zzotrack.com/ff5c1bc0-53f1-4573-8083-234256664f4d?pid=10&offer_id=1212&reff=m.luvmenow.com&geo=US&sub1=740&sub2=31430&clickid=63d9abdd2930530001887462
302 0 B URL HTTP/1.1 zzotrack.com/ff5c1bc0-53f1-4573-8083-234256664f4d?pid=10&offer_id=1212&reff=m.luvmenow.com&geo=US&sub1=740&sub2=31430&clickid=63d9abdd2930530001887462
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ff5c1bc0-53f1-4573-8083-234256664f4d?pid=10&offer_id=1212&reff=m.luvmenow.com&geo=US&sub1=740&sub2=31430&clickid=63d9abdd2930530001887462 HTTP/1.1
Host: zzotrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Wed, 01 Feb 2023 00:01:50 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://naughty-hub.com/#/adv/HYC66?cid=w5dompto517fm8am2r26jf48&source=ff5c1bc0-53f1-4573-8083-234256664f4d&subsource=10_US
Pragma: no-cache
Set-Cookie: ff5c1bc0-53f1-4573-8083-234256664f4d-v4=rM3RHurikSuG5Ufsgh8X_FNKLrOxlKDVRaubPjmhoLE; Max-Age=86400; Expires=Thu, 02-Feb-2023 00:01:50 GMT; Domain=zzotrack.com; Path=/; HttpOnly
cc-v4=LZXFIcEk1vDJEGD5358Rmlreb5avUehdXQFtUq2XAxDrADQiDDGh8c4p0N3czicYo%2Fkp9R%2FE31nCh07Kjap1o2%2BzAobTIhkn4DsPaLAvvr25gXx%2BJPQOtgzlIL5LJ1Q0JDdErHU3BIn9jLT7oT7%2Fzw%3D%3D; Max-Age=31536000; Expires=Thu, 01-Feb-2024 00:01:50 GMT; Domain=zzotrack.com; Path=/; HttpOnly
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9322
Expires: Wed, 01 Feb 2023 02:37:13 GMT
Date: Wed, 01 Feb 2023 00:01:51 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13292
Expires: Wed, 01 Feb 2023 03:43:23 GMT
Date: Wed, 01 Feb 2023 00:01:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 23:43:21 GMT
content-type: application/json
age: 1110
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3376
Expires: Wed, 01 Feb 2023 00:58:07 GMT
Date: Wed, 01 Feb 2023 00:01:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qLnWz8xvjj0dl90L3xVdrhMB2vnw8j1GaLxnCi4i/QSqzmMUtqTDdcfJQ2cgymPcqWW9lWCISQUSUMRfxWKJyw==
x-amz-request-id: VQ5JBPTRRGHREKNZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 23:51:21 GMT
age: 630
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 00:01:51 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0ec99d2819d644bbef7b8b7f4d17b83d
4660eda0aaf48a6ed407e52947a814aafbba9047
6148c3363df07dbc362984cdf8a4eff585529d3eebcd61112a6b1e395f21f386
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6148C3363DF07DBC362984CDF8A4EFF585529D3EEBCD61112A6B1E395F21F386"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20742
Expires: Wed, 01 Feb 2023 05:47:33 GMT
Date: Wed, 01 Feb 2023 00:01:51 GMT
Connection: keep-alive
naughty-hub.com/
200 OK 684 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 017f44e6e86cc16956462842973b086f
a52a4a2c66dab80064f9b045ecc35f4084a5d49b
5cd84c5a77aecf53b95cf4812ec32f83746ae7d9c014122d6cc996962056c98f
GET / HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:51 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store
Link: <https://www.gstatic.com>; rel=preconnect; crossorigin, <https://www.google.com>; rel=preconnect; crossorigin, <https://www.google-analytics.com>; rel=preconnect; crossorigin
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
naughty-hub.com/app/css/bundle.min.css?46
200 OK 101 kB URL HTTP/1.1 naughty-hub.com/app/css/bundle.min.css?46
IP
File type ASCII text, with very long lines (51928)
Size 101 kB (101109 bytes)
Hash ef21bb91a0f95762088f2270691f6bca
6bd382b1ae7fa30502962879d5018c3c208964d6
9a650ec1d16510bba4136e6695cf057294be9060c80e179dfeeabee430c3801c
GET /app/css/bundle.min.css?46 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:51 GMT
Content-Type: text/css
Last-Modified: Tue, 24 Jan 2023 12:29:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63cfcf0e-e02d7"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 23:41:42 GMT
age: 1209
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
naughty-hub.com/app/app.min.js?46
200 OK 565 kB URL HTTP/1.1 naughty-hub.com/app/app.min.js?46
IP
File type ASCII text, with very long lines (32035)
Size 565 kB (564878 bytes)
Hash 8fe949dc58d12a073bbc3c157c116115
13e16cee87877f9df8bcffed967cde602ad52707
f1ef77728c97eda0ba472ad4ada244bf41be1b20a428c2f3ceac2d095b4d7c07
GET /app/app.min.js?46 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:51 GMT
Content-Type: application/javascript
Last-Modified: Tue, 24 Jan 2023 12:29:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63cfcf0e-22c4a2"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
naughty-hub.com/app/fonts/proximanova-regular-webfont.woff2
200 OK 35 kB URL HTTP/1.1 naughty-hub.com/app/fonts/proximanova-regular-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 34889, version 3.327\012- data
Hash 956599cecc8b2be8f010fec90b86283c
a87d277eee06a0fa77db95fd5dc655c0e886a912
ce0aeeb05f9b23bafb4819167c2eff482f5ce443e613cf5bf60b46d20090404b
GET /app/fonts/proximanova-regular-webfont.woff2 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://naughty-hub.com/app/css/bundle.min.css?46
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:51 GMT
Content-Type: font/woff2
Content-Length: 34889
Last-Modified: Tue, 15 Jun 2021 11:52:17 GMT
Connection: keep-alive
ETag: "60c89471-8849"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7543
Expires: Wed, 01 Feb 2023 02:07:35 GMT
Date: Wed, 01 Feb 2023 00:01:52 GMT
Connection: keep-alive
naughty-hub.com/api/settings/global?t=1675209731131
200 OK 672 B URL HTTP/1.1 naughty-hub.com/api/settings/global?t=1675209731131
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1203), with no line terminators
Hash f5fa6716a3747f3ec3f834981bddcd87
0749dab4f444ab75794a822f8a752a81d120333b
664ce789818f215346a5bc63d0e174cf66ccc733beee52042f5b3bac8ac012d7
GET /api/settings/global?t=1675209731131 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
naughty-hub.com/app/icons/144x144.png
200 OK 873 B URL HTTP/1.1 naughty-hub.com/app/icons/144x144.png
IP
File type PNG image data, 145 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash ce4be90699bb55414d8b851294954e19
176b89110cae67feb767a2b957fe71909684575d
75326428d53d1ec277681154f1fe36bee0af927a38a24306c0bae09b552ca86e
GET /app/icons/144x144.png HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: image/png
Content-Length: 873
Last-Modified: Thu, 01 Sep 2022 09:52:48 GMT
Connection: keep-alive
ETag: "631080f0-369"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
naughty-hub.com/app/icons/57x57.png
200 OK 501 B URL HTTP/1.1 naughty-hub.com/app/icons/57x57.png
IP
File type PNG image data, 58 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 80c8a8a790cd05af535cd8e6091a3346
3f10ca73f95e6d4c22e91adecdcf1c7292ed7dd2
cf3977fe39f74fb664f6433f7bd41d79c92ff765ef8f8a57a69913af3d4a6a71
GET /app/icons/57x57.png HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: image/png
Content-Length: 501
Last-Modified: Thu, 01 Sep 2022 09:52:48 GMT
Connection: keep-alive
ETag: "631080f0-1f5"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
naughty-hub.com/app/adv/index2.html
200 OK 149 B URL HTTP/1.1 naughty-hub.com/app/adv/index2.html
IP
Hash cc468f7f69a9398e9d0ae5877dab035f
7fa60518571c1ab6ef7bfc37248e28c288591588
8ca0768db4e4a7ea7137f45ad95fc2b0b7bd4a66104650b4a4fe6a74ac3c9aa1
GET /app/adv/index2.html HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: text/html
Content-Length: 149
Last-Modified: Tue, 15 Jun 2021 11:52:17 GMT
Connection: keep-alive
ETag: "60c89471-95"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 00:01:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 31 Jan 2023 23:46:59 GMT
expires: Wed, 01 Feb 2023 01:46:59 GMT
cache-control: public, max-age=7200
age: 893
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 00:01:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: p48CJFTAXLlVHKE1Wiy6Cw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: x3eB25LAq55d/r7AM/ZHQCHLB7Y=
naughty-hub.com/app/fonts/proximanova-light-webfont.woff2
200 OK 35 kB URL HTTP/1.1 naughty-hub.com/app/fonts/proximanova-light-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 34893, version 3.327\012- data
Hash 8663158e9d91a253b64f1fde77e57dc0
010aa78b26a3834cd0125e8b3537b4d3b1429bf2
bfd4d65d15394e9768192fd83f1ced5c3819fd6c282b457f9dd49f2f2f67c7ba
GET /app/fonts/proximanova-light-webfont.woff2 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://naughty-hub.com/app/css/bundle.min.css?46
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: font/woff2
Content-Length: 34893
Last-Modified: Tue, 15 Jun 2021 11:52:17 GMT
Connection: keep-alive
ETag: "60c89471-884d"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
naughty-hub.com/api/auth/adv-page
200 OK 102 B URL HTTP/1.1 naughty-hub.com/api/auth/adv-page
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash c19cf7112218b38c60f1c3d5a25ea241
29fa7975fcb0695aeb956869d33bfe7c1440b8ee
9762ae2a3a53784fe5b8c2f5a28c8c06cfc60f908b6134174b812520de14aa98
POST /api/auth/adv-page HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 18
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 102
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
naughty-hub.com/api/auth/check/HYC43
200 OK 17 B URL HTTP/1.1 naughty-hub.com/api/auth/check/HYC43
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash c0a4229f65148628b26e451304ddac68
50855475058d6ab5f50fd9a4d3aa24c8431ba52f
06e5f7e2d702e0110271dd33c198e1f312a785bcf41ca4fbed2fa6d67722dc03
POST /api/auth/check/HYC43 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 135
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 17
Connection: keep-alive
Set-Cookie: glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; Max-Age=315360000; Path=/; Expires=Sat, 29 Jan 2033 00:01:52 GMT; HttpOnly; Secure; SameSite=None
plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; Max-Age=315360000; Path=/; Expires=Sat, 29 Jan 2033 00:01:52 GMT; HttpOnly; Secure; SameSite=None
clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw; Max-Age=86400; Path=/; Expires=Thu, 02 Feb 2023 00:01:52 GMT; HttpOnly; Secure; SameSite=None
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
naughty-hub.com/api/auth/load-ui-lang-overrides/HYC43
200 OK 16 B URL HTTP/1.1 naughty-hub.com/api/auth/load-ui-lang-overrides/HYC43
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /api/auth/load-ui-lang-overrides/HYC43 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 16
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
naughty-hub.com/api/auth/adv-page
200 OK 102 B URL HTTP/1.1 naughty-hub.com/api/auth/adv-page
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash c19cf7112218b38c60f1c3d5a25ea241
29fa7975fcb0695aeb956869d33bfe7c1440b8ee
9762ae2a3a53784fe5b8c2f5a28c8c06cfc60f908b6134174b812520de14aa98
POST /api/auth/adv-page HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 18
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 102
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
naughty-hub.com/api/profile/public/countries/en
200 OK 5.9 kB URL HTTP/1.1 naughty-hub.com/api/profile/public/countries/en
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (28494), with no line terminators
Hash 4b17f4ec65920daf9aa079850c0ff271
62795a5fb6429fe7b04e8cec83923115d7753d8e
950b79da237d196250a0978b75432aea043cead53295f0af0eaabc36143c4988
POST /api/profile/public/countries/en HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
naughty-hub.com/api/auth/my-country
200 OK 4 B URL HTTP/1.1 naughty-hub.com/api/auth/my-country
IP
File type ASCII text, with no line terminators
Hash e053b472d8c218cfc5d7343f16149bfe
7d8d3d93f7dde8cbff976bfb5b40dc01c9cbd462
8715f26d0d6e170f900e60938fedd70eb9b8b227166bb66a99ace161a7f936bf
POST /api/auth/my-country HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 4
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
naughty-hub.com/app/adv/pages/bkzP54DP6/translations.json?t=1675209731504
200 OK 4.7 kB URL HTTP/1.1 naughty-hub.com/app/adv/pages/bkzP54DP6/translations.json?t=1675209731504
IP
File type JSON data\012- , Unicode text, UTF-8 text, with CRLF line terminators
Hash 605a5ca5979b701d56f4d86fabfb4288
f0189a427dee746718b41b77fdb95c69369316d6
3a7e9bb0bdd0f152968b636561845dfbdee87b19db6eb90c3e01a6ae5cbb2cd0
GET /app/adv/pages/bkzP54DP6/translations.json?t=1675209731504 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json
Last-Modified: Wed, 29 Dec 2021 13:58:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61cc6973-33d6"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
naughty-hub.com/api/settings/landing-texts
200 OK 0 B URL HTTP/1.1 naughty-hub.com/api/settings/landing-texts
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/settings/landing-texts HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 16
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 0
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
naughty-hub.com/locale/no?t=1675209731543
200 OK 20 kB URL HTTP/1.1 naughty-hub.com/locale/no?t=1675209731543
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (63484), with no line terminators
Hash e33161a59c2faedbf23ad3fc41936f98
adf3a74efe2f8433847588eec74f85382bf32ca3
2b1404e0a2bc8a38e6284cf91ffda046047202b69d8105805ac939d1c5fb1d91
GET /locale/no?t=1675209731543 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a327176edf538c07784f9b0da660c22d
4a56cfcac291dfe1cc177bd3eff976f106731834
aae92a95f747be0bca6982ed7e3e58af8ac74ff69c799b55046ab38474e149dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 00:01:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?onload=vcRecaptchaApiLoadedWrapper&render=explicit&hl=no
200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?onload=vcRecaptchaApiLoadedWrapper&render=explicit&hl=no
IP
File type ASCII text, with very long lines (922), with no line terminators
Hash ef3f9c2e8707b90cc3837503aab7a3dc
0c0c22f3ad3547984cd4fe3d88a4147da868a196
a0d216285fcaa89257b1ab0813f75c866ab8e025bee6b3aad792478752d40e2e
GET /recaptcha/api.js?onload=vcRecaptchaApiLoadedWrapper&render=explicit&hl=no HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 01 Feb 2023 00:01:52 GMT
date: Wed, 01 Feb 2023 00:01:52 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
naughty-hub.com/api/profile/public/countries/no
200 OK 5.9 kB URL HTTP/1.1 naughty-hub.com/api/profile/public/countries/no
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (28485), with no line terminators
Hash e07ea037d696cf7def0e6f42336993c6
5e1f5edb1a4590691d45fe756774a8faed45e3f4
512ce6a4777634f56cbb13540f3fbe3a6d010895738494e1d359b08bebc0eace
POST /api/profile/public/countries/no HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
naughty-hub.com/api/profile/public/selections
200 OK 4.1 kB URL HTTP/1.1 naughty-hub.com/api/profile/public/selections
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (24509), with no line terminators
Hash 9b550b038fa81f08b6ca542e3b04b747
4839381325d1e037c1d8f9f210a5adaa967f82d2
cd38ade91e46222e79f5087250a04f33586e6dd79602de6f7e50fd7a09d53842
POST /api/profile/public/selections HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 38
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
naughty-hub.com/app/adv/pages/bkzP54DP6/index.html?t=1675209731635
200 OK 5.9 kB URL HTTP/1.1 naughty-hub.com/app/adv/pages/bkzP54DP6/index.html?t=1675209731635
IP
File type HTML document, Unicode text, UTF-8 text, with very long lines (343), with CRLF line terminators
Hash 275c2154030d0c139ad78b1ac41af7e1
d5237abe46beb0528f7db89ffdfa9150933a2dd8
77ae7fe00a89a9a78c9fe5372f5ed22e974c12c554b64c43af70d46b7044905d
GET /app/adv/pages/bkzP54DP6/index.html?t=1675209731635 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: text/html
Last-Modified: Wed, 29 Dec 2021 13:58:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61cc6973-8969"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 00:01:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
naughty-hub.com/api/profile/public/get-offer-urls
200 OK 391 B URL HTTP/1.1 naughty-hub.com/api/profile/public/get-offer-urls
IP
File type JSON data\012- , ASCII text, with very long lines (391), with no line terminators
Hash 8fb6123d9cb5732463d34c21f782d16d
3759e477d7c0ebfa90bd46ca8b1b924e72763ae6
a744f8f5cd7fb3aebf11a8c63758edba68d87b6fa0c197617016b91f3ebe7a18
POST /api/profile/public/get-offer-urls HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 86
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 391
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 00:01:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
naughty-hub.com/%7B%7Bvm.assetUrl%7D%7D/small-flame.svg
404 Not Found 44 B URL HTTP/1.1 naughty-hub.com/%7B%7Bvm.assetUrl%7D%7D/small-flame.svg
IP
Hash 4530f4bcdf7e8cbd777704ba460cceac
91504c59742848c4a20ef585f741f85713c69f47
ee156b480f45874545e16d213e9ccd5e45faafe114ce73c490484a67a01a93b5
GET /%7B%7Bvm.assetUrl%7D%7D/small-flame.svg HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 44
Connection: keep-alive
X-Content-Type-Options: nosniff
naughty-hub.com/%7B%7Bvm.assetUrl%7D%7D/medium-flame.svg
404 Not Found 45 B URL HTTP/1.1 naughty-hub.com/%7B%7Bvm.assetUrl%7D%7D/medium-flame.svg
IP
Hash c64b62c7a9561b59e8985cc485cd5329
e56fb4695182656d2e14e89b732d53304ebab5ff
9f4b9c5153237953ed2c3fa17fc2d23dba033f2fdd63256b17f6b583ca297b64
GET /%7B%7Bvm.assetUrl%7D%7D/medium-flame.svg HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 45
Connection: keep-alive
X-Content-Type-Options: nosniff
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__no.js
200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__no.js
IP
File type HTML document, ASCII text, with very long lines (658)
Size 165 kB (164664 bytes)
Hash b7e279966138ec75e847a79be35bc2a1
a67b7c6873b1e9774a962c60ce899f74316534fc
007328612131f74223d1a10be1acc0c147048c989a3ce7fa131a045f340a4771
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__no.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:44:06 GMT
expires: Sun, 28 Jan 2024 09:44:06 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
age: 310666
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 00:01:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 00:01:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
naughty-hub.com/app/img2/logo-light-background/landing.png?b=46
200 OK 1.4 kB URL HTTP/1.1 naughty-hub.com/app/img2/logo-light-background/landing.png?b=46
IP
File type PNG image data, 288 x 73, 8-bit/color RGBA, non-interlaced\012- data
Hash 1a053809ad8653a0a9bcf13e842772d7
8d46c8691ae1ae796d30d39592f827fb7daabba3
93495bdc42433ff07b0a59f8b9916ae11e9adb9e56739cf2608b1c5892e4aa3e
GET /app/img2/logo-light-background/landing.png?b=46 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/app/css/bundle.min.css?46
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: image/png
Content-Length: 1411
Last-Modified: Thu, 01 Sep 2022 09:52:48 GMT
Connection: keep-alive
ETag: "631080f0-583"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
naughty-hub.com/api/auth/my-location
200 OK 51 B URL HTTP/1.1 naughty-hub.com/api/auth/my-location
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 1f3d00cb02ae605e15035d384130a56f
ebfaae01250bc079698f19e648cbd6cb1c8d5392
09de7fa42b0fb515b2659e6b351ac5866fe967ed80dc5b72c94dd9613f46abe6
POST /api/auth/my-location HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://naughty-hub.com
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 51
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
fonts.googleapis.com/css?family=Roboto:300,500
200 OK 1.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,500
IP
Hash 395ec96128a090fe3bd3a856a12cca85
807b312b1e4d4d650a3fbf3f6cfa24bdddabb900
31076d3f9a29937962a51d12effcd3c6db3024e948922c5b901fd9eb3d574993
GET /css?family=Roboto:300,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 00:01:52 GMT
date: Wed, 01 Feb 2023 00:01:52 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
naughty-hub.com/app/fonts/proximanova-bold-webfont.woff2
200 OK 35 kB URL HTTP/1.1 naughty-hub.com/app/fonts/proximanova-bold-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 34817, version 3.327\012- data
Hash 06e2b33c7a1ea2382d4b3d186a23064b
5bc4a79df42ce01df689f485505138a25e311b9e
f2862e9eb293fe36d775b3e6aa801733d6c2d249ebdc7a92d433db94208839ea
GET /app/fonts/proximanova-bold-webfont.woff2 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://naughty-hub.com/app/css/bundle.min.css?46
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: font/woff2
Content-Length: 34817
Last-Modified: Tue, 15 Jun 2021 11:52:17 GMT
Connection: keep-alive
ETag: "60c89471-8801"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
naughty-hub.com/app/adv/pages/bkzP54DP6/assets//big-flame.svg
200 OK 5.5 kB URL HTTP/1.1 naughty-hub.com/app/adv/pages/bkzP54DP6/assets//big-flame.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7072), with CRLF line terminators
Hash 61b8044e0eab063ddd16a5db5fa9eb7f
9c014106cd15456fba4691da35a6438ea0e7e4fc
ef6132cb483bad4d32441934d1e401dd1f63cdd0d85208bab337f77277abe1f1
GET /app/adv/pages/bkzP54DP6/assets//big-flame.svg HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: image/svg+xml
Last-Modified: Wed, 29 Dec 2021 13:58:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61cc6973-36ef"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
naughty-hub.com/app/adv/pages/bkzP54DP6/assets//medium-flame.svg
200 OK 1.7 kB URL HTTP/1.1 naughty-hub.com/app/adv/pages/bkzP54DP6/assets//medium-flame.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3518), with CRLF line terminators
Hash f011a5d78a3d1af97764fb5c8331fa0e
e4c2f2b477de214f2f742dc7711a000fb2b1ff00
94a8b0738a8e89e018870d576f42f52f28fdc64209591748708497245a556b07
GET /app/adv/pages/bkzP54DP6/assets//medium-flame.svg HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: image/svg+xml
Last-Modified: Wed, 29 Dec 2021 13:58:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61cc6973-f15"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
naughty-hub.com/app/icons/flags/%7B%7Bvm.profile.country%7D%7D.png
404 Not Found 162 B URL HTTP/1.1 naughty-hub.com/app/icons/flags/%7B%7Bvm.profile.country%7D%7D.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 70461da8b94c6ca5d2fda3260c5a8c3b
994bc667720c21257500e29038c1a5f61e25da1e
f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
GET /app/icons/flags/%7B%7Bvm.profile.country%7D%7D.png HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
naughty-hub.com/app/adv/pages/bkzP54DP6/assets//small-flame.svg
200 OK 1.3 kB URL HTTP/1.1 naughty-hub.com/app/adv/pages/bkzP54DP6/assets//small-flame.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2401), with CRLF line terminators
Hash 64d090b23560515ad38ba4a0062194e3
c3a721cca055913bd3e2cea56d1b6160164324ad
241ce8c26361beceb7dcafe4d8501f5ac75fafbe5d98ee08e60b4cb5c7704ddf
GET /app/adv/pages/bkzP54DP6/assets//small-flame.svg HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: image/svg+xml
Last-Modified: Wed, 29 Dec 2021 13:58:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61cc6973-acc"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Content-Encoding: gzip
naughty-hub.com/app/icons/flags/NO.png
200 OK 542 B URL HTTP/1.1 naughty-hub.com/app/icons/flags/NO.png
IP
File type PNG image data, 72 x 51, 8-bit/color RGBA, non-interlaced\012- data
Hash 4bcc0171d01b4e4d5a1d144290b937f4
59aca547a6631d6650ea22631dfb5ae20d663a2b
70d1f2a462a0cf7fb12c802fc0fbae8b9cb313e011f9d185d3b08aef1dd66bd6
GET /app/icons/flags/NO.png HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: image/png
Content-Length: 542
Last-Modified: Tue, 15 Jun 2021 11:52:17 GMT
Connection: keep-alive
ETag: "60c89471-21e"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
naughty-hub.com/app/img2/sprite/sprite-x1.png?b=46
200 OK 111 kB URL HTTP/1.1 naughty-hub.com/app/img2/sprite/sprite-x1.png?b=46
IP
File type PNG image data, 2000 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 111 kB (111440 bytes)
Hash 18bed6ceffd07076124ed6f93f4db040
9be541c14a4b117d0953628a6eafa00ab2f286fc
b5da7850a51b6fa030812d371151465465bd44a14fdc557eda784412126db129
GET /app/img2/sprite/sprite-x1.png?b=46 HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/app/css/bundle.min.css?46
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:52 GMT
Content-Type: image/png
Content-Length: 111440
Last-Modified: Tue, 15 Jun 2021 11:52:17 GMT
Connection: keep-alive
ETag: "60c89471-1b350"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
naughty-hub.com/app/adv/pages/bkzP54DP6/assets//chevron-down.png
404 Not Found 162 B URL HTTP/1.1 naughty-hub.com/app/adv/pages/bkzP54DP6/assets//chevron-down.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 70461da8b94c6ca5d2fda3260c5a8c3b
994bc667720c21257500e29038c1a5f61e25da1e
f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
GET /app/adv/pages/bkzP54DP6/assets//chevron-down.png HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 01 Feb 2023 00:01:53 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
naughty-hub.com/app/adv/pages/bkzP54DP6/assets//step1/user-a-big.jpg
200 OK 363 kB URL HTTP/1.1 naughty-hub.com/app/adv/pages/bkzP54DP6/assets//step1/user-a-big.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 622x1056, components 3\012- data
Size 363 kB (362701 bytes)
Hash de33da76abcfcdec1e6ef85497710b69
f3e09a5c449bfb75ca8660afcdab84674c144efa
d987f2cdf9d17c31c5ddca58c18d6421391881bab06312249e6bb1fe088318ba
GET /app/adv/pages/bkzP54DP6/assets//step1/user-a-big.jpg HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:53 GMT
Content-Type: image/jpeg
Content-Length: 362701
Last-Modified: Wed, 29 Dec 2021 13:58:11 GMT
Connection: keep-alive
ETag: "61cc6973-588cd"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
naughty-hub.com/app/adv/pages/bkzP54DP6/assets//bgr-small.jpg
200 OK 843 kB URL HTTP/1.1 naughty-hub.com/app/adv/pages/bkzP54DP6/assets//bgr-small.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 843 kB (843341 bytes)
Hash 41466b3283c463dd7043e4c75f08404a
d821c05630d2337a0b153a5d628e021287c70964
67bf05f3dc6a6b8ea1a3233e1d5c00a9704a19e38c5493e3103350857033213c
GET /app/adv/pages/bkzP54DP6/assets//bgr-small.jpg HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:53 GMT
Content-Type: image/jpeg
Content-Length: 843341
Last-Modified: Wed, 29 Dec 2021 13:58:11 GMT
Connection: keep-alive
ETag: "61cc6973-cde4d"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
naughty-hub.com/app/adv/pages/bkzP54DP6/assets//step1/user-c-big.jpg
200 OK 267 kB URL HTTP/1.1 naughty-hub.com/app/adv/pages/bkzP54DP6/assets//step1/user-c-big.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 622x1056, components 3\012- data
Size 267 kB (266655 bytes)
Hash d57f7130593d753c755675694edd9838
7631dfc573880f6c0c190bcef1e560d1df0d832b
6cba5a979cf9b0a889e9a159fea2bb653daf5abe136a82700dccca637dbd062a
GET /app/adv/pages/bkzP54DP6/assets//step1/user-c-big.jpg HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:53 GMT
Content-Type: image/jpeg
Content-Length: 266655
Last-Modified: Wed, 29 Dec 2021 13:58:11 GMT
Connection: keep-alive
ETag: "61cc6973-4119f"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
naughty-hub.com/app/adv/pages/bkzP54DP6/assets//step1/user-b-big.jpg
200 OK 303 kB URL HTTP/1.1 naughty-hub.com/app/adv/pages/bkzP54DP6/assets//step1/user-b-big.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 622x1056, components 3\012- data
Size 303 kB (303417 bytes)
Hash 7f7e5fc52ec55fb4b5373eff3a1d8502
ad82133b803043cf18d288fc14e94519b3436c78
06f476f41f0228cfb8e6614dde8bde6142547b320d3e4fe5e4e60b4e76b38fca
GET /app/adv/pages/bkzP54DP6/assets//step1/user-b-big.jpg HTTP/1.1
Host: naughty-hub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naughty-hub.com/
Cookie: _ga=GA1.2.2003265078.1675209731; _gid=GA1.2.1163908671.1675209731; glink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiYSI6eyJpcCI6IjkxLjkwLjQyLjE1NCIsImRhdGUiOjE2NzUyMDk3MTIzOTF9LCJpYXQiOjE2NzUyMDk3MTIsImV4cCI6MTk5MDU2OTcxMiwiYXVkIjoibmF1Z2h0eS1odWIuY29tIn0.oFFC4j9IOaoKrBPegbI4oCAQMlpn4c4QxLKbj-Tz1tM; plink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZWFyY2hQYXJhbXMiOnsiY2lkIjoidzVkb21wdG81MTdmbThhbTJyMjZqZjQ4Iiwic291cmNlIjoiZmY1YzFiYzAtNTNmMS00NTczLTgwODMtMjM0MjU2NjY0ZjRkIiwic3Vic291cmNlIjoiMTBfVVMifSwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.yZgBR-3jnIcp9dxRiIX_CdaN0ikQ_VthtyAsA3RLt2c; clink=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0cmFja2luZ0xpbmtJZCI6IkhZQzQzIiwiaWF0IjoxNjc1MjA5NzEyLCJleHAiOjE5OTA1Njk3MTIsImF1ZCI6Im5hdWdodHktaHViLmNvbSJ9.GYo5E3EOQZXHKqCJqtBNfhiZZ8rRcYQi1sVa0Hu_Byw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 00:01:53 GMT
Content-Type: image/jpeg
Content-Length: 303417
Last-Modified: Wed, 29 Dec 2021 13:58:11 GMT
Connection: keep-alive
ETag: "61cc6973-4a139"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss: about: data: blob: 'unsafe-inline' 'unsafe-eval'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Public-Key-Pins: pin-sha256="Slt48iBVTjuRQJTjbzopminRrHSGtndY0/sj0lFf9Qk="; pin-sha256="klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; max-age=60; includeSubDomains
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13149
Expires: Wed, 01 Feb 2023 03:41:02 GMT
Date: Wed, 01 Feb 2023 00:01:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13149
Expires: Wed, 01 Feb 2023 03:41:02 GMT
Date: Wed, 01 Feb 2023 00:01:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13149
Expires: Wed, 01 Feb 2023 03:41:02 GMT
Date: Wed, 01 Feb 2023 00:01:53 GMT
Connection: keep-alive
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 440030
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13149
Expires: Wed, 01 Feb 2023 03:41:02 GMT
Date: Wed, 01 Feb 2023 00:01:53 GMT
Connection: keep-alive
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 458470
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:18:42 GMT
age: 60191
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49ea501c-c491-40c1-82ec-c750680af9df.jpeg
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49ea501c-c491-40c1-82ec-c750680af9df.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4354120b504a8b1d1c3f4e206eb4611
ba854dec74347525b20dbf3b4e5c13876d56aa1c
bc921fe78a71864819998207c13b5c3ca7913275a4503119c5d105ad7827c377
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49ea501c-c491-40c1-82ec-c750680af9df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9282
x-amzn-requestid: f448477b-b445-46fa-8aee-8c5c527ee95b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: feqp8FuToAMFxDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5be3f-30fbf0dd70d17878651809a0;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 00:30:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wOmkr070swJe2KlHn_SbFTSuqgpv4oxECzMVHR0ryygDutjwH5_55A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 09:06:06 GMT
age: 53747
etag: "ba854dec74347525b20dbf3b4e5c13876d56aa1c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c0a4094-de1e-41f3-9e75-80a725d23095.jpeg
200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c0a4094-de1e-41f3-9e75-80a725d23095.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c4ef3610dcd19f46f763e313d46e9df6
3cdf187d3923ec5084192adf2b0f73f8c9534a56
e67f0cf265912e3bebfa296cf4c71be24e619efb396d74432a8ff912bf6998ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c0a4094-de1e-41f3-9e75-80a725d23095.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9841
x-amzn-requestid: 26093f6c-900b-425d-827c-4d70a2fa225a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGMFHOeIAMF-4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e6-29d957942dda79d0723d9e8f;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Chs87A3OGCMyp250Sz8F-sPoiOmDmlj8kUBrSrUtuEbYeD6we39KQg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 18:55:34 GMT
age: 18379
etag: "3cdf187d3923ec5084192adf2b0f73f8c9534a56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4392f298c9e98515493f1235810838f
b89eebf2b8adac69487262100b07da8bc171ecf7
b368d87d3a0fe4e1a8ddc82bed704b3056ad2874b8d325111b399b18807c1e5e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15656
x-amzn-requestid: 6723d22f-8b16-4fb2-af92-9b3257fc2a1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIHpRoAMFRYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-03b1c6646f63ba716a6298e1;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fLrUWOhE6x_v3sqe6kr1hacSgt9H53ld51XXKvh7dL04gc-NDJKmOg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:25:12 GMT
age: 59801
etag: "b89eebf2b8adac69487262100b07da8bc171ecf7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57810a89-c2fa-4da6-8c38-d7ab4682343c.jpeg
200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57810a89-c2fa-4da6-8c38-d7ab4682343c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23fba3309226071f6f44081c3a92bc0b
21119ea71d26ab157ec491f9cf68918d63310fb4
b29c1f3f6966e08bd3954275c8d2a3ae44a352b41e5d3f04203b55f65708fafc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57810a89-c2fa-4da6-8c38-d7ab4682343c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4588
x-amzn-requestid: 1d726cce-35c6-42d7-a592-8f22f1bd310a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJr4GXvoAMFXvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcb2-71af755c24ba2e9a39f17451;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:01:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: LsEvNQbbsNXqHNIdBMEBukG7zb2OzwEXUwkxsk-19BCpjl_yUVrzCg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:10:04 GMT
age: 60709
etag: "21119ea71d26ab157ec491f9cf68918d63310fb4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:52:17 GMT
age: 58176
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15340, version 1.0\012- data
Hash 19b7a0adfdd4f808b53af7e2ce2ad4e5
81d5d4c7b5035ad10cce63cf7100295e0c51fdda
c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 00:39:09 GMT
expires: Wed, 31 Jan 2024 00:39:09 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
age: 84164
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
18.184.38.55
34.160.144.191
95.101.11.115
0.0.0.0