronsgxaaoobemecgxcceimclobexbnxgxaaoobemergxcceimxxerreonxgxaaoobxxlxgxcceiccmblmmanxgxaaossrccogeimeelaclonsgxaaoobxxlogxcceimcoaxmxcncgxaaoobxxlogxcceiccblrxrbnxgxaaoobxcxsgxcceiccblrxaanxgxaaoobxcxsgxcceialbbebsanxgxaaoobxcxcgxcceimxlbmxbbnogxaaoobsobegxcceimrrcrrlencgxaaoobsmlrgxcceimoobcomonxgxaaoobsbsbgxcceimoobcobenxgxaaoobsbsbgxcceimrorsroanxgxaaoobcmragxcceimrxccoscnogxaaoobrrcxgxcceimrrcrrlonmgxaaoobaxamgxcceicrasmsrcnxgxaaoobamrlgxcceiarmcbbbbnxgxaaoolelamgxcceimxcbrxcbnxgxaaoolrxsegxcceimcoaxmxoncgxaaoollrosgxcceimememseonxgxaaoollrorgxcceimxlbmosanogxaaoseolllgxcceimcssxmscnxgxaaosecoxrgxcceiaxbscbconxgxaaosemlcegxcceimrrascmanxgxaaoselemsgxcceimxlbmoobnogxaaoselemsgxcceislmbecesnxgxaaosellbbgxoaeimxxerreanxgxaaosellbbgxcceimrxsscxcnsgxaaosxeeasgxcceimrxaaxxbnxgxaaosxexmxgxcceiceecmorsnxgxaaosxexmxgxcceicloaxxoenxgxaaosxemxmgxcceimcrxeoccnxgxaaosxemxlgxcceimcrxeomcnxgxaaosxemxlgxcceimcrxeoacnxgxaaosxemxlgxcceimcrxeoaenxgxaaosxemxlgxcceimcrxeocbnxgxaaosxemxlgxcceimcrxeobenxgxaaosxemoegxcceimcrxeorcnxgxaaosxemoegxcceimcrxeosbnxgxaaosxemoegxcceimcrxeoaanxgxaaosxemoegxcceimocbmmbenxgxaaosxemoegxcceimrcmxlaonxgxaaosxemoegxcceimrsreaboncgxaaosxxmrogxcceimrsreambnsgxaaosxxmrogxcceimrcaoaoanrgxaaosxorxagxcceimrracoaonxgxaaosxsebogxcceimeembeconxgxaaosxsocagxcceimrracorcnxgxaaosxclaogxcceimocolroansgxaaosxrxmcgxcceimxlbmosonogxaaosxrxmcgxcceixaoosscrnxgxaaosxasosgxcceialaroxrcnxgxaaosxboaegxcceicbbmelmcnxgxaaosxbcmogxcceimxeemblenxgxaaosxbcmsgxcceimrrascmbnxgxaaosoexssgxcceimraeecxanxgxaaosoexssgxcceimxeemleenogxaaosoexssgxcceimraeecxbnxgxaaosoxsrogxcceimorolaronxgxaaosoxsrogxcceiaaxcamlenxgxaaosoclrxgxcceimxlbmxlenogxaaosorbsrgxcceimrrrommenxgxaaosorbsrgxcceimxxrecsanxgxaaosoalsbgxcceimxlbmoconogxaaosoalsbgxcceimrrasxmonxgxaaosomrmogxcceimrcmxlaanxgxaaosobsslgxcceimrrbosxcnsgxaaosobsslgxcceixaoossalnxgxaaosserbbgxcceialrexeoonxgxaaosserbbgxcceimxxerrxenxgxaaosselcsgxcceialbbebrenxgxaaosselcsgxcceimocolrocnogxaaossxmxcgxcceimeembesonxgxaaossocacgxcceicmarxbbonsgxaaossocacgxcceimcscroconxgxaaossocacgxcceicrcorbccnxgxaaossocargxcceicxexraxxnxgxaaossocargxcceimrrasxbonxgxaaosssobmgxcceimxeemblanxgxaaosssobmgxcceimrrasxbenxgxaaosssobmgxcceimrrasxmcnxgxaaosscslmgxcceimrrascaanxgxaaosscaxbgxcceimxlbalcenogxaaosscaxbgxcceimcssmlrcnsgxaaossrccogxcceimrrascmonxgxaaossrccogxcceimxlbmxlonogxaaossrcccgxcceimxeoxsacnogxaaossrcccgxcceimrrascabnxgxaaossrrcrgxcceimxlbalsbnogxaaossrbbrgxcceimrrascaonxgxaaossrbbagxcceiclarsaeenxgxaaoscoxoogxcceicloaxxmenxgxaaoscsaebgxcceimxlbmosenxgxaaoscsaebgxcceimrxccosenogxaaoscrloogxcceicloaxxacnxgxaaoscrlrsgxcceimrsreaabnxgxaaoscleamgxcceimrrascaenxgxaaosclmcogxcceislmbeslrnxgxaaosclmcogxoaeimrrascmcnxgxaaosrerxcgxcceimxcbrxlonxgxaaosroexsgxcceialbbebsbnxgxaaosroexsgxcceimsacexoonxgxaaosroexsgxcceicxmecmcanxgxaaosroossgxcceicloaxxmonxgxaaosrsasrgxcceimexexabbnxgxaaosrsasagxcceimcorllcanxgxaaosrrabsgxcceimrcaoxbanxgxaaosracccgxcceicloaecoanxgxaaosracccgxcceimraeelaanxgxaaosramoxgxcceiabxoaelonxgxaaosramoxgxcceimraeelabnxgxaaosramosgxcce; expires=Tue, 06 Sep 2022 05:45:23 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Content-Encoding: gzip
twinrdack.com/Redirect.eng?MediaSegmentId=44788&dcid=3_ctx_e1c1d0a2-91e2-46cf-878f-d9da11a1c835&vmId=00000000-0000-0000-0000-000000000000&abr=false&timeZoneOffset=&v=SanU2qghxCfxfmcO3cWOgg9wM5ucFqqlv51PY56usZAG7sYaKvoUQGuBr3fOs4NgHSL_zXJi7aIH2GP1mvhnLqzN0rV4M1gL_PG7x4zL4T57dZl-vJIDPJ4Bos8oD2mf2-1AYFybQapAHnoaddzf453TRX86fJ-_QNV__KNG-3cRp4hxV2pjHXuHXmKRxt9Mb7nfzzx-nIYvmEsbArYC1_VZEjYo_RVDho6PoZWa-rtzDB7qpJWZ3jeAZsHfKvhU5h615Hv8-DeQ-PtozJQz7iCDUYrncKcvoJhKQwMIuadOHQgN9NKSRxQJZEcV2nqZ9WQhZZwPpNoXZrvl4D5jeXsUp9w8axl-Ve6kgHZrZrLb0OhWb7MfQ00uKA-UOiNOh3bdKWsoKA9M0EXoJiLaB5Nt4BZzRTNcEDX8yFFiBx3Ish2JidEU8_dvC9ug8d2ZCebiQ-dFuMYWnhOkKjZ1kCRgFu_ddKT1deHaOk5l26uw-hmdOndjEMR-rj1DLccIxLn28_aCA-4e3uGJnL4HkDa5JS1v5Zd9_Xbrr9JIiy78USGbjpyk6-6SkgxzrrQXrSxh7YuU1BGNcNapQg0o29FCQTWRp8TGiIP0SxRy7qFZc5mtiISDah4tARHxm3zKUMu3AqOdvng9WdcMqaOm5_q8Xf4-gbPnoPG05k97yuOzP3ECBgdWmRduavBQrH6n78F7XRG75L1rPoSSLHNYd-xra7ptPCjS6-BQoP_kkFsptQ1oXZjWcrEZ04L8Z0dxDl6jo_C6GLJkNF6_qT7dhf1BQV4ZDG4FHEcD6lOUNjdxvX4oA4oIVVsA91nRQkwQhwzbyiLv1etS8yLfZZ2U25Uq9rQYT8vk5wpe98C2vWlxpX2OX1KZYvSD_irzS4iq95-QmJMmfWIlq8iRkVFUtFEBcLxz8QmCImbto0B2PG91n-O0gkitwCznH0bxkkbwNP8iCm5AOL3nHM8DKpfKPQ2&kw=Straight%2cJapanese&mw=728&mh=90
302 Found 437 B URL HTTP/2 twinrdack.com/Redirect.eng?MediaSegmentId=44788&dcid=3_ctx_e1c1d0a2-91e2-46cf-878f-d9da11a1c835&vmId=00000000-0000-0000-0000-000000000000&abr=false&timeZoneOffset=&v=SanU2qghxCfxfmcO3cWOgg9wM5ucFqqlv51PY56usZAG7sYaKvoUQGuBr3fOs4NgHSL_zXJi7aIH2GP1mvhnLqzN0rV4M1gL_PG7x4zL4T57dZl-vJIDPJ4Bos8oD2mf2-1AYFybQapAHnoaddzf453TRX86fJ-_QNV__KNG-3cRp4hxV2pjHXuHXmKRxt9Mb7nfzzx-nIYvmEsbArYC1_VZEjYo_RVDho6PoZWa-rtzDB7qpJWZ3jeAZsHfKvhU5h615Hv8-DeQ-PtozJQz7iCDUYrncKcvoJhKQwMIuadOHQgN9NKSRxQJZEcV2nqZ9WQhZZwPpNoXZrvl4D5jeXsUp9w8axl-Ve6kgHZrZrLb0OhWb7MfQ00uKA-UOiNOh3bdKWsoKA9M0EXoJiLaB5Nt4BZzRTNcEDX8yFFiBx3Ish2JidEU8_dvC9ug8d2ZCebiQ-dFuMYWnhOkKjZ1kCRgFu_ddKT1deHaOk5l26uw-hmdOndjEMR-rj1DLccIxLn28_aCA-4e3uGJnL4HkDa5JS1v5Zd9_Xbrr9JIiy78USGbjpyk6-6SkgxzrrQXrSxh7YuU1BGNcNapQg0o29FCQTWRp8TGiIP0SxRy7qFZc5mtiISDah4tARHxm3zKUMu3AqOdvng9WdcMqaOm5_q8Xf4-gbPnoPG05k97yuOzP3ECBgdWmRduavBQrH6n78F7XRG75L1rPoSSLHNYd-xra7ptPCjS6-BQoP_kkFsptQ1oXZjWcrEZ04L8Z0dxDl6jo_C6GLJkNF6_qT7dhf1BQV4ZDG4FHEcD6lOUNjdxvX4oA4oIVVsA91nRQkwQhwzbyiLv1etS8yLfZZ2U25Uq9rQYT8vk5wpe98C2vWlxpX2OX1KZYvSD_irzS4iq95-QmJMmfWIlq8iRkVFUtFEBcLxz8QmCImbto0B2PG91n-O0gkitwCznH0bxkkbwNP8iCm5AOL3nHM8DKpfKPQ2&kw=Straight%2cJapanese&mw=728&mh=90
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (365), with CRLF line terminators
Hash a51644f0c7819cd30e59852b36427819
7b4a05d09f431a90929b5f34555330f3aaed41bd
ce8dba430248c66b798136acf7e7c6c17195e3845a4ab7d9e737feabbb10f28f
GET /Redirect.eng?MediaSegmentId=44788&dcid=3_ctx_e1c1d0a2-91e2-46cf-878f-d9da11a1c835&vmId=00000000-0000-0000-0000-000000000000&abr=false&timeZoneOffset=&v=SanU2qghxCfxfmcO3cWOgg9wM5ucFqqlv51PY56usZAG7sYaKvoUQGuBr3fOs4NgHSL_zXJi7aIH2GP1mvhnLqzN0rV4M1gL_PG7x4zL4T57dZl-vJIDPJ4Bos8oD2mf2-1AYFybQapAHnoaddzf453TRX86fJ-_QNV__KNG-3cRp4hxV2pjHXuHXmKRxt9Mb7nfzzx-nIYvmEsbArYC1_VZEjYo_RVDho6PoZWa-rtzDB7qpJWZ3jeAZsHfKvhU5h615Hv8-DeQ-PtozJQz7iCDUYrncKcvoJhKQwMIuadOHQgN9NKSRxQJZEcV2nqZ9WQhZZwPpNoXZrvl4D5jeXsUp9w8axl-Ve6kgHZrZrLb0OhWb7MfQ00uKA-UOiNOh3bdKWsoKA9M0EXoJiLaB5Nt4BZzRTNcEDX8yFFiBx3Ish2JidEU8_dvC9ug8d2ZCebiQ-dFuMYWnhOkKjZ1kCRgFu_ddKT1deHaOk5l26uw-hmdOndjEMR-rj1DLccIxLn28_aCA-4e3uGJnL4HkDa5JS1v5Zd9_Xbrr9JIiy78USGbjpyk6-6SkgxzrrQXrSxh7YuU1BGNcNapQg0o29FCQTWRp8TGiIP0SxRy7qFZc5mtiISDah4tARHxm3zKUMu3AqOdvng9WdcMqaOm5_q8Xf4-gbPnoPG05k97yuOzP3ECBgdWmRduavBQrH6n78F7XRG75L1rPoSSLHNYd-xra7ptPCjS6-BQoP_kkFsptQ1oXZjWcrEZ04L8Z0dxDl6jo_C6GLJkNF6_qT7dhf1BQV4ZDG4FHEcD6lOUNjdxvX4oA4oIVVsA91nRQkwQhwzbyiLv1etS8yLfZZ2U25Uq9rQYT8vk5wpe98C2vWlxpX2OX1KZYvSD_irzS4iq95-QmJMmfWIlq8iRkVFUtFEBcLxz8QmCImbto0B2PG91n-O0gkitwCznH0bxkkbwNP8iCm5AOL3nHM8DKpfKPQ2&kw=Straight%2cJapanese&mw=728&mh=90 HTTP/1.1
Host: twinrdack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Cookie: IKSR={}; INF_DFL8=false; IUID=817dc50a-df69-404b-913e-a7eadf870436; ISSH=65BB75; VMI=; IPLH=#{}; IPLH_Q=#[]; CHN=#[]; MSSH=#{}; MSRH=#{}; ILP=null; ILPLU=#1/1/0001 12:00:00 AM; ILEALC=#1/1/0001 12:00:00 AM; ILMPF=#False; IPMPLU=#; IPMUID=#; BSWUID=#; IBL=#[]; PZK={"P":"mxi/AREsutD9C/ZuUsZiH8Hmi8BAaXKAGG4YG1IuOqgvLJS/2V2zxNXdCxa4y92d","B":[106],"UD":1662356722}; IPLSH=#{}; IPLSH_Q=#[]; IZH=#{}; IZH_Q=#[]; IMCH=#{}; IMCH_Q=#[]; IMH=#{}; IMH_Q=#[]; ISH=#{"14234":[{"SId":"65BB75","D":"22/9/4T22:45:22"}]}; ISH_Q=#[14234]; ISPH=#{}; ISPH_Q=#[]; ICH=#{}; ICH_Q=#[]
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: text/html; charset=utf-8
content-length: 437
location: https://twinrdack.com/mediahosting.engine?MediaId=79333&AId=6827&CId=20960&PId=58637&SiteId=14234&ZoneId=56811&VolumeMetricId=c44ba64b-1395-4404-858a-9d8e2677e012&PassBackUrl=&res=&dcid=3_ctx_e1c1d0a2-91e2-46cf-878f-d9da11a1c835&cu=&kw=Straight%2cJapanese&mw=728&mh=90
cache-control: private, no-transform
access-control-allow-origin: *
set-cookie: IKSR={}; path=/; SameSite=None; secure
INF_DFL8=false; path=/; SameSite=None; secure
IUID=817dc50a-df69-404b-913e-a7eadf870436; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure
ISSH=65BB75; path=/; SameSite=None; secure
VMI=c44ba64b-1395-4404-858a-9d8e2677e012; path=/; SameSite=None; secure
IPLH=#{"58637":[{"SId":"65BB75","D":"22/9/4T22:45:22"}]}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IPLH_Q=#[58637]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
CHN=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
MSSH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
MSRH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ILP=null; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure
ILPLU=#1/1/0001 12:00:00 AM; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ILEALC=#1/1/0001 12:00:00 AM; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ILMPF=#False; expires=Mon, 05-Sep-2022 09:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IPMPLU=#; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IPMUID=#; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
BSWUID=#; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IKSR={}; path=/; SameSite=None; secure
IBL=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
PZK={"P":"mxi/AREsutD9C/ZuUsZiH8Hmi8BAaXKAGG4YG1IuOqgvLJS/2V2zxNXdCxa4y92d","B":[106],"UD":1662356722}; expires=Wed, 05-Oct-2022 05:45:22 GMT; path=/; SameSite=None; secure
IPLSH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IPLSH_Q=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IZH=#{"56811":[{"SId":"65BB75","D":"22/9/4T22:45:22"}]}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IZH_Q=#[56811]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IMCH=#{}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IMCH_Q=#[]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IMH=#{"79333":[{"SId":"65BB75","D":"22/9/4T22:45:22"}]}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
IMH_Q=#[79333]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ISH=#{"14234":[{"SId":"65BB75","D":"22/9/4T22:45:22"}]}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ISH_Q=#[14234]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ISPH=#{"14234":[{"SId":"65BB75","D":"22/9/4T22:45:22"}]}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ISPH_Q=#[14234]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ICH=#{"20960":[{"SId":"65BB75","D":"22/9/4T22:45:22"}]}; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
ICH_Q=#[20960]; expires=Sun, 05-Sep-2032 05:45:22 GMT; path=/; SameSite=None; secure; HttpOnly
x-powered-by: ASP.NET
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KenpD99mb2PuXjAdNIt4oogcGluazL40Qc2V5hssu7mYe41sNXoFgNCohDaLkPvVd4SJrJDZayIRjl%2F6hZCLWsqb%2FlRXwGm4iJ7aH2pirDuEdM%2FVMTWVHmtORUELRqM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca88e1bccb523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
syndication.realsrv.com/ads-iframe-display.php?idzone=1500762&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718864&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22
200 OK 1.3 kB URL HTTP/1.1 syndication.realsrv.com/ads-iframe-display.php?idzone=1500762&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718864&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1208)
Hash b553e22c385247a5fafb923817d66a54
2e73f933e37c47c6c30901e94dcf75b677fd8cd8
77b6af0d433d5940bc2860382faae699b15ebe11043fdaca42ff76860800c737
GET /ads-iframe-display.php?idzone=1500762&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718864&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22 HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12007250.pix-cdn.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 05:45:23 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263158cf314b559.138899851369420652%22%3B%7D; expires=Wed, 04 Sep 2024 05:45:23 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
Content-Encoding: gzip
syndication.realsrv.com/ads-iframe-display.php?idzone=1500788&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718937&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22
200 OK 1.3 kB URL HTTP/1.1 syndication.realsrv.com/ads-iframe-display.php?idzone=1500788&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718937&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1208)
Hash c0b274262580726ac2677c6d80f74a6c
e2628320f6078bf90e59093b5326e176c0c03ec1
5833fd542d51bac8475022d08117f7e6528d2018b3fc0a040cce3804726ccf88
GET /ads-iframe-display.php?idzone=1500788&type=300x250&p=https%3A//rtbrennab.com/&dt=1662356718937&sub=14036&tags=Straight,Japanese&cookieconsent=true&screen_resolution=1280x1024&el=%22 HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12007250.pix-cdn.org/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263158cf3030cb9.055533793408371682%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 05:45:23 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263158cf3030cb9.055533793408371682%22%3B%7D; expires=Wed, 04 Sep 2024 05:45:23 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
Content-Encoding: gzip
btds.zog.link/in/va?spot_id=31249&view=1
200 OK 2 B URL HTTP/2 btds.zog.link/in/va?spot_id=31249&view=1
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /in/va?spot_id=31249&view=1 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
set-cookie: 1840.0=1; expires=Tue, 06 Sep 2022 05:45:23 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
rtbrennab.com/get/?go=1&data=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
200 OK 2.6 kB URL HTTP/2 rtbrennab.com/get/?go=1&data=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
IP
ASN #24940 Hetzner Online GmbH
Hash 5815fffb4ef3f5ada32e738ed0733aa6
4b19ff2104f1d86203c6f022959ebd25a2ec05c8
ed5e1ba4e636e4eca16abe9da025c701524e27664552345e0e227d96989284f7
GET /get/?go=1&data=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 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
btds.zog.link/in/va?spot_id=31250&view=1
200 OK 2 B URL HTTP/2 btds.zog.link/in/va?spot_id=31250&view=1
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /in/va?spot_id=31250&view=1 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/json
content-length: 2
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: 1840.0=1; expires=Tue, 06 Sep 2022 05:45:23 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
btds.zog.link/in/va?spot_id=31253&view=1
200 OK 2 B URL HTTP/2 btds.zog.link/in/va?spot_id=31253&view=1
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /in/va?spot_id=31253&view=1 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/json
content-length: 2
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: 1840.0=1; expires=Tue, 06 Sep 2022 05:45:23 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
twinredads.com/m79333.gif
200 OK 118 kB URL HTTP/2 twinredads.com/m79333.gif
IP
File type GIF image data, version 89a, 728 x 90\012- data
Size 118 kB (117523 bytes)
Hash fcb1c99f8c3a0647d6ba9918bb7b173a
031a529594d5ad0af7f674205a34a089fe320ff8
2ea6343f57fbbca968f9afbff38531aa7b08e6a0c5a127439ac562f14c75ceae
GET /m79333.gif HTTP/1.1
Host: twinredads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twinrdack.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: image/gif
content-length: 117523
cf-ray: 745ca890e8f3b4fa-OSL
accept-ranges: bytes
age: 20443
cache-control: max-age=86400
etag: "fcb1c99f8c3a0647d6ba9918bb7b173a"
last-modified: Mon, 08 Aug 2022 12:50:01 GMT
via: 1.1 0627ff40b5d116e8aeb618dfe60b85fa.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: gTRRq5Dpa_7iD2WLk9ENo4o1A67mWvMjIGWWQFQr4K2Wo42uxDbqUg==
x-amz-cf-pop: CPH50-C2
x-amz-storage-class: REDUCED_REDUNDANCY
x-cache: Hit from cloudfront
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sw.wpu.sh/npc/sdk/common/service-worker.js
200 OK 1.8 kB URL HTTP/2 sw.wpu.sh/npc/sdk/common/service-worker.js
IP
ASN #39572 DataWeb Global Group B.V.
Hash 8ad9845142a688a54626425764e3ec50
d61c61bcb2c08ba25aea1b6374f07addd4951367
4cfd996e524836470ec5869be5d67102512942d0e2c168295a2ad9b1ff17537a
GET /npc/sdk/common/service-worker.js HTTP/1.1
Host: sw.wpu.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 01 Sep 2022 17:10:21 GMT
etag: W/"6310e77d-158c"
content-encoding: gzip
expires: Mon, 05 Sep 2022 05:50:22 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
tsyndicate.com/iframes2/332172ed6b874e0fa7ee9203041c70a3.html?subid=14036&categories=Straight,Japanese
200 OK 3.5 kB URL HTTP/2 tsyndicate.com/iframes2/332172ed6b874e0fa7ee9203041c70a3.html?subid=14036&categories=Straight,Japanese
IP
ASN #24940 Hetzner Online GmbH
Hash 895f63114b1d33af39af662560bb51ce
60c6c96506da839e5ed6d809670fd87463c83cb8
994425e073bc03dc63564ebbe2f4ab2cedb7095abbd981acfdcae89c774ef9cd
GET /iframes2/332172ed6b874e0fa7ee9203041c70a3.html?subid=14036&categories=Straight,Japanese HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: text/html; charset=utf-8
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-api-version: 2
link: <https://lcdn.tsyndicate.com/sdk/v1/b.b.js>; rel=preload; as=script
x-request-id: e6cb948e066405e2
set-cookie: ts_uid=918cacec-3f68-40ab-8436-92bf02fd3a96; expires=Sun, 05 Mar 2023 05:45:23 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
bfq=APeIECNCxxYZOHLAqHFDRhcWIsYU3BLjoYgyE2PYsCGDBo0ZMWTM6NJH; expires=Tue, 06 Sep 2022 05:45:23 GMT; domain=.tsyndicate.com; path=/; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/49315045/1?page-url=goal%3A%2F%2Fupornia.com%2Fplayer_error&page-ref=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&hittoken=1662356723_245f0696862a20f85f860454e45c97e2b5f5000dcba088044fbc9bb3ec85a3c7&browser-info=ar%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A1177838884924%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054518%3Aet%3A1662356719%3Ac%3A1%3Arn%3A110237287%3Arqn%3A3%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1662356715555%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356719%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&t=gdpr(14)mc(p-1-g-2)clc(0-0-0)aw(1)rqnt(3)fip(1)rqnl(1)ti(2)
200 OK 1.1 kB URL HTTP/2 mc.yandex.ru/watch/49315045/1?page-url=goal%3A%2F%2Fupornia.com%2Fplayer_error&page-ref=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&hittoken=1662356723_245f0696862a20f85f860454e45c97e2b5f5000dcba088044fbc9bb3ec85a3c7&browser-info=ar%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A1177838884924%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054518%3Aet%3A1662356719%3Ac%3A1%3Arn%3A110237287%3Arqn%3A3%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1662356715555%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356719%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&t=gdpr(14)mc(p-1-g-2)clc(0-0-0)aw(1)rqnt(3)fip(1)rqnl(1)ti(2)
IP
File type gzip compressed data, from Unix\012- data
Hash b69185d711048446ca20e6e75185957e
6304460ee30922eb15cbe25955f5f1bb5d84c275
269f145a23e666a3c36d8ada714ab56e9bbb4e7e6e3493915a2ff79b34eaf2bf
POST /watch/49315045/1?page-url=goal%3A%2F%2Fupornia.com%2Fplayer_error&page-ref=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&hittoken=1662356723_245f0696862a20f85f860454e45c97e2b5f5000dcba088044fbc9bb3ec85a3c7&browser-info=ar%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A1177838884924%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054518%3Aet%3A1662356719%3Ac%3A1%3Arn%3A110237287%3Arqn%3A3%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1662356715555%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356719%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&t=gdpr(14)mc(p-1-g-2)clc(0-0-0)aw(1)rqnt(3)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 85
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Mon, 05 Sep 2022 05:45:23 GMT
access-control-allow-origin: https://upornia.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Sep-2022 05:45:23 GMT
last-modified: Mon, 05-Sep-2022 05:45:23 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 6974f1f6cbc2108e5de0646e66bcac14
c4bb058f22e2194f42d8b8910ee5eadd2c8c674c
201f676ea4a98f2b98a0d893a3b28fe7b6f8a6da88a8b01edb255b17591bfd10
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 05:45:23 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 15:56:20 GMT
Expires: Sat, 10 Sep 2022 15:56:19 GMT
Etag: "c4bb058f22e2194f42d8b8910ee5eadd2c8c674c"
Cache-Control: max-age=468055,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 745ca8902ea80b69-OSL
lcdn.tsyndicate.com/images/a/c/4af00d33de3775741d76e4784c659ef326375b/main.jpg
200 OK 14 kB URL HTTP/2 lcdn.tsyndicate.com/images/a/c/4af00d33de3775741d76e4784c659ef326375b/main.jpg
IP
File type JPEG image data, baseline, precision 8, 300x250, components 3\012- data
Hash 28e892407a7091647a594200894ee5b0
aed5d07a3d910fc4198973b85f165a24859e8b8a
62d5720c291d8caad412d7730cc8efff651830358c83ea73e563795857070db1
GET /images/a/c/4af00d33de3775741d76e4784c659ef326375b/main.jpg HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsyndicate.com/
Cookie: ts_uid=918cacec-3f68-40ab-8436-92bf02fd3a96; bfq=APeIECNCxxYZOHLAqHFDRhcWIsYU3BLjoYgyE2PYsCGDBo0ZMWTM6NJH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: image/jpeg
content-length: 13654
last-modified: Thu, 16 Jun 2022 00:29:37 GMT
server: nginx
x-robots-tag: noindex, nofollow
content-encoding: gzip
vary: Accept-Encoding
etag: W/"62aa7971-3692"
age: 2419546
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 6974f1f6cbc2108e5de0646e66bcac14
c4bb058f22e2194f42d8b8910ee5eadd2c8c674c
201f676ea4a98f2b98a0d893a3b28fe7b6f8a6da88a8b01edb255b17591bfd10
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 05:45:23 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 15:56:20 GMT
Expires: Sat, 10 Sep 2022 15:56:19 GMT
Etag: "c4bb058f22e2194f42d8b8910ee5eadd2c8c674c"
Cache-Control: max-age=468055,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 745ca8902d55b521-OSL
lcdn.tsyndicate.com/sdk/v1/b.b.js
200 OK 2.8 kB URL HTTP/2 lcdn.tsyndicate.com/sdk/v1/b.b.js
IP
File type ASCII text, with very long lines (2590)
Hash 01c3ce239d639853ba1e41661c115938
704741ca41e890a26eef6190c2d61131ff294f56
9aabcddb7b91826c4b8bf721d77fa448ceba501616a38c6fe0d6c4f11091ed47
GET /sdk/v1/b.b.js HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsyndicate.com/
Cookie: ts_uid=918cacec-3f68-40ab-8436-92bf02fd3a96; bfq=APeIECNCxxYZOHLAqHFDRhcWIsYU3BLjoYgyE2PYsCGDBo0ZMWTM6NJH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/javascript
content-length: 2808
last-modified: Tue, 22 Feb 2022 13:07:15 GMT
server: nginx
x-robots-tag: noindex, nofollow
content-encoding: gzip
vary: Accept-Encoding
etag: W/"6214e003-1eb1"
age: 15622460
accept-ranges: bytes
X-Firefox-Spdy: h2
bc5f232b9e.5eff011dd5.com/in/multy
200 OK 8.4 kB URL HTTP/2 bc5f232b9e.5eff011dd5.com/in/multy
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (8440), with no line terminators
Hash 6fe69207ac7f52d3c27453351acb4006
98e84c56dcf0ff0f8cb13336fa5447430296fd05
c7863e68ddb0dcd33060a1da89bee79d199f23e0ef1c2330e5e38614e7376b71
Analyzer Verdict Alert quad9 Sinkholed
POST /in/multy HTTP/1.1
Host: bc5f232b9e.5eff011dd5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1109
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/json
content-length: 8446
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
bc5f232b9e.5eff011dd5.com/in/show/?mid=198553449&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=14036&sid=3985322802&cid=12900&price=0&is_cpm=1&cpm=0.791555&ecpm=0.791555&crid=&crtid=c90b6754a35f1fb475b39801d710ceff&tcid=0&out_id=1&ver=7.2.0&ver_c=&refdom=upornia.com&hostname=auc-inpage-hz-6&site_id=31437&spot_id=437&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=2022-09-05&is_native=3&auction_queue=0&burl=gBGrqOxfkqCgwCp0KB3mfwUr2zrS4BX8laY-EJ163nIeZATc5VWxdZM3oTp1DdWzBr1KWu7AIdhrCvG4uDgtHN-btkCWz9M3verQSEYhx70SFvVZntqsEq2pr3PbSZibaMPU0HCuh70udbS3iABxRydcRo6pZEpty0KYWLiknA1TFGgPMirthjOaj-oumpY40SCMPE5SBpfUN3Jqm0A-0KhYkh3_GOjPf7Sm9rltNxT3FWibyAJ79DVzqGtqjRvwyj93RVJIzXvcRQkXS4O5qCLVlp6uOebnOTKLjjajIZvjMA6Gnnb41ykn59B6zriNyYR4f3MHxDkGMhbC4wYFEd_fQqD5bytapmJqPRy999FLj9CrmDnHWdmHvNaRn1ffPop-vgzDtW4dVbyU1LL3niiB4G1hIABwPsfKTwWzmzHnTImQY6T69oYZlKm2vM_lGocp0nmEfnxqlb6OQk9tz15pCnB0Kmz0aOrWJCf9VbwU8zDyMPfNupCbO5DIHnIBfmbQJGQQgfZetF1pkpM42yWN8QbwS1k1H-wOEQiIp9AC&pop_winurl=&ip=91.90.42.154&testab=0&px_id=31437&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=lq-pop-ext&uniq=&exp=&resp_type=popunderAd&iabcat=IAB3&min_cpm=0.02104026026880453&placement_type_id=7&skin_test=0&verify_hash=582f812af208bc92ee6993f338d37004&score=0&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D14036%26spot_id%3D437%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fupornia.com%252F%26idzone%3D4438148%26sid%3D1886&ml=&tag_ab=d&original_bid=0.791555&pop_type=1&space_id=1886&verify_hash=582f812af208bc92ee6993f338d37004&real_bid=0.791555&skin_id=4&vertical_id=0&stratagem=&accel=&gyr=&iabcat=IAB3&v2_track=0&url=3VN-esNrfS7EMQCHqnpt2iFCURZKIoSSXj_jWIchvcp6_sBYHdXNo4oil5uipwobJTOAyykHHT7X0eI8X-aLgilkfng309gcQb2YnHM7zsNWEai4nxZo-uJC6lsuNpzLsiVOPHnuvsjDe1Bl8N0T46aiAFqkelTk1dH6mwT3-A3IOcBlQQ&pop_price=0.000791555&pop_real_bid=0.000791555&pop_ecpm=0.025196869842018393&auc_type=1&pr=&user_keywords=&device_theme=light&mlc=1&format=social-scale-b_r-body&mlf=1&cpa=cf8efefa-de7c-450d-a461-d4021b06250b
302 Found 0 B URL HTTP/2 bc5f232b9e.5eff011dd5.com/in/show/?mid=198553449&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=14036&sid=3985322802&cid=12900&price=0&is_cpm=1&cpm=0.791555&ecpm=0.791555&crid=&crtid=c90b6754a35f1fb475b39801d710ceff&tcid=0&out_id=1&ver=7.2.0&ver_c=&refdom=upornia.com&hostname=auc-inpage-hz-6&site_id=31437&spot_id=437&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=2022-09-05&is_native=3&auction_queue=0&burl=gBGrqOxfkqCgwCp0KB3mfwUr2zrS4BX8laY-EJ163nIeZATc5VWxdZM3oTp1DdWzBr1KWu7AIdhrCvG4uDgtHN-btkCWz9M3verQSEYhx70SFvVZntqsEq2pr3PbSZibaMPU0HCuh70udbS3iABxRydcRo6pZEpty0KYWLiknA1TFGgPMirthjOaj-oumpY40SCMPE5SBpfUN3Jqm0A-0KhYkh3_GOjPf7Sm9rltNxT3FWibyAJ79DVzqGtqjRvwyj93RVJIzXvcRQkXS4O5qCLVlp6uOebnOTKLjjajIZvjMA6Gnnb41ykn59B6zriNyYR4f3MHxDkGMhbC4wYFEd_fQqD5bytapmJqPRy999FLj9CrmDnHWdmHvNaRn1ffPop-vgzDtW4dVbyU1LL3niiB4G1hIABwPsfKTwWzmzHnTImQY6T69oYZlKm2vM_lGocp0nmEfnxqlb6OQk9tz15pCnB0Kmz0aOrWJCf9VbwU8zDyMPfNupCbO5DIHnIBfmbQJGQQgfZetF1pkpM42yWN8QbwS1k1H-wOEQiIp9AC&pop_winurl=&ip=91.90.42.154&testab=0&px_id=31437&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=lq-pop-ext&uniq=&exp=&resp_type=popunderAd&iabcat=IAB3&min_cpm=0.02104026026880453&placement_type_id=7&skin_test=0&verify_hash=582f812af208bc92ee6993f338d37004&score=0&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D14036%26spot_id%3D437%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fupornia.com%252F%26idzone%3D4438148%26sid%3D1886&ml=&tag_ab=d&original_bid=0.791555&pop_type=1&space_id=1886&verify_hash=582f812af208bc92ee6993f338d37004&real_bid=0.791555&skin_id=4&vertical_id=0&stratagem=&accel=&gyr=&iabcat=IAB3&v2_track=0&url=3VN-esNrfS7EMQCHqnpt2iFCURZKIoSSXj_jWIchvcp6_sBYHdXNo4oil5uipwobJTOAyykHHT7X0eI8X-aLgilkfng309gcQb2YnHM7zsNWEai4nxZo-uJC6lsuNpzLsiVOPHnuvsjDe1Bl8N0T46aiAFqkelTk1dH6mwT3-A3IOcBlQQ&pop_price=0.000791555&pop_real_bid=0.000791555&pop_ecpm=0.025196869842018393&auc_type=1&pr=&user_keywords=&device_theme=light&mlc=1&format=social-scale-b_r-body&mlf=1&cpa=cf8efefa-de7c-450d-a461-d4021b06250b
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /in/show/?mid=198553449&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=14036&sid=3985322802&cid=12900&price=0&is_cpm=1&cpm=0.791555&ecpm=0.791555&crid=&crtid=c90b6754a35f1fb475b39801d710ceff&tcid=0&out_id=1&ver=7.2.0&ver_c=&refdom=upornia.com&hostname=auc-inpage-hz-6&site_id=31437&spot_id=437&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=2022-09-05&is_native=3&auction_queue=0&burl=gBGrqOxfkqCgwCp0KB3mfwUr2zrS4BX8laY-EJ163nIeZATc5VWxdZM3oTp1DdWzBr1KWu7AIdhrCvG4uDgtHN-btkCWz9M3verQSEYhx70SFvVZntqsEq2pr3PbSZibaMPU0HCuh70udbS3iABxRydcRo6pZEpty0KYWLiknA1TFGgPMirthjOaj-oumpY40SCMPE5SBpfUN3Jqm0A-0KhYkh3_GOjPf7Sm9rltNxT3FWibyAJ79DVzqGtqjRvwyj93RVJIzXvcRQkXS4O5qCLVlp6uOebnOTKLjjajIZvjMA6Gnnb41ykn59B6zriNyYR4f3MHxDkGMhbC4wYFEd_fQqD5bytapmJqPRy999FLj9CrmDnHWdmHvNaRn1ffPop-vgzDtW4dVbyU1LL3niiB4G1hIABwPsfKTwWzmzHnTImQY6T69oYZlKm2vM_lGocp0nmEfnxqlb6OQk9tz15pCnB0Kmz0aOrWJCf9VbwU8zDyMPfNupCbO5DIHnIBfmbQJGQQgfZetF1pkpM42yWN8QbwS1k1H-wOEQiIp9AC&pop_winurl=&ip=91.90.42.154&testab=0&px_id=31437&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=lq-pop-ext&uniq=&exp=&resp_type=popunderAd&iabcat=IAB3&min_cpm=0.02104026026880453&placement_type_id=7&skin_test=0&verify_hash=582f812af208bc92ee6993f338d37004&score=0&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D14036%26spot_id%3D437%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fupornia.com%252F%26idzone%3D4438148%26sid%3D1886&ml=&tag_ab=d&original_bid=0.791555&pop_type=1&space_id=1886&verify_hash=582f812af208bc92ee6993f338d37004&real_bid=0.791555&skin_id=4&vertical_id=0&stratagem=&accel=&gyr=&iabcat=IAB3&v2_track=0&url=3VN-esNrfS7EMQCHqnpt2iFCURZKIoSSXj_jWIchvcp6_sBYHdXNo4oil5uipwobJTOAyykHHT7X0eI8X-aLgilkfng309gcQb2YnHM7zsNWEai4nxZo-uJC6lsuNpzLsiVOPHnuvsjDe1Bl8N0T46aiAFqkelTk1dH6mwT3-A3IOcBlQQ&pop_price=0.000791555&pop_real_bid=0.000791555&pop_ecpm=0.025196869842018393&auc_type=1&pr=&user_keywords=&device_theme=light&mlc=1&format=social-scale-b_r-body&mlf=1&cpa=cf8efefa-de7c-450d-a461-d4021b06250b HTTP/1.1
Host: bc5f232b9e.5eff011dd5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:23 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://static.bookmsg.com/creatives/MX/MX_e33ed81fe11cd40462a8712c0fcf41e2d96a71d6_icon.webp
X-Firefox-Spdy: h2
go.xlivrdr.com/smartpop/ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4?userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&memberId=dd14a411-e6ff-4344-952f-f1e539eb2b91&sourceId=upornia.com&p1=Promo_Banners_Straight_T1_Desk&p2=49657&trackOff=1
302 Found 15 kB URL HTTP/2 go.xlivrdr.com/smartpop/ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4?userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&memberId=dd14a411-e6ff-4344-952f-f1e539eb2b91&sourceId=upornia.com&p1=Promo_Banners_Straight_T1_Desk&p2=49657&trackOff=1
IP
Hash af55c91a7c5ff85e157f6bbd88377d78
9e062d5326ae42593e2369f20196b40c5c5636ca
aa48793f2b46dd348b59c0beba4ffa767d198804edcddbbb4825a5746fa8ebee
GET /smartpop/ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4?userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&memberId=dd14a411-e6ff-4344-952f-f1e539eb2b91&sourceId=upornia.com&p1=Promo_Banners_Straight_T1_Desk&p2=49657&trackOff=1 HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twinrdack.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 05 Sep 2022 05:45:23 GMT
content-length: 0
location: https://creative.xlivrdr.com/LPOmega?campaignId=ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4&campaignType=smartpop&creativeId=3ec5ab3f6aacaa253e3c993f2b0e693ac7d4b6e2324b1f5a165683853ef7f6e6&iterationId=225172&masterSmartpopId=1914&memberId=dd14a411-e6ff-4344-952f-f1e539eb2b91&p1=Promo_Banners_Straight_T1_Desk&p2=49657&ruleId=17&smartpopId=1807&sourceId=upornia.com&tag=-girls%2Findian&trackOff=1&userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&variationId=28940
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: DYNAMIC
set-cookie: _var=893328.28940; Path=/; HttpOnly; SameSite=Strict
__cflb=02DiuDfsBaY2bRYJiCeRhAptQvDh5wz7npYkx9TgH9owr; SameSite=None; Secure; path=/; expires=Tue, 06-Sep-22 04:45:23 GMT; HttpOnly
server: cloudflare
cf-ray: 745ca893ca76b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0WIKWNDRowyY2K0oAFjBpmRNsLMaCHGTMsWMsjkuBGzRhkyYmyIEfFwjpg0ZBTq2CIiBskZNkR0eRimzpiMMRrSoDEjZgsYN2qIpJHjZRgaOGS0MCNjY5ioNTzOyMETIhk7C2XUuHGjogg4dXYylDGTKRw4cY32hDNRB8kcOJDeeDimDWDDYEvKYErGDMWHYty4iYsjB4y5k0W0cYNRR9XODu-OLm00Ko6HdeSwWTijoY2qNGDLyIiGDh04c3S8eIEmzRw6ad64udmizRsyZxC-qTPHRZoxdV7kiEimxhgxOVrUoEEGxsjxNFrgsN2iTI0ZYqiGHROzzI8xcgoit1PmC9AeMnT2GU1c1AEDDDLYMEcadPT3n0c0FHhgggbNAccbdHzhRhhtlNGDGGFohpCGdNjxRRgSIphSUBdm-N9hidlwQ4oJjsEhHGGkcYYb_pHRw1Q4SEajDWOwcd0aPfbQGx13zGEHFVFIkUUSdKxRRRRN2HCGGExcIUQNVOjBxB1a5LEEFHNQYUMWdyyRVxpH0HDGDVDEYQMRbaCRRxhJmFEGFlQI0cYVaWQBRQxQwMBgFHYUWkMWQcyABgxkxGCEGkLQIYUTYSzxBhp2FBEFFHfkQIQTRGgxAxVYGPHFGVUkQYQUVaTRFhlvtJGRHHSIkZ9mYYjhwhi5tmVjYVvItdRdcjzFUBlXpdbSQjC4AINdY8DRxhdwNEuttVjl8JAcdjzm0UMgafvttbDVYasOIuQQAw42jgFSCzOYYQMOI8EQrHpU2dBCDmWZgaAZZMwQRg5JPZTGY_HG4IJnLtAggwtStSWHfxDLO3G1FmM8Xlt1hJFRE2_okQYbbITxQg3WgoACFlHtAAITabhRBx4g4IGDDV_YQIPN5OrAsLUpgHAESGu88YIM1x4Yw7UgGJFGfma8gYd2NlhrrLMiOPFEW29sPAbYYrfFBthFOHFrGSbmNxtDc90QY5AwjLtjXDXgsJgIB5no60I4vAY43F84RwZnNthFhhxv0PbQG0KF1q3WeSyUG-B5bKYDHXLUUca4ZVgG75LACfcCr76WAaywxLbxQltzkLsrhmHQUXYLdbjBYAsx5OACGbs9RAbYB31BfFt06MqQDR3NUIOMMsxgURu7PR_99DTV1hBlX-Rn4YmFxQB99dxXj66JYbCBEB1CbRHDDcsGW9jhZjTFxkQPwbE2tYwpDQz6oICAAA%3D%3D&s=5fe731985d9bcd1afde181299a791ac179c377ee0bbd436337d816c32fe050e11662356723&w=t&r=1&d=89&priv=false
200 OK 24 B URL HTTP/2 pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0WIKWNDRowyY2K0oAFjBpmRNsLMaCHGTMsWMsjkuBGzRhkyYmyIEfFwjpg0ZBTq2CIiBskZNkR0eRimzpiMMRrSoDEjZgsYN2qIpJHjZRgaOGS0MCNjY5ioNTzOyMETIhk7C2XUuHGjogg4dXYylDGTKRw4cY32hDNRB8kcOJDeeDimDWDDYEvKYErGDMWHYty4iYsjB4y5k0W0cYNRR9XODu-OLm00Ko6HdeSwWTijoY2qNGDLyIiGDh04c3S8eIEmzRw6ad64udmizRsyZxC-qTPHRZoxdV7kiEimxhgxOVrUoEEGxsjxNFrgsN2iTI0ZYqiGHROzzI8xcgoit1PmC9AeMnT2GU1c1AEDDDLYMEcadPT3n0c0FHhgggbNAccbdHzhRhhtlNGDGGFohpCGdNjxRRgSIphSUBdm-N9hidlwQ4oJjsEhHGGkcYYb_pHRw1Q4SEajDWOwcd0aPfbQGx13zGEHFVFIkUUSdKxRRRRN2HCGGExcIUQNVOjBxB1a5LEEFHNQYUMWdyyRVxpH0HDGDVDEYQMRbaCRRxhJmFEGFlQI0cYVaWQBRQxQwMBgFHYUWkMWQcyABgxkxGCEGkLQIYUTYSzxBhp2FBEFFHfkQIQTRGgxAxVYGPHFGVUkQYQUVaTRFhlvtJGRHHSIkZ9mYYjhwhi5tmVjYVvItdRdcjzFUBlXpdbSQjC4AINdY8DRxhdwNEuttVjl8JAcdjzm0UMgafvttbDVYasOIuQQAw42jgFSCzOYYQMOI8EQrHpU2dBCDmWZgaAZZMwQRg5JPZTGY_HG4IJnLtAggwtStSWHfxDLO3G1FmM8Xlt1hJFRE2_okQYbbITxQg3WgoACFlHtAAITabhRBx4g4IGDDV_YQIPN5OrAsLUpgHAESGu88YIM1x4Yw7UgGJFGfma8gYd2NlhrrLMiOPFEW29sPAbYYrfFBthFOHFrGSbmNxtDc90QY5AwjLtjXDXgsJgIB5no60I4vAY43F84RwZnNthFhhxv0PbQG0KF1q3WeSyUG-B5bKYDHXLUUca4ZVgG75LACfcCr76WAaywxLbxQltzkLsrhmHQUXYLdbjBYAsx5OACGbs9RAbYB31BfFt06MqQDR3NUIOMMsxgURu7PR_99DTV1hBlX-Rn4YmFxQB99dxXj66JYbCBEB1CbRHDDcsGW9jhZjTFxkQPwbE2tYwpDQz6oICAAA%3D%3D&s=5fe731985d9bcd1afde181299a791ac179c377ee0bbd436337d816c32fe050e11662356723&w=t&r=1&d=89&priv=false
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 0959ba36d476b6dc1994ba3c678b07c4
d30b94da72daa02766965206a85b7e0356375f5e
897410b87e27e3dfba3a7d6caab315a5e69cc941bb96d91fc74878a9b051843a
GET /api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0WIKWNDRowyY2K0oAFjBpmRNsLMaCHGTMsWMsjkuBGzRhkyYmyIEfFwjpg0ZBTq2CIiBskZNkR0eRimzpiMMRrSoDEjZgsYN2qIpJHjZRgaOGS0MCNjY5ioNTzOyMETIhk7C2XUuHGjogg4dXYylDGTKRw4cY32hDNRB8kcOJDeeDimDWDDYEvKYErGDMWHYty4iYsjB4y5k0W0cYNRR9XODu-OLm00Ko6HdeSwWTijoY2qNGDLyIiGDh04c3S8eIEmzRw6ad64udmizRsyZxC-qTPHRZoxdV7kiEimxhgxOVrUoEEGxsjxNFrgsN2iTI0ZYqiGHROzzI8xcgoit1PmC9AeMnT2GU1c1AEDDDLYMEcadPT3n0c0FHhgggbNAccbdHzhRhhtlNGDGGFohpCGdNjxRRgSIphSUBdm-N9hidlwQ4oJjsEhHGGkcYYb_pHRw1Q4SEajDWOwcd0aPfbQGx13zGEHFVFIkUUSdKxRRRRN2HCGGExcIUQNVOjBxB1a5LEEFHNQYUMWdyyRVxpH0HDGDVDEYQMRbaCRRxhJmFEGFlQI0cYVaWQBRQxQwMBgFHYUWkMWQcyABgxkxGCEGkLQIYUTYSzxBhp2FBEFFHfkQIQTRGgxAxVYGPHFGVUkQYQUVaTRFhlvtJGRHHSIkZ9mYYjhwhi5tmVjYVvItdRdcjzFUBlXpdbSQjC4AINdY8DRxhdwNEuttVjl8JAcdjzm0UMgafvttbDVYasOIuQQAw42jgFSCzOYYQMOI8EQrHpU2dBCDmWZgaAZZMwQRg5JPZTGY_HG4IJnLtAggwtStSWHfxDLO3G1FmM8Xlt1hJFRE2_okQYbbITxQg3WgoACFlHtAAITabhRBx4g4IGDDV_YQIPN5OrAsLUpgHAESGu88YIM1x4Yw7UgGJFGfma8gYd2NlhrrLMiOPFEW29sPAbYYrfFBthFOHFrGSbmNxtDc90QY5AwjLtjXDXgsJgIB5no60I4vAY43F84RwZnNthFhhxv0PbQG0KF1q3WeSyUG-B5bKYDHXLUUca4ZVgG75LACfcCr76WAaywxLbxQltzkLsrhmHQUXYLdbjBYAsx5OACGbs9RAbYB31BfFt06MqQDR3NUIOMMsxgURu7PR_99DTV1hBlX-Rn4YmFxQB99dxXj66JYbCBEB1CbRHDDcsGW9jhZjTFxkQPwbE2tYwpDQz6oICAAA%3D%3D&s=5fe731985d9bcd1afde181299a791ac179c377ee0bbd436337d816c32fe050e11662356723&w=t&r=1&d=89&priv=false HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsyndicate.com/
Cookie: ts_uid=918cacec-3f68-40ab-8436-92bf02fd3a96; bfq=APeIECNCxxYZOHLAqHFDRhcWIsYU3BLjoYgyE2PYsCGDBo0ZMWTM6NJH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: text/plain; charset=utf-8
content-length: 24
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/MX/MX_e33ed81fe11cd40462a8712c0fcf41e2d96a71d6.webp
200 OK 18 kB URL HTTP/2 static.bookmsg.com/creatives/MX/MX_e33ed81fe11cd40462a8712c0fcf41e2d96a71d6.webp
IP
ASN #24940 Hetzner Online GmbH
Hash baa23880fd1665e974c3ec8ae1d91975
1b2cf1eb5864779b886e5bfc58a047dd70bf481a
3088d80220c9fd799db767bb6b6adb2d18cd771a25653974583eb9cea1d51d89
GET /creatives/MX/MX_e33ed81fe11cd40462a8712c0fcf41e2d96a71d6.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: image/webp
content-length: 3134
last-modified: Tue, 24 Nov 2020 14:21:29 GMT
etag: "5fbd16e9-c3e"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
upornia.com/kop/fame.js
304 Not Modified 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kop/fame.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: source=14036; kt_lang=en; _ga=GA1.2.324479761.1662356717; _gid=GA1.2.924131252.1662356717; _gat=1; _gat_UA-31745569-46=1; _ym_uid=1662356718784393520; _ym_d=1662356718; _ym_isad=2
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Fri, 22 Jul 2022 07:51:23 GMT
If-None-Match: W/"62da56fb-43"
Cache-Control: max-age=0
TE: trailers
HTTP/2 304 Not Modified
date: Mon, 05 Sep 2022 05:45:23 GMT
last-modified: Fri, 22 Jul 2022 07:51:23 GMT
vary: Accept-Encoding
etag: W/"62da56fb-43"
expires: Sun, 11 Sep 2022 08:54:56 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2062228
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hwep2%2Fy0aa5byUhEhEps7gPrn1CcyBgeWgClgqIgnrWlVEmvLsKVZvEGgkifwVzfdYxRw2v%2BNbpt01yFZtGThJ5ymUaZtaRjkwOaO7NpQc7FMeHdyOf5iSdGEyEo%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca894bb76777f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/MX/MX_e33ed81fe11cd40462a8712c0fcf41e2d96a71d6_icon.webp
200 OK 916 B URL HTTP/2 static.bookmsg.com/creatives/MX/MX_e33ed81fe11cd40462a8712c0fcf41e2d96a71d6_icon.webp
IP
ASN #24940 Hetzner Online GmbH
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b39c6c47b61ba2b139286e67b72ed383
76ebb8bf79b05d9b8e7ac97c60584a5bf9a1b889
5161fac4a00a3e6f521940f1cd1a0fe91af77a3f5118c367c09a13e3c4af2a86
GET /creatives/MX/MX_e33ed81fe11cd40462a8712c0fcf41e2d96a71d6_icon.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upornia.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: image/webp
content-length: 916
last-modified: Tue, 24 Nov 2020 14:21:29 GMT
etag: "5fbd16e9-394"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=822
200 OK 0 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=822
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fp?tag_id=822 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 22267
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 05 Sep 2022 05:45:23 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://upornia.com
Set-Cookie: id=1781985915640637439; Expires=Tue, 05 Sep 2023 05:45:23 GMT; Secure; SameSite=None
Vary: Origin
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a9635e8a2b77ae1a2fd38e86a57ffdfb
ca11db4f5ecf4a8d50bf8e70d11824f8aaee5a0e
b18b810052ae02ca7ca2685a59a072bba656816ad725ba88c62d52032554dcca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B18B810052AE02CA7CA2685A59A072BBA656816AD725BA88C62D52032554DCCA"
Last-Modified: Fri, 02 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4372
Expires: Mon, 05 Sep 2022 06:58:16 GMT
Date: Mon, 05 Sep 2022 05:45:24 GMT
Connection: keep-alive
bc5f232b9e.5eff011dd5.com/in/show/?mid=198553449&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=14036&sid=3985322802&cid=11740&price=0.02046&is_cpm=0&cpm=0&ecpm=0.2267431510595222&crid=&crtid=d2f7a0199f498657f70e72b1320cab88&tcid=0&out_id=0&ver=7.2.0&ver_c=&refdom=upornia.com&hostname=auc-inpage-hz-6&site_id=31437&spot_id=437&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=1662428723&created_at=2022-09-05&is_native=1&auction_queue=0&burl=SmAy7Ilx10iJ6WZzlsyx_x1UqzPRvM9M0-2jIFKVlG4AcYI0KcxyQw&pop_winurl=&ip=91.90.42.154&testab=0&px_id=73437&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=hq&uniq=&exp=&resp_type=&iabcat=IAB3&min_cpm=0.009043345872436468&placement_type_id=&skin_test=0&verify_hash=cca61d5671cdba146f0402f3724d56cc&score=0&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D14036%26spot_id%3D437%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fupornia.com%252F%26idzone%3D4438148%26sid%3D1886&ml=&tag_ab=d&original_bid=0.02046&v2_track=0&url=Cat5GuW02oTc07D8lYhTMhgcmxtonMojTz0p4H2Wq7Zrb1pABBG4_BMQ0kI38bOEJujhjZexj0LJMQiLcUO5-yTOiFSDkWoVfQwZMWTTFaXo1boJjNLmaXKzdJ_siYQVOK8Q2WsVqIwJR2PPeY4p0cvB93U_h_fNNmCQbhvUQxnvsScuPTEAzX3EkGOR-_zMqqhcu3C3N-RcA6jLtuYQeY7b-sjhKDMugh8ff1yyoN6w4j5cNgPgFE0jw54U4gngjxpmz1LhqlzlyOwc-CLpoFhtZU_CBXppCSKx5sDK0KmkcphKYXLdPxzbBL7EYMZDjR2-wpda&image_url=https%3A%2F%2Fcdn.adx1.com%2Fa693033273249985389c33b0cc8f4083.png&skin_id=4&vertical_id=5&real_bid=0.0165726&pr=&user_keywords=&auc_type=1&aid=3251&ext_cid=0&device_theme=light&format=social-scale-b_r-body&cpa=afafc156-4fb4-4bdc-8a2a-6537eb339fd4
302 Found 0 B URL HTTP/2 bc5f232b9e.5eff011dd5.com/in/show/?mid=198553449&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=14036&sid=3985322802&cid=11740&price=0.02046&is_cpm=0&cpm=0&ecpm=0.2267431510595222&crid=&crtid=d2f7a0199f498657f70e72b1320cab88&tcid=0&out_id=0&ver=7.2.0&ver_c=&refdom=upornia.com&hostname=auc-inpage-hz-6&site_id=31437&spot_id=437&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=1662428723&created_at=2022-09-05&is_native=1&auction_queue=0&burl=SmAy7Ilx10iJ6WZzlsyx_x1UqzPRvM9M0-2jIFKVlG4AcYI0KcxyQw&pop_winurl=&ip=91.90.42.154&testab=0&px_id=73437&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=hq&uniq=&exp=&resp_type=&iabcat=IAB3&min_cpm=0.009043345872436468&placement_type_id=&skin_test=0&verify_hash=cca61d5671cdba146f0402f3724d56cc&score=0&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D14036%26spot_id%3D437%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fupornia.com%252F%26idzone%3D4438148%26sid%3D1886&ml=&tag_ab=d&original_bid=0.02046&v2_track=0&url=Cat5GuW02oTc07D8lYhTMhgcmxtonMojTz0p4H2Wq7Zrb1pABBG4_BMQ0kI38bOEJujhjZexj0LJMQiLcUO5-yTOiFSDkWoVfQwZMWTTFaXo1boJjNLmaXKzdJ_siYQVOK8Q2WsVqIwJR2PPeY4p0cvB93U_h_fNNmCQbhvUQxnvsScuPTEAzX3EkGOR-_zMqqhcu3C3N-RcA6jLtuYQeY7b-sjhKDMugh8ff1yyoN6w4j5cNgPgFE0jw54U4gngjxpmz1LhqlzlyOwc-CLpoFhtZU_CBXppCSKx5sDK0KmkcphKYXLdPxzbBL7EYMZDjR2-wpda&image_url=https%3A%2F%2Fcdn.adx1.com%2Fa693033273249985389c33b0cc8f4083.png&skin_id=4&vertical_id=5&real_bid=0.0165726&pr=&user_keywords=&auc_type=1&aid=3251&ext_cid=0&device_theme=light&format=social-scale-b_r-body&cpa=afafc156-4fb4-4bdc-8a2a-6537eb339fd4
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /in/show/?mid=198553449&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=14036&sid=3985322802&cid=11740&price=0.02046&is_cpm=0&cpm=0&ecpm=0.2267431510595222&crid=&crtid=d2f7a0199f498657f70e72b1320cab88&tcid=0&out_id=0&ver=7.2.0&ver_c=&refdom=upornia.com&hostname=auc-inpage-hz-6&site_id=31437&spot_id=437&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=1662428723&created_at=2022-09-05&is_native=1&auction_queue=0&burl=SmAy7Ilx10iJ6WZzlsyx_x1UqzPRvM9M0-2jIFKVlG4AcYI0KcxyQw&pop_winurl=&ip=91.90.42.154&testab=0&px_id=73437&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=hq&uniq=&exp=&resp_type=&iabcat=IAB3&min_cpm=0.009043345872436468&placement_type_id=&skin_test=0&verify_hash=cca61d5671cdba146f0402f3724d56cc&score=0&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D14036%26spot_id%3D437%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fupornia.com%252F%26idzone%3D4438148%26sid%3D1886&ml=&tag_ab=d&original_bid=0.02046&v2_track=0&url=Cat5GuW02oTc07D8lYhTMhgcmxtonMojTz0p4H2Wq7Zrb1pABBG4_BMQ0kI38bOEJujhjZexj0LJMQiLcUO5-yTOiFSDkWoVfQwZMWTTFaXo1boJjNLmaXKzdJ_siYQVOK8Q2WsVqIwJR2PPeY4p0cvB93U_h_fNNmCQbhvUQxnvsScuPTEAzX3EkGOR-_zMqqhcu3C3N-RcA6jLtuYQeY7b-sjhKDMugh8ff1yyoN6w4j5cNgPgFE0jw54U4gngjxpmz1LhqlzlyOwc-CLpoFhtZU_CBXppCSKx5sDK0KmkcphKYXLdPxzbBL7EYMZDjR2-wpda&image_url=https%3A%2F%2Fcdn.adx1.com%2Fa693033273249985389c33b0cc8f4083.png&skin_id=4&vertical_id=5&real_bid=0.0165726&pr=&user_keywords=&auc_type=1&aid=3251&ext_cid=0&device_theme=light&format=social-scale-b_r-body&cpa=afafc156-4fb4-4bdc-8a2a-6537eb339fd4 HTTP/1.1
Host: bc5f232b9e.5eff011dd5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:24 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://eu.freshpops.net/metrics/save.img?event=impressions&bid-id=v2-1662356722718-7-4406-1168096-25160ebd-9fb3-7c73-b8df-4e664c3139b9&img=https%3A%2F%2Fcdn.adx1.com%2F00b3859f169c1f25fe3762d4dcf43edb.jpeg
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 16 kB IP
ASN #20940 Akamai International B.V.
Hash 800c051359aec34bf761c47fa07c1bf2
76e56b7dad5462686eb5dc8cd024edca2e822265
15c2b4bc18e9533bf5d2c4e1a1730a2fdac1991d0f550af1b6e5a5d2be1d07a4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "218EE5F9F59121418B933A1F08182F11BA1BB43952A3F13C1ABD09CCDDAADA09"
Last-Modified: Sun, 04 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5427
Expires: Mon, 05 Sep 2022 07:15:51 GMT
Date: Mon, 05 Sep 2022 05:45:24 GMT
Connection: keep-alive
sw.wpu.sh/npc/sdk/common/service-worker.js
200 OK 70 kB URL HTTP/2 sw.wpu.sh/npc/sdk/common/service-worker.js
IP
ASN #39572 DataWeb Global Group B.V.
Hash b822c5424e8153e4839014e8f3e92d8a
5ff8e60d8b588dfbde7242532e20d9ed359ac8da
ef9748af1d9e6e96ba215d36382f0f0a9f82f1ecafab69925fb737c57cb88ede
GET /npc/sdk/common/service-worker.js HTTP/1.1
Host: sw.wpu.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:24 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 01 Sep 2022 17:10:21 GMT
etag: W/"6310e77d-158c"
content-encoding: gzip
expires: Mon, 05 Sep 2022 05:50:24 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 955 B IP
ASN #20940 Akamai International B.V.
Hash 8684467fac06b135412a09c074a62610
335325b5eab3145cbb603fbd5e52c5d1494f197a
b6075aceadcc47ed5a14d415393b88cd71ff4546de52e77ac43fe4c7c549a2a4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1C814F3E16A803CC5AE92040DC038B9FE39D55362A25E432EE61C19E14D9820"
Last-Modified: Sat, 03 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3025
Expires: Mon, 05 Sep 2022 06:35:49 GMT
Date: Mon, 05 Sep 2022 05:45:24 GMT
Connection: keep-alive
video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.xlivrdr.com/
Origin: https://creative.xlivrdr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:24 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: y6H8zyquJ7VMhDxcz18cGqI1sGpQj44PJrOrRiOh3DRS5XI1qCU33SKalTMLl8iWRSuLlsv7oTA=
x-amz-request-id: RXAZ2MS0A9EMKJRW
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.xlivrdr.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 4150
expires: Mon, 05 Sep 2022 09:45:24 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 745ca89a38a9b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.7049817942610394
200 OK 130 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.7049817942610394
IP
ASN #50389 Phoenix Nap, LLC.
Size 130 kB (129472 bytes)
Hash 5acc00d19bfbc72a9bf289e6aedb0a1a
ed0a572d6ca354fb4fff4f03a84a696a3413a841
8e36e083eca5d40c859898e1172b039461e0c36a5d14fc126ab5aed389d704ae
GET /stream?room=amberlaray&f=0.7049817942610394 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:24 GMT
content-type: image/jpeg
content-length: 34162
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=apolo_chiara&f=0.27302841040719894
200 OK 20 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=apolo_chiara&f=0.27302841040719894
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 30fc3484c74d0c93a472edcc2fa2440d
5565f72e0ff259c25b90f24b0700f17d71103af8
7d136d49241c3936218a45139f2813fa567bf265d1ab3bd72fb2559decc82e0d
GET /stream?room=apolo_chiara&f=0.27302841040719894 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:24 GMT
content-type: image/jpeg
content-length: 20177
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
eu.freshpops.net/metrics/save.img?event=impressions&bid-id=v2-1662356722718-7-4406-1168096-25160ebd-9fb3-7c73-b8df-4e664c3139b9&img=https%3A%2F%2Fcdn.adx1.com%2F00b3859f169c1f25fe3762d4dcf43edb.jpeg
302 Found 0 B URL HTTP/2 eu.freshpops.net/metrics/save.img?event=impressions&bid-id=v2-1662356722718-7-4406-1168096-25160ebd-9fb3-7c73-b8df-4e664c3139b9&img=https%3A%2F%2Fcdn.adx1.com%2F00b3859f169c1f25fe3762d4dcf43edb.jpeg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /metrics/save.img?event=impressions&bid-id=v2-1662356722718-7-4406-1168096-25160ebd-9fb3-7c73-b8df-4e664c3139b9&img=https%3A%2F%2Fcdn.adx1.com%2F00b3859f169c1f25fe3762d4dcf43edb.jpeg HTTP/1.1
Host: eu.freshpops.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty/1.15.8.3
date: Mon, 05 Sep 2022 05:45:24 GMT
content-length: 0
location: https://cdn.adx1.com/00b3859f169c1f25fe3762d4dcf43edb.jpeg
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.6889133431963799
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.6889133431963799
IP
ASN #50389 Phoenix Nap, LLC.
Hash ba64582d1b16cefd4c8c4cc9ddf3c09a
a53bdf2438a3a633c4186807e1355d511236064a
3ce2204e5c763a3263480c0d4b248f965b30588a8b6d96b21488b45c0b4d6dbf
GET /stream?room=amberlaray&f=0.6889133431963799 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:24 GMT
content-type: image/jpeg
content-length: 34477
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cdn.adx1.com/00b3859f169c1f25fe3762d4dcf43edb.jpeg
200 OK 44 kB URL HTTP/2 cdn.adx1.com/00b3859f169c1f25fe3762d4dcf43edb.jpeg
IP
Hash 1a6e624437f3058443162bace4a7f268
2803422bb40a35bb1fce2773cc1c54f2cde76389
0bf7a9e9ffa7bd16b454b7e95a18f16967ac73f9397d5544d1bf4cad5c3a6fd1
GET /00b3859f169c1f25fe3762d4dcf43edb.jpeg HTTP/1.1
Host: cdn.adx1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.15.8.3
date: Mon, 05 Sep 2022 05:45:24 GMT
content-type: image/jpeg
content-length: 43450
last-modified: Sat, 06 Aug 2022 12:04:01 GMT
etag: "62ee58b1-a9ba"
expires: Thu, 08 Sep 2022 07:28:59 GMT
cache-control: max-age=1209600
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 1.2 kB IP
Hash b38deb84bda96403f621cf537f2dc6e7
8fa77eb03159fcf8a6d146b1ab778ba251c4745c
cdadccc7063d5b08354d57e274694f15d71dff31b09c438bfeddcaba5ca86a62
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5255
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:24 GMT
Last-Modified: Mon, 05 Sep 2022 04:17:49 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
img.strpst.com/thumbs/1662356450/77771651
200 OK 32 kB URL HTTP/2 img.strpst.com/thumbs/1662356450/77771651
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, progressive, precision 8, 640x360, components 3\012- data
Hash 5de306175e736f1bfc46848b5db9abff
dd18048c0b6ae383c99676c469b18c0e50dfbb66
9df6a682ce511afcf62efd28fb23ae0211ee97b57c3ca4973bc819b4a281c73f
GET /thumbs/1662356450/77771651 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative.xlivrdr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: image/jpeg
content-length: 32380
cf-bgj: imgq:100,h2pri
cf-polished: origSize=33554, status=webp_bigger
etag: "63885f559e1cdc87b46d7d9601784b67"
last-modified: Mon, 05 Sep 2022 05:41:02 GMT
cf-cache-status: HIT
age: 134
expires: Mon, 05 Sep 2022 05:50:25 GMT
cache-control: public, max-age=300
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 745ca89b5eab0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-spa-1216.min.js
200 OK 20 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js
IP
Hash c4828164dfc3c5e94b017dc71c135855
7308f66c1d8fa779f80d7a99ed3632478455d62c
27c5727418b99060e006020bed03421c2f3d2827d594b8d01ab7e07ef237fd7b
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Sep 2022 05:45:25 GMT
via: 1.1 varnish
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 3062
x-timer: S1662356725.033422,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 5.3 kB IP
Hash 09f2317db5b477ba9a29e989773ee1d9
9bc747c652f5be5c72f9f77690f78e41fa089e46
f7fac4723211867c27d66c46cd79b3a9ee28345770f4969ae2a68075cd7793d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5256
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 05:45:25 GMT
Last-Modified: Mon, 05 Sep 2022 04:17:49 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.9389359529661473
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.9389359529661473
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash a32f3f154412e77e14390b62af3ac3dd
b4de509d8c66ebf1e3abcaf356840a9b1b9ff138
b305b4e900e883f4040752ab23e48b1a1658819dcad844f7fadd540230771cf7
GET /stream?room=amberlaray&f=0.9389359529661473 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: image/jpeg
content-length: 34838
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.2750656500889356
200 OK 34 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.2750656500889356
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 93fcd3b5e816a2da530ea07bc8598b20
30c643cb775ddea9aadd02eb8ca1d6411ca668d2
a7c02e5f77b5ce10c360eae4ae1e4b65bfbb924a7108de3749b500c6f72f08b9
GET /stream?room=amberlaray&f=0.2750656500889356 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: image/jpeg
content-length: 34060
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
stripchat.com/api/front/v2/models/username/mmmamericancrempie/chat
200 OK 1.3 kB URL HTTP/2 stripchat.com/api/front/v2/models/username/mmmamericancrempie/chat
IP
File type JSON data\012- , ASCII text, with very long lines (21592), with no line terminators
Hash eabbee7103947a920f96bae970ae5ac7
fb2595207627bf910e9a0b066255d0c5475fbba1
b9b557720eb650442e79ae1945146a30b02722fa0a0d8a9db8d780bc95af57ae
GET /api/front/v2/models/username/mmmamericancrempie/chat HTTP/1.1
Host: stripchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.xlivrdr.com/
Origin: https://creative.xlivrdr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: application/json
vary: Accept-Encoding
x-api-version: 10.40.10
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
x-backend: sc-backend-delta-yellow-08.novalocal
x-cache-status: HIT
access-control-allow-origin: https://creative.xlivrdr.com
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuFntVtrkFMde1dj4D9CxNaLvjfJ7f9FPSda8CTqq6; SameSite=None; Secure; path=/; expires=Tue, 06-Sep-22 04:45:25 GMT; HttpOnly
server: cloudflare
cf-ray: 745ca89b7a36b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rtbrennab.com/get/?go=1&data=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
302 Found 0 B URL HTTP/2 rtbrennab.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNjk1LCJzcGFjZWlkIjoyNDM3NiwidHlwZSI6InBvcCIsImlkem9uZSI6MSwiYWRfdGFncyI6IlN0cmFpZ2h0JTJDSmFwYW5lc2UiLCJsYWJlbHMiOiIiLCJhbGxvd2VkX2xhYmVscyI6IiIsInRpdGxlIjoiIiwic3ViaWQiOiIxNDAzNiIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjI0Mzc2LCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjowLCJzdHJhdGFnZW0iOm51bGwsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzc1OH0sImJhbm5lciI6eyJ3IjoxLCJoIjoxfX1dLCJzaXRlIjp7ImlkIjoiMjQzNzYiLCJjYXQiOlsiSUFCMjUiXSwicGFnZSI6Imh0dHBzOi8vdXBvcm5pYS5jb20vdmlkZW9zLzI2MzQ5Mi9qYXBhbmVzZS1ncmFubnktY3JlYW1lZC1ieS1ub3QtaGVyLWdyYW5kc29uLXVuY2Vuc29yZWQvP3Byb21vPTE0MDM2In0sImRldmljZSI6eyJ3IjoxMjgwLCJoIjoxMDI0fSwidXNlciI6eyJpZCI6IjllNDk0N2YzNTc1MTQ2NTQxMWZkMWE0ZjVjMzU4Yzc4In0sImV4dCI6eyJkdCI6MTY2MjM1NjcyMTE2M319
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /get/?go=1&data=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 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:25 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://rtbrennab.com/banner/in/show/?mid=813042066&pid=0&site=24376&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-7&site_id=0&spot_id=24376&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=24376&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D24376%26source%3D14036%26idzone%3D1%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D24376%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D24376%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
X-Firefox-Spdy: h2
bam.nr-data.net/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2022&ck=1&ref=https://chaturbate.com/embed/amberlaray/&ap=74&be=704&fe=1852&dc=1419&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1662356718894,%22n%22:0,%22r%22:0,%22re%22:409,%22f%22:409,%22dn%22:409,%22dne%22:409,%22c%22:409,%22s%22:409,%22ce%22:409,%22rq%22:411,%22rp%22:641,%22rpe%22:643,%22dl%22:695,%22di%22:1213,%22ds%22:1418,%22de%22:1425,%22dc%22:1851,%22l%22:1851,%22le%22:1854%7D,%22navigation%22:%7B%22rc%22:2%7D%7D&fcp=1666&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVFIMVlgJWAABB1sHBlZUChh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJ8TU1DABMDQwQCCBADFVNYXRJUG01AEQECCmZcSRNbEwBQTFpUTVILGwgEVRMVQwMNCw05X1lYVhITA0NAT0YBA0pBZlYUVEoSPQoUQVwbDAgfWAEXVVBNVVZSGxkbUwRCTT4FFgEQFWZSXF5DCxsvLUFIQQ9JalpeFF9NExtBXkEodhcVEwhBZgINFgoXFEBqWl4PV1AFBw0HBkQDFwEBQx0bCBI8CgYSTlpLWkMLGwMOChxNBVZYGx1DWEk%2BDREDAghQT1hFCF5XQ1hBJg8PQRVqXg1ETQgNDRdBShtcSW4IQklDWEEmDw9BFWpeDURNCA0NF0FKG1xJbgBCV0NYVlRQVg0ZG1gRblgSDDwLEQEbDxtzDVhBQTEMCBYSUFpXQkFwakNOQQ0TOVpaV18EUk0IDQ07Fx9JUBsLQ3JYAw4GSyc1dRcVEwhBZhQRBhY8EkBFXBNbE0sEEQoABghNXFhdQx0bEwcSEQYVTWpJUBVZG1tATAEOBFxRFlAMU1wTDgIWAh8WFxUTFl1mCQ0QEEFcG1ZRUBVESwMDFwFNBVZYGx1DQlAVBzwNB0QDBBUTElhNBD0HCw4HUFsbC0NSUQAWFhYBB01QF1IOXBtNQBEBEhNcRk1uCV5KFUBZRgAOWEFMQwNQTQRMAAsORBUXW0MORkoEEDwNB0QDFwoAUwMMWAAASVQDDFAUBVZVW0xaBV1TS11WAAlSBg9UBwZVVkQVF0tUB1RLBBBBXkEOTUFJQlseFlBQUlVRVQoDF0EISRQCBg1KDBReGhsdQ0NcEBcGFxc5VFBNWQ5VG1tAJCE3RBUXSUgVWVYPPRUBERVQWlcTWxMKT1VBSEETWGpdVBdYWgQ9BQUOD1VMGwtDfk0JBxFGT0RMVGZVBEdQAgc8EBoWXBcDEwVUSgoWDBRBShtAWG4OQmYHAw4NDx8bDxt9CF9MGUBPRhYHZlpKbhdUSxILDApBXBsXFRMUUGYDEAwTEANLal9QDFhVGEBZRiUPS1BfXhkTFUMXAjsBFFZCSlQTbk8EEBANDAgbDxsIVx8JQ05BEQI5SkFLWA9WG1tALgsZD1VZWB5UHwlBSjtVUl0ZeVBfFEkZGVpVO1VSAhVLR1sID09SSkQkA1peVh5TAQhRUlJUUkZ/XEtUB15BTltVSlNEFRdeWBVuWg4PDg0XRAMXXAVYAlpTUQFVVV8MFxUTEVBLAA8QRllEQmkbWw5YVz4NFQERClhMZRNbEWVDUz9GT0ZlF01eFENlQ1hDOEECbVgJbUMdGT1AAAUOFlhcXl89EwNBPkEQAilKd2UTTRFlQwYKFwIEVVBmQg5EVwU%2BQV5DOhsEZRNNEWVDDwwGCgpcZ1xVCENcAhY/RllGZRdYRBVeZUNOQzhBA1RXXFU%2BR1AFBww7DAhVTGUTWxFlQ1M/Rk9GZRdNUBNWXBU%2BQV5DOhtqW10AX1I9QB5GT0RcWVBWCFNVBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwgRJUJaFxAhVkMiSlZPQyMCGSURABIRJA0Va18yQUAyCkNGT0RcWVBWCFNVBD0QFA8PTWpNVBJFSj4MEEZZRBl3VUQTQ1wFLgwDCgh2Q1xDDVBAQTAGCgILXGZJSDJZVhYRQwAKFVpaT1QTSGYRAwQBQ0QVF1hSFVhPBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwsRQx0bAAEXDRUDZkZJXQhFZhUHEBAQOVdGGwtDEXsNFxEWBgJ1Wl5YD35PBBAPBRpGXVxKUg5HXBMbPBQCAVwVGx1DUlgMPRcFBEQDF0lEA11QAkBPRgAJVVpLbgxeXQRAWUYPD15dTVwOVVxDTkEWDAlUakpFAEVMEkBZRg8PT1AbTBw%3D&jsonp=NREUM.setToken
200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2022&ck=1&ref=https://chaturbate.com/embed/amberlaray/&ap=74&be=704&fe=1852&dc=1419&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1662356718894,%22n%22:0,%22r%22:0,%22re%22:409,%22f%22:409,%22dn%22:409,%22dne%22:409,%22c%22:409,%22s%22:409,%22ce%22:409,%22rq%22:411,%22rp%22:641,%22rpe%22:643,%22dl%22:695,%22di%22:1213,%22ds%22:1418,%22de%22:1425,%22dc%22:1851,%22l%22:1851,%22le%22:1854%7D,%22navigation%22:%7B%22rc%22:2%7D%7D&fcp=1666&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVFIMVlgJWAABB1sHBlZUChh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJ8TU1DABMDQwQCCBADFVNYXRJUG01AEQECCmZcSRNbEwBQTFpUTVILGwgEVRMVQwMNCw05X1lYVhITA0NAT0YBA0pBZlYUVEoSPQoUQVwbDAgfWAEXVVBNVVZSGxkbUwRCTT4FFgEQFWZSXF5DCxsvLUFIQQ9JalpeFF9NExtBXkEodhcVEwhBZgINFgoXFEBqWl4PV1AFBw0HBkQDFwEBQx0bCBI8CgYSTlpLWkMLGwMOChxNBVZYGx1DWEk%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%2BQV5DOhsEZRNNEWVDDwwGCgpcZ1xVCENcAhY/RllGZRdYRBVeZUNOQzhBA1RXXFU%2BR1AFBww7DAhVTGUTWxFlQ1M/Rk9GZRdNUBNWXBU%2BQV5DOhtqW10AX1I9QB5GT0RcWVBWCFNVBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwgRJUJaFxAhVkMiSlZPQyMCGSURABIRJA0Va18yQUAyCkNGT0RcWVBWCFNVBD0QFA8PTWpNVBJFSj4MEEZZRBl3VUQTQ1wFLgwDCgh2Q1xDDVBAQTAGCgILXGZJSDJZVhYRQwAKFVpaT1QTSGYRAwQBQ0QVF1hSFVhPBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwsRQx0bAAEXDRUDZkZJXQhFZhUHEBAQOVdGGwtDEXsNFxEWBgJ1Wl5YD35PBBAPBRpGXVxKUg5HXBMbPBQCAVwVGx1DUlgMPRcFBEQDF0lEA11QAkBPRgAJVVpLbgxeXQRAWUYPD15dTVwOVVxDTkEWDAlUakpFAEVMEkBZRg8PT1AbTBw%3D&jsonp=NREUM.setToken
IP
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2022&ck=1&ref=https://chaturbate.com/embed/amberlaray/&ap=74&be=704&fe=1852&dc=1419&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1662356718894,%22n%22:0,%22r%22:0,%22re%22:409,%22f%22:409,%22dn%22:409,%22dne%22:409,%22c%22:409,%22s%22:409,%22ce%22:409,%22rq%22:411,%22rp%22:641,%22rpe%22:643,%22dl%22:695,%22di%22:1213,%22ds%22:1418,%22de%22:1425,%22dc%22:1851,%22l%22:1851,%22le%22:1854%7D,%22navigation%22:%7B%22rc%22:2%7D%7D&fcp=1666&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVFIMVlgJWAABB1sHBlZUChh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJ8TU1DABMDQwQCCBADFVNYXRJUG01AEQECCmZcSRNbEwBQTFpUTVILGwgEVRMVQwMNCw05X1lYVhITA0NAT0YBA0pBZlYUVEoSPQoUQVwbDAgfWAEXVVBNVVZSGxkbUwRCTT4FFgEQFWZSXF5DCxsvLUFIQQ9JalpeFF9NExtBXkEodhcVEwhBZgINFgoXFEBqWl4PV1AFBw0HBkQDFwEBQx0bCBI8CgYSTlpLWkMLGwMOChxNBVZYGx1DWEk%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%2BQV5DOhsEZRNNEWVDDwwGCgpcZ1xVCENcAhY/RllGZRdYRBVeZUNOQzhBA1RXXFU%2BR1AFBww7DAhVTGUTWxFlQ1M/Rk9GZRdNUBNWXBU%2BQV5DOhtqW10AX1I9QB5GT0RcWVBWCFNVBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwgRJUJaFxAhVkMiSlZPQyMCGSURABIRJA0Va18yQUAyCkNGT0RcWVBWCFNVBD0QFA8PTWpNVBJFSj4MEEZZRBl3VUQTQ1wFLgwDCgh2Q1xDDVBAQTAGCgILXGZJSDJZVhYRQwAKFVpaT1QTSGYRAwQBQ0QVF1hSFVhPBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwsRQx0bAAEXDRUDZkZJXQhFZhUHEBAQOVdGGwtDEXsNFxEWBgJ1Wl5YD35PBBAPBRpGXVxKUg5HXBMbPBQCAVwVGx1DUlgMPRcFBEQDF0lEA11QAkBPRgAJVVpLbgxeXQRAWUYPD15dTVwOVVxDTkEWDAlUakpFAEVMEkBZRg8PT1AbTBw%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 05:45:25 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 745ca89cab471c12-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=aa215c4cbc93bfea; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.66026824761518
200 OK 34 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.66026824761518
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 93fcd3b5e816a2da530ea07bc8598b20
30c643cb775ddea9aadd02eb8ca1d6411ca668d2
a7c02e5f77b5ce10c360eae4ae1e4b65bfbb924a7108de3749b500c6f72f08b9
GET /stream?room=amberlaray&f=0.66026824761518 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: image/jpeg
content-length: 34060
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=813042066&pid=0&site=24376&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-7&site_id=0&spot_id=24376&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=24376&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D24376%26source%3D14036%26idzone%3D1%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D24376%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D24376%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=813042066&pid=0&site=24376&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-7&site_id=0&spot_id=24376&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=24376&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D24376%26source%3D14036%26idzone%3D1%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D24376%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D24376%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem=
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=813042066&pid=0&site=24376&sc=NO&usage_type=DCH&subid=14036&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=upornia.com&hostname=auc-banner-hz-7&site_id=0&spot_id=24376&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=1&ml=&ttl=&space_id=24376&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D24376%26source%3D14036%26idzone%3D1%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D24376%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%252CJapanese%26spot_id%3D24376%26p%3Dhttps%253A%252F%252Fupornia.com%252Fvideos%252F263492%252Fjapanese-granny-creamed-by-not-her-grandson-uncensored%252F%253Fpromo%253D14036%26katds_labels%3D%26btype%3D0%26score%3D1&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight%2CJapanese&stratagem= HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upornia.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:25 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://btds.zog.link/in/912/?sid=24376&source=14036&idzone=1&w=1&h=1&mo=&ve=&site_id=24376&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=24376&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
X-Firefox-Spdy: h2
btds.zog.link/in/912/?sid=24376&source=14036&idzone=1&w=1&h=1&mo=&ve=&site_id=24376&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=24376&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
302 Found 0 B URL HTTP/2 btds.zog.link/in/912/?sid=24376&source=14036&idzone=1&w=1&h=1&mo=&ve=&site_id=24376&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=24376&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/912/?sid=24376&source=14036&idzone=1&w=1&h=1&mo=&ve=&site_id=24376&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight%2CJapanese&spot_id=24376&p=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&katds_labels=&btype=0&score=1 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upornia.com/
Connection: keep-alive
Cookie: 912.0=1; 1624.0=1; 1625.0=1; 1240.0=1; 1242.0=1; 1241.0=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.20.1
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://cdn.1vag.com/1x1.png
pragma: no-cache
vary: *
cache-control: no-cache, no-store, must-revalidate
set-cookie: 912.0=1; expires=Tue, 06 Sep 2022 05:45:25 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
bam.nr-data.net/ins/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2508&ck=1&ref=https://chaturbate.com/embed/apolo_chiara/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVFIMVlgJWAEMBFEGBlZUChh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJ8TU1DABMDQwQCCBADFVNYXRJUG01AEQECCmZcSRNbEwBQTFpUTVILGwgEVRMVQwMNCw05X1lYVhITA0NAT0YBA0pBZlYUVEoSPQoUQVwbDAgfWAEXVVBNVVZSGxkbUwRCTT4FFgEQFWZSXF5DCxsvLUFIQQ9JalpeFF9NExtBXkEodhcVEwhBZgINFgoXFEBqWl4PV1AFBw0HBkQDFwEBQx0bCBI8CgYSTlpLWkMLGwMOChxNBVZYGx1DWEk%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%2BFAYWEA9WWxsLQwgPT1JBSEETWGpKRRNYVwZAWUYuCUNcVV0AHgxPUkNMO1cIDhl9CF9MGUIbXFU5DwECERNHA1hUTVRKRn5QWloOHgtRU1NUUlYIFX9YE1RfDhpMXVVICRcVEwZYTT4BDAkOD00XAxMEBQBSAVFXAVcPDAwTTRNJABACCRBEAxdCbUNbVggMPAsVA0tZWEg9EwNBPkFVP0QVFWUTFV5MEz5BXkM6G1FtXFFtG01CP0YAB1RFWFgGX2VDWEM4QRJYekpzPRMVQT5BAAoVWFdVVD5CVhQMBzhBXBlpGwA9ExVBPkEJDARQWVxjBFVQEwcAED9EAxVlEwBETQ4%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
204 No Content 0 B URL HTTP/1.1 bam.nr-data.net/ins/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2508&ck=1&ref=https://chaturbate.com/embed/apolo_chiara/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVFIMVlgJWAEMBFEGBlZUChh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJ8TU1DABMDQwQCCBADFVNYXRJUG01AEQECCmZcSRNbEwBQTFpUTVILGwgEVRMVQwMNCw05X1lYVhITA0NAT0YBA0pBZlYUVEoSPQoUQVwbDAgfWAEXVVBNVVZSGxkbUwRCTT4FFgEQFWZSXF5DCxsvLUFIQQ9JalpeFF9NExtBXkEodhcVEwhBZgINFgoXFEBqWl4PV1AFBw0HBkQDFwEBQx0bCBI8CgYSTlpLWkMLGwMOChxNBVZYGx1DWEk%2BDREDAghQT1hFCF5XQ1hBJg8PQRVqXg1ETQgNDRdBShtcSW4IQklDWEEmDw9BFWpeDURNCA0NF0FKG1xJbgBCV0NYVlRQVg0ZG1gRblgSDDwLEQEbDxtzDVhBQTEMCBYSUFpXQkFwakNOQQ0TOVpaV18EUk0IDQ07Fx9JUBsLQ3JYAw4GSyc1dRcVEwhBZhQRBhY8EkBFXBNbE0sEEQoABghNXFhdQx0bEwcSEQYVTWpJUBVZG1tATAEOBFxRFlARXlUOPQAMCgdLVBYTTRNODT0LCxASGw8bUglQTRQQAQUXAxdWVlxDHRsSCxcBPA9dFwMATRNKCBYGOwcJVFRQX0MLGwIKAhAWFFtUTVRPUlYMQE9GEQNIQFxCFW5RDhEXRllEWl1YRRRDWwAWBkoACVQXFRMDQ1YWEQYWPA9dFwMTBFAMUFJUBVNLCAIIAUwFD1FTTlwCV1gYDFNQBwhXUVRSWwQBFxUTE1RfBBAGFkFcG11NRRFCA05NUlZSVwsGCgdPQVAZTwAADUhWR14eQx0bEwcSEQYVTWpUVBVZVgVAWUYkI20XFRMRSE0JDQ07FQNLRlBeDxMDQ1FNU0FKG0BYbgVUTwgBBjsFB1RcVUhDCxsuFgsBEUQVF0xQPlVcFwsAATwSQEVcE1sTXQQRCBAMFhsZG0QAblYSPQUFDg9VTBsLQ31QDxcbRk9ETFRmXhJuTwQQEA0MCBsPGxNNE0wAPQEWDBFKUEtuB1BUCA4aRllEf1xLVAdeQUNOQRECOVtHVkYSVEs%2BFAYWEA9WWxsLQwgPT1JBSEETWGpKRRNYVwZAWUYuCUNcVV0AHgxPUkNMO1cIDhl9CF9MGUIbXFU5DwECERNHA1hUTVRKRn5QWloOHgtRU1NUUlYIFX9YE1RfDhpMXVVICRcVEwZYTT4BDAkOD00XAxMEBQBSAVFXAVcPDAwTTRNJABACCRBEAxdCbUNbVggMPAsVA0tZWEg9EwNBPkFVP0QVFWUTFV5MEz5BXkM6G1FtXFFtG01CP0YAB1RFWFgGX2VDWEM4QRJYekpzPRMVQT5BAAoVWFdVVD5CVhQMBzhBXBlpGwA9ExVBPkEJDARQWVxjBFVQEwcAED9EAxVlEwBETQ4%2BQUhDOhtQVFMEVWYXCwcBDDlWW1VIPRMDQT5BVT9EFRVlExVQSwYHFzhBXBlpG24DXVgPCT9GHkQVF1xdCFZQAw4GOxAWVVxNbhVUShURQV5BRntZTEMtVlAPICREJxVaQ0tzUBF9EgEVFiFUGXFKUhdDe1JCJxcAEEt3DREzX2oRGzAMQ0QVF1xdCFZQAw4GOxAWVVxNbhVUShURPAoQRAMXGXMNREsTBwcoDAFQW3ZHBENVABtDNgYIWFhcYhFIagkNFBdDAlBGWl4XVEsYPRMFBAMZFxUTAFJNCBQGOxAWVVxNbhVUShURQV5BRntZTEMtVlAPICREJxVaQ0tzUxFrDzETHTAOGRcVEwBSTQgUBjsQFlVcTW4VVEoVETwKEEQDFxlzDURLEwcHKAwBUFt2RwRDVQAbQzYGCFhYXGIRSGoJDRQXQwJQRlpeF1RLGD0TBQQDGRcVEwJQVD4WAgNBXBtFTFMNWFpDTkEHDApWR2ZcDlVcQ1hBCAoBUUFUXgVUG01AEQsMC2ZGTVAVREpDWEEIChBcF0RM
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ins/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2508&ck=1&ref=https://chaturbate.com/embed/apolo_chiara/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVFIMVlgJWAEMBFEGBlZUChh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJ8TU1DABMDQwQCCBADFVNYXRJUG01AEQECCmZcSRNbEwBQTFpUTVILGwgEVRMVQwMNCw05X1lYVhITA0NAT0YBA0pBZlYUVEoSPQoUQVwbDAgfWAEXVVBNVVZSGxkbUwRCTT4FFgEQFWZSXF5DCxsvLUFIQQ9JalpeFF9NExtBXkEodhcVEwhBZgINFgoXFEBqWl4PV1AFBw0HBkQDFwEBQx0bCBI8CgYSTlpLWkMLGwMOChxNBVZYGx1DWEk%2BDREDAghQT1hFCF5XQ1hBJg8PQRVqXg1ETQgNDRdBShtcSW4IQklDWEEmDw9BFWpeDURNCA0NF0FKG1xJbgBCV0NYVlRQVg0ZG1gRblgSDDwLEQEbDxtzDVhBQTEMCBYSUFpXQkFwakNOQQ0TOVpaV18EUk0IDQ07Fx9JUBsLQ3JYAw4GSyc1dRcVEwhBZhQRBhY8EkBFXBNbE0sEEQoABghNXFhdQx0bEwcSEQYVTWpJUBVZG1tATAEOBFxRFlARXlUOPQAMCgdLVBYTTRNODT0LCxASGw8bUglQTRQQAQUXAxdWVlxDHRsSCxcBPA9dFwMATRNKCBYGOwcJVFRQX0MLGwIKAhAWFFtUTVRPUlYMQE9GEQNIQFxCFW5RDhEXRllEWl1YRRRDWwAWBkoACVQXFRMDQ1YWEQYWPA9dFwMTBFAMUFJUBVNLCAIIAUwFD1FTTlwCV1gYDFNQBwhXUVRSWwQBFxUTE1RfBBAGFkFcG11NRRFCA05NUlZSVwsGCgdPQVAZTwAADUhWR14eQx0bEwcSEQYVTWpUVBVZVgVAWUYkI20XFRMRSE0JDQ07FQNLRlBeDxMDQ1FNU0FKG0BYbgVUTwgBBjsFB1RcVUhDCxsuFgsBEUQVF0xQPlVcFwsAATwSQEVcE1sTXQQRCBAMFhsZG0QAblYSPQUFDg9VTBsLQ31QDxcbRk9ETFRmXhJuTwQQEA0MCBsPGxNNE0wAPQEWDBFKUEtuB1BUCA4aRllEf1xLVAdeQUNOQRECOVtHVkYSVEs%2BFAYWEA9WWxsLQwgPT1JBSEETWGpKRRNYVwZAWUYuCUNcVV0AHgxPUkNMO1cIDhl9CF9MGUIbXFU5DwECERNHA1hUTVRKRn5QWloOHgtRU1NUUlYIFX9YE1RfDhpMXVVICRcVEwZYTT4BDAkOD00XAxMEBQBSAVFXAVcPDAwTTRNJABACCRBEAxdCbUNbVggMPAsVA0tZWEg9EwNBPkFVP0QVFWUTFV5MEz5BXkM6G1FtXFFtG01CP0YAB1RFWFgGX2VDWEM4QRJYekpzPRMVQT5BAAoVWFdVVD5CVhQMBzhBXBlpGwA9ExVBPkEJDARQWVxjBFVQEwcAED9EAxVlEwBETQ4%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 HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: text/plain
Content-Length: 1912
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Mon, 05 Sep 2022 05:45:25 GMT
Connection: keep-alive
CF-Ray: 745ca89d8fdf0b02-OSL
Access-Control-Allow-Origin: https://chaturbate.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5f0de359f4ab81a7a0cc732b1fd65528
8ac89e2be57e1d7dba510166e248a47f66ed6749
9b2808bef12b04ddb3bb86a68e2c178d0e095db8f64669f400801630c234def9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B2808BEF12B04DDB3BB86A68E2C178D0E095DB8F64669F400801630C234DEF9"
Last-Modified: Sat, 03 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20197
Expires: Mon, 05 Sep 2022 11:22:02 GMT
Date: Mon, 05 Sep 2022 05:45:25 GMT
Connection: keep-alive
bam.nr-data.net/ins/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2369&ck=1&ref=https://chaturbate.com/embed/amberlaray/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVFIMVlgJWAABB1sHBlZUChh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJ8TU1DABMDQwQCCBADFVNYXRJUG01AEQECCmZcSRNbEwBQTFpUTVILGwgEVRMVQwMNCw05X1lYVhITA0NAT0YBA0pBZlYUVEoSPQoUQVwbDAgfWAEXVVBNVVZSGxkbUwRCTT4FFgEQFWZSXF5DCxsvLUFIQQ9JalpeFF9NExtBXkEodhcVEwhBZgINFgoXFEBqWl4PV1AFBw0HBkQDFwEBQx0bCBI8CgYSTlpLWkMLGwMOChxNBVZYGx1DWEk%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%2BQV5DOhsEZRNNEWVDDwwGCgpcZ1xVCENcAhY/RllGZRdYRBVeZUNOQzhBA1RXXFU%2BR1AFBww7DAhVTGUTWxFlQ1M/Rk9GZRdNUBNWXBU%2BQV5DOhtqW10AX1I9QB5GT0RcWVBWCFNVBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwgRJUJaFxAhVkMiSlZPQyMCGSURABIRJA0Va18yQUAyCkNGT0RcWVBWCFNVBD0QFA8PTWpNVBJFSj4MEEZZRBl3VUQTQ1wFLgwDCgh2Q1xDDVBAQTAGCgILXGZJSDJZVhYRQwAKFVpaT1QTSGYRAwQBQ0QVF1hSFVhPBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwsRQx0bAAEXDRUDZkZJXQhFZhUHEBAQOVdGGwtDEXsNFxEWBgJ1Wl5YD35PBBAPBRpGXVxKUg5HXBMbPBQCAVwVGx1DUlgMPRcFBEQDF0lEA11QAkBPRgAJVVpLbgxeXQRAWUYPD15dTVwOVVxDTkEWDAlUakpFAEVMEkBZRg8PT1AbTBw%3D
204 No Content 0 B URL HTTP/1.1 bam.nr-data.net/ins/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2369&ck=1&ref=https://chaturbate.com/embed/amberlaray/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVFIMVlgJWAABB1sHBlZUChh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJ8TU1DABMDQwQCCBADFVNYXRJUG01AEQECCmZcSRNbEwBQTFpUTVILGwgEVRMVQwMNCw05X1lYVhITA0NAT0YBA0pBZlYUVEoSPQoUQVwbDAgfWAEXVVBNVVZSGxkbUwRCTT4FFgEQFWZSXF5DCxsvLUFIQQ9JalpeFF9NExtBXkEodhcVEwhBZgINFgoXFEBqWl4PV1AFBw0HBkQDFwEBQx0bCBI8CgYSTlpLWkMLGwMOChxNBVZYGx1DWEk%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%2BQV5DOhsEZRNNEWVDDwwGCgpcZ1xVCENcAhY/RllGZRdYRBVeZUNOQzhBA1RXXFU%2BR1AFBww7DAhVTGUTWxFlQ1M/Rk9GZRdNUBNWXBU%2BQV5DOhtqW10AX1I9QB5GT0RcWVBWCFNVBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwgRJUJaFxAhVkMiSlZPQyMCGSURABIRJA0Va18yQUAyCkNGT0RcWVBWCFNVBD0QFA8PTWpNVBJFSj4MEEZZRBl3VUQTQ1wFLgwDCgh2Q1xDDVBAQTAGCgILXGZJSDJZVhYRQwAKFVpaT1QTSGYRAwQBQ0QVF1hSFVhPBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwsRQx0bAAEXDRUDZkZJXQhFZhUHEBAQOVdGGwtDEXsNFxEWBgJ1Wl5YD35PBBAPBRpGXVxKUg5HXBMbPBQCAVwVGx1DUlgMPRcFBEQDF0lEA11QAkBPRgAJVVpLbgxeXQRAWUYPD15dTVwOVVxDTkEWDAlUakpFAEVMEkBZRg8PT1AbTBw%3D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ins/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2369&ck=1&ref=https://chaturbate.com/embed/amberlaray/&at=H0ETGw9CExRCXBM9CgBBXAkZG0QSVEsPAw4BQVwbamZQD15XPj1BSEEVUFJXRBFuXQAWBkZZVhUXenc%2BY1gYQFlGVFIMVlgJWAABB1sHBlZUChh2Yi0TFUMhJTshCU0XAwlWHRsiJDwmDBJ8TU1DABMDQwQCCBADFVNYXRJUG01AEQECCmZcSRNbEwBQTFpUTVILGwgEVRMVQwMNCw05X1lYVhITA0NAT0YBA0pBZlYUVEoSPQoUQVwbDAgfWAEXVVBNVVZSGxkbUwRCTT4FFgEQFWZSXF5DCxsvLUFIQQ9JalpeFF9NExtBXkEodhcVEwhBZgINFgoXFEBqWl4PV1AFBw0HBkQDFwEBQx0bCBI8CgYSTlpLWkMLGwMOChxNBVZYGx1DWEk%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%2BQV5DOhsEZRNNEWVDDwwGCgpcZ1xVCENcAhY/RllGZRdYRBVeZUNOQzhBA1RXXFU%2BR1AFBww7DAhVTGUTWxFlQ1M/Rk9GZRdNUBNWXBU%2BQV5DOhtqW10AX1I9QB5GT0RcWVBWCFNVBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwgRJUJaFxAhVkMiSlZPQyMCGSURABIRJA0Va18yQUAyCkNGT0RcWVBWCFNVBD0QFA8PTWpNVBJFSj4MEEZZRBl3VUQTQ1wFLgwDCgh2Q1xDDVBAQTAGCgILXGZJSDJZVhYRQwAKFVpaT1QTSGYRAwQBQ0QVF1hSFVhPBD0QFA8PTWpNVBJFSkNYQUQhCkxHdVYIX3smQicXABBLdwsRQx0bAAEXDRUDZkZJXQhFZhUHEBAQOVdGGwtDEXsNFxEWBgJ1Wl5YD35PBBAPBRpGXVxKUg5HXBMbPBQCAVwVGx1DUlgMPRcFBEQDF0lEA11QAkBPRgAJVVpLbgxeXQRAWUYPD15dTVwOVVxDTkEWDAlUakpFAEVMEkBZRg8PT1AbTBw%3D HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: text/plain
Content-Length: 1885
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Mon, 05 Sep 2022 05:45:25 GMT
Connection: keep-alive
CF-Ray: 745ca89dcc2d1c12-OSL
Access-Control-Allow-Origin: https://chaturbate.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.16633388597162613
200 OK 34 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.16633388597162613
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 2f076023a53add81b72222368847f9b6
1083e84e2d31f05188d651ae05badeaf7561a5bc
a392a138dfebcf7db8725e70182bccd4f35c79ed354eff8cf9f14239b4207f6e
GET /stream?room=amberlaray&f=0.16633388597162613 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: image/jpeg
content-length: 34235
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/keys/KSKw2g.L36ISg/requestToken?rnd=2646089860742107
204 No Content 0 B URL HTTP/2 realtime.pa.highwebmedia.com/keys/KSKw2g.L36ISg/requestToken?rnd=2646089860742107
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /keys/KSKw2g.L36ISg/requestToken?rnd=2646089860742107 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: ably-agent,content-type,x-ably-version
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Content-Length,Accept,Authorization,X-Ably-Version,X-Ably-Lib,X-Ably-ClientId,Ably-Agent
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS
access-control-allow-origin: https://chaturbate.com
access-control-max-age: 3600
date: Mon, 05 Sep 2022 05:45:25 GMT
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RYuVSc6gBImsDcZZh6rlQCb9kFhGdN44VBxJP57KUoa6MLPFczlMSg==
X-Firefox-Spdy: h2
cdn.1vag.com/1x1.png
200 OK 68 B IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /1x1.png HTTP/1.1
Host: cdn.1vag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upornia.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: image/png
content-length: 68
server: nginx/1.20.1
last-modified: Wed, 15 Apr 2020 13:30:15 GMT
etag: "5e970c67-44"
cache-control: max-age=3600
x-request-id: 28eea0836f6cd5562d41ccabe8fa4a5b
expires: Mon, 05 Sep 2022 06:45:25 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=apolo_chiara&f=0.0013914512132594536
200 OK 20 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=apolo_chiara&f=0.0013914512132594536
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 3bba160d853735d443aae1c0c808367e
61989070771fd9583e6745f4ae0c482aeb872e59
befd9e339547eea910879925b33668a709f9d38a7285c629cfe467cd88854b2b
GET /stream?room=apolo_chiara&f=0.0013914512132594536 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: image/jpeg
content-length: 20393
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.0014240779190823893
200 OK 34 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.0014240779190823893
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash b20530a5ff4c36d609058d0a93dcf14e
6823b9fcd6f3ca0e177b4f3dfcae2f84ff59e037
8664a7248459d9776c0ae9829544070a3641f5285faba4bd3186aecc800a8ff1
GET /stream?room=amberlaray&f=0.0014240779190823893 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: image/jpeg
content-length: 34110
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/keys/KSKw2g.L36ISg/requestToken?rnd=4614837528380239
204 No Content 610 B URL HTTP/2 realtime.pa.highwebmedia.com/keys/KSKw2g.L36ISg/requestToken?rnd=4614837528380239
IP
Hash 06290ca54733399c62774a8bce9f336c
cd20ca19969aeb39732650a8572a8c7abb4fb862
5d4a237c4aad8c83f7972fb727d6203ce1efbbfb1d3cebb87d39f0f25b9bde9f
OPTIONS /keys/KSKw2g.L36ISg/requestToken?rnd=4614837528380239 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: ably-agent,content-type,x-ably-version
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Content-Length,Accept,Authorization,X-Ably-Version,X-Ably-Lib,X-Ably-ClientId,Ably-Agent
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS
access-control-allow-origin: https://chaturbate.com
access-control-max-age: 3600
date: Mon, 05 Sep 2022 05:45:25 GMT
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mRhtj00LSbcA6NXR6IstacNsspxUQDeRabVXXS-M5o5WoFEStc8N4w==
X-Firefox-Spdy: h2
chatw-42.stream.highwebmedia.com/ws/011/nwmubzd2/websocket
101 Switching Protocols 0 B URL HTTP/1.1 chatw-42.stream.highwebmedia.com/ws/011/nwmubzd2/websocket
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/011/nwmubzd2/websocket HTTP/1.1
Host: chatw-42.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://chaturbate.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9nSJvmoy7PtYyZKVh7O3SQ==
Connection: keep-alive, Upgrade
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 05 Sep 2022 05:45:25 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0FWQj4DNZj+FSNmiXNZ2Kb6YqkM=
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=snZ5FRjE8bFpguK%2FybBsm2skiHZJrAD8EmCCxopbzZemhxOEAyT9of3FtE51xlBwn%2FPJ8z93e9BmYU9CNp4e2SQ3kinieZo7HiPiIcce4m5X2fTMLkxQZy6GUx97gyy6lx%2F%2FrVK2c%2FpZ8j4PJG0%2Blu77"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 745ca89c8cceb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
realtime.pa.highwebmedia.com/keys/KSKw2g.L36ISg/requestToken?rnd=2646089860742107
201 Created 1.0 kB URL HTTP/2 realtime.pa.highwebmedia.com/keys/KSKw2g.L36ISg/requestToken?rnd=2646089860742107
IP
File type JSON data\012- , ASCII text, with very long lines (804)
Hash 2908c3cf7c7565f9cdb550f0d419cc5e
ad72c36e8c205816b523490e5e28c1822a6e222e
fefd0391d6350dd07cb95add60392beb1f3b9e0e32be67a0a814b43edef0c8f7
POST /keys/KSKw2g.L36ISg/requestToken?rnd=2646089860742107 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: application/json
X-Ably-Version: 1.2
Ably-Agent: ably-js/1.2.13 browser
Content-Length: 1039
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
content-type: application/json
content-length: 1036
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:25 GMT
vary: Origin
x-ably-serverid: frontend.7114.8.eu-central-1-A.i-022783306bba4adee.e91JE5cKwBFSR9
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pUAl9RFtfyN4-rh6dA3OFusvkueKf6g2UG_V9rdM-q6d1-UfPSMnfw==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/connect?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&stream=false&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=6724470029116651
200 OK 572 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/connect?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&stream=false&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=6724470029116651
IP
File type JSON data\012- , ASCII text
Hash 31d1593a35e061775fddb81ef774f093
82a787b0c80f4ae4894ec1606b4595a7ba022b20
dedb8b124de136e1d6c448bf88de3521e311a167c987f9cf80ddbef773eb3af4
GET /comet/connect?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&stream=false&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=6724470029116651 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 572
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:25 GMT
vary: Origin
x-ably-serverid: frontend.0e8b.1.eu-central-1-A.i-0272a7bb10d532247.e911PFA4QBFUbA
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gjoe6t8OcZeD1-SXbrR9fLvPtAui526YuZdsDS1tjheZCTUXjdP_RQ==
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.13480684467718151
200 OK 34 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.13480684467718151
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash b7924d12893cfc34ab14441dcca951cc
8045edf906168d2b2a014a9d8c9c23b5b90b6ce5
ea99d16d592a0a97c462559fc8f0d8f2e9fcf92f4e46337cba37b4a4b380188c
GET /stream?room=amberlaray&f=0.13480684467718151 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: image/jpeg
content-length: 34102
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=07376935697779119
204 No Content 0 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=07376935697779119
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=07376935697779119 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Content-Length,Accept,Authorization,X-Ably-Version,X-Ably-Lib,X-Ably-ClientId,Ably-Agent
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS
access-control-allow-origin: https://chaturbate.com
access-control-max-age: 3600
date: Mon, 05 Sep 2022 05:45:25 GMT
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MpCRYcXMaXkTpGuOea1VPXpGYfD8xp039t-NyUFRkqQIukv0jG_lug==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/keys/KSKw2g.L36ISg/requestToken?rnd=4614837528380239
201 Created 1.0 kB URL HTTP/2 realtime.pa.highwebmedia.com/keys/KSKw2g.L36ISg/requestToken?rnd=4614837528380239
IP
File type JSON data\012- , ASCII text, with very long lines (804)
Hash 05523a7a3fd636058a89eff46abfe216
e427ac934ca7b79d4d7589c2d9b26f96d2da6735
1ddb0186210516ee54109833468bc709fca54a228eaa095a0b1b9120c716518b
POST /keys/KSKw2g.L36ISg/requestToken?rnd=4614837528380239 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: application/json
X-Ably-Version: 1.2
Ably-Agent: ably-js/1.2.13 browser
Content-Length: 1039
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
content-type: application/json
content-length: 1036
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:25 GMT
vary: Origin
x-ably-serverid: frontend.ee68.4.eu-central-1-A.i-0535d5b13e5776871.e91FEBRVABFUi9
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KVAQjjWIsk9yNxvPoYchil8PC4WAyxRn4JBKzKttWBfDSNM11G0Eqg==
X-Firefox-Spdy: h2
bam.nr-data.net/events/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2921&ck=1&ref=https://chaturbate.com/embed/apolo_chiara/
200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2921&ck=1&ref=https://chaturbate.com/embed/apolo_chiara/
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2921&ck=1&ref=https://chaturbate.com/embed/apolo_chiara/ HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: text/plain
Content-Length: 3422
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 05:45:25 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 745ca8a019eb0b02-OSL
Access-Control-Allow-Origin: https://chaturbate.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
realtime.pa.highwebmedia.com/?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&upgrade=e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA&format=json&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0
101 Switching Protocols 0 B URL HTTP/1.1 realtime.pa.highwebmedia.com/?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&upgrade=e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA&format=json&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&upgrade=e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA&format=json&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://chaturbate.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /qAmLQvwvXQwG9M+6/kLbQ==
Connection: keep-alive, Upgrade
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 05 Sep 2022 05:45:25 GMT
Connection: upgrade
Sec-Websocket-Accept: im2RiDahELh8wvDcRohR9dljuHM=
Upgrade: websocket
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zSVTqb1yB_1Cmrk2Q7n5K2JEEDb-zEnfxF99m6iyjhLclZeYhCqX6g==
realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=07376935697779119
201 Created 2 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=07376935697779119
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
POST /comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=07376935697779119 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: application/json
Content-Length: 77
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
content-type: application/json
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:25 GMT
vary: Origin
x-ably-serverid: frontend.0e8b.1.eu-central-1-A.i-0272a7bb10d532247.e911PFA4QBFUbA
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5FvitH5GdGPcRlwNO2sJ0nDEbm98Q-AUiItrs5wLp5QBW5zoliuEPQ==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/recv?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=3727975498028594
200 OK 146 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/recv?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=3727975498028594
IP
File type JSON data\012- , ASCII text
Hash cc026dd9c6fcd381550523e319da98b5
88f00847d52490ac2f3edc622ec6af29d8065159
4d09074fe79cdad25e79998b2341e11e7eb7c400cac468b2abe597a7fe0a7c1f
GET /comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/recv?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=3727975498028594 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 146
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:25 GMT
vary: Origin
x-ably-serverid: frontend.0e8b.1.eu-central-1-A.i-0272a7bb10d532247.e911PFA4QBFUbA
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ELHagPTv_FFJwgL75H7f7VJbALUTaBY5qXEMx3932DphOd7_g1A8yw==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=6612695571617384
204 No Content 0 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=6612695571617384
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=6612695571617384 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Content-Length,Accept,Authorization,X-Ably-Version,X-Ably-Lib,X-Ably-ClientId,Ably-Agent
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS
access-control-allow-origin: https://chaturbate.com
access-control-max-age: 3600
date: Mon, 05 Sep 2022 05:45:25 GMT
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KG7xodC4z-Ghgjahf7jH7sOTeJfOSFs0BUffOh2CbDhK2rRXiVEwHg==
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.7075196048840177
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.7075196048840177
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 5a3edc6af390886a0d4e70a0d6e3d8ba
959bd0fbf91091d043e61f52644bf33c0896b5dc
0385bd640e082ed7f19d1c6461adc29ae95ef2f877e590a2276a7004af7cc390
GET /stream?room=amberlaray&f=0.7075196048840177 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: image/jpeg
content-length: 34734
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/recv?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=800308079389719
200 OK 1.5 kB URL HTTP/2 realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/recv?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=800308079389719
IP
File type JSON data\012- , ASCII text
Hash 5c04b548e20a3394104e64e796dad322
2ee7b8008864dedda5cf89de0b59636ed801d9a7
7e0a931d3cf7564cd35aa01e080833ba6e9a48b280db7087ed2d778c2e8dabe2
GET /comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/recv?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=800308079389719 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 1457
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:26 GMT
vary: Origin
x-ably-serverid: frontend.0e8b.1.eu-central-1-A.i-0272a7bb10d532247.e911PFA4QBFUbA
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JzPLNDHl4auXYAf7k4xLbI-uZEApJLDAz6_AXiCYojf_PoTgWKlZqg==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=6612695571617384
201 Created 2 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=6612695571617384
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
POST /comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/send?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=6612695571617384 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: application/json
Content-Length: 1304
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
content-type: application/json
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:26 GMT
vary: Origin
x-ably-serverid: frontend.0e8b.1.eu-central-1-A.i-0272a7bb10d532247.e911PFA4QBFUbA
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Qx82J33KruP6adxv4Jk4sszx8zU-Qkk6ltHuwRe1Y6Eu6Bvs-NeJoQ==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/connect?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&stream=false&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=1219811658782406
200 OK 572 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/connect?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&stream=false&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=1219811658782406
IP
File type JSON data\012- , ASCII text
Hash 713b5645209dc01a27c84d3e2f4f4ec5
9a2c16b9cf360084c201fa18863355d1b9ac088e
97446398d8c36eef086345b01b525eb46ce297eeb9d6fdc02eb5bfa518ff4625
GET /comet/connect?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&stream=false&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=1219811658782406 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 572
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:26 GMT
vary: Origin
x-ably-serverid: frontend.4abf.1.eu-central-1-A.i-066215763d098989a.e91nTwVlQBFUcM
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: O74zN-44ki4f7U_WBFb9Db6JbDYZTOzE45wZfjLh4ZpWoWTOZh2ANA==
X-Firefox-Spdy: h2
bam.nr-data.net/events/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2891&ck=1&ref=https://chaturbate.com/embed/amberlaray/
200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2891&ck=1&ref=https://chaturbate.com/embed/amberlaray/
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/6f524845d1?a=24279235&v=1216.487a282&to=MwYEbUdYXxJQWhULDApMIExbWkUIXldOAQsFF0hPXFxGEgtrDg0OMgoDThteVBU%3D&rst=2891&ck=1&ref=https://chaturbate.com/embed/amberlaray/ HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: text/plain
Content-Length: 3391
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 05:45:26 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 745ca8a10eae1c12-OSL
Access-Control-Allow-Origin: https://chaturbate.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/recv?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=3076553207547331
200 OK 1.0 kB URL HTTP/2 realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/recv?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=3076553207547331
IP
File type JSON data\012- , ASCII text
Hash f9c6ab30cc5c2579372607a1320c940b
32fc576bc690233560f42c02bbf6ecf0ffef0a8e
44afb7f7e1624b464b17fe4a8c5209abad1e101200bb39dd34a1e8364e5fdac4
GET /comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/recv?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=3076553207547331 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 1003
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:26 GMT
vary: Origin
x-ably-serverid: frontend.0e8b.1.eu-central-1-A.i-0272a7bb10d532247.e911PFA4QBFUbA
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -21dIqv4Zle8pkrjPc9yaDWCo94AA8L34bjAZcIO14TTLE0gECPu_g==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/send?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=4023599295099912
204 No Content 0 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/send?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=4023599295099912
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/send?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=4023599295099912 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Content-Length,Accept,Authorization,X-Ably-Version,X-Ably-Lib,X-Ably-ClientId,Ably-Agent
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS
access-control-allow-origin: https://chaturbate.com
access-control-max-age: 3600
date: Mon, 05 Sep 2022 05:45:26 GMT
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pOh24JwAyhKAB0EhjuiKleesuvz2xy0B_PHUzdNz7FG5K6Rs9-ZGjw==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/send?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=4023599295099912
201 Created 2 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/send?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=4023599295099912
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
POST /comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/send?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=4023599295099912 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: application/json
Content-Length: 77
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
content-type: application/json
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:26 GMT
vary: Origin
x-ably-serverid: frontend.4abf.1.eu-central-1-A.i-066215763d098989a.e91nTwVlQBFUcM
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dFEWcWk3DnStsW1uCGFOHp4jME_uaP5nNNLa_G5gfsfomJpUf0eMnw==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/recv?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=19852757952548028
200 OK 147 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/recv?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=19852757952548028
IP
File type JSON data\012- , ASCII text
Hash 09f7e485b34855e11f173fbe900605b4
5c935b59aef3588de5b4b52138ed5ad7233dd217
e7163a5897eb447ab6ff1826894ae0a1c59f01f42620f01b2edfdea8d23d8144
GET /comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/recv?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=19852757952548028 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 147
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:26 GMT
vary: Origin
x-ably-serverid: frontend.4abf.1.eu-central-1-A.i-066215763d098989a.e91nTwVlQBFUcM
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: scy9JUlX_VxX01XuKYImPuSR6tx1Xa59VsBpcG-RsLxuiURl1YbpAA==
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.3214607643006856
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.3214607643006856
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash ce4795946f2b92568dd650d23c0706b2
ddc0d336f03dbf25a233e3db3a8d0279985680de
b727672769d4c93907ed3e5f0a81647cf46be3daf982fd6581c2a789c94320fd
GET /stream?room=amberlaray&f=0.3214607643006856 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:26 GMT
content-type: image/jpeg
content-length: 35176
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/connect?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&upgrade=e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=22405678319364586
200 OK 667 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/connect?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&upgrade=e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=22405678319364586
IP
File type JSON data\012- , ASCII text, with very long lines (499)
Hash bd60620d08afa9dc7e506f05f43b678e
6f627336795ea5405d9cac933ccf2ae888580456
1f13f1bf4002a95c2a517e00357190bd00f9be322c6eb5a555f961cb6e0963f6
GET /comet/connect?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&upgrade=e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=22405678319364586 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:25 GMT
vary: Origin
x-ably-serverid: frontend.0e8b.1.eu-central-1-A.i-0272a7bb10d532247.e911PFA4QBFUbA
x-content-type-options: nosniff
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4OFoa4vbr-M-nqESzS6ryl-1hFeEYktAARXGNDD_6qMH6pZEYehPrA==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&upgrade=e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM&format=json&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0
101 Switching Protocols 0 B URL HTTP/1.1 realtime.pa.highwebmedia.com/?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&upgrade=e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM&format=json&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&upgrade=e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM&format=json&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://chaturbate.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VQ3CqPZ2S8EefhjxEhoDTQ==
Connection: keep-alive, Upgrade
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 05 Sep 2022 05:45:26 GMT
Connection: upgrade
Sec-Websocket-Accept: kkFpZcWkaB1aMEnm19tv5OMWWEw=
Upgrade: websocket
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qZz0FhpESU4vRCRGGKEl0C7Wprfz5Wd1J9LY4BWKy9i91yuMFF0-0g==
realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/send?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=024609317373890716
201 Created 2 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/send?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=024609317373890716
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
POST /comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/send?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=024609317373890716 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
content-type: application/json
Content-Length: 1304
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
content-type: application/json
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:26 GMT
vary: Origin
x-ably-serverid: frontend.4abf.1.eu-central-1-A.i-066215763d098989a.e91nTwVlQBFUcM
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1ieriWdCi_avQ6OUSq45bSIFaYZIgDOkYzrPqjJtm3xguVptd7vi3w==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/recv?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=7801876951103393
200 OK 2.5 kB URL HTTP/2 realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/recv?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=7801876951103393
IP
File type JSON data\012- , ASCII text
Hash 3901bb3dbd7cdeb7a189dd0ed4392da8
b20be3456a04938b1859c63a8fc3945348aff629
318dd04cee76b72a1e6508af0b0e876d46f21ea3e4051d3bbcc3cb9c1849d1fa
GET /comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/recv?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=7801876951103393 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 2458
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:26 GMT
vary: Origin
x-ably-serverid: frontend.4abf.1.eu-central-1-A.i-066215763d098989a.e91nTwVlQBFUcM
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EUoT0fQwG8rWYCfsMYOUnDo2FM0j_23bZES48kRMsICrjQ_Zpqsfeg==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/disconnect?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=9120639229946494
204 No Content 0 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/disconnect?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=9120639229946494
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /comet/e911PFA4QBFUbA!QBiTG1G6AJBrD3w--17a67e911PFA4QBFUbA/disconnect?access_token=KSKw2g.AL36ISgx6os0upGLgnQmrWBZSktbXRgD8Y_RfO7rrGBmzsoFck&rnd=9120639229946494 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:26 GMT
vary: Origin
x-ably-serverid: frontend.0e8b.1.eu-central-1-A.i-0272a7bb10d532247.e911PFA4QBFUbA
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3Lb9KVraaDw-8JnLLIWHgZ9mczFW5Ci_lM-6gfiWutDgeKjFdGvmPA==
X-Firefox-Spdy: h2
chatw-7.stream.highwebmedia.com/ws/411/tigovlyd/websocket
101 Switching Protocols 0 B URL HTTP/1.1 chatw-7.stream.highwebmedia.com/ws/411/tigovlyd/websocket
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/411/tigovlyd/websocket HTTP/1.1
Host: chatw-7.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://chaturbate.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y85G5IlkDBNkgFlvUNvl6w==
Connection: keep-alive, Upgrade
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 05 Sep 2022 05:45:26 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Et3RcxLVYIxAqv6EMWTJ/7RWvvY=
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eCO3mS4yPLulc2U%2B9Mtwa7%2FabLjJyc%2BxND7q6R%2FFEJj65PknNON69fkUpPNngUhTCKVRIIo1DxEc0WfsIEgBT1nskJo5g5mQQQHVR41DZkdC3ytf9zx2ydSuumRerLip02INJXm%2Fv8JrIdumSuMAWb0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 745ca8a0084fb505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.8287699605205672
200 OK 34 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.8287699605205672
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 6d7659c3e203fcbfec3232c59c0d789f
01e50921510c251724ee41831879c48165ce0ef1
2f647a82480f6e069522949286d5ad25ef55f37d1b22eb311ff7b2825ff9d126
GET /stream?room=amberlaray&f=0.8287699605205672 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:26 GMT
content-type: image/jpeg
content-length: 34382
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/disconnect?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=27209736659074657
204 No Content 0 B URL HTTP/2 realtime.pa.highwebmedia.com/comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/disconnect?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=27209736659074657
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /comet/e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM/disconnect?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&rnd=27209736659074657 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:26 GMT
vary: Origin
x-ably-serverid: frontend.4abf.1.eu-central-1-A.i-066215763d098989a.e91nTwVlQBFUcM
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f3YOfc9eg5BJ4x0pCr9SujQhB7Y2PCakmnkXNP6IZMlWa5DW7Mk_5w==
X-Firefox-Spdy: h2
realtime.pa.highwebmedia.com/comet/connect?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&upgrade=e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=07243453808331102
200 OK 35 kB URL HTTP/2 realtime.pa.highwebmedia.com/comet/connect?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&upgrade=e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=07243453808331102
IP
Hash dd0eec5751071a4dea3064de7528aeae
d26cb7a1a7bba8a15776e63f7e10ad08dbe97227
d380908134991aa2d9d17f76a4165393851f15ae40fbb3356dec04438dd3117a
GET /comet/connect?access_token=KSKw2g.AL36ISgYPA5px1sCGG853JM2RuskVXcHuTVKrkCFxU2UCPyVdM&upgrade=e91nTwVlQBFUcM!6rYlc5AJbF2zjMp3-16e1de91nTwVlQBFUcM&heartbeats=true&v=1.2&agent=ably-js%2F1.2.13%20browser&remainPresentFor=0&rnd=07243453808331102 HTTP/1.1
Host: realtime.pa.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
access-control-expose-headers: Link,Transfer-Encoding,Content-Length,X-Ably-ErrorCode,X-Ably-ErrorMessage,X-Ably-ServerId,Server
date: Mon, 05 Sep 2022 05:45:26 GMT
vary: Origin
x-ably-serverid: frontend.4abf.1.eu-central-1-A.i-066215763d098989a.e91nTwVlQBFUcM
x-content-type-options: nosniff
x-robots-tag: noindex
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -WopmJvVN6oIx0Nt14Ood8luP9-mhobPElJfLCdisyWuyv6oSkYbig==
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=apolo_chiara&f=0.4077591065979028
200 OK 18 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=apolo_chiara&f=0.4077591065979028
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash dd400a4d41320a85630081b4a967ae72
bffd20b32e51a42b3ef8d96d066dc35448f5414d
a7d9e20fcc9ae6170d5dfe7f0ff37c9835779c69b133b8e1e9ef9949cf5ca893
GET /stream?room=apolo_chiara&f=0.4077591065979028 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:26 GMT
content-type: image/jpeg
content-length: 18266
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.7013358961354847
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.7013358961354847
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash e3e923b64ffe8cd49f085e549073bf43
362d7b06db0706c97bc3c9a0afe6f70f5236a2e4
f1d530541f7d2beab4b237ce51e0fcc26741ba5121934a512ba3b080d9c3368b
GET /stream?room=amberlaray&f=0.7013358961354847 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:26 GMT
content-type: image/jpeg
content-length: 35141
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.724961825077619
200 OK 34 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.724961825077619
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 11ec3c9c188158aae9b173eea25ca704
c1d0a0dace2204c782c1921285058a349fd534bd
32ed258f08c97c894980ac516f91535b09d57fd1dffb231b2bd40dc958481177
GET /stream?room=amberlaray&f=0.724961825077619 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:26 GMT
content-type: image/jpeg
content-length: 34043
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.17964665401978752
200 OK 34 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.17964665401978752
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 274cf0678cee35cb0351bb295fefcc73
ac9e3122d1df37a82cbf6b1640083c6d711621bb
16fe255c0e22cb6ae0c99064e5c59ed7d53b242421c394f62b9aeec22f49d98a
GET /stream?room=amberlaray&f=0.17964665401978752 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:26 GMT
content-type: image/jpeg
content-length: 34382
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.007558540929938684
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.007558540929938684
IP
ASN #50389 Phoenix Nap, LLC.
Hash e7324e4cb5b0fbab0dc5fed525533b7a
d8c0278ebba47c8bc45ff75dff85f8acb493c958
a713a6d3f564b740ed3a3a906e52fb02cb2e276802c734af64b4f565cf466e79
GET /stream?room=amberlaray&f=0.007558540929938684 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:27 GMT
content-type: image/jpeg
content-length: 34795
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.4370429548503151
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.4370429548503151
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash dff8a9abf7584887522fbd309d9d0211
64c68db6d54df2f7b467ba32ef4734e5cac247b9
84ef269e7252d69258c622673d60a069837649fd5a1e44c09ec42bc7ce8f210c
GET /stream?room=amberlaray&f=0.4370429548503151 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:27 GMT
content-type: image/jpeg
content-length: 34924
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.03514586466476566
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.03514586466476566
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash dff8a9abf7584887522fbd309d9d0211
64c68db6d54df2f7b467ba32ef4734e5cac247b9
84ef269e7252d69258c622673d60a069837649fd5a1e44c09ec42bc7ce8f210c
GET /stream?room=amberlaray&f=0.03514586466476566 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:27 GMT
content-type: image/jpeg
content-length: 34924
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.6173169971855346
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.6173169971855346
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 0e5a7645a8a2f3485be861954a81e683
487ce74da895fd0f87e04975cda26492d3869dc7
6c777d5ca8d031ade4ffea5c2a5f17aba6a7a1194310c23ffb39c669fd193843
GET /stream?room=amberlaray&f=0.6173169971855346 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:27 GMT
content-type: image/jpeg
content-length: 34567
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=apolo_chiara&f=0.7067242123418231
200 OK 18 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=apolo_chiara&f=0.7067242123418231
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 036f5109e1ac9cf53c01db628bded69e
a0ea336e38896bfa08e6cbc0f1d8f3aaa761024b
19e98e0bc56829dc0cbcb55f9c86f030d2c2837f10e6312efd1acf7a0dd3e356
GET /stream?room=apolo_chiara&f=0.7067242123418231 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:27 GMT
content-type: image/jpeg
content-length: 17577
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.4651838318949416
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.4651838318949416
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash d389960f170725f571b6462d1b0f5089
c1e5d3c534c732a695521fef29a59d490dff7b38
92581018ff1bc2943cad8549958cf52bfe0312dc4d34c54bd04bae840e595177
GET /stream?room=amberlaray&f=0.4651838318949416 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:27 GMT
content-type: image/jpeg
content-length: 35111
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.6043898416249246
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.6043898416249246
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 7f0a0011cc2a2f80b9b97b83192bd130
f735a0322cd9233943112410588b807afe0008c0
3d0e2a567402e4cabe502c5980307a8ca62b29a107cd2f752fe065a5066ecfc1
GET /stream?room=amberlaray&f=0.6043898416249246 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:27 GMT
content-type: image/jpeg
content-length: 34713
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.8142610057029284
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.8142610057029284
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash a7adaf13e8e07d7703d630bc3a2e933e
2831e06a5a6d2c92d575ee057862bae9ed2b8331
95243531be55d5fd56732d7ccb16db6425eed83c28dcdddd6a39ebc469a77f2c
GET /stream?room=amberlaray&f=0.8142610057029284 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:27 GMT
content-type: image/jpeg
content-length: 35224
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.537765672712924
200 OK 36 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.537765672712924
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash e764bdffb02b91b2f615162a2fbcda14
ec26eebe228fe7fb34323fc8fbb6c1905cbc57a0
3b96b3289fe4edefa3587fe7b5acae10bd3caf4b0b6d4db3804214591adedcfc
GET /stream?room=amberlaray&f=0.537765672712924 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:28 GMT
content-type: image/jpeg
content-length: 35669
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.09197155268637103
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.09197155268637103
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 2ca26f75d64a173e601f8cc90ce79ac0
21041adc4e8f2d7afe700d7f29968ab9b013d988
818ec0bd802dab9c80f7f8594bc25b5ae40392d7d1bbcb5506dda29efbd127a5
GET /stream?room=amberlaray&f=0.09197155268637103 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:28 GMT
content-type: image/jpeg
content-length: 34681
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.9454785655654492
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.9454785655654492
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 4eb302add34ccad7bdfdad2c44c1fc6f
87e6c1a385eef3873bf16a64c5efca69d5b58d9d
e22d1c5dd49e3a294669c987d5d2fcd80a517b0775af85f57c8ff4b1d16901a2
GET /stream?room=amberlaray&f=0.9454785655654492 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:28 GMT
content-type: image/jpeg
content-length: 34950
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.42140207844991295
200 OK 35 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.42140207844991295
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 4f7a9f7810b1f29e837572202ca39b4f
0494165d39d05f3cd74750adf897e7e3d8dca0b9
cd6b6aedfb89e1bb15e7986613830831e038b5968a5d98af41a35805818f4401
GET /stream?room=amberlaray&f=0.42140207844991295 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:28 GMT
content-type: image/jpeg
content-length: 35337
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=apolo_chiara&f=0.3576919879071996
200 OK 17 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=apolo_chiara&f=0.3576919879071996
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash 99aa5d635888cc767ce706d028c9bfe0
f33e72150ce268565543bd893cd9c85f60166692
6f69f62e3d387b5c480daa322c0d57b416a76517b478ae0e7939dcacdee26323
GET /stream?room=apolo_chiara&f=0.3576919879071996 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:28 GMT
content-type: image/jpeg
content-length: 17161
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.33314734833131854
200 OK 34 kB URL HTTP/2 cbjpeg.stream.highwebmedia.com/stream?room=amberlaray&f=0.33314734833131854
IP
ASN #50389 Phoenix Nap, LLC.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1280x1281, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 854x480, components 3\012- data
Hash bf70d584c94feaf7c4fdb8346eefeac6
a105ff2cc22b794fdab21251c2f9dc0ebde1c1cf
2c4e3b43c92d27b07de16c0522bd2662e7c4f011049f6d3652b92b8db5b18182
GET /stream?room=amberlaray&f=0.33314734833131854 HTTP/1.1
Host: cbjpeg.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 05:45:28 GMT
content-type: image/jpeg
content-length: 34407
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
cache-tag: cbjpeg
x-frame-options: DENY
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/cachebust/chatembed-prod-e493c23b1695.js
200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/cachebust/chatembed-prod-e493c23b1695.js
IP
GET /cachebust/chatembed-prod-e493c23b1695.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=902543
etag: W/"617263036b321f8342fbb603c1bdd9bd"
last-modified: Thu, 01 Sep 2022 23:43:16 GMT
x-amz-id-2: 8Fh5cz1xnGAx8DAuitzSQwTkzWRiXWI+ZGnxPGwYvSMBYpNAFL/mPsHjap/++GDh8E4UAqaU7sA=
x-amz-meta-s3cmd-attrs: md5:617263036b321f8342fbb603c1bdd9bd
x-amz-request-id: DNGCHBNNQW4XE7X6
cf-cache-status: HIT
age: 280733
expires: Wed, 05 Oct 2022 05:45:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y8Z230VinEJh3pRZhRxopOhu8MOlsQKuTQ7cZvBSAz8tQfHiFzi5ahVEzSmn4dyi5%2BfT%2F3fMOGCsAsy4x0sp1BfMCumTuR%2Fi6JTrE%2BFrhTB6mesXOU0eA3wOdbhdfax9RNfpvDW709igE%2BBv5NorNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=W3hCWDQcZQwL7NU7O.n.qAI3JXXZzHt.NR.k9zvXFVU-1662356723586-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 745ca89259070b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/js/output.caee332d326d.js
200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.caee332d326d.js
IP
GET /CACHE/js/output.caee332d326d.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
etag: W/"b61e15511bf0db70d0d422e98c465403"
last-modified: Thu, 24 Jun 2021 21:24:08 GMT
x-amz-id-2: gAJe87IyJM0OkbaBgua73HTcoEANURYYk4wpsNNClr414DBIRL/v+K+9hxRFHrgcwnw38qlmXmM=
x-amz-meta-s3cmd-attrs: md5:b61e15511bf0db70d0d422e98c465403
x-amz-request-id: 2D5TZ021KE4200HB
cf-cache-status: HIT
age: 1498683
expires: Wed, 05 Oct 2022 05:45:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IVlU7tcpwZMNnFg22WM2TNzpW7kOKW7GP%2FyyfVaRapZP%2BpyfbpBizv11wi7BKG8Le6TI1JuIE%2B8eC7y1426Wex6TaE8qjhg3ZOOPA2YEiV41SYkx8w%2F3%2FTimLUY%2FBGMU04MxH4FR6EjXW4xVeHQfTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=5bzGfb6T8MZCnyoo3rPM4vAhvEinnU5c4Yw6OJji70M-1662356723627-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 745ca89299520b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/upd/20220818.093424.0/static/js/chunk-aaa4130c.js
200 OK 0 B URL HTTP/2 upornia.com/upd/20220818.093424.0/static/js/chunk-aaa4130c.js
IP
GET /upd/20220818.093424.0/static/js/chunk-aaa4130c.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 09:34:53 GMT
vary: Accept-Encoding
etag: W/"62fe07bd-cefb"
expires: Mon, 05 Sep 2022 06:03:47 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 695
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JvSAaMuKMZAAETPgrKLr2HZsJFWJlryluh4Tufe0gEORpe6bXIjY%2FEwiku1UhBBQiRNqaaRyuvqsZEgs3UpzCbgm6PaPqWjjopNRWxPSUBPV8ZNbbaAroUXel%2BJtnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca883896f777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/api/json/main/14400/str.en.json
200 OK 0 B URL HTTP/2 upornia.com/api/json/main/14400/str.en.json
IP
GET /api/json/main/14400/str.en.json HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: application/json
last-modified: Mon, 05 Sep 2022 04:03:07 GMT
vary: Accept-Encoding
etag: W/"631574fb-1b64"
expires: Mon, 05 Sep 2022 05:50:21 GMT
cache-control: max-age=300
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hcxTtrUQAgNS9HG%2BLn0PLz9MedvTMPhTmLdNbAN2fW%2BSg%2BR9pv8m%2BLiVmDJVZcJwnIdoh4ArRpbtEYGq34QRJ5agxU1WCQQ85cJsneBLtkkw5S21lfk3rWhfFAia5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca8818f3b777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/images/flags/no.svg
200 OK 0 B URL HTTP/2 upornia.com/images/flags/no.svg
IP
GET /images/flags/no.svg HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/upd/20220818.093453.176694/static/css/chunk-common.css
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: image/svg+xml
last-modified: Fri, 22 Jul 2022 07:40:01 GMT
etag: W/"62da5451-733"
expires: Sun, 11 Sep 2022 09:38:37 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2059604
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Dch0CbqxldXvaNeSqh8%2FaUZao3vMa7IUOZreiJiaQVAQXlZORb%2BHzoMJwmQN4dYiS9HqiQQdYlTvTuSXceH%2Fkur6k7ax8bqIawpg8147E%2BFlUOJI8mOoVL0dx0hXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745ca881ef8d777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/js/output.09a0bf741d47.js
200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.09a0bf741d47.js
IP
GET /CACHE/js/output.09a0bf741d47.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
etag: W/"bb81bca2482741d6c4dcf148cb33a79d"
last-modified: Wed, 17 Aug 2022 00:26:59 GMT
x-amz-id-2: 3dz298/kgeP1Pq/aBz8wop8Gas15qR9oG1wjU5FgYthy7g6Z9MZpPydhaAydlHaKkHGU8KIJbDw=
x-amz-meta-s3cmd-attrs: md5:bb81bca2482741d6c4dcf148cb33a79d
x-amz-request-id: RGGA1ZRYYYSSRXHH
cf-cache-status: HIT
age: 1660511
expires: Wed, 05 Oct 2022 05:45:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aPlCF2NyUeBz%2FnsOu0aZxc9XJnqZgI1q7%2BWT1EGgZu%2FOEt%2Fm79clTDiVZH6%2B4OEZ4ZlcgiNSiHB8x2LD%2BnrbCUGKlFbRDvQvSGMVmvHXDUcBVd7ndiIk839TAJik5ILwNCKF%2FBQcjEuJ6V%2BK5Kdkaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=5M9mkGkSVwNDJyFl0VKN5oiY1oKQt7aPjexmn3BYCP0-1662356723581-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 745ca89259030b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
200 OK 0 B URL HTTP/2 upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
IP
GET /videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036 HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.2.34
access-control-allow-origin: *
set-cookie: source=14036; expires=Tue, 05-Sep-2023 11:34:06 GMT; Max-Age=31556926; path=/; domain=upornia.com
tccloak=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=upornia.com
kt_lang=en; expires=Thu, 31-Aug-2023 05:45:20 GMT; Max-Age=31104000; path=/; domain=.upornia.com
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xKenqrBBJrIaEaECCT13JWsiwQC0ItHGdZuJ3RihVQRXa046YUBcQg7B7dX2q9sM0AHDl%2FEpZhhhgq5XUkZ3pdhr5CGCIS%2FASjy9WRwrMtyNlM6yWzG6hH%2FBI3J1bA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca87d0a7b777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/phsw2.js
200 OK 0 B IP
GET /phsw2.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 09:38:50 GMT
vary: Accept-Encoding
etag: W/"62fe08aa-2f"
expires: Sat, 01 Oct 2022 09:39:29 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 331552
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gQ4ZxKLroppVvBgn2BIrMr3t73YsGViTEeVKPc00MnzQObnLYZB0wIn%2BLiYyZAF4I03Xk8GyqxBTbE0QE5bv56wYHyVAAAuvn8iuLXYibJUCENWN0iR3yotNVEdQNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca8823ffc777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
creative.xlivrdr.com/LPOmega?campaignId=ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4&campaignType=smartpop&creativeId=3ec5ab3f6aacaa253e3c993f2b0e693ac7d4b6e2324b1f5a165683853ef7f6e6&iterationId=225172&masterSmartpopId=1914&memberId=dd14a411-e6ff-4344-952f-f1e539eb2b91&p1=Promo_Banners_Straight_T1_Desk&p2=49657&ruleId=17&smartpopId=1807&sourceId=upornia.com&tag=-girls%2Findian&trackOff=1&userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&variationId=28940
200 OK 0 B URL HTTP/2 creative.xlivrdr.com/LPOmega?campaignId=ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4&campaignType=smartpop&creativeId=3ec5ab3f6aacaa253e3c993f2b0e693ac7d4b6e2324b1f5a165683853ef7f6e6&iterationId=225172&masterSmartpopId=1914&memberId=dd14a411-e6ff-4344-952f-f1e539eb2b91&p1=Promo_Banners_Straight_T1_Desk&p2=49657&ruleId=17&smartpopId=1807&sourceId=upornia.com&tag=-girls%2Findian&trackOff=1&userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&variationId=28940
IP
GET /LPOmega?campaignId=ec1535c1cbaa3d0b93513d43b65aa5ca154a4f64912bc1c7443cc846eec2add4&campaignType=smartpop&creativeId=3ec5ab3f6aacaa253e3c993f2b0e693ac7d4b6e2324b1f5a165683853ef7f6e6&iterationId=225172&masterSmartpopId=1914&memberId=dd14a411-e6ff-4344-952f-f1e539eb2b91&p1=Promo_Banners_Straight_T1_Desk&p2=49657&ruleId=17&smartpopId=1807&sourceId=upornia.com&tag=-girls%2Findian&trackOff=1&userId=0d0cdc753eed23068b893e6a636a40ccaadc69dc4a5ec7ee080ed62b15816646&variationId=28940 HTTP/1.1
Host: creative.xlivrdr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twinrdack.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: text/html
last-modified: Wed, 24 Aug 2022 09:22:41 GMT
expires: Mon, 05 Sep 2022 05:45:30 GMT
cache-control: max-age=10
pragma: public
report-to: { "endpoints":[{ "url": "https://go.stripchat.com/report" }], "group": "default", "max_age": 1048576 }
cf-cache-status: HIT
age: 2
vary: Accept-Encoding
server: cloudflare
cf-ray: 745ca8942ad3b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/ffhhpgmr/qsmsavkvnwc.js
200 OK 0 B URL HTTP/2 upornia.com/ffhhpgmr/qsmsavkvnwc.js
IP
GET /ffhhpgmr/qsmsavkvnwc.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 05:00:24 GMT
vary: Accept-Encoding
etag: W/"63158268-2783d"
expires: Wed, 05 Oct 2022 05:00:26 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2695
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KvkHlXxTYJ4lhgKmL4HakDsMs%2Fkonk1kJITmLzpV277rsls5wUOQgHW%2FTabx%2FUELN2B0opMl4IfSEMDUKYrC1b%2Fo9439TlxQYC1mEsuVKxlrKOqXlmT1QGV1SOm4rQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca87e5be5777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mc.yandex.ru/watch/49315045?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A1177838884924%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A771925214%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/49315045?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A1177838884924%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A771925214%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP
GET /watch/49315045?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A1177838884924%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A771925214%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20(Uncensored)%20%7C%20Upornia.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upornia.com
Connection: keep-alive
Referer: https://upornia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/49315045/1?wmode=7&page-url=https%3A%2F%2Fupornia.com%2Fvideos%2F263492%2Fjapanese-granny-creamed-by-not-her-grandson-uncensored%2F%3Fpromo%3D14036&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1226%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A1177838884924%3Ahid%3A259394434%3Az%3A0%3Ai%3A20220905054517%3Aet%3A1662356718%3Ac%3A1%3Arn%3A771925214%3Arqn%3A1%3Au%3A1662356718784393520%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662356715555%3Ads%3A2%2C62%2C48%2C2%2C361%2C0%2C%2C678%2C4%2C%2C%2C%2C1256%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662356718%3At%3AJapanese%20Granny%20Creamed%20by%20not%20her%20Grandson%20%28Uncensored%29%20%7C%20Upornia.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Mon, 05 Sep 2022 05:45:21 GMT
access-control-allow-origin: https://upornia.com
set-cookie: yandexuid=528912611662356721; Expires=Tue, 05-Sep-2023 05:45:21 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=528912611662356721; Expires=Tue, 05-Sep-2023 05:45:21 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1308496771662356721; Path=/; SameSite=None; Secure
i=3H6JCM2Ew/Ac8QBaWsWHT+SCmPxxSP9AQMsuojAbOXjAUsOHPloId6sJZe9d3xUWxh9BD3Uv7clFhzpBKh7bvebPaW4=; Expires=Thu, 02-Sep-2032 05:45:15 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1693892721.yrts.1662356721#1693892721.yrtsi.1662356721; Expires=Tue, 05-Sep-2023 05:45:21 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Sep-2022 05:45:21 GMT
last-modified: Mon, 05-Sep-2022 05:45:21 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/js/output.1486cd5aa4f0.js
200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.1486cd5aa4f0.js
IP
GET /CACHE/js/output.1486cd5aa4f0.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=117895
etag: W/"eb2259ff6dbd950ae158f73065752aa1"
last-modified: Thu, 21 Oct 2021 18:11:54 GMT
x-amz-id-2: k6NhlyRh+XXZM7+pSOMylQwAMSlxLRy7teDHalfRWz7mnIIf6Ig6amIFaKAolUjBHmL3PkEkULk=
x-amz-meta-s3cmd-attrs: md5:eb2259ff6dbd950ae158f73065752aa1
x-amz-request-id: FHZ86T60E9WK32PB
cf-cache-status: HIT
age: 29514
expires: Wed, 05 Oct 2022 05:45:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oPlUGiLhHehP%2FPwQHbTj4vaEugOwzcyMvbl%2FiodPWwyUv6TMpOnNoywdDrZITEDgnlrFJIDhAyeMqlhhmbWRdLs4U5Z38u8Q1u0v1KF%2FX28SuxYKDjbrAqEP6GEf9SKiSZtFfE6eNNA9aGf1t6r6Sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=0M3WIPQ2Bzp4xmnSof1bn9uZS4VBvCfGMPg2Q4RrQNM-1662356723624-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 745ca892994b0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/js/output.bc85e791cb2f.js
200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.bc85e791cb2f.js
IP
GET /CACHE/js/output.bc85e791cb2f.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=202270
etag: W/"7d90e856406997eee24123ea8a61c92d"
last-modified: Fri, 10 Sep 2021 01:29:44 GMT
x-amz-id-2: HJqgrzmpP8NIgQA+YW8wx4YmDeOFkE860/zZrYgEfEOOhSRenFjn4mxx7ChaQYvyWjZAxImMIY8=
x-amz-meta-s3cmd-attrs: md5:7d90e856406997eee24123ea8a61c92d
x-amz-request-id: EVKN10SQAKNB8VZG
cf-cache-status: HIT
age: 22299
expires: Wed, 05 Oct 2022 05:45:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zmU7gl2iGHdcFvvP8elVqwbOEiFcA4sSCqXsQhZg9i%2Bz1iICxOqJeShEkf58yDwvz8XXQFOYacuFLKtgXofKqB3xYkS8ORiSSwCBJonELfW0jAgyWm3PaQwb6%2FFCI6EuK2VZFvETywKkJwvu6jqsxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=0PTMulMONSbnXQAPo.uS_hGf35PbuAEmgQId7Pxpn_g-1662356723582-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 745ca89259060b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/upd/20220818.093453.336910/static/js/chunk-vendors.js
200 OK 0 B URL HTTP/2 upornia.com/upd/20220818.093453.336910/static/js/chunk-vendors.js
IP
GET /upd/20220818.093453.336910/static/js/chunk-vendors.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 09:34:53 GMT
vary: Accept-Encoding
etag: W/"62fe07bd-5240e"
expires: Mon, 05 Sep 2022 06:03:45 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 696
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IL3frp%2BArpus47DDjvPNlGw4SulTgdQF6WBXx1vWGKBcpYRnYeJn1PbxD%2BeEWikbdTUdFw3fWhDNyMV1Y8OG0TxBcu0fnGgD5W4mnvpl5TSI5y5GvBtYi0MNDFH9eA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca87e4bd7777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/gagra/vlado7.8.8.565a5fb659c1b19f2d91dd10436d0445.js
200 OK 0 B URL HTTP/2 upornia.com/gagra/vlado7.8.8.565a5fb659c1b19f2d91dd10436d0445.js
IP
GET /gagra/vlado7.8.8.565a5fb659c1b19f2d91dd10436d0445.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 09:38:50 GMT
vary: Accept-Encoding
etag: W/"62fe08aa-32313"
expires: Mon, 19 Sep 2022 07:00:08 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 1377913
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FVG9ThgAxUgVypbVVqB1f1a5XouRtqR1%2BIEEdZLibq7jnJWo6FTmjEXCpMsMEVMzUFDhwYytQKJvTg7Y23SgsmtCSK%2FSjJGvLrudO7sOlKc51dURVr6CnSf3fIChRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca87e5be4777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/api/json/video/86400/0/263000/263492.json
200 OK 0 B URL HTTP/2 upornia.com/api/json/video/86400/0/263000/263492.json
IP
GET /api/json/video/86400/0/263000/263492.json HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: application/json
last-modified: Sun, 04 Sep 2022 14:09:54 GMT
vary: Accept-Encoding
etag: W/"6314b1b2-4c5"
expires: Mon, 05 Sep 2022 05:50:21 GMT
cache-control: max-age=300
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TUUMmXoUPdXCDJaZOGBR2kpOoYVemVGdiBj%2B%2B%2FAeS3ihBsZs2FJYYQ7NrJOw7OocZUjM9q0EGucED3FOKNNNRH%2Fr8Qm21sgN30ZqoYsHbyAIvy1z%2FpO7grgcec8P3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca8819f44777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.wpshsdk.com/npc/sdk/common/config.js
200 OK 0 B URL HTTP/2 js.wpshsdk.com/npc/sdk/common/config.js
IP
ASN #39572 DataWeb Global Group B.V.
GET /npc/sdk/common/config.js HTTP/1.1
Host: js.wpshsdk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upornia.com/
Origin: https://upornia.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 01 Sep 2022 17:12:02 GMT
etag: W/"6310e7e2-1a"
content-encoding: gzip
expires: Mon, 05 Sep 2022 05:50:23 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
upornia.com/api/json/suggester/86400/1000.json
200 OK 0 B URL HTTP/2 upornia.com/api/json/suggester/86400/1000.json
IP
GET /api/json/suggester/86400/1000.json HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:20 GMT
content-type: application/json
last-modified: Sun, 04 Sep 2022 16:41:08 GMT
vary: Accept-Encoding
etag: W/"6314d524-3864"
expires: Mon, 05 Sep 2022 05:50:21 GMT
cache-control: max-age=300
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3bJCMs3Vfgdqp7gCv%2FJcZaDrMzvIWho%2F5gRFpFH3TZCFr23MzQBTlItNoqGAl1ViqVbdWd4Jqr%2BvAgwiM0Ac%2FFhFhq9LYJQXzDAx9FwC6EQzTTqnhfnByNi9OYfnkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca881af4a777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/ffhhpgmr/ujmhhpaub.js
200 OK 0 B URL HTTP/2 upornia.com/ffhhpgmr/ujmhhpaub.js
IP
GET /ffhhpgmr/ujmhhpaub.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en; _ga=GA1.2.324479761.1662356717; _gid=GA1.2.924131252.1662356717; _gat=1; _gat_UA-31745569-46=1; _ym_uid=1662356718784393520; _ym_d=1662356718
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 05:00:23 GMT
vary: Accept-Encoding
etag: W/"63158267-6bc98"
expires: Wed, 05 Oct 2022 05:00:29 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2694
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mC2i9ra6q82OAGp74tcwqDd2a8uGPCyxi9Jiizd4KbKO3HvbCPWdErLzyfKBxQesnbjSUO1qpfCp2vkJ51mEkWfoCMQvdEFi44pvb8eECt4nqi9UzM%2B44VPMcKp7pQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca889d807777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/ffhhpgmr/tkoenbhxgee.js
200 OK 0 B URL HTTP/2 upornia.com/ffhhpgmr/tkoenbhxgee.js
IP
GET /ffhhpgmr/tkoenbhxgee.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en; _ga=GA1.2.324479761.1662356717; _gid=GA1.2.924131252.1662356717; _gat=1; _gat_UA-31745569-46=1; _ym_uid=1662356718784393520; _ym_d=1662356718
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 05:00:23 GMT
vary: Accept-Encoding
etag: W/"63158267-63ee3"
expires: Wed, 05 Oct 2022 05:00:29 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2694
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ysu1hcQARXBkAFuriAoHWkyFI0oKpNzKBWUtJImpevTwmdhWT1U1C52GZhpkxED3wXjKNNd08weGJLGsHJm8SzZZmC4JrrfmHf2Q49EL7zLRK4FiVvtldJwihDMlXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca889d80a777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
12007250.pix-cdn.org/a/pjexo.html?idzone=1500752&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
200 OK 0 B URL HTTP/2 12007250.pix-cdn.org/a/pjexo.html?idzone=1500752&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese
IP
ASN #39572 DataWeb Global Group B.V.
GET /a/pjexo.html?idzone=1500752&w=300&h=250&ad_sub=14036&ad_tags=Straight,Japanese HTTP/1.1
Host: 12007250.pix-cdn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=utf-8
last-modified: Wed, 20 May 2020 13:08:32 GMT
cache-control: max-age=3600
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c06pwkbU5B%2F7ko1VRW%2BuaAr9qjaaVKx%2BAe2rXLZAes13X9T9FA6QxIOrEnNa90ugxuyGPejZURGj85rbyoX5otTGwH9V1qtDffFiCQ%2B%2B4XGpMArDbjpuxSNEUaBp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 744bf3220a851e5d-MUC
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
expires: Mon, 05 Sep 2022 06:45:22 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
upornia.com/upd/20220818.093424.0/static/css/chunk-aaa4130c.css
200 OK 0 B URL HTTP/2 upornia.com/upd/20220818.093424.0/static/css/chunk-aaa4130c.css
IP
GET /upd/20220818.093424.0/static/css/chunk-aaa4130c.css HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: text/css
last-modified: Thu, 18 Aug 2022 09:34:53 GMT
vary: Accept-Encoding
etag: W/"62fe07bd-7bdb"
expires: Mon, 05 Sep 2022 06:03:20 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 721
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B%2BRM5TnUkrDmWDu3ZXFJiQM%2FQOd%2B%2BetN%2Fp2CDMSrMEOkKrWz4HnU%2FdxYlceERm%2BfR4cYHGZzGWsofNfNLgTeZ9M4kQqIF5fonI6MDr1did2Bga%2BsmiIuRJRRxZqe3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca883896a777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rtbrennab.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNDk2LCJzcGFjZWlkIjozMTI1NiwidHlwZSI6InBvcCIsImlkem9uZSI6NDM1Njk2OCwiYWRfdGFncyI6IlN0cmFpZ2h0JTJDSmFwYW5lc2UiLCJsYWJlbHMiOiIiLCJhbGxvd2VkX2xhYmVscyI6IiIsInRpdGxlIjoiIiwic3ViaWQiOiIxNDAzNiIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjMxMjU2LCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjoxMCwic3RyYXRhZ2VtIjpudWxsLCJneXIiOjAsImFjY2VsIjowLCJzc3AiOjM3NTh9LCJiYW5uZXIiOnsidyI6MzAwLCJoIjoyNTB9fV0sInNpdGUiOnsiaWQiOiIzMTI1NiIsImNhdCI6WyJJQUIyNSJdLCJwYWdlIjoiaHR0cHM6Ly91cG9ybmlhLmNvbS92aWRlb3MvMjYzNDkyL2phcGFuZXNlLWdyYW5ueS1jcmVhbWVkLWJ5LW5vdC1oZXItZ3JhbmRzb24tdW5jZW5zb3JlZC8/cHJvbW89MTQwMzYifSwiZGV2aWNlIjp7InciOjEyODAsImgiOjEwMjR9LCJ1c2VyIjp7ImlkIjoiOWU0OTQ3ZjM1NzUxNDY1NDExZmQxYTRmNWMzNThjNzgifSwiZXh0Ijp7ImR0IjoxNjYyMzU2NzE4MTcyfX0=
200 OK 0 B URL HTTP/2 rtbrennab.com/get/?go=1&data=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
IP
ASN #24940 Hetzner Online GmbH
GET /get/?go=1&data=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 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/css/output.cc7c3355797b.css
200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/CACHE/css/output.cc7c3355797b.css
IP
GET /CACHE/css/output.cc7c3355797b.css HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: text/css
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=246489
etag: W/"ff2f3baed2820c4c9ad8a0e5faadfe11"
last-modified: Thu, 01 Sep 2022 23:26:03 GMT
x-amz-id-2: b1+VuikajRX43fI12stCWkWnRQJlXi9r7VNYuD2X0XqjtgXKMz7u53Nd5EIvISx+8bg4CCeT5Z4=
x-amz-meta-s3cmd-attrs: md5:ff2f3baed2820c4c9ad8a0e5faadfe11
x-amz-request-id: EC6KTG6NT1H753P4
cf-cache-status: HIT
age: 281787
expires: Wed, 05 Oct 2022 05:45:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iyyjsay61NLRXAPyX%2FPN9Z4LJIwF2KRRITzuWPDb5mdFsVkxa9FB5k9nWSe7spt7pa3obYr2D22XuxXrZgnxiOJPMSyshd28SZZ3aKmq%2FUmPsF%2BLACDfzEj%2BKHPkBs76OM%2FprSVqrtMeHztD9m3SXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=RL7PbHoQztOWH1xZ6M9eS8DNK5h6ma1ERNJe5tdcmNw-1662356723619-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 745ca89299470b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
chatw-42.stream.highwebmedia.com/ws/info?t=1662356720832
200 OK 0 B URL HTTP/2 chatw-42.stream.highwebmedia.com/ws/info?t=1662356720832
IP
GET /ws/info?t=1662356720832 HTTP/1.1
Host: chatw-42.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: application/json; charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
cache-control: no-store, no-cache, must-revalidate, max-age=0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mjk0eOxV4IsBNC7j%2BTm7VirA76ZhAsvl2WG%2BNXIApSC%2Br4ZDn%2FiaaBLUiaNF2AdruqqksVeXdyIr53BJivUkulXztS85ynwCykkeoI9iuMKkBgKRLC%2BmabjbhFStlsLVHXP6faqV0lw2lzQvMbliJaOm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca89b8c3db500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
chatw-7.stream.highwebmedia.com/ws/info?t=1662356720839
200 OK 0 B URL HTTP/2 chatw-7.stream.highwebmedia.com/ws/info?t=1662356720839
IP
GET /ws/info?t=1662356720839 HTTP/1.1
Host: chatw-7.stream.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Origin: https://chaturbate.com
Connection: keep-alive
Cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:25 GMT
content-type: application/json; charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: https://chaturbate.com
cache-control: no-store, no-cache, must-revalidate, max-age=0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ur5IsJUY9KpoalrytD2iva3CN8zCBQk%2BSbh4kZ56SeGcPo9iOWoH3VzsR7kOaJmZQEmjV3f45kyzxAaMTva0kP29X4%2FExphUD0RjIN2ibk%2B7ZMG61TYdcRmhQPtg5RLInNO0JPYTwSmz2DmplQSyXek%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca89b9c52b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upornia.com/ffhhpgmr/hxmycxsvjgf.js
200 OK 0 B URL HTTP/2 upornia.com/ffhhpgmr/hxmycxsvjgf.js
IP
GET /ffhhpgmr/hxmycxsvjgf.js HTTP/1.1
Host: upornia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/videos/263492/japanese-granny-creamed-by-not-her-grandson-uncensored/?promo=14036
Cookie: source=14036; kt_lang=en; _ga=GA1.2.324479761.1662356717; _gid=GA1.2.924131252.1662356717; _gat=1; _gat_UA-31745569-46=1; _ym_uid=1662356718784393520; _ym_d=1662356718
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 05:00:23 GMT
vary: Accept-Encoding
etag: W/"63158267-18df8"
expires: Wed, 05 Oct 2022 05:00:29 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2694
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B8hYgYNJGbEOUjnF2SjZlE8DX%2FlEAFfXpX1vAw8%2FMj5%2Fa53i%2FKdH%2FkhtCe8ojm6MC5zeFgUiOWorglLiCuUsHuQkVsXN2C64IQ6rdWUuFu680fn3Sq0YATaHhT63MA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745ca889e815777f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
12112336.pix-cdn.org/m/p/0/11/11508/yPndOg0m.html?__OS_FAMILY__={{%20__OS_FAMILY__%20}}&__OS_TYPE__={{%20__OS_TYPE__%20}}&__GEOIP_COUNTRY_SHORT__={{%20__GEOIP_COUNTRY_SHORT__%20}}&__IP2L_MOBILE__={{%20__IP2L_MOBILE__%20}}&__BROWSER_FAMILY__={{%20__BROWSER_FAMILY__%20}}&OS_FAMILY=[OS_FAMILY]&OS_TYPE=[OS_TYPE]&COUNTRY_ISO_CODE=[COUNTRY_ISO_CODE]&MOBILE_BRAND=[MOBILE_BRAND]&BROWSER_FAMILY=[BROWSER_FAMILY]&DOMAIN=upornia.com&PRICE=0.0050&PRICING_MODEL=[PRICING_MODEL]&CAMPAIGN_ID=6435&CLICK_ID=cfa78e2a-a697-4b30-87ec-5a89f9b05a25&id_zone=[idzone]&site={{%20site%20}}&out_name=37319%7C4317%7Ccpm%7C0.0048%7C%24%200.0050&campaign_id=37319&price=0.0050&bidding_price=0.0048&pricebox_price=0.0200&pricing_model=cpm&click_id=cfa78e2a-a697-4b30-87ec-5a89f9b05a25&priority=[PRIORITY]&ad_sub=173501021&utm1=tcb&utm2=878669509-100&utm3=249-6435-14933&utm4=0-10346131-0
200 OK 0 B URL HTTP/2 12112336.pix-cdn.org/m/p/0/11/11508/yPndOg0m.html?__OS_FAMILY__={{%20__OS_FAMILY__%20}}&__OS_TYPE__={{%20__OS_TYPE__%20}}&__GEOIP_COUNTRY_SHORT__={{%20__GEOIP_COUNTRY_SHORT__%20}}&__IP2L_MOBILE__={{%20__IP2L_MOBILE__%20}}&__BROWSER_FAMILY__={{%20__BROWSER_FAMILY__%20}}&OS_FAMILY=[OS_FAMILY]&OS_TYPE=[OS_TYPE]&COUNTRY_ISO_CODE=[COUNTRY_ISO_CODE]&MOBILE_BRAND=[MOBILE_BRAND]&BROWSER_FAMILY=[BROWSER_FAMILY]&DOMAIN=upornia.com&PRICE=0.0050&PRICING_MODEL=[PRICING_MODEL]&CAMPAIGN_ID=6435&CLICK_ID=cfa78e2a-a697-4b30-87ec-5a89f9b05a25&id_zone=[idzone]&site={{%20site%20}}&out_name=37319%7C4317%7Ccpm%7C0.0048%7C%24%200.0050&campaign_id=37319&price=0.0050&bidding_price=0.0048&pricebox_price=0.0200&pricing_model=cpm&click_id=cfa78e2a-a697-4b30-87ec-5a89f9b05a25&priority=[PRIORITY]&ad_sub=173501021&utm1=tcb&utm2=878669509-100&utm3=249-6435-14933&utm4=0-10346131-0
IP
ASN #39572 DataWeb Global Group B.V.
GET /m/p/0/11/11508/yPndOg0m.html?__OS_FAMILY__={{%20__OS_FAMILY__%20}}&__OS_TYPE__={{%20__OS_TYPE__%20}}&__GEOIP_COUNTRY_SHORT__={{%20__GEOIP_COUNTRY_SHORT__%20}}&__IP2L_MOBILE__={{%20__IP2L_MOBILE__%20}}&__BROWSER_FAMILY__={{%20__BROWSER_FAMILY__%20}}&OS_FAMILY=[OS_FAMILY]&OS_TYPE=[OS_TYPE]&COUNTRY_ISO_CODE=[COUNTRY_ISO_CODE]&MOBILE_BRAND=[MOBILE_BRAND]&BROWSER_FAMILY=[BROWSER_FAMILY]&DOMAIN=upornia.com&PRICE=0.0050&PRICING_MODEL=[PRICING_MODEL]&CAMPAIGN_ID=6435&CLICK_ID=cfa78e2a-a697-4b30-87ec-5a89f9b05a25&id_zone=[idzone]&site={{%20site%20}}&out_name=37319%7C4317%7Ccpm%7C0.0048%7C%24%200.0050&campaign_id=37319&price=0.0050&bidding_price=0.0048&pricebox_price=0.0200&pricing_model=cpm&click_id=cfa78e2a-a697-4b30-87ec-5a89f9b05a25&priority=[PRIORITY]&ad_sub=173501021&utm1=tcb&utm2=878669509-100&utm3=249-6435-14933&utm4=0-10346131-0 HTTP/1.1
Host: 12112336.pix-cdn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtbrennab.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html; charset=utf-8
server: nginx/1.12.2
last-modified: Wed, 02 Sep 2020 10:48:37 GMT
etag: W/"5f4f7885-7e9"
content-encoding: gzip
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-proxy-cache: MISS
X-Firefox-Spdy: h2
chaturbate.com/topembed/?join_overlay=1&tour=dTm0&campaign=taOsB&disable_sound=1&mobileRedirect=auto&embed_video_only=1&target=_blank
302 Found 0 B URL HTTP/2 chaturbate.com/topembed/?join_overlay=1&tour=dTm0&campaign=taOsB&disable_sound=1&mobileRedirect=auto&embed_video_only=1&target=_blank
IP
GET /topembed/?join_overlay=1&tour=dTm0&campaign=taOsB&disable_sound=1&mobileRedirect=auto&embed_video_only=1&target=_blank HTTP/1.1
Host: chaturbate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12112336.pix-cdn.org/
Connection: keep-alive
Cookie: __cf_bm=J_nh75XdfIH.H5Fbv0_yRpUd63VI8FbihadqU4TkFks-1662356723-0-AfWK7XKPHoSrAY8rKixbFusCFH68y2qS0kvR7B1lU1Y5PepA4hpt76VLcEwRDjbBmb6YyBmcD98hlikDJltZcFI=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: text/html; charset=utf-8
location: /embed/apolo_chiara/?join_overlay=1&tour=dTm0&campaign=taOsB&disable_sound=1&mobileRedirect=auto&embed_video_only=1&target=_blank
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
vary: Accept-Language, Cookie
content-language: en
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.mmcdn.com https://*.highwebmedia.com https://*.chaturbate.com https://chaturbate.com https://ajax.googleapis.com https://js-agent.newrelic.com https://cdnjs.cloudflare.com https://www.google-analytics.com https://www.google.com/recaptcha/ https://www.google.com/cv/ https://www.gstatic.com/recaptcha/ https://www.gstatic.com/cv/ https://www.gstatic.com/eureka/ https://www.gstatic.com/cast/ https://*.nr-data.net https://certify-js.alexametrics.com https://player.vimeo.com/api/player.js http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com ; style-src 'self' data: 'unsafe-inline' https://*.highwebmedia.com https://cdnjs.cloudflare.com https://fonts.googleapis.com ; img-src 'self' data: https://*.mmcdn.com https://*.highwebmedia.com https://*.stream.highwebmedia.com https://*.chaturbate.com https://chaturbate.com https://www.google-analytics.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com https://cdnjs.cloudflare.com https://www.gstatic.com https://*.nr-data.net https://certify.alexametrics.com https://stats.g.doubleclick.net https://cbgames.s3.amazonaws.com https://player.vimeo.com https://script.hotjar.com http://script.hotjar.com ; font-src 'self' data: https://*.mmcdn.com https://*.highwebmedia.com https://cdnjs.cloudflare.com https://fonts.gstatic.com http://script.hotjar.com https://script.hotjar.com ; connect-src 'self' blob: blob https://*.mmcdn.com wss://*.mmcdn.com wss://*.mmcdn.com:8443 https://*.highwebmedia.com wss://*.highwebmedia.com wss://*.highwebmedia.com:8443 https://*.nr-data.net https://*.chaturbate.com https://chaturbate.com https://www.google-analytics.com https://cbvideoupload.s3-accelerate.amazonaws.com https://stats.g.doubleclick.net https://internet-up.ably-realtime.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com https://tls-use1.fpapi.io http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com ; media-src 'self' https://*.mmcdn.com https://*.highwebmedia.com https://*.chaturbate.com https://chaturbate.com mediasource: blob: data: https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com; object-src 'self' https://*.mmcdn.com https://*.highwebmedia.com https://download.macromedia.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com ; frame-src 'self' https://*.mmcdn.com https://*.chaturbate.com https://chaturbate.com https://*.highwebmedia.com https://adserver.exoticads.com https://www.google.com/recaptcha/ https://*.wnu.com https://wnu.com https://checkout.2000charge.com https://www.sofort.com https://*.girogate.de https://player.vimeo.com https://vars.hotjar.com ; child-src 'self' blob: blob ; worker-src 'self' blob: blob ; form-action 'self' https://*.chaturbate.com https://chaturbate.com https://*.stream.highwebmedia.com https://www.coinpayments.net https://*.wnu.com https://wnu.com https://devportal.cb.dev https://*.web.amer-1.jumio.ai https://smartpay.coinsmart.com ; manifest-src 'self' https://*.mmcdn.com https://*.highwebmedia.com ; report-uri https://report-uri.mmcdn.com/r/t/csp/enforce;
report-to: {"group":"default","max_age":2592000,"endpoints":[{"url":"https://report-uri.mmcdn.com/a/t/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":2592000,"include_subdomains":true}
x-frame-options: DENY
cache-control: no-cache
set-cookie: stcki="pOtSwZ=1\054FqPd9a=0\0546pduSG=0\054aDBbcK=0\0548UAXRV=0"; expires=Wed, 05-Oct-2022 05:45:23 GMT; Max-Age=2592000; Path=/
affkey="eJyrVipSslJQyigpKSi20tc3NDI0NDI2NtMryKzQTU7J08svStdXqgUA0s8LMQ=="; Domain=.chaturbate.com; expires=Wed, 05-Oct-2022 05:45:23 GMT; Max-Age=2592000; Path=/
sbr=sec:sbr0a54289c-3284-45f6-8980-f678eb769bdf:1oV4vD:jRySFTGKWaGaYsxrLq4yuRgjDTk; Domain=.chaturbate.com; expires=Sat, 31-May-2025 05:45:23 GMT; HttpOnly; Max-Age=86313600; Path=/; Secure
x-content-type-options: nosniff
x-xss-protection: 1; mode=block; report=https://report-uri.highwebmedia.com/r/t/xss/enforce
referrer-policy: strict-origin-when-cross-origin
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 745ca88f3f5bb4fa-OSL
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/cachebust/theatermode-react-e493c23b1695.js
200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/cachebust/theatermode-react-e493c23b1695.js
IP
GET /cachebust/theatermode-react-e493c23b1695.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=193938
etag: W/"6ebf7cd4ba318686e56afea4d43a81e2"
last-modified: Thu, 01 Sep 2022 23:43:15 GMT
x-amz-id-2: l2c4Sra2Gmci5Bb/bkSFnzGPkDvGxAXUnAjiZZ52CVsOLOSi3YsvQH7R8ey1OxxXRENhnXEc8gU=
x-amz-meta-s3cmd-attrs: md5:6ebf7cd4ba318686e56afea4d43a81e2
x-amz-request-id: H7EYYFEHA054BV7D
cf-cache-status: HIT
age: 280762
expires: Wed, 05 Oct 2022 05:45:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TjsB27QGDEAbWHlacDJsPBgdQ4Vy3h9gkBCEK1LYEOkHBZhuTaVU0hZmfJv3%2F4b%2BwDw8gcxrbym%2BEXBKrN8wh3UkNCnBkymsuLQhVm5rrUbzZJxA%2BcUTv4e4t7bGsJLCpSvUJGwf95EQIQX7IXWpdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=0PTMulMONSbnXQAPo.uS_hGf35PbuAEmgQId7Pxpn_g-1662356723582-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 745ca89259050b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/js/output.e1067846ea15.js
200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.e1067846ea15.js
IP
GET /CACHE/js/output.e1067846ea15.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=108152
etag: W/"97a23c5e27826ee4bed1dbcfe0601da8"
last-modified: Thu, 24 Jun 2021 21:24:09 GMT
x-amz-id-2: gJdq637yDaGW5b/k/xLZcaVgKR2zPrz11wa1iwf3/kEEAF2JWIngCVC4T9LIrDSnBaklrTBcytM=
x-amz-meta-s3cmd-attrs: md5:97a23c5e27826ee4bed1dbcfe0601da8
x-amz-request-id: C8A0N4S7KE12CYZQ
cf-cache-status: HIT
age: 1498677
expires: Wed, 05 Oct 2022 05:45:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NGx2fKtHngZWnp83axQK7iIgv12Sa%2Fwt59aApxkPk7ngtcNzn6lyGQ3%2BD3I702wi4MHIoFNzckiI3zpQgUeZd6wnvBNzCrMUkxVBPLwSW%2BsCvYaya8yCYM43r%2FzNC7fgDOeKqFwtYc7YsxFvKnYA6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=0PTMulMONSbnXQAPo.uS_hGf35PbuAEmgQId7Pxpn_g-1662356723582-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 745ca89259000b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/css/output.3d204bbf93b6.css
200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/CACHE/css/output.3d204bbf93b6.css
IP
GET /CACHE/css/output.3d204bbf93b6.css HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: text/css
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=81638
etag: W/"77a4b7340f86a2695a27c44ead4a3c3a"
last-modified: Fri, 26 Aug 2022 19:58:07 GMT
x-amz-id-2: cT2XzitaGs304rRIS5L6DtspU49RncpTLW6ZdmdBel/qFViEHV886seyqVF3DvvcxxSowlOC/S8=
x-amz-meta-s3cmd-attrs: md5:77a4b7340f86a2695a27c44ead4a3c3a
x-amz-request-id: TB1RA68HF42BCY09
cf-cache-status: HIT
age: 812655
expires: Wed, 05 Oct 2022 05:45:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=khLbJLy9EfQkXtBZ8GRljx5L%2F2iSPeBR%2BvKl1eW8nNaONKU6ZKi%2BSp%2BKp2UBeqcblbo0%2Bmip3LJQeY5v8%2FWvT1ZKX%2BkwesSlBMVeGb17zIsMpccrbI8NwM2Nvqw1W83aFDgfpAoLp0AU0AoXbGrWLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=uTWCLMifKxgMQtYyrEtj_GEbDHk5KjMhcUQ31IGs.sw-1662356723623-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 745ca892994a0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/CACHE/js/output.9b823bb2f723.js
200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/CACHE/js/output.9b823bb2f723.js
IP
GET /CACHE/js/output.9b823bb2f723.js HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
etag: W/"1360376b8f5657814f662391b765d655"
last-modified: Tue, 24 May 2022 17:14:17 GMT
x-amz-id-2: KTWJY/HCZAzfCN7zvoTtoCRDkjCDtsx43npe+RSp0Ebo2HF6WHgess4Ct9QL7Zi8XExzaRuhmCw=
x-amz-meta-s3cmd-attrs: md5:1360376b8f5657814f662391b765d655
x-amz-request-id: M1HHWCFNA8C6CV81
cf-cache-status: HIT
age: 22298
expires: Wed, 05 Oct 2022 05:45:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WUcXy2fAllGoNCS%2B%2Bvpabrz9Y6KrkSRYzM0iVTsMGrGR5dE9%2BRHiN1CQlOjRIQcrF2Kyt5edRLUeyrBBBLVQF8EvSL5o87BHRbH96tFDynOIY7vEamL4qW7a6Aal%2F7p8ISX4iFTwXxh87QLmJFS%2FRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=pVY0QxrGai2CWez3qx9C9YrU5jFhKsG2ggHAb37uqDM-1662356723628-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 745ca89299530b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/329552/37c525af1d11590ab1229c25c3d3fb34e5de7437.mp4
206 Partial Content 0 B URL HTTP/2 s3t3d2y8.afcdn.net/library/329552/37c525af1d11590ab1229c25c3d3fb34e5de7437.mp4
IP
ASN #60068 Datacamp Limited
GET /library/329552/37c525af1d11590ab1229c25c3d3fb34e5de7437.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://a.realsrv.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
date: Mon, 05 Sep 2022 05:45:21 GMT
content-type: video/mp4
content-length: 58232
last-modified: Fri, 02 Sep 2022 12:30:36 GMT
etag: "6311f76c-e378"
expires: Sat, 02 Sep 2023 13:03:15 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693659885
server: CDN77-Turbo
x-77-nzt: AblMCRTIAkP/hI0DAA
x-77-nzt-ray: TEf1vYDVgWQ
x-cache: HIT
x-age: 232836
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-58231/58232
X-Firefox-Spdy: h2
chaturbate.com/in/?track=clickadilla-[DOMAIN]&tour=dTm0&campaign=taOsB&disable_sound=1&mobileRedirect=auto&embed_video_only=1&target=_blank
302 Found 0 B URL HTTP/2 chaturbate.com/in/?track=clickadilla-[DOMAIN]&tour=dTm0&campaign=taOsB&disable_sound=1&mobileRedirect=auto&embed_video_only=1&target=_blank
IP
GET /in/?track=clickadilla-[DOMAIN]&tour=dTm0&campaign=taOsB&disable_sound=1&mobileRedirect=auto&embed_video_only=1&target=_blank HTTP/1.1
Host: chaturbate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12112336.pix-cdn.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: text/html; charset=utf-8
location: /topembed/?join_overlay=1&tour=dTm0&campaign=taOsB&disable_sound=1&mobileRedirect=auto&embed_video_only=1&target=_blank
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
vary: Accept-Language, Cookie
content-language: en
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.mmcdn.com https://*.highwebmedia.com https://*.chaturbate.com https://chaturbate.com https://ajax.googleapis.com https://js-agent.newrelic.com https://cdnjs.cloudflare.com https://www.google-analytics.com https://www.google.com/recaptcha/ https://www.google.com/cv/ https://www.gstatic.com/recaptcha/ https://www.gstatic.com/cv/ https://www.gstatic.com/eureka/ https://www.gstatic.com/cast/ https://*.nr-data.net https://certify-js.alexametrics.com https://player.vimeo.com/api/player.js http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com ; style-src 'self' data: 'unsafe-inline' https://*.highwebmedia.com https://cdnjs.cloudflare.com https://fonts.googleapis.com ; img-src 'self' data: https://*.mmcdn.com https://*.highwebmedia.com https://*.stream.highwebmedia.com https://*.chaturbate.com https://chaturbate.com https://www.google-analytics.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com https://cdnjs.cloudflare.com https://www.gstatic.com https://*.nr-data.net https://certify.alexametrics.com https://stats.g.doubleclick.net https://cbgames.s3.amazonaws.com https://player.vimeo.com https://script.hotjar.com http://script.hotjar.com ; font-src 'self' data: https://*.mmcdn.com https://*.highwebmedia.com https://cdnjs.cloudflare.com https://fonts.gstatic.com http://script.hotjar.com https://script.hotjar.com ; connect-src 'self' blob: blob https://*.mmcdn.com wss://*.mmcdn.com wss://*.mmcdn.com:8443 https://*.highwebmedia.com wss://*.highwebmedia.com wss://*.highwebmedia.com:8443 https://*.nr-data.net https://*.chaturbate.com https://chaturbate.com https://www.google-analytics.com https://cbvideoupload.s3-accelerate.amazonaws.com https://stats.g.doubleclick.net https://internet-up.ably-realtime.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com https://tls-use1.fpapi.io http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com ; media-src 'self' https://*.mmcdn.com https://*.highwebmedia.com https://*.chaturbate.com https://chaturbate.com mediasource: blob: data: https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com; object-src 'self' https://*.mmcdn.com https://*.highwebmedia.com https://download.macromedia.com https://static-pub.highwebmedia.com https://s3pv.highwebmedia.com https://cbphotovideo.s3.amazonaws.com https://cbphotovideo-eu.s3.amazonaws.com https://static-pub.highwebmedia.com.s3.amazonaws.com https://wowdvr.s3.amazonaws.com https://cbvideoupload.s3.amazonaws.com ; frame-src 'self' https://*.mmcdn.com https://*.chaturbate.com https://chaturbate.com https://*.highwebmedia.com https://adserver.exoticads.com https://www.google.com/recaptcha/ https://*.wnu.com https://wnu.com https://checkout.2000charge.com https://www.sofort.com https://*.girogate.de https://player.vimeo.com https://vars.hotjar.com ; child-src 'self' blob: blob ; worker-src 'self' blob: blob ; form-action 'self' https://*.chaturbate.com https://chaturbate.com https://*.stream.highwebmedia.com https://www.coinpayments.net https://*.wnu.com https://wnu.com https://devportal.cb.dev https://*.web.amer-1.jumio.ai https://smartpay.coinsmart.com ; manifest-src 'self' https://*.mmcdn.com https://*.highwebmedia.com ; report-uri https://report-uri.mmcdn.com/r/t/csp/enforce;
report-to: {"group":"default","max_age":2592000,"endpoints":[{"url":"https://report-uri.mmcdn.com/a/t/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":2592000,"include_subdomains":true}
x-frame-options: DENY
cache-control: no-cache
x-content-type-options: nosniff
x-xss-protection: 1; mode=block; report=https://report-uri.highwebmedia.com/r/t/xss/enforce
referrer-policy: strict-origin-when-cross-origin
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
set-cookie: u_dTm0=1; expires=Sat, 10-Sep-2022 05:45:23 GMT; Max-Age=432000; Path=/
us_dTm0=1; Path=/
affkey="eJyrVipRslJQSgnJNVDSUVBKzi0AcUsS/YudQPySomwQPzknMzk7MSUzJydRN9rF39fR0y8WJF0EkswoKSkottLXNzQyNDQyNjbTK8is0E1OydPLL0rXB6lKTEsDG1KZlFqUm5mdChIDW2NkqFQLACybJA8="; Domain=.chaturbate.com; expires=Wed, 05-Oct-2022 05:45:23 GMT; Max-Age=2592000; Path=/
fromaffiliate=1; Domain=.chaturbate.com; Path=/
noads=1; expires=Mon, 05-Sep-2022 11:45:23 GMT; Max-Age=21600; Path=/
stcki="pOtSwZ=0\054FqPd9a=0\0546pduSG=1\054aDBbcK=0\0548UAXRV=1"; expires=Wed, 05-Oct-2022 05:45:23 GMT; Max-Age=2592000; Path=/
sbr=sec:sbr6cffe9e4-9047-4526-81d1-06e9e4a9149c:1oV4vD:g7qbsbEAZWntbqiLYM_H2uxEii8; Domain=.chaturbate.com; expires=Sat, 31-May-2025 05:45:23 GMT; HttpOnly; Max-Age=86313600; Path=/; Secure
__cf_bm=nxD_uJVBA2J72zlqh6q_6fB1z1iCZ4jZMD4Hee3F7Hg-1662356723-0-AXHR+xSzv0qt8FDmL974ozkS2OdHRDyOZUHYNLLpCllqoucEXI3zhUIoqIXH+85SiH8GJ1bCJbhfKj/IQmOOkdU=; path=/; expires=Mon, 05-Sep-22 06:15:23 GMT; domain=.chaturbate.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 745ca88f2f56b4fa-OSL
X-Firefox-Spdy: h2
static-assets.highwebmedia.com/jsi18n/en/djangojs.js?hash=e493c23b1695
200 OK 0 B URL HTTP/2 static-assets.highwebmedia.com/jsi18n/en/djangojs.js?hash=e493c23b1695
IP
GET /jsi18n/en/djangojs.js?hash=e493c23b1695 HTTP/1.1
Host: static-assets.highwebmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chaturbate.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 05:45:23 GMT
content-type: application/javascript
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=3271
etag: W/"32cad827f4958bb8450fc33065ba4b42"
last-modified: Thu, 28 Apr 2022 02:42:35 GMT
x-amz-id-2: Q4VB4wUaRbCUIp4AypGvpsgyZujTknCy0tez9vc7iZE3C5QQ0NFc0+byf+V+i1WkV5sMoIDLLc0=
x-amz-meta-s3cmd-attrs: md5:32cad827f4958bb8450fc33065ba4b42
x-amz-request-id: AVWR3ARX51YX23J0
cf-cache-status: HIT
age: 280808
expires: Wed, 05 Oct 2022 05:45:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e6yRlch3Gdyeb39cOYYH1cVFGXfGJNxcIA8XzpveDXunEFEb5Su6e13Z9C5r2tzvL6mybfLTjnxexuVLywlKqL4f97Fvuoqau%2BmJ48PGkSv9vGHs3RJYnUdSfDhI57WMzRldF6gujp%2Foee%2FLrGe0dw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _cfuvid=kaXExvRspnTYrEM7RZgsmb7DzEWuzj6dC2sdlgi.rjM-1662356723579-0-604800000; path=/; domain=.highwebmedia.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 745ca89258f90b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rtbrennab.com/get/?go=1&data=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
200 OK 0 B URL HTTP/2 rtbrennab.com/get/?go=1&data=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
IP
ASN #24940 Hetzner Online GmbH
GET /get/?go=1&data=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 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://upornia.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Mon, 05 Sep 2022 05:45:22 GMT
content-type: text/html
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
104.21.234.101
205.185.216.42
104.16.61.52
23.36.76.226
116.202.204.12
95.211.229.246
87.250.251.119
93.184.220.29
151.101.86.137