GET hentaiera.com/images/discord.png
200 OK 50 kB URL GET hentaiera.com/images/discord.png
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Hash 53251d86ae87db1167d6a78c08e6c443
e03bf8d8a8b333942e5be4391e7797122b942531
89ff5545bbab3584543dfef3f0f6e06bae146ca6b23e76c46af92ea4ad613cd1
GET /images/discord.png HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/css/main_zk4t1iocu8.css
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: image/png
cache-control: public, max-age=31536000
expires: Wed, 05 Mar 2025 06:21:19 GMT
last-modified: Tue, 13 Feb 2024 11:23:15 GMT
etag: W/"c282-65cb5123-e665bd74adc69883;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 578937
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xT7Pck0besTInlz%2BduvZvwlmSRWGPP3McbLy5XQkoLWDEyU5orDOYx1ZVg6pqyQqA0ZhAf67yTx1wetE8qkJUj4MJXCTPAPGasmRnmM44l%2B2L0aH%2BMtXeNM70sLbvuNA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c6ea91568b-OSL
server-timing: cfL4;desc="?proto=QUIC&rtt=7447&min_rtt=2260&rtt_var=4268&sent=129&recv=22&lost=0&retrans=0&sent_bytes=123255&recv_bytes=8307&delivery_rate=619864&cwnd=96000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=1197&x=1", cfExtPri, cfHdrFlush;dur=0
GET ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
200 OK 87 kB URL GET ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintF1:11:17:AF:9C:89:34:EE:D5:CB:84:40:84:EA:01:19:A9:F6:ED:C2
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type JavaScript source, ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Mar 2025 13:50:36 GMT
expires: Mon, 02 Mar 2026 13:50:36 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 438008
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
200 OK 37 kB URL GET maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint53:78:04:46:B4:48:0A:28:30:67:23:9B:D5:25:73:FE:FA:81:58:19
ValidityThu, 16 Jan 2025 00:27:53 GMT - Wed, 16 Apr 2025 01:27:34 GMT
File type JavaScript source, ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: application/javascript; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"5869c96cc8f19086aee625d670d741f9"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 03/18/2024 12:13:26
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1047
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: f51db51e1812ec3681add6a3dbbf5420
cdn-cache: HIT
cf-cache-status: HIT
age: 1754126
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 91cb22c23f03b51b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET hentaiera.com/js/user_22p8g3.js
200 OK 26 kB URL GET hentaiera.com/js/user_22p8g3.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type JavaScript source, ASCII text, with very long lines (563)
Hash 9444204668c0228d2b19df1ebe3ed744
0a3a02b6a8e567c131f84cb5d6700e92d3c3b8d4
688929d31050295d00bc6da3edb4ae9f1a598f4aca19d511b0ad469a8ab91068
GET /js/user_22p8g3.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
last-modified: Tue, 28 Nov 2023 08:59:35 GMT
etag: W/"64d6-6565abf7-b660666f0e9cb194;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 707
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8obKRHuBlyMujIO3q7NYno5jt7wNWCxwz2ltY9d4FnvXHnE3n3nH%2B%2FhABiomoWAhz2wE5I5uJcw4gSPQU%2FaqYnC%2BqnPHlYwCtJDkm7%2FoX9aUxXq0K%2B%2B0MOFPqft%2F67TX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1e9dc568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6616&min_rtt=3025&rtt_var=3188&sent=42&recv=14&lost=0&retrans=0&sent_bytes=34157&recv_bytes=5828&delivery_rate=424674&cwnd=24000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=388&x=1", cfExtPri, cfHdrFlush;dur=0
GET www.googletagmanager.com/gtag/js?id=G-C376F1J8JZ
200 OK 338 kB URL GET www.googletagmanager.com/gtag/js?id=G-C376F1J8JZ
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (5268)
Size 338 kB (338239 bytes)
Hash 60eee6ae609efb6db20da4264936d66d
b2241a190cec5232598479fa08170e5076b3238a
3e1f80721146f9e3795b7dd76200f221d29d985b70cdaec74080d41984d392c8
GET /gtag/js?id=G-C376F1J8JZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 07 Mar 2025 15:30:44 GMT
expires: Fri, 07 Mar 2025 15:30:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1003:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1003:0
report-to: {"group":"ascgcycc:1003:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1003:0"}],}
server: Google Tag Manager
content-length: 115332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET hentaiera.com/css/slider.css
200 OK 4.9 kB URL GET hentaiera.com/css/slider.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type ASCII text, with very long lines (5438), with no line terminators
Hash 1411b40f260798cdf944aa58a0ccb676
915acf660f848b28eeb76f5584058be44d42da20
7d16508ed89ead597cdbf5152b850d98bed3cd1bc0a10fcb136d35d7a4578ae2
GET /css/slider.css HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Tue, 11 Mar 2025 05:15:57 GMT
last-modified: Wed, 13 Jul 2022 13:46:41 GMT
etag: W/"132f-62ceccc1-88d4512c96ede392;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 48198
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gZjYUUvzpkB%2FDZGVDKVffPjCuJEiKyvJweRvBWSfQtcEtEcu4AERzVSPO1CD%2B3%2FQ4JTdBH0fnuff%2Bl9hCI7S90FP9h8z1z35VaWVhLUYBNAvfBlUUHKAb3gcSm7JuRd9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1d9c9568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=32&recv=12&lost=0&retrans=0&sent_bytes=22157&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=374&x=1", cfExtPri, cfHdrFlush;dur=11
GET hentaiera.com/images/logo.png
200 OK 3.6 kB URL GET hentaiera.com/images/logo.png
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type PNG image data, 59 x 44, 8-bit/color RGBA, non-interlaced
Hash dae50c1b832c6b53e33cc6e017b156b7
8da4eeeaece3260d1ea0be18889a9010d72fc1d0
b60d817b64ce2eac9c348190c1f70b93531fab1f9c5618ed6f3e4a3cad01b70a
GET /images/logo.png HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: image/png
cache-control: public, max-age=31536000
expires: Fri, 07 Mar 2025 07:20:47 GMT
last-modified: Tue, 03 Aug 2021 12:00:12 GMT
etag: W/"deb-61092fcc-4e9d0e37f202ade0;br"
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 384356
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=50JJiEVJWi%2B10UUgBzpGUzrUgf4Uh3ZPppySLeIRC9%2FjDxkh%2BLCU7ztUWWqu72Tdqxq3maZH1m6NCFEHvfs3hYAgnmCWKZrZyHckqouyY6NPzDWRQVnwwy%2FQJUsdDHGr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c20a23568b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6616&min_rtt=3025&rtt_var=3188&sent=54&recv=16&lost=0&retrans=0&sent_bytes=46184&recv_bytes=7507&delivery_rate=424674&cwnd=24000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=402&x=1", cfExtPri, cfHdrFlush;dur=3
GET hentaiera.com/js/jszip.min.js
200 OK 102 kB URL GET hentaiera.com/js/jszip.min.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
Size 102 kB (101939 bytes)
Hash 62db1c2504bd4d030ffc37880227d5fd
36d04917d6014b04f5e3be6ac76bf396e4acfb00
45b3ffadbc785de6091fa798527891eb7264e4d115e3c1a37acb60e3d70d4966
GET /js/jszip.min.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
last-modified: Mon, 05 Apr 2021 11:07:09 GMT
etag: W/"18e33-606aef5d-2f859e2a7f6ded4b;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 707
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cRCzvjXSTRG28fRzXQNqxQn%2FrDA%2B%2BarJTHAFJLVJsf7Pz4DTa7nf38Q5PPHONik%2FGPGii%2BAhxOF6FK67%2BeuxsivXd5Nv6SpoIWnXifz%2FOqRnW7xVmetvkNhf%2BM84862m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c20a19568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=7226&min_rtt=3025&rtt_var=3612&sent=94&recv=17&lost=0&retrans=0&sent_bytes=85785&recv_bytes=7551&delivery_rate=1407409&cwnd=48000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=410&x=1", cfExtPri, cfHdrFlush;dur=0
GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Hash 015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hentaiera.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Mar 2025 13:00:46 GMT
expires: Tue, 03 Mar 2026 13:00:46 GMT
cache-control: public, max-age=31536000
age: 354599
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
200 OK 701 B URL GET creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
IP
Requested by https://tsyndicate.com/iframes2/118fb12710e542fe984542b9473a5b6a.html?
Certificate IssuerLet's Encrypt
Subjectblcdog.com
Fingerprint57:8F:1F:6B:97:7B:9F:52:34:BD:D8:1B:81:39:C9:9B:93:6B:1A:45
ValidityMon, 03 Mar 2025 17:34:12 GMT - Sun, 01 Jun 2025 17:34:11 GMT
File type HTML document, ASCII text, with very long lines (752), with no line terminators
Hash 504beb54c233f78e5dde9bd575d5ff8e
5696fb93830834d174b896f38a7b1cd7473e6bf7
8015bfa48619eddd4c73461cd4ad881982ba4a0b3db039ed0dbfd7f245d29c55
GET /widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1 HTTP/1.1
Host: creative.blcdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tsyndicate.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:46 GMT
content-type: text/html; charset=utf-8
last-modified: Tue, 25 Feb 2025 11:13:17 GMT
expires: Fri, 07 Mar 2025 15:30:55 GMT
cache-control: max-age=10
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
age: 0
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7kar9T3NrUnOcsyhiFo0SLpCi7ZKesWI00IwYBaw1gjjeRtbWdJ95Yo2jWNFtSWVEd2ItavOJIuBPhkDswwyQqfggcRlyMQ%2B04uGm0amRKWNK0Rk66WS0iT3WBF0KR%2BLY%2BN6Uxte"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91cb22d02f0e568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=839&min_rtt=463&rtt_var=655&sent=5&recv=9&lost=0&retrans=0&sent_bytes=2770&recv_bytes=1572&delivery_rate=4560629&cwnd=253&unsent_bytes=0&cid=81a1ac749b832ae0&ts=42&x=0"
X-Firefox-Spdy: h2
GET m9.hentaiera.com/027/vz03ns1kxh/12t.jpg
0 B URL GET m9.hentaiera.com/027/vz03ns1kxh/12t.jpg
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /027/vz03ns1kxh/12t.jpg HTTP/1.1
Host: m9.hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
GET creative.blcdog.com/widgets/v4/Universal/main.fab524dcb819727b24d7.css
200 OK 14 kB URL GET creative.blcdog.com/widgets/v4/Universal/main.fab524dcb819727b24d7.css
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerLet's Encrypt
Subjectblcdog.com
Fingerprint57:8F:1F:6B:97:7B:9F:52:34:BD:D8:1B:81:39:C9:9B:93:6B:1A:45
ValidityMon, 03 Mar 2025 17:34:12 GMT - Sun, 01 Jun 2025 17:34:11 GMT
File type ASCII text, with very long lines (13998), with no line terminators
Hash 4afe37c742989f686627458943e58239
a010c2755457562f29571fa7faf7219651295c8e
cfee6201592a71609285d81a43c6b43bb693d4d09d8cb13c8c397549693d7655
GET /widgets/v4/Universal/main.fab524dcb819727b24d7.css HTTP/1.1
Host: creative.blcdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:46 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mbk2w26WhhQdxpdvMkXlWHDJ3a98FCY7dukZc9nHNbURCvcZf6SJHM5YkixUkEHgC97%2BmNFReXK9koOQZ2QmIzYr%2Fhffo9AcyYXYcMcXxUVtxOC51jUVzSZ2wUt%2BXLo7DvkCmsra"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 25 Feb 2025 11:14:41 GMT
etag: W/"67bda621-36ae"
expires: Fri, 07 Mar 2025 15:30:55 GMT
cache-control: max-age=10
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 1
content-encoding: br
cf-ray: 91cb22d2bb695694-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
GET www.google.com/recaptcha/api.js
200 OK 911 B URL GET www.google.com/recaptcha/api.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint53:F5:E3:47:F6:DC:80:83:14:A1:CE:39:7B:A1:98:61:74:03:86:E2
ValidityMon, 06 Jan 2025 08:37:56 GMT - Mon, 31 Mar 2025 08:37:55 GMT
File type JavaScript source, ASCII text, with very long lines (911), with no line terminators
Hash 17b7dd503129b38b524beaa117c670df
a26c86cd05773b2e33f426dcb9f69965abba43ee
fb74c956a4b28465bb5bf1e608cbfab5d7c2afc656bf3fecf52cad869aa8a6e1
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 07 Mar 2025 15:30:44 GMT
date: Fri, 07 Mar 2025 15:30:44 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET hentaiera.com/js/main_6dxzt8x9xz.js
200 OK 54 kB URL GET hentaiera.com/js/main_6dxzt8x9xz.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type JavaScript source, ASCII text, with very long lines (326)
Hash a2fd58578a948cd814663fa09efe1245
3f033fd72b4255ddc771342a67b372322f71a0c7
d1e78f96c43b2a07e7022b5c68bbc09486b40fcbaa370ff53f4bf268cec39617
GET /js/main_6dxzt8x9xz.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
last-modified: Thu, 31 Oct 2024 18:45:11 GMT
etag: W/"d500-6723d037-adff7dd9d2c3105d;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4839
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5L8zjN7Vd4Bs9YLP%2Fyu15z%2FXOAJvM2Ls6jE38RFzccibrSqGjLhFabQCnhOwhbypDzUHAqSmTgwd2AQ4Q6nZOvZpU8atznMSm7AGdC5zydhbHFwsBcSdLeOY%2Fsg%2FWw6E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1e9d1568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=32&recv=12&lost=0&retrans=0&sent_bytes=22157&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=384&x=1", cfExtPri, cfHdrFlush;dur=1
GET creative.blcdog.com/widgets/v4/Universal/lang/en.json
200 OK 172 B URL GET creative.blcdog.com/widgets/v4/Universal/lang/en.json
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerLet's Encrypt
Subjectblcdog.com
Fingerprint57:8F:1F:6B:97:7B:9F:52:34:BD:D8:1B:81:39:C9:9B:93:6B:1A:45
ValidityMon, 03 Mar 2025 17:34:12 GMT - Sun, 01 Jun 2025 17:34:11 GMT
File type ASCII text, with no line terminators
Hash 402f4a06b5dcf96d25dd4ff1f840784b
edebb253af01ef1882f424ee6278368485898d62
bd570b38d9d687c593545a7b250570605c601381f3d3d5263346b295e12a55ba
GET /widgets/v4/Universal/lang/en.json HTTP/1.1
Host: creative.blcdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: application/json
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XVMbRPN1W0EEIAKWDD7ASudipVEgndH3Tam9UQaz6c6sogzIVJe94cKN1xYZ5tv0D9Mfbj61rEjZgPSvIEIumgnJ%2BJ0bEEFj1J2ajLlcRJvfBxs6kgC3ljcUGcfQ3wElH2Atpn4Q"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 25 Feb 2025 11:13:17 GMT
etag: W/"67bda5cd-ac"
expires: Fri, 07 Mar 2025 15:30:55 GMT
cache-control: max-age=10
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 2
content-encoding: br
cf-ray: 91cb22d4fb745694-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
GET hentaiera.com/js/lazyload.min.js
200 OK 7.6 kB URL GET hentaiera.com/js/lazyload.min.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type JavaScript source, ASCII text, with very long lines (7746), with no line terminators
Hash 746d6c5c1702daf43b7949893695440a
908b1d3886b52c4726f7ba9c1d71e323d95bb041
8a818dfa148c3ca9cf6a2c76d15fd8c7da8644ac1fc945f12d9845b7fd72937f
GET /js/lazyload.min.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
last-modified: Wed, 18 Aug 2021 12:38:23 GMT
etag: W/"1d99-611cff3f-3b4cc85e13b827d8;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3749
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TE0Oly%2BpqRvTRfbBZcaXTPqoAcBJr1srXIS%2BNtpljuKL48%2Bpl81DDCCIni89ZCiEvhXXi23%2FzNGuPDKkLO12cCqcu4bkcsP2icqvQH90p1XVR3I98uK06vR20CxPAP3G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c23a61568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=7705&min_rtt=3025&rtt_var=3666&sent=123&recv=19&lost=0&retrans=0&sent_bytes=118314&recv_bytes=7888&delivery_rate=2549199&cwnd=96000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=427&x=1", cfExtPri, cfHdrFlush;dur=0
GET s.pemsrv.com/venor.php
200 OK 1 B IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerLet's Encrypt
Subjectpemsrv.com
FingerprintC7:2A:44:43:30:75:58:69:67:28:0B:87:46:C1:BE:7B:47:5D:D8:A3
ValidityMon, 27 Jan 2025 10:55:05 GMT - Sun, 27 Apr 2025 10:55:04 GMT
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
GET /venor.php HTTP/1.1
Host: s.pemsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentaiera.com
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Mar 2025 15:30:46 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
GET www.googletagmanager.com/gtag/js?id=G-S43SJ2D2SQ&l=dataLayer&cx=c>m=457e5360za200zb885106432&tag_exp=102067808~102482433~102539968~102587591~102640600~102717422~102788824
200 OK 314 kB URL GET www.googletagmanager.com/gtag/js?id=G-S43SJ2D2SQ&l=dataLayer&cx=c>m=457e5360za200zb885106432&tag_exp=102067808~102482433~102539968~102587591~102640600~102717422~102788824
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (5960)
Size 314 kB (313640 bytes)
Hash 32a91a33d4ea48b13f7957268272de1b
621cbc1964be10a9307cc578548a01b0f4aab2da
cbe00a98b6c1e3fcae5217caf298b04b1ce3cf28c8b10cecd867b01d2c3d3afd
GET /gtag/js?id=G-S43SJ2D2SQ&l=dataLayer&cx=c>m=457e5360za200zb885106432&tag_exp=102067808~102482433~102539968~102587591~102640600~102717422~102788824 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 07 Mar 2025 15:30:47 GMT
expires: Fri, 07 Mar 2025 15:30:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1003:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1003:0
report-to: {"group":"ascgcycc:1003:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1003:0"}],}
server: Google Tag Manager
content-length: 109133
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET hentaiera.com/css/flags.css
200 OK 5.5 kB URL GET hentaiera.com/css/flags.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type ASCII text, with very long lines (5940), with no line terminators
Hash 784f3c3bdf30bd395973e9bcb8e20d06
1882290e3d58e297fe0cf9bf57f13bcc0066c0a1
abe24a0f50f9f331d9ffe78e9152c976bf2259c59bea008ad12d9995d284a0e9
GET /css/flags.css HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Wed, 12 Mar 2025 05:55:18 GMT
last-modified: Mon, 05 Apr 2021 11:07:00 GMT
etag: W/"15a5-606aef54-190ff634c4bd528b;br"
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 59880
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BR4vBT6KteWetrBnF1L0luu3TW0l6Xo%2F6hV31V2HCtyN%2Fpymv%2Bbvof4%2BUteu05a617FX4bh6%2Bchf28Jj09LdbXBSaibLyWopFJg6Sm91RWJM2PDEKPFHfNN1VUbSPso7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1d9a9568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=19&recv=12&lost=0&retrans=0&sent_bytes=10157&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=366&x=1", cfExtPri, cfHdrFlush;dur=0
GET hentaiera.com/js/download_v4.js
200 OK 6.9 kB URL GET hentaiera.com/js/download_v4.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type JavaScript source, ASCII text, with very long lines (7305), with no line terminators
Hash eb8b031bcd1f3b91b27f595611321acc
8aef25bda04d3b4f1fb91c4e7253326c37fbea42
4f9a57547fd04819d9478e1bcab22ba5d1744a17c5445ea5134475159fdb20db
GET /js/download_v4.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
content-length: 1338
server: cloudflare
last-modified: Sat, 24 Dec 2022 09:24:39 GMT
etag: "1b1b-63a6c557-3b93ccc8ae46d41a;br"
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
priority: u=2,i=?0
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3750
accept-ranges: bytes
cf-ray: 91cb22c1e9dd568b-OSL
server-timing: cfExtPri
GET tsyndicate.com/iframes2/118fb12710e542fe984542b9473a5b6a.html?
200 OK 8.8 kB URL GET tsyndicate.com/iframes2/118fb12710e542fe984542b9473a5b6a.html?
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintDD:F4:01:F5:4B:E9:C1:58:A8:6C:99:A8:32:23:75:72:3B:76:00:F4
ValiditySat, 25 Jan 2025 00:07:38 GMT - Fri, 25 Apr 2025 00:07:37 GMT
File type HTML document, ASCII text, with very long lines (8886), with no line terminators
Hash b62e50c0001c18b4f5981120f1aeedf4
729e7d3c1dca889bcb009a55c0312235686bfb92
06c9b69bc1b08f912618beccffdb71c3e8b5365536ebccc55b2ddb9c39b5b2a5
GET /iframes2/118fb12710e542fe984542b9473a5b6a.html? HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 07 Mar 2025 15:30:45 GMT
content-type: text/html; charset=utf-8
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
set-cookie: cookie_user_id=f390ed8e-81a0-48f8-a4ad-976bc71b9330; expires=Sun, 07 Sep 2025 15:30:45 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
bfq=APeIECNCx5YYOWjYWBijCwsRYwoedCiijMQYN2jEoEHjBg4aNbr0URAQ; expires=Sat, 08 Mar 2025 15:30:45 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
GET t.dtscout.com/i/?l=https%3A%2F%2Fhentaiera.com%2Fgallery%2F1273738%2F&j=
200 OK 2.1 kB URL GET t.dtscout.com/i/?l=https%3A%2F%2Fhentaiera.com%2Fgallery%2F1273738%2F&j=
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectdtscout.com
Fingerprint4B:34:25:C3:56:75:F4:5A:B8:45:F5:43:DE:C9:89:43:D2:87:85:48
ValidityFri, 07 Mar 2025 01:14:02 GMT - Thu, 05 Jun 2025 02:13:46 GMT
File type ASCII text, with very long lines (2163), with no line terminators
Hash 8811c1da7d7cd9a89cf1c9d88cf153c1
5dd7a95e6eee435a18d261757a4aa4aeea7ae472
0c72ec693d21a33e6c802f2648030af0433badc9a020325a82550115cf5044cc
GET /i/?l=https%3A%2F%2Fhentaiera.com%2Fgallery%2F1273738%2F&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: application/javascript
x-s: mtl2
set-cookie: m=1; Domain=dtscout.com; Expires=Fri, 07-Mar-2025 16:54:07 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
df=1741361447; Domain=dtscout.com; Expires=Sun, 15-Jun-2025 15:30:47 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.267
expires: Fri, 07 Mar 2025 15:30:46 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N4NiHYk%2FRxu8Uc1qPdDb0um8NLtJBCGrQqkNxvZWsuprpp9hkZCy6Nj4kRFVp3H1wVNDflA9dSZFWwzlYu6I2f6pol4wL8lxwk6Zm8stsK%2BXiynYREj8c1VYMNQMguI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22d289e056cc-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=2477&min_rtt=457&rtt_var=3980&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3274&recv_bytes=1224&delivery_rate=6464285&cwnd=254&unsent_bytes=0&cid=0fb62d8c82c14233&ts=426&x=0"
X-Firefox-Spdy: h2
GET m9.hentaiera.com/027/vz03ns1kxh/7t.jpg
0 B URL GET m9.hentaiera.com/027/vz03ns1kxh/7t.jpg
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /027/vz03ns1kxh/7t.jpg HTTP/1.1
Host: m9.hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
GET go.blcdog.com/config?url=https%3A%2F%2Fcreative.blcdog.com%2Fwidgets%2Fv4%2FUniversal%3Faction%3DsbSignupWithModel%26campaignId%3Dc3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88%26campaignType%3Dsmartpop%26creativeId%3Db160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea%26iterationId%3D945689%26masterSmartpopId%3D1605%26memberId%3D6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi%26modelPromotion%3D1%26p1%3D3947042%26quality%3D240p%26ruleId%3D3%26smartpopId%3D1547%26sourceId%3D271332%26usePreroll%3D0%26userId%3Ded4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e%26variationId%3D34450%26webp%3D1
200 OK 6.9 kB URL GET go.blcdog.com/config?url=https%3A%2F%2Fcreative.blcdog.com%2Fwidgets%2Fv4%2FUniversal%3Faction%3DsbSignupWithModel%26campaignId%3Dc3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88%26campaignType%3Dsmartpop%26creativeId%3Db160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea%26iterationId%3D945689%26masterSmartpopId%3D1605%26memberId%3D6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi%26modelPromotion%3D1%26p1%3D3947042%26quality%3D240p%26ruleId%3D3%26smartpopId%3D1547%26sourceId%3D271332%26usePreroll%3D0%26userId%3Ded4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e%26variationId%3D34450%26webp%3D1
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerLet's Encrypt
Subjectblcdog.com
Fingerprint57:8F:1F:6B:97:7B:9F:52:34:BD:D8:1B:81:39:C9:9B:93:6B:1A:45
ValidityMon, 03 Mar 2025 17:34:12 GMT - Sun, 01 Jun 2025 17:34:11 GMT
File type ASCII text, with very long lines (9052), with no line terminators
Hash 0caa78f288475dc79de318b3e3eef7f0
d8f0840b3c1ebebd941241373d5b5522ca9e626f
228368ae222964645b04bd54bd94f2495aa8c8d640e586f2fb3632fdd2b3564a
GET /config?url=https%3A%2F%2Fcreative.blcdog.com%2Fwidgets%2Fv4%2FUniversal%3Faction%3DsbSignupWithModel%26campaignId%3Dc3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88%26campaignType%3Dsmartpop%26creativeId%3Db160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea%26iterationId%3D945689%26masterSmartpopId%3D1605%26memberId%3D6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi%26modelPromotion%3D1%26p1%3D3947042%26quality%3D240p%26ruleId%3D3%26smartpopId%3D1547%26sourceId%3D271332%26usePreroll%3D0%26userId%3Ded4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e%26variationId%3D34450%26webp%3D1 HTTP/1.1
Host: go.blcdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.blcdog.com/
Origin: https://creative.blcdog.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: application/json
access-control-allow-origin: https://creative.blcdog.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
content-encoding: gzip
last-modified: Fri, 07 Mar 2025 15:30:47 GMT
cf-cache-status: MISS
priority: u=4,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 91cb22d54a9cb4f4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET go.ohscprts.com/smartpop/c5135a4f2a1f31dec37f81076f43ce3228115817d90d19693df2b5c1c9764766?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=792790&memberId=v0Y0HqOBV6FduqMbfQeCtzoydua_3_wxUqmFgAhYGsmAmCZ3GWqK-CCfvMJBkNp5Jw8VFldjb9TGfHSh8e2VvssDzoc2nzsFM8FzUrOE6JGmp2tL_gUIDRUi&p1=4600593&ax=0
302 Found 2.3 kB URL GET go.ohscprts.com/smartpop/c5135a4f2a1f31dec37f81076f43ce3228115817d90d19693df2b5c1c9764766?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=792790&memberId=v0Y0HqOBV6FduqMbfQeCtzoydua_3_wxUqmFgAhYGsmAmCZ3GWqK-CCfvMJBkNp5Jw8VFldjb9TGfHSh8e2VvssDzoc2nzsFM8FzUrOE6JGmp2tL_gUIDRUi&p1=4600593&ax=0
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectohscprts.com
Fingerprint48:C0:E3:D2:86:6D:F6:80:29:25:37:6B:BD:CB:C2:B5:49:9B:AA:44
ValidityMon, 17 Feb 2025 13:02:29 GMT - Sun, 18 May 2025 14:02:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smartpop/c5135a4f2a1f31dec37f81076f43ce3228115817d90d19693df2b5c1c9764766?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=792790&memberId=v0Y0HqOBV6FduqMbfQeCtzoydua_3_wxUqmFgAhYGsmAmCZ3GWqK-CCfvMJBkNp5Jw8VFldjb9TGfHSh8e2VvssDzoc2nzsFM8FzUrOE6JGmp2tL_gUIDRUi&p1=4600593&ax=0 HTTP/1.1
Host: go.ohscprts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentaiera.com
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 07 Mar 2025 15:30:47 GMT
content-length: 0
location: https://go.ohscprts.com/api/models/vast?action=sbSignupWithModelSoft&ax=0&campaignId=c5135a4f2a1f31dec37f81076f43ce3228115817d90d19693df2b5c1c9764766&campaignType=smartpop&creativeId=64aa773d65c5f686d1966f029df63edc83b8a97f98d2fb375d94354688799472&duration=00%3A00%3A30&iterationId=943842&masterSmartpopId=2683&memberId=v0Y0HqOBV6FduqMbfQeCtzoydua_3_wxUqmFgAhYGsmAmCZ3GWqK-CCfvMJBkNp5Jw8VFldjb9TGfHSh8e2VvssDzoc2nzsFM8FzUrOE6JGmp2tL_gUIDRUi&p1=4600593&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=13956&sourceId=792790&tag=girls&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=34019&videoType=ol
access-control-allow-origin: https://hentaiera.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91cb22d77a145687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn.tsyndicate.com/sdk/v1/video.instant.message.v2.css
200 OK 5.5 kB URL GET cdn.tsyndicate.com/sdk/v1/video.instant.message.v2.css
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerLet's Encrypt
Subjectcdn.tsyndicate.com
Fingerprint7A:DC:9E:8B:49:BD:DB:59:8D:70:73:C8:A5:42:5C:88:1E:DB:10:8B
ValidityMon, 03 Feb 2025 06:32:05 GMT - Sun, 04 May 2025 06:32:04 GMT
File type ASCII text, with very long lines (5514), with no line terminators
Hash ca1e778ea5239541bf061652961ae6a3
f1b8469e336642101fc51aa1684dee3d9af904ef
0e0beba2e7e32eef8c30243ff996c375c0da3703e622d1d3d461cd47b0f0c753
GET /sdk/v1/video.instant.message.v2.css HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Cookie: cookie_user_id=f390ed8e-81a0-48f8-a4ad-976bc71b9330; bfq=APeIECNCx5YYOWjYWBijCwsRYwoedCiijMQYN2jEoEHjBg4aNbr0URAQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: text/css
server: nginx
last-modified: Tue, 12 Nov 2024 12:51:47 GMT
etag: W/"67334f63-1582"
x-robots-tag: noindex, nofollow
content-encoding: gzip
cache-control: max-age=172800
expires: Sun, 09 Mar 2025 15:30:47 GMT
vary: Accept-Encoding
x-cdn-host-id: ds9611,ds9893
x-proxy-cache: HIT
X-Firefox-Spdy: h2
GET hentaiera.com/css/jquery-ui.min.css
200 OK 19 kB URL GET hentaiera.com/css/jquery-ui.min.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type ASCII text, with very long lines (17168)
Hash af2d5e7392a224f6676f04259639d0d4
5531b8d0e1f91ec1efe58b79ac2ced6b77eb271b
e92a7c5a25e2bdcd5e583ffc11a18d2529ff531294a18e4c0381dcd82bcdbeb8
GET /css/jquery-ui.min.css HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Thu, 13 Mar 2025 18:27:08 GMT
last-modified: Mon, 05 Apr 2021 11:07:00 GMT
etag: W/"4945-606aef54-af4469d1ecdcb264;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
age: 75667
cf-cache-status: HIT
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=awDuf0vD3GZm5pCefmsdVbYa%2BBO5ZHo5qik5R9doDp1dwXczgH3cXIqmP9xrpTipdUiF8%2FiMDIgWqhwQEfu70Ma0wkGu%2BT4S2LkNz%2BLEaMTGGkdIStxMy6hSw79qCh2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c19948568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=5663&min_rtt=3025&rtt_var=3019&sent=11&recv=6&lost=0&retrans=0&sent_bytes=4095&recv_bytes=1137&delivery_rate=212229&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=333&x=1", cfExtPri, cfHdrFlush;dur=0
GET waust.at/s.js
200 OK 8.6 kB IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectwaust.at
Fingerprint9F:3E:9C:49:F8:B7:CC:9E:DE:05:C2:E3:E0:E0:B6:DD:36:DA:6F:6E
ValiditySun, 23 Feb 2025 10:13:54 GMT - Sat, 24 May 2025 11:13:49 GMT
File type JavaScript source, ASCII text, with very long lines (8826), with no line terminators
Hash e035263c3e1d7ccd4168070e0954df82
8b47f35dfcada03dd10e1970081ca0b622bd94b9
3efdd12bf82a9d8985d85246e53a8150bc955948a5f0a4a2882ffc6242fdaa7c
GET /s.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: application/x-javascript
last-modified: Thu, 27 Feb 2025 23:30:35 GMT
etag: W/"67c0f59b-2170"
expires: Sat, 08 Mar 2025 15:05:27 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1517
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h4s8%2BxRdvl993QqxQhvAHSBpbjtE%2FPCqub7uOeDTklOSkMHwxYaHwu9Dxq22rHJMRv3PoNa6dZRshYLccxsTvV%2Be6QZUqdpx%2B%2BDYusDRnMHZ8hDznBNi%2FQb2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91cb22c2ff8a56c0-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=575&min_rtt=445&rtt_var=126&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3268&recv_bytes=1176&delivery_rate=6652373&cwnd=254&unsent_bytes=0&cid=f08e8a22f36085f4&ts=106&x=0"
X-Firefox-Spdy: h2
GET m9.hentaiera.com/027/vz03ns1kxh/9t.jpg
0 B URL GET m9.hentaiera.com/027/vz03ns1kxh/9t.jpg
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /027/vz03ns1kxh/9t.jpg HTTP/1.1
Host: m9.hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
GET www.gstatic.com/recaptcha/releases/EGO3I7Q26cZ-jBw3BEtzIx7-/recaptcha__en.js
200 OK 559 kB URL GET www.gstatic.com/recaptcha/releases/EGO3I7Q26cZ-jBw3BEtzIx7-/recaptcha__en.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
Size 559 kB (558808 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /recaptcha/releases/EGO3I7Q26cZ-jBw3BEtzIx7-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentaiera.com
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 221042
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Mar 2025 19:03:01 GMT
expires: Tue, 03 Mar 2026 19:03:01 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 28 Feb 2025 21:01:45 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 332866
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET go.blcdog.com/abc.gif?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&thumbSizeKey=big&language=en&thumbFit=cover&stripcashR=0&thumbType=default&kbLimit=0&abTest=widgetv4universal_aa_base_6&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=4&segment=hls-oldAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Ftsyndicate.com%2F&i=0&abTestVariant=widgetv4universal_aa_base_6_paidUsers_29&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A927%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A529%2C%22duration%22%3A216%2C%22transferSize%22%3A5263%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A530%2C%22duration%22%3A233%2C%22transferSize%22%3A84867%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A1268%2C%22duration%22%3A0%7D%5D&mh=-260564571
200 OK 0 B URL GET go.blcdog.com/abc.gif?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&thumbSizeKey=big&language=en&thumbFit=cover&stripcashR=0&thumbType=default&kbLimit=0&abTest=widgetv4universal_aa_base_6&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=4&segment=hls-oldAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Ftsyndicate.com%2F&i=0&abTestVariant=widgetv4universal_aa_base_6_paidUsers_29&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A927%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A529%2C%22duration%22%3A216%2C%22transferSize%22%3A5263%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A530%2C%22duration%22%3A233%2C%22transferSize%22%3A84867%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A1268%2C%22duration%22%3A0%7D%5D&mh=-260564571
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerLet's Encrypt
Subjectblcdog.com
Fingerprint57:8F:1F:6B:97:7B:9F:52:34:BD:D8:1B:81:39:C9:9B:93:6B:1A:45
ValidityMon, 03 Mar 2025 17:34:12 GMT - Sun, 01 Jun 2025 17:34:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /abc.gif?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&thumbSizeKey=big&language=en&thumbFit=cover&stripcashR=0&thumbType=default&kbLimit=0&abTest=widgetv4universal_aa_base_6&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=4&segment=hls-oldAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Ftsyndicate.com%2F&i=0&abTestVariant=widgetv4universal_aa_base_6_paidUsers_29&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A927%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A529%2C%22duration%22%3A216%2C%22transferSize%22%3A5263%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A530%2C%22duration%22%3A233%2C%22transferSize%22%3A84867%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A1268%2C%22duration%22%3A0%7D%5D&mh=-260564571 HTTP/1.1
Host: go.blcdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.blcdog.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 91cb22d7ad4c7130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET go.ohscprts.com/api/models/vast?action=sbSignupWithModelSoft&ax=0&campaignId=c5135a4f2a1f31dec37f81076f43ce3228115817d90d19693df2b5c1c9764766&campaignType=smartpop&creativeId=64aa773d65c5f686d1966f029df63edc83b8a97f98d2fb375d94354688799472&duration=00%3A00%3A30&iterationId=943842&masterSmartpopId=2683&memberId=v0Y0HqOBV6FduqMbfQeCtzoydua_3_wxUqmFgAhYGsmAmCZ3GWqK-CCfvMJBkNp5Jw8VFldjb9TGfHSh8e2VvssDzoc2nzsFM8FzUrOE6JGmp2tL_gUIDRUi&p1=4600593&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=13956&sourceId=792790&tag=girls&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=34019&videoType=ol
200 OK 2.3 kB URL GET go.ohscprts.com/api/models/vast?action=sbSignupWithModelSoft&ax=0&campaignId=c5135a4f2a1f31dec37f81076f43ce3228115817d90d19693df2b5c1c9764766&campaignType=smartpop&creativeId=64aa773d65c5f686d1966f029df63edc83b8a97f98d2fb375d94354688799472&duration=00%3A00%3A30&iterationId=943842&masterSmartpopId=2683&memberId=v0Y0HqOBV6FduqMbfQeCtzoydua_3_wxUqmFgAhYGsmAmCZ3GWqK-CCfvMJBkNp5Jw8VFldjb9TGfHSh8e2VvssDzoc2nzsFM8FzUrOE6JGmp2tL_gUIDRUi&p1=4600593&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=13956&sourceId=792790&tag=girls&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=34019&videoType=ol
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectohscprts.com
Fingerprint48:C0:E3:D2:86:6D:F6:80:29:25:37:6B:BD:CB:C2:B5:49:9B:AA:44
ValidityMon, 17 Feb 2025 13:02:29 GMT - Sun, 18 May 2025 14:02:21 GMT
File type XML document, Unicode text, UTF-8 text, with very long lines (2374), with no line terminators
Hash 4a41b97f98b9b3ff1b02c45e8351ab83
dff2d0b00ea4733e36f6f2870acb02e220c99437
fbee7face3053863da750b2f1ef05d38bf0c99282962f102430aadd1f145a2d9
GET /api/models/vast?action=sbSignupWithModelSoft&ax=0&campaignId=c5135a4f2a1f31dec37f81076f43ce3228115817d90d19693df2b5c1c9764766&campaignType=smartpop&creativeId=64aa773d65c5f686d1966f029df63edc83b8a97f98d2fb375d94354688799472&duration=00%3A00%3A30&iterationId=943842&masterSmartpopId=2683&memberId=v0Y0HqOBV6FduqMbfQeCtzoydua_3_wxUqmFgAhYGsmAmCZ3GWqK-CCfvMJBkNp5Jw8VFldjb9TGfHSh8e2VvssDzoc2nzsFM8FzUrOE6JGmp2tL_gUIDRUi&p1=4600593&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=13956&sourceId=792790&tag=girls&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=34019&videoType=ol HTTP/1.1
Host: go.ohscprts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentaiera.com
Referer: https://hentaiera.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: text/xml; charset=utf-8
access-control-allow-origin: https://hentaiera.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
content-encoding: gzip
vary: accept-encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91cb22d7eadf5687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET go.xxxivjmp.com/checkUrl
200 OK 15 B IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerGoogle Trust Services
Subjectxxxivjmp.com
Fingerprint4E:91:D9:51:E8:B0:EB:16:11:07:22:11:50:07:A9:5E:CC:EB:79:D4
ValidityThu, 09 Jan 2025 06:15:37 GMT - Wed, 09 Apr 2025 07:15:17 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 1d644ae7e24f3430d634f21c1d94a975
5752bf80588493a9914d4fddf9ed3b31857d90ac
c9df5a7f763aff50375511af681843ba40d4d6ce044521c440515f7e04a2bff7
GET /checkUrl HTTP/1.1
Host: go.xxxivjmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.blcdog.com/
Origin: https://creative.blcdog.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: application/json
content-length: 15
access-control-allow-origin: https://creative.blcdog.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91cb22d98d6856b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST go.blcdog.com/app/domain-checker/check-result
204 No Content 0 B URL POST go.blcdog.com/app/domain-checker/check-result
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerLet's Encrypt
Subjectblcdog.com
Fingerprint57:8F:1F:6B:97:7B:9F:52:34:BD:D8:1B:81:39:C9:9B:93:6B:1A:45
ValidityMon, 03 Mar 2025 17:34:12 GMT - Sun, 01 Jun 2025 17:34:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /app/domain-checker/check-result HTTP/1.1
Host: go.blcdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.blcdog.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 239
Origin: https://creative.blcdog.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Fri, 07 Mar 2025 15:30:48 GMT
access-control-allow-origin: https://creative.blcdog.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 91cb22da0c9fb4f4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET hentaiera.com/js/FileSaver.min.js
200 OK 2.4 kB URL GET hentaiera.com/js/FileSaver.min.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type JavaScript source, ASCII text, with very long lines (2510), with no line terminators
Hash e3e021904559f502aabfc17ac9b25f3d
d00afe1b512471d6ccfa739e688eeab46da35438
61d67cf2e822e6d16ab7e92b5c649d833970db3382bb03f97a1666f23aef5bbb
GET /js/FileSaver.min.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
last-modified: Mon, 05 Apr 2021 11:07:09 GMT
etag: W/"98e-606aef5d-7731a113745f65ff;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6344
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zLpIX%2B%2FLUMk%2B0bu9IOLmbL0JtQLilddaWtfJr7ZSwkraK673R3CCsT2zW87Vhnsg7OU5krRZNiWGJK6h3kHhtHA11nF51mJnhAmhLS64A7PpAADSIyFhJOG6cE3MupjJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c20a13568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6616&min_rtt=3025&rtt_var=3188&sent=54&recv=16&lost=0&retrans=0&sent_bytes=46184&recv_bytes=7507&delivery_rate=424674&cwnd=24000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=398&x=1", cfExtPri, cfHdrFlush;dur=7
GET hentaiera.com/js/notifications_7h49rz.js
200 OK 712 B URL GET hentaiera.com/js/notifications_7h49rz.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type JavaScript source, ASCII text, with very long lines (857), with no line terminators
Hash 5bb2f48f26223c7a278aea209c806d54
f2a0eb24b9f4ea619a22ddbaa3aa1c1bbed98bd6
d3bbd6d31e2e8e828e1ab3dbf4c4ba7a133d09619a5dd2fa6baf0e1ebbea6801
GET /js/notifications_7h49rz.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
last-modified: Fri, 27 May 2022 11:09:25 GMT
etag: W/"2c8-6290b165-a76dd8b2e9cadcd;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6344
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qr3sgMsRjhH9G%2FpFbpMwOaVTJ17tirhGE7XWHWUJSCP6cJgpzUG48h6c5r9nqM9yLr2q7W%2BzEhrRYbaSnqXul7oeALg6xWOBnGq%2BUa4XW5Qf8YghUwICvGFjJ2hZkl19"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1e9d2568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=32&recv=12&lost=0&retrans=0&sent_bytes=22157&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=378&x=1", cfExtPri, cfHdrFlush;dur=7
GET hentaiera.com/js/js.cookie.min.js
200 OK 2.0 kB URL GET hentaiera.com/js/js.cookie.min.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type JavaScript source, ASCII text, with very long lines (1995), with no line terminators
Hash bdaad0b3d995e2619d9ed8cb09ae8411
a5921acbfdae6162f95398e495a29fa9daa17ef4
5383e67ec7fe60d2571cd847aeb325f40617fdf52f73b272d5718727a3c42f3b
GET /js/js.cookie.min.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
content-length: 909
server: cloudflare
last-modified: Tue, 12 Oct 2021 10:03:41 GMT
etag: "79f-61655d7d-154fc791bd060449;br"
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
priority: u=2,i=?0
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3750
accept-ranges: bytes
cf-ray: 91cb22c20a1f568b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET hentaiera.com/js/browse_kz6ngexy.js
200 OK 2.6 kB URL GET hentaiera.com/js/browse_kz6ngexy.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type JavaScript source, ASCII text, with very long lines (2942), with no line terminators
Hash e5c0e71894557d49a4e8cf966c2b7abb
bcd91b7412fa63cba6fa00aa97072d860a6f73e1
ef566f507f8b776cb2267026541f4aaa5c101c200546413bfbf900f4b9f99471
GET /js/browse_kz6ngexy.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
last-modified: Thu, 19 Aug 2021 07:53:51 GMT
etag: W/"a40-611e0e0f-6bc04d3fde1f55e7;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2613
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zBD8L8Y%2B%2B16%2FDKlAxMYZZ5jzPvUTxwoJeS4SikQk1tXY%2FiAe6jxd6HwJOIwjtQTZM3%2FymvJ9OsCX0AaueLXq1Sql9%2FfLkaf3zr77jwBCUZflx5Q6TXsmDFntFvRnusCt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c20a24568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6616&min_rtt=3025&rtt_var=3188&sent=54&recv=16&lost=0&retrans=0&sent_bytes=46184&recv_bytes=7507&delivery_rate=424674&cwnd=24000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=404&x=1", cfExtPri, cfHdrFlush;dur=1
GET hentaiera.com/6151206435.mp4
206 Partial Content 1.2 MB URL GET hentaiera.com/6151206435.mp4
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
Size 1.2 MB (1235394 bytes)
Hash c2d1c22a3a0296a64f67ec97060fec56
a2586d1dc3c68f9784ee6853b9af33e366672230
7671614643c4ef88728f01f2de95fc036dea79d192133db063d7095747f97e4b
GET /6151206435.mp4 HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 206 Partial Content
date: Fri, 07 Mar 2025 15:30:45 GMT
content-type: video/mp4
content-length: 1235394
last-modified: Mon, 22 Aug 2022 12:20:44 GMT
etag: "12d9c2-6303749c-af08483a3baf353d;;;"
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7048
content-range: bytes 0-1235393/1235394
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rq5IZTthxkAUd13LyICHEUrGJdFjgYhK3lHJW3dNMSUOAJ1bqcWPouixi%2BYt3fJJJJBUffuIGsl8hxbeYeDOWN3NHrqnHUgSkXS4GyRNhvBToykiUQz%2BlpebhALTgTbh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91cb22cb1a7a568b-OSL
server-timing: cfL4;desc="?proto=QUIC&rtt=11400&min_rtt=2260&rtt_var=7479&sent=292&recv=28&lost=0&retrans=0&sent_bytes=312629&recv_bytes=9474&delivery_rate=1799133&cwnd=192000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=1848&x=1", cfExtPri, cfHdrFlush;dur=0
GET acdn.tsyndicate.com/sdk/v1/b.b.js
200 OK 6.1 kB URL GET acdn.tsyndicate.com/sdk/v1/b.b.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://tsyndicate.com/iframes2/118fb12710e542fe984542b9473a5b6a.html?
Certificate IssuerLet's Encrypt
Subjectacdn.tsyndicate.com
FingerprintB6:84:1A:26:D3:20:A9:27:D0:CB:58:77:5E:5E:91:35:2E:3D:70:DE
ValidityFri, 24 Jan 2025 02:32:38 GMT - Thu, 24 Apr 2025 02:32:37 GMT
File type JavaScript source, ASCII text, with very long lines (6267), with no line terminators
Hash 0157845e81c4011579b3619f0401b161
efde716a44cd9f829e7fbc29875d093d3dc821e7
dd214b0311d8bdd6a5af8ea5b86070bb7d59f047baa2f06b5494dcf04ad50ecc
GET /sdk/v1/b.b.js HTTP/1.1
Host: acdn.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tsyndicate.com/
Cookie: cookie_user_id=f390ed8e-81a0-48f8-a4ad-976bc71b9330; bfq=APeIECNCx5YYOWjYWBijCwsRYwoedCiijMQYN2jEoEHjBg4aNbr0URAQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:46 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Fri, 19 Apr 2024 10:07:41 GMT
etag: W/"6622426d-17bf"
x-robots-tag: noindex, nofollow
content-encoding: gzip
cache-control: max-age=172800
expires: Sun, 09 Mar 2025 15:30:46 GMT
vary: Accept-Encoding
x-cdn-host-id: ah1742,ds9201
x-proxy-cache: HIT
X-Firefox-Spdy: h2
GET tsvideo.sacdnssedge.com/video/ol_48e44c38c38b9aec56ee76644826c7d8.mp4
206 Partial Content 38 kB URL GET tsvideo.sacdnssedge.com/video/ol_48e44c38c38b9aec56ee76644826c7d8.mp4
IP
ASN #60068 Datacamp Limited
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerLet's Encrypt
Subject1306075136.rsc.cdn77.org
Fingerprint72:2A:12:45:78:F3:AD:82:ED:8D:64:28:9A:2E:BE:76:B6:B9:8C:91
ValidityWed, 12 Feb 2025 06:52:45 GMT - Tue, 13 May 2025 06:52:44 GMT
Hash 3399136a416da4ff81f8f516ff1d0623
20d6cf6f5964fda9ef706753cdf65aee2f9ef2bb
6bfeedcb8c05b3c7f6eda925cf3b850c3de4766354aafc81555dfc77a5d0520c
GET /video/ol_48e44c38c38b9aec56ee76644826c7d8.mp4 HTTP/1.1
Host: tsvideo.sacdnssedge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=2293760-
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Fri, 07 Mar 2025 15:30:48 GMT
content-type: video/mp4
content-length: 37961
access-control-expose-headers: Content-Disposition
content-disposition: inline; filename="ol_48e44c38c38b9aec56ee76644826c7d8.mp4"
etag: "fa9764e4b824a53f7f0dd8686895baa4"
expires: Fri, 07 Mar 2025 16:20:06 GMT
last-modified: Fri, 07 Mar 2025 15:20:06 GMT
cache-control: max-age=7200
access-control-allow-origin: *
access-control-allow-credentials: true
cf-cache-status: HIT
age: 1
cf-ray: 91cb133eeb3565b9-FRA
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1763&min_rtt=1134&rtt_var=861&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2834&recv_bytes=1240&delivery_rate=2421404&cwnd=12&unsent_bytes=0&cid=1a6b502653fb5e54&ts=26&x=0"
x-77-nzt: EgwBuUwJCQG3gAIAAAwBT3/TDgW1AAAAAA
x-77-nzt-ray: 8e11d0365212a9912811cb677b116d03
x-77-cache: HIT
x-77-age: 640
server: CDN77-Turbo
x-77-pop: stockholmSE
content-range: bytes 2293760-2331720/2331721
X-Firefox-Spdy: h2
GET stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 31 kB URL GET stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint53:78:04:46:B4:48:0A:28:30:67:23:9B:D5:25:73:FE:FA:81:58:19
ValidityThu, 16 Jan 2025 00:27:53 GMT - Wed, 16 Apr 2025 01:27:34 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: "269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 09/26/2024 11:08:39
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1109
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 6d9a57dcf9c71ca534a05b35358c9f9c
cdn-cache: HIT
cf-cache-status: HIT
age: 2016463
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 91cb22c25f44b51b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET hentaiera.com/css/res_search_x9gh1k.css
200 OK 26 kB URL GET hentaiera.com/css/res_search_x9gh1k.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type ASCII text, with very long lines (26478), with no line terminators
Hash 73f770654ffa3e924255b795f9ac49b6
8f28a6a80de4c74d4c63f3503e152d091420986d
0c8619ca17996ea83e876daa943cc9db84d9a5a3a9b015a0163f7481a4b0ead7
GET /css/res_search_x9gh1k.css HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=33141
etag: W/"8175-632ac126-7f2d07489ec92efc;br"
expires: Tue, 04 Mar 2025 08:13:51 GMT
last-modified: Wed, 21 Sep 2022 07:45:42 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 557973
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jmqLDkcHzUtqfv9airOkosMdb82usBTFfmmwelPOChcLPVLejN4WOnb8OerAaKMQBttURk7UikAIpy1Oq4o%2Bh2Y1LgR8VNQiRI3g5BGDKJgq8qZcF7kdALu1jrvsb9yl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1d9bb568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=21&recv=12&lost=0&retrans=0&sent_bytes=11472&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=368&x=1", cfExtPri, cfHdrFlush;dur=0
GET cdn.tsyndicate.com/sdk/v1/video.instant.message.js
200 OK 17 kB URL GET cdn.tsyndicate.com/sdk/v1/video.instant.message.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerLet's Encrypt
Subjectcdn.tsyndicate.com
Fingerprint7A:DC:9E:8B:49:BD:DB:59:8D:70:73:C8:A5:42:5C:88:1E:DB:10:8B
ValidityMon, 03 Feb 2025 06:32:05 GMT - Sun, 04 May 2025 06:32:04 GMT
File type JavaScript source, ASCII text, with very long lines (16564)
Hash a37e142f7dad588156a80aa1c4f0c1df
d0d4231bf3d1c4e0b183aec6f6d5077603642834
90706333a1726185ab6fd61e2248649f7f4f2b1f24ece624ecc9d69387ffa08a
GET /sdk/v1/video.instant.message.js HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Cookie: cookie_user_id=f390ed8e-81a0-48f8-a4ad-976bc71b9330; bfq=APeIECNCx5YYOWjYWBijCwsRYwoedCiijMQYN2jEoEHjBg4aNbr0URAQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:46 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Tue, 12 Nov 2024 12:51:47 GMT
etag: W/"67334f63-4113"
x-robots-tag: noindex, nofollow
content-encoding: gzip
cache-control: max-age=172800
expires: Sun, 09 Mar 2025 15:30:46 GMT
vary: Accept-Encoding
x-cdn-host-id: ds9611,ds9893
x-proxy-cache: HIT
X-Firefox-Spdy: h2
POST hentaiera.com/inc/comments.php
200 OK 5 B URL POST hentaiera.com/inc/comments.php
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type ASCII text, with no line terminators
Hash a2e4822a98337283e39f7b60acf85ec9
ad87109bfff0765f4dd8cf4943b04d16a4070fea
2e1cfa82b035c26cbbbdae632cea070514eb8b773f616aaeaf668e2f0be8f10d
POST /inc/comments.php HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://hentaiera.com
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u; _ga_C376F1J8JZ=GS1.1.1741361446.1.0.1741361446.0.0.0; _ga=GA1.1.710454173.1741361447
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0%2FZ9HKmE6MmRnqFJUoe26T8nJ%2B8kCXt%2FtwoedQSKMEjF8T7kwWHjr0VX5c57H2bEHKrH0cNV0Xu10QWesA%2B5pP8cI27FnpGF4AUnQA3CvdU31S2xmwT5wtKHHOzS4P5J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22d5ce47568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9955&min_rtt=1142&rtt_var=7538&sent=2226&recv=47&lost=312&retrans=313&sent_bytes=2610914&recv_bytes=14268&delivery_rate=155551&cwnd=334350&unsent_bytes=0&cid=b12d7a58a8981a72&ts=3623&x=1", cfExtPri, cfHdrFlush;dur=0
GET hentaiera.com/js/slider.js
200 OK 1.8 kB URL GET hentaiera.com/js/slider.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type JavaScript source, ASCII text, with very long lines (1956), with no line terminators
Hash 422923bc7d638fa0f38cc9e84cfc3356
af37dc7bb6ac428c0e38a9c49812b8e421591e20
db419731b8e01cfa3113fb93389e7ab7ea517f10e12b5d87a8fc453d2463fec8
GET /js/slider.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
last-modified: Mon, 05 Sep 2022 14:26:20 GMT
etag: W/"715-6316070c-f6595c82f34de22b;br"
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JeED2if29p%2BRynj9dWVwm3uVR3gVjlqOF4pWrXMWCAVw6%2BkKaoh%2FbTUEtoVNKO8Rw8AbtHAOATqH3oIncPMV%2Byqsx0OjZgOygnl%2B9FBo6fEsdUUmPKPsLHTLIfFbgLca"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c20a21568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8188&min_rtt=3025&rtt_var=3715&sent=126&recv=20&lost=0&retrans=0&sent_bytes=121827&recv_bytes=7934&delivery_rate=1837303&cwnd=96000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=468&x=1", cfExtPri, cfHdrFlush;dur=0
GET rv.corsetfausen.com/tt8zWWySYf5YIK/52570
200 OK 5 B URL GET rv.corsetfausen.com/tt8zWWySYf5YIK/52570
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerLet's Encrypt
Subjectrv.corsetfausen.com
FingerprintDF:2D:44:77:06:9C:27:F5:44:EA:4B:87:56:94:94:52:1D:C0:1C:85
ValidityThu, 06 Mar 2025 14:05:34 GMT - Wed, 04 Jun 2025 14:05:33 GMT
File type ASCII text, with no line terminators
Hash f7a2939527fd9e68723da600e96d76bd
a9e717b6364d2895ee0a716050db32ca0ef1bb42
d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tt8zWWySYf5YIK/52570 HTTP/1.1
Host: rv.corsetfausen.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Mar 2025 15:30:45 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hentaiera.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2B2dUFnYQDeASKlPDqi1fwkRT6B%2BtCuykV9PYSE32bTH6T8TwvKB7gb8kZ4afgeGKsbdqaV21ZD62o%2Br5tGl72vC1ZxceR46zWzol%2BJhfhtC7Cus5tES4TabJq6AYjKcPjof6aqza7jhD3VmiZIV4OMWdIe2v2lWwRItJiIaSvytJovg4hPoxFyJ7rIyt9ZL9EYNYizO%2BQviktj2V%2BQcDKPE883N9m4UZjl07JxEc8WSEJ%2FgtOg3A0GfuNVNJ6deYGmFl2%2F%2F73ONxZiUTSpgZCbNw72R%2B3Z03l; expires=Sat, 08-Mar-2025 15:30:45 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Sat, 08-Mar-2025 15:30:45 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
GET hentaiera.com/images/loader.gif
200 OK 65 kB URL GET hentaiera.com/images/loader.gif
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type GIF image data, version 89a, 150 x 150
Hash 8e429a29b7fb642ef4e0c1f9555e3f79
57d485089f64d80df6c2a58783e6669b11ea21ee
e629fc9ebe169c5e10ac889df4c9a3195bac65b27c6a1bda78b8611793bd6e5e
GET /images/loader.gif HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/css/main_zk4t1iocu8.css
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:45 GMT
content-type: image/gif
content-length: 64962
cache-control: public, max-age=31536000
expires: Mon, 10 Mar 2025 19:54:18 GMT
last-modified: Mon, 05 Apr 2021 11:07:01 GMT
etag: "fdc2-606aef55-e07997b30a2bf63f;;;"
x-turbo-charged-by: LiteSpeed
accept-ranges: bytes
age: 329720
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z6Z%2BQxouYWpc8xi04YJWsEu6O3v0sJq1eIq7FgRoZ1U3DGCkTBbdf0uPMuFjlOoFFw0DbFUFJ%2FqagHrUcK27T6uWMeFmEp8vpwU8W7xT96B1r0dkeY7dGaUxsb9wkE%2F9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91cb22c9c822568b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9865&min_rtt=2260&rtt_var=8037&sent=175&recv=25&lost=0&retrans=0&sent_bytes=175127&recv_bytes=9011&delivery_rate=898782&cwnd=96000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=1641&x=1", cfExtPri, cfHdrFlush;dur=0
GET creative.blcdog.com/widgets/v4/Universal/main.fab524dcb819727b24d7.js
200 OK 317 kB URL GET creative.blcdog.com/widgets/v4/Universal/main.fab524dcb819727b24d7.js
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerLet's Encrypt
Subjectblcdog.com
Fingerprint57:8F:1F:6B:97:7B:9F:52:34:BD:D8:1B:81:39:C9:9B:93:6B:1A:45
ValidityMon, 03 Mar 2025 17:34:12 GMT - Sun, 01 Jun 2025 17:34:11 GMT
Size 317 kB (317165 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/v4/Universal/main.fab524dcb819727b24d7.js HTTP/1.1
Host: creative.blcdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:46 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=74w%2FMLm3FwhKXUFA1z5qiq0tfTjVdSSmSy8LEl3gz8PQsU9yCRYm5BuNhftCBRxSxA0rOOlUU%2ByZiaRpesEMCAG3AVg5XBLtd3gJ3UnHTpY8kSIFMMJAiL7LO4OBHnBCopPMux1D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 25 Feb 2025 11:14:41 GMT
etag: W/"67bda621-4d6ed"
expires: Fri, 07 Mar 2025 15:30:46 GMT
cache-control: max-age=10
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 10
content-encoding: br
cf-ray: 91cb22d2bb685694-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
GET pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XIkBFGRg4yZnC0gBFGTI0WNMbQiNFCzBgyNlrYkEEmx5gaZWrcmHFDhoiHYeqMyVgGBw4xNHLQMNMCBwwyImmEoXEyR44bNFoovWHmRgwbHcXYMPMTIhk7FHEkxfEQTh0xFGnIoEEDKBw4CzfmwDHj4Rw4E3XM2ApD7sMxbfDqkOF1xgwZQEHmZStCjBs3FJXa2FxRRBs3GBk-lgGj7efQMXLAmGHjYZ0YGdHQoQNnjo4XL868cSGGzcs3Z1yMedPmxZw2YeTQfgPnxZgZZsLMoNHTqU4cZVSHyVG0ZIwyM52OgVGGdcO5ZBrGIDNGjBnwYkyK6Qm9THbqY4ri-FFnDsIkZPRQBhk0lEdXDqRxRFcY0eEQwwwNwXDDdulxFMMYOcz0WAw42EAeDe6NMQZHYcQghmMlGnWVWORxUQcMMMhgwxxv1CFHfgD2wNiDj7kIo4xtlNGGGP8FaEMSQcQwBw5G4EGHDETIIEcSNEghHRNQFOGEFGUMUUMeR3C4Bm0y2CFHDDKw8YQVTzyRRRo4nFFGC2qscUQLX1RxQxt5nLmSFDQwsQQTXNUAQx15yOCGEjUMYYQdQ1zxxFxoyIBFGnEkIcMaNtxxhgxfsGbHG1gYAUMVVcSxxBRBfHFGFUkQIUUVafgYow1wxNDDYNQV5tNDZBAXWxlu0BFGGgiFIZywh4UR2BYQdvGQewvB4AIMnclhh2KkuVZHGhmZMRh5UM3pYBgwoIRDSC1MZZBWN9jgkldi5OAYDGWloZgIOcTggmouyOVCQzSUJccX-mbU77_WCkxwWXWEkVETb-iRBhtshPFCDdeCgMIVabgR7B1zgOAEFSDEYC0MO4AAshs20NAyHjG3rK1oNFybAghHlDHGGm-8QJrK2GILghFpyFGGGW_g8cKDOeN72FA6iODEE2W9cbCIGV1dlm8ZaVnWQXZ8oTQbFOl0A182OFWaCHKcgdliNeBwA7BllC2GHAsZhXfZbbxBxmQ2dEaGHG8s1JcIbyikQ10iwIE4Hnks5BDcX0jedOU6XK40WVXLRpttuBFU7LHJLltcWXNomxHixtKhdQt1uJEGHTJZS8avjLeO1mIw2Ctj24YCS7UIB32xe1l0tEERVg8WTtflzfvEEPTmTe8gZQaZXcZfXzj7_ErZU_VQ3uGzgRAdjkNb0XTSQiRGYMgvHRQbE7UFtg5vjxFa_2hYyBZEUJYCPsSABDygAhPIQAQWsAt9UEBAAA%3D%3D&s=48fdce2c394486849191e697917d0a30c8bb4875477832caa3f3cd08c940bd971741361445&w=t&r=1&d=961&priv=true
200 OK 24 B URL GET pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XIkBFGRg4yZnC0gBFGTI0WNMbQiNFCzBgyNlrYkEEmx5gaZWrcmHFDhoiHYeqMyVgGBw4xNHLQMNMCBwwyImmEoXEyR44bNFoovWHmRgwbHcXYMPMTIhk7FHEkxfEQTh0xFGnIoEEDKBw4CzfmwDHj4Rw4E3XM2ApD7sMxbfDqkOF1xgwZQEHmZStCjBs3FJXa2FxRRBs3GBk-lgGj7efQMXLAmGHjYZ0YGdHQoQNnjo4XL868cSGGzcs3Z1yMedPmxZw2YeTQfgPnxZgZZsLMoNHTqU4cZVSHyVG0ZIwyM52OgVGGdcO5ZBrGIDNGjBnwYkyK6Qm9THbqY4ri-FFnDsIkZPRQBhk0lEdXDqRxRFcY0eEQwwwNwXDDdulxFMMYOcz0WAw42EAeDe6NMQZHYcQghmMlGnWVWORxUQcMMMhgwxxv1CFHfgD2wNiDj7kIo4xtlNGGGP8FaEMSQcQwBw5G4EGHDETIIEcSNEghHRNQFOGEFGUMUUMeR3C4Bm0y2CFHDDKw8YQVTzyRRRo4nFFGC2qscUQLX1RxQxt5nLmSFDQwsQQTXNUAQx15yOCGEjUMYYQdQ1zxxFxoyIBFGnEkIcMaNtxxhgxfsGbHG1gYAUMVVcSxxBRBfHFGFUkQIUUVafgYow1wxNDDYNQV5tNDZBAXWxlu0BFGGgiFIZywh4UR2BYQdvGQewvB4AIMnclhh2KkuVZHGhmZMRh5UM3pYBgwoIRDSC1MZZBWN9jgkldi5OAYDGWloZgIOcTggmouyOVCQzSUJccX-mbU77_WCkxwWXWEkVETb-iRBhtshPFCDdeCgMIVabgR7B1zgOAEFSDEYC0MO4AAshs20NAyHjG3rK1oNFybAghHlDHGGm-8QJrK2GILghFpyFGGGW_g8cKDOeN72FA6iODEE2W9cbCIGV1dlm8ZaVnWQXZ8oTQbFOl0A182OFWaCHKcgdliNeBwA7BllC2GHAsZhXfZbbxBxmQ2dEaGHG8s1JcIbyikQ10iwIE4Hnks5BDcX0jedOU6XK40WVXLRpttuBFU7LHJLltcWXNomxHixtKhdQt1uJEGHTJZS8avjLeO1mIw2Ctj24YCS7UIB32xe1l0tEERVg8WTtflzfvEEPTmTe8gZQaZXcZfXzj7_ErZU_VQ3uGzgRAdjkNb0XTSQiRGYMgvHRQbE7UFtg5vjxFa_2hYyBZEUJYCPsSABDygAhPIQAQWsAt9UEBAAA%3D%3D&s=48fdce2c394486849191e697917d0a30c8bb4875477832caa3f3cd08c940bd971741361445&w=t&r=1&d=961&priv=true
IP
ASN #24940 Hetzner Online GmbH
Requested by https://tsyndicate.com/iframes2/118fb12710e542fe984542b9473a5b6a.html?
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintDD:F4:01:F5:4B:E9:C1:58:A8:6C:99:A8:32:23:75:72:3B:76:00:F4
ValiditySat, 25 Jan 2025 00:07:38 GMT - Fri, 25 Apr 2025 00:07:37 GMT
File type ASCII text, with no line terminators
Hash 0959ba36d476b6dc1994ba3c678b07c4
d30b94da72daa02766965206a85b7e0356375f5e
897410b87e27e3dfba3a7d6caab315a5e69cc941bb96d91fc74878a9b051843a
GET /api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XIkBFGRg4yZnC0gBFGTI0WNMbQiNFCzBgyNlrYkEEmx5gaZWrcmHFDhoiHYeqMyVgGBw4xNHLQMNMCBwwyImmEoXEyR44bNFoovWHmRgwbHcXYMPMTIhk7FHEkxfEQTh0xFGnIoEEDKBw4CzfmwDHj4Rw4E3XM2ApD7sMxbfDqkOF1xgwZQEHmZStCjBs3FJXa2FxRRBs3GBk-lgGj7efQMXLAmGHjYZ0YGdHQoQNnjo4XL868cSGGzcs3Z1yMedPmxZw2YeTQfgPnxZgZZsLMoNHTqU4cZVSHyVG0ZIwyM52OgVGGdcO5ZBrGIDNGjBnwYkyK6Qm9THbqY4ri-FFnDsIkZPRQBhk0lEdXDqRxRFcY0eEQwwwNwXDDdulxFMMYOcz0WAw42EAeDe6NMQZHYcQghmMlGnWVWORxUQcMMMhgwxxv1CFHfgD2wNiDj7kIo4xtlNGGGP8FaEMSQcQwBw5G4EGHDETIIEcSNEghHRNQFOGEFGUMUUMeR3C4Bm0y2CFHDDKw8YQVTzyRRRo4nFFGC2qscUQLX1RxQxt5nLmSFDQwsQQTXNUAQx15yOCGEjUMYYQdQ1zxxFxoyIBFGnEkIcMaNtxxhgxfsGbHG1gYAUMVVcSxxBRBfHFGFUkQIUUVafgYow1wxNDDYNQV5tNDZBAXWxlu0BFGGgiFIZywh4UR2BYQdvGQewvB4AIMnclhh2KkuVZHGhmZMRh5UM3pYBgwoIRDSC1MZZBWN9jgkldi5OAYDGWloZgIOcTggmouyOVCQzSUJccX-mbU77_WCkxwWXWEkVETb-iRBhtshPFCDdeCgMIVabgR7B1zgOAEFSDEYC0MO4AAshs20NAyHjG3rK1oNFybAghHlDHGGm-8QJrK2GILghFpyFGGGW_g8cKDOeN72FA6iODEE2W9cbCIGV1dlm8ZaVnWQXZ8oTQbFOl0A182OFWaCHKcgdliNeBwA7BllC2GHAsZhXfZbbxBxmQ2dEaGHG8s1JcIbyikQ10iwIE4Hnks5BDcX0jedOU6XK40WVXLRpttuBFU7LHJLltcWXNomxHixtKhdQt1uJEGHTJZS8avjLeO1mIw2Ctj24YCS7UIB32xe1l0tEERVg8WTtflzfvEEPTmTe8gZQaZXcZfXzj7_ErZU_VQ3uGzgRAdjkNb0XTSQiRGYMgvHRQbE7UFtg5vjxFa_2hYyBZEUJYCPsSABDygAhPIQAQWsAt9UEBAAA%3D%3D&s=48fdce2c394486849191e697917d0a30c8bb4875477832caa3f3cd08c940bd971741361445&w=t&r=1&d=961&priv=true HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tsyndicate.com/
Cookie: cookie_user_id=f390ed8e-81a0-48f8-a4ad-976bc71b9330; bfq=APeIECNCx5YYOWjYWBijCwsRYwoedCiijMQYN2jEoEHjBg4aNbr0URAQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: text/javascript
content-length: 24
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
GET tsvideo.sacdnssedge.com/video/ol_48e44c38c38b9aec56ee76644826c7d8.mp4
206 Partial Content 156 kB URL GET tsvideo.sacdnssedge.com/video/ol_48e44c38c38b9aec56ee76644826c7d8.mp4
IP
ASN #60068 Datacamp Limited
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerLet's Encrypt
Subject1306075136.rsc.cdn77.org
Fingerprint72:2A:12:45:78:F3:AD:82:ED:8D:64:28:9A:2E:BE:76:B6:B9:8C:91
ValidityWed, 12 Feb 2025 06:52:45 GMT - Tue, 13 May 2025 06:52:44 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
Size 156 kB (155621 bytes)
Hash fa919b77aa9ac68a80c5546134dc8924
5a629d133d5892917ae1a177646b0fa38dccfaba
c76f18bc05164d46e7ad4febb913d5aa751a8b7e1e59c46cb78c366954b5da4e
GET /video/ol_48e44c38c38b9aec56ee76644826c7d8.mp4 HTTP/1.1
Host: tsvideo.sacdnssedge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Fri, 07 Mar 2025 15:30:48 GMT
content-type: video/mp4
content-length: 2331721
access-control-expose-headers: Content-Disposition
content-disposition: inline; filename="ol_48e44c38c38b9aec56ee76644826c7d8.mp4"
etag: "fa9764e4b824a53f7f0dd8686895baa4"
expires: Fri, 07 Mar 2025 16:20:06 GMT
last-modified: Fri, 07 Mar 2025 15:20:06 GMT
cache-control: max-age=7200
access-control-allow-origin: *
access-control-allow-credentials: true
cf-cache-status: HIT
age: 1
cf-ray: 91cb133eeb3565b9-FRA
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1763&min_rtt=1134&rtt_var=861&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2834&recv_bytes=1240&delivery_rate=2421404&cwnd=12&unsent_bytes=0&cid=1a6b502653fb5e54&ts=26&x=0"
x-77-nzt: EgwBuUwJCQG3gAIAAAwBT3/TDgW1AAAAAA
x-77-nzt-ray: 8e11d0365212a9912811cb672794b600
x-77-cache: HIT
x-77-age: 640
server: CDN77-Turbo
x-77-pop: stockholmSE
content-range: bytes 0-2331720/2331721
X-Firefox-Spdy: h2
GET maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
200 OK 121 kB URL GET maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint53:78:04:46:B4:48:0A:28:30:67:23:9B:D5:25:73:FE:FA:81:58:19
ValidityThu, 16 Jan 2025 00:27:53 GMT - Wed, 16 Apr 2025 01:27:34 GMT
File type ASCII text, with very long lines (65371)
Size 121 kB (121200 bytes)
Hash ec3bb52a00e176a7181d454dffaea219
6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68
f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c
GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: "ec3bb52a00e176a7181d454dffaea219"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 11/07/2024 07:30:56
cdn-proxyver: 1.06
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1108
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requesttime: 1
cdn-requestid: 8663f3fe3c3fbc1cabad4998c117d08f
cdn-cache: HIT
cf-cache-status: HIT
age: 1690755
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 91cb22c22f01b51b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET hentaiera.com/css/fastselect.css
200 OK 5.2 kB URL GET hentaiera.com/css/fastselect.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type ASCII text, with very long lines (5419), with no line terminators
Hash b9a4ad3b009aea0753dd2f3abdbbf559
06e9b1c67a997d3c1f378a25f63691e4b28fb38d
832f3e2534b59ce9f122b86e9accc28c7beec1ec94535eb895342080e06ff7da
GET /css/fastselect.css HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Tue, 04 Mar 2025 05:14:52 GMT
last-modified: Mon, 05 Apr 2021 11:07:00 GMT
etag: W/"1434-606aef54-e678f970f4358dd7;br"
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 545818
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HGBQWo2Z53pLLWTaRuGKFUduCtGzMV%2F7fq9dCcYvC%2B915yzh9nXJ697vUnEP30sMibK6FJieXo0FiXNs92Ao6UG4OnXR0pyJh%2B7p1h6th6HqAjMdYJb1jeEQFbef%2BbsQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1d9bd568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=32&recv=12&lost=0&retrans=0&sent_bytes=22157&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=380&x=1", cfExtPri, cfHdrFlush;dur=5
GET hentaiera.com/favicon.ico
200 OK 15 kB URL GET hentaiera.com/favicon.ico
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Hash ee8a593b5446ed9d05e58994944d7888
156ae4886cc254248a1d0e1e7226a35cfbb7ab9d
1decba84f1724d32b3106a44eee6b9d6feffb1ee98529361dbb967d5c5f46a8e
GET /favicon.ico HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u; _ga_C376F1J8JZ=GS1.1.1741361446.1.0.1741361446.0.0.0; _ga=GA1.1.710454173.1741361447
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: image/x-icon
cache-control: public, max-age=31536000
expires: Wed, 05 Mar 2025 08:05:56 GMT
last-modified: Mon, 05 Apr 2021 11:06:58 GMT
etag: W/"3c2e-606aef52-116c241012704b7f;;;"
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 473413
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K%2Bni9qrJfZ04enzufGE%2Bh0QEe7YS5XeEhRZxcdF9sMwN6c6u%2FWjZUd2%2FF%2BbSKjQH4KJVvQuuta3pUWFOT1fUonfRREsTazuygZqPb1PmQEGpL12UE4JI6govBml6vzi8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91cb22d5ce44568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=10862&min_rtt=1142&rtt_var=7634&sent=2223&recv=46&lost=312&retrans=313&sent_bytes=2607797&recv_bytes=14223&delivery_rate=4421402&cwnd=334350&unsent_bytes=0&cid=b12d7a58a8981a72&ts=3559&x=1", cfExtPri, cfHdrFlush;dur=0
POST go.blcdog.com/app/domain-checker/get-check
200 OK 198 B URL POST go.blcdog.com/app/domain-checker/get-check
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerLet's Encrypt
Subjectblcdog.com
Fingerprint57:8F:1F:6B:97:7B:9F:52:34:BD:D8:1B:81:39:C9:9B:93:6B:1A:45
ValidityMon, 03 Mar 2025 17:34:12 GMT - Sun, 01 Jun 2025 17:34:11 GMT
File type ASCII text, with no line terminators
Hash 448cc769fd4a49119343d555ccf0eba6
31c5c8775162633f5ddfbfc581c3db6130ff2a05
c3426de7cc1900e0c9c1ed47fc8b6ef0f6b814711ea7041645c4271560bfbb8a
POST /app/domain-checker/get-check HTTP/1.1
Host: go.blcdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.blcdog.com/
Origin: https://creative.blcdog.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: application/json
access-control-allow-origin: https://creative.blcdog.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
content-encoding: gzip
vary: accept-encoding
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 91cb22d74e3bb4f4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Hash 015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hentaiera.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Mar 2025 13:00:46 GMT
expires: Tue, 03 Mar 2026 13:00:46 GMT
cache-control: public, max-age=31536000
age: 354599
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint53:78:04:46:B4:48:0A:28:30:67:23:9B:D5:25:73:FE:FA:81:58:19
ValidityThu, 16 Jan 2025 00:27:53 GMT - Wed, 16 Apr 2025 01:27:34 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hentaiera.com
DNT: 1
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:45 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:21:45
cdn-edgestorageid: 1029
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 26af6b8503bd7ab1585abf37729e2f9e
cdn-cache: HIT
cf-cache-status: HIT
age: 1936449
accept-ranges: bytes
priority: u=4,i=?0
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 91cb22c83d3a712f-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET go.blcdog.com/api/models?landing=WidgetV4Universal&masterSmartpopId=1605&quality=240p&smartpopId=1547&stripcashR=0&forceClient=1&usePreroll=0&modelPromotion=1&limit=4&sortBy=paidUsers
200 OK 7.4 kB URL GET go.blcdog.com/api/models?landing=WidgetV4Universal&masterSmartpopId=1605&quality=240p&smartpopId=1547&stripcashR=0&forceClient=1&usePreroll=0&modelPromotion=1&limit=4&sortBy=paidUsers
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerLet's Encrypt
Subjectblcdog.com
Fingerprint57:8F:1F:6B:97:7B:9F:52:34:BD:D8:1B:81:39:C9:9B:93:6B:1A:45
ValidityMon, 03 Mar 2025 17:34:12 GMT - Sun, 01 Jun 2025 17:34:11 GMT
File type troff or preprocessor input, ASCII text, with very long lines (7859), with no line terminators
Hash e9fb785ca7cb0d1492ab719fd664f2eb
1302baee69a8dcfaecbfb3bf1a38dbb8e32b167e
9e2635d27e6cb334f24e35e053c0f5c17894061e6eada6a25793ac45c7fc091c
GET /api/models?landing=WidgetV4Universal&masterSmartpopId=1605&quality=240p&smartpopId=1547&stripcashR=0&forceClient=1&usePreroll=0&modelPromotion=1&limit=4&sortBy=paidUsers HTTP/1.1
Host: go.blcdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.blcdog.com/
Origin: https://creative.blcdog.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: application/json
access-control-allow-origin: https://creative.blcdog.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
content-encoding: gzip
last-modified: Fri, 07 Mar 2025 15:30:38 GMT
cf-cache-status: HIT
age: 9
priority: u=4,i=?0
server: cloudflare
cf-ray: 91cb22d72c407130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;700&display=swap
200 OK 18 kB URL GET fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;700&display=swap
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintF1:11:17:AF:9C:89:34:EE:D5:CB:84:40:84:EA:01:19:A9:F6:ED:C2
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type ASCII text, with very long lines (1572)
Hash 3b561ec187f248d8ed60615b866be327
9d2fdf8b2f9ea537a638f3280656348ce4d0a44b
b419d993477ee546303f5f56d3a3a8f6b35ead8db1250ce6c5ec27a17466295c
GET /css2?family=Open+Sans:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 07 Mar 2025 15:30:44 GMT
date: Fri, 07 Mar 2025 15:30:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET a.pemsrv.com/popunder1000.js
200 OK 103 kB URL GET a.pemsrv.com/popunder1000.js
IP
ASN #60068 Datacamp Limited
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerLet's Encrypt
Subjectpemsrv.com
FingerprintC7:2A:44:43:30:75:58:69:67:28:0B:87:46:C1:BE:7B:47:5D:D8:A3
ValidityMon, 27 Jan 2025 10:55:05 GMT - Sun, 27 Apr 2025 10:55:04 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 103 kB (102707 bytes)
Hash 3fec6ae2bb7373e59566308f941c97b9
c9a9714e94e18d2c05521a7cbe929922c41d3625
00bb68dc8be3a532ebe10de2c25ccc9ad92349764ff2e6d3a2acc6fa198d1bf8
GET /popunder1000.js HTTP/1.1
Host: a.pemsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:45 GMT
content-type: application/javascript
etag: W/"c9a9714e94e18d2c05521a7cbe9"
expires: Thu, 06 Mar 2025 19:07:12 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBX63NDQH3nSEAAAwBuUwKCQH3CgAAAAwBw7WvBgG3lgAAAA
x-77-nzt-ray: 2a494a156269f8bd4a11cb67022c5c35
x-77-cache: HIT
x-77-age: 8605
vary: Accept-Encoding
content-encoding: gzip
server: CDN77-Turbo
x-77-pop: osloNO
X-Firefox-Spdy: h2
GET tsyndicate.com/do2/c4b68301fe174158a1260232de513fcc/vast?t=im-slider¶m3=video.instant.message.js&keywords=View%20and%20download%20Hametsu%20no%20Itte%207%20hentai%20doujinshi%20free%20on%20HentaiEra%2CHametsu%20no%20Itte%207%20-%20HentaiEra&w=1280&h=1024&tz=0
200 OK 5.7 kB URL GET tsyndicate.com/do2/c4b68301fe174158a1260232de513fcc/vast?t=im-slider¶m3=video.instant.message.js&keywords=View%20and%20download%20Hametsu%20no%20Itte%207%20hentai%20doujinshi%20free%20on%20HentaiEra%2CHametsu%20no%20Itte%207%20-%20HentaiEra&w=1280&h=1024&tz=0
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintDD:F4:01:F5:4B:E9:C1:58:A8:6C:99:A8:32:23:75:72:3B:76:00:F4
ValiditySat, 25 Jan 2025 00:07:38 GMT - Fri, 25 Apr 2025 00:07:37 GMT
File type XML document, ASCII text, with very long lines (5740), with no line terminators
Hash 11b97f3ed0f7441a46f066599bb8e81d
e9b81fe282861caefaccf3dff15444c2bd0c0b7d
946ba3ee5fc08abf516efdc2df70b6c2445a580723523b9697b5e44dd5296c96
GET /do2/c4b68301fe174158a1260232de513fcc/vast?t=im-slider¶m3=video.instant.message.js&keywords=View%20and%20download%20Hametsu%20no%20Itte%207%20hentai%20doujinshi%20free%20on%20HentaiEra%2CHametsu%20no%20Itte%207%20-%20HentaiEra&w=1280&h=1024&tz=0 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentaiera.com
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 07 Mar 2025 15:30:46 GMT
content-type: application/xml; charset=utf-8
access-control-allow-origin: https://hentaiera.com
access-control-allow-methods: POST, GET, HEAD
access-control-allow-headers: Accept, X-Requested-With, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Legacy
access-control-allow-credentials: true
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-vast: 3.0
set-cookie: cookie_user_id=78a46c80-12e3-4418-bbfb-396fa7a06f38; expires=Sun, 07 Sep 2025 15:30:46 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
bfq=APeIECNCxxYaM2DciAEDRhcWIsYU3BLjoYgyE2PcoBGDBo0bOGjY6NJH; expires=Sat, 08 Mar 2025 15:30:46 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
GET hentaiera.com/gallery/1273738/
200 OK 37 kB URL User Request GET hentaiera.com/gallery/1273738/
IP
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gallery/1273738/ HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:43 GMT
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hg%2FJZpLbZqCWQJdfnIMAFQwuRvTOfp8SyuxXFNoZMQrfNbtGbW5WhRBEVeo9BIh7ICUVnWm8HdKPUK6KI5qn0I79JDejA33PXJ2fTv%2Fhk2Pu5Y07U%2FSTj9tAEJOEkQNy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22be289bb51e-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=5918&min_rtt=507&rtt_var=10840&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3206&recv_bytes=1135&delivery_rate=7006451&cwnd=254&unsent_bytes=0&cid=370def5618b8f26c&ts=246&x=0"
X-Firefox-Spdy: h2
GET hentaiera.com/css/trophies_h4tzsh.css
200 OK 26 kB URL GET hentaiera.com/css/trophies_h4tzsh.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type ASCII text, with very long lines (26205), with no line terminators
Hash 26294eff0c882d5e3e6edd49875a85a2
1ebb9d26058b47d70923d19ce7effa2aa60abdda
3f3aace0842611c477e8794be6a1965888046de12385a50d2289d0a818c02a4e
GET /css/trophies_h4tzsh.css HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Thu, 06 Mar 2025 05:17:14 GMT
last-modified: Thu, 26 May 2022 10:44:22 GMT
etag: W/"665d-628f5a06-e38366bffcf23361;br"
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 130283
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZZa%2FfsmxBHH%2F53vtAYzLpRapX%2BnlljHtAgWPyP2z7B4BPTF5EFy67jFFJRIak8YA9EtjqHND3dpwVi4cWwrMRNzkVpA87ZQsc754fWMqVH2UrIw%2BC5vhkMrMZzGpMs63"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1d9b6568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=21&recv=12&lost=0&retrans=0&sent_bytes=11472&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=368&x=1", cfExtPri, cfHdrFlush;dur=0
GET www.googletagmanager.com/gtag/js?id=UA-8082650-32&cx=c>m=45je5360v885106432za200&tag_exp=102067808~102482433~102539968~102587591~102640600~102643510~102717422~102788824
200 OK 256 kB URL GET www.googletagmanager.com/gtag/js?id=UA-8082650-32&cx=c>m=45je5360v885106432za200&tag_exp=102067808~102482433~102539968~102587591~102640600~102643510~102717422~102788824
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (5268)
Size 256 kB (255825 bytes)
Hash 99cd2083bd2cca01f9e6a42b3a4e5593
4df5c7f22339b46b502836b7b6e345fbb7a11da1
d03f800078fa5e1ab9a4b1972a0f874cb3e2aec3b10b4002d455834be4d9fd3c
GET /gtag/js?id=UA-8082650-32&cx=c>m=45je5360v885106432za200&tag_exp=102067808~102482433~102539968~102587591~102640600~102643510~102717422~102788824 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 07 Mar 2025 15:30:47 GMT
expires: Fri, 07 Mar 2025 15:30:47 GMT
cache-control: private, max-age=900
last-modified: Fri, 07 Mar 2025 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1003:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1003:0
report-to: {"group":"ascgcycc:1003:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1003:0"}],}
server: Google Tag Manager
content-length: 90752
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET img.doppiocdn.com/thumbs/1741361370/165500719_webp
200 OK 17 kB URL GET img.doppiocdn.com/thumbs/1741361370/165500719_webp
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerGoogle Trust Services
Subjectdoppiocdn.com
FingerprintD4:37:B9:D4:35:04:38:4C:DB:FF:48:66:41:B9:8C:CA:FC:01:51:95
ValidityFri, 07 Feb 2025 02:05:59 GMT - Thu, 08 May 2025 03:05:57 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
Hash f169da3a325772f2addde6d41a61561a
cdcacba911242dd7ebc61efb9267a0ba1abde1e9
26336b2d25efb67ba1c2d40484337369407db83ea25bb62139d3270ce27ed059
GET /thumbs/1741361370/165500719_webp HTTP/1.1
Host: img.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.blcdog.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: image/webp
content-length: 17288
etag: "f169da3a325772f2addde6d41a61561a"
last-modified: Fri, 07 Mar 2025 15:28:50 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 74
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 91cb22d7fc297129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET hentaiera.com/css/main_zk4t1iocu8.css
200 OK 84 kB URL GET hentaiera.com/css/main_zk4t1iocu8.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type ASCII text, with very long lines (539)
Hash 502339dbc1525585fa5fa43f09316297
b3c79a1f1d4f0c3b0cf2affba37292950df9c109
b60aba2cf83d7c32fde12d98a2385adbc249b2cb520d894ac4f4152261940829
GET /css/main_zk4t1iocu8.css HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Mon, 10 Mar 2025 15:21:28 GMT
last-modified: Fri, 14 Feb 2025 16:24:09 GMT
etag: W/"1498b-67af6e29-1ca2c9c9f1161c52;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 346151
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lp%2FVehg86c%2FDT1u2esIAvjamFrwKxBAOs4jvtnKpnxHvDuSGdp9ouw3x16yswk1EYb0VpXDmphxmn6%2Fth4j8rphRc1uXpQicoKhhAnbEdEaxfPfnGcTP%2BVMEbwpG7jn8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1d9a2568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=32&recv=12&lost=0&retrans=0&sent_bytes=22157&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=377&x=1", cfExtPri, cfHdrFlush;dur=8
GET code.jquery.com/ui/1.10.4/jquery-ui.js
200 OK 437 kB URL GET code.jquery.com/ui/1.10.4/jquery-ui.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (840)
Size 437 kB (436715 bytes)
Hash f67cca61831e93a137a45392a3d2c2e4
c52e96cf7ca8a481f739f57ee3b96167e03ca1f7
b69f1567863d760ef4dabec3eb29f349abca4b007dce36ab8926784a7babbe6c
GET /ui/1.10.4/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-6a9eb"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 07 Mar 2025 15:30:44 GMT
age: 4438444
x-served-by: cache-lga13621-LGA, cache-hel1410030-HEL
x-cache: HIT, HIT
x-cache-hits: 55, 11459
x-timer: S1741361444.347908,VS0,VE0
vary: Accept-Encoding
content-length: 107515
X-Firefox-Spdy: h2
GET pxl.tsyndicate.com/api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWXjjIR04C0XYCTNnosUzGcvEkEGDDI4aYlrggAGjRgsaNsakFFMGxowWOWCQyVHDRpkZZgqWEfEwTJ0xGWHYuBGTBg4ZLWKQMXOTRpgbOFTeMEOjxc8bNGCYGWNyjIwwRCGSsbMwBo0bMXA8hFNHTNsbOXDccAgRDkYdNmDgWPpwDpyJOmCyrJFjxsMxbf7ilYEXRtGpC204FiHGjZuFNGbAgMvyYRs3IBnOkCHDsgg4p1PHyDnDxsM6MTKioXNxjo4XL868cfEGzZwxcOTQmeNizJs2L-a0CaMczhs4L8bUiDGjRhgaZs7GoCq1zJgZW3HEGG2D64wxP1mrb6j-xk6ds200nipDTI0xMYyRA1Nv2WDDD3XMgVASZPRAxnpi2WdGDGLMcBJl2uUQXhgwBFiGDTXgQIYYZoiBgxj66UdDDgDKACBMOcRgA3hhqbcUGVYFGAYXdbAkgw1zvFGHHPAx2MNklfHoow1tlNEGTXIYaQcMWcCARBxPCGGFDUaQUUccTZAYRRlD0KHHG3l4GcYXM3xxBx5VxNGGEWcEgUYWR0gXRBtDaDHDEVfEsUQLQwxhhh1NKCHEGk7AUYMSd-BghRFskKGGGDlQcYQZSEyBBg5lyGCFHXPMQcSZZrmhxxxGNIGDEXpUIccTRdigxBGRyUAHE1-cUUUSREhRRRpKwvAjHDH0oFhLjRX7Yxh49ABDWmQ8p1sZbtARRhoIhdGctY-FgdgWMnYxF5ELweACSzbZxpkZ6a4bw2OwfZEcUjqoK5q7ctjxV0MPmQdbvLXdVkcaGWH1XUwrRSXDTy_REFcLYpCY0gw5tHcVh-1ZmFYaf4kQows5uUCDDC40RENacnwBckYjl3xyyjWsfBtaOojQxBt6pMEGG2G8UMO6IKBwRRpuVHvHHCA4QQUI6627AwhHuzHj1HhcDUK_qtGwbgogHGHeGm-80BqE68UAghFpyFGGGW_g8QJ3Xk_7GL4iOPFEWm-0PAbeeqfFBt5FOEFtGXZ84TYbbdVwA1a1reSaHGd8poMMIVYkwkGJiyHHQjjItTniX7TxBhkLyTDYvJvL8cZCm72hUGLnxp3HQny1nJztuD_E-RdmJsXy27rxBodvwBGU7bbdfgtdWndktB5JaaEhvep2vzZDRnakcdBwSHcURrYuNFlqGGeU4YIaChXWb0aua0tH3y3U4UYadERlgwtkyMD3HO_TAcZq0BrR4EA0vsPbQb7Qv7TQoQ13kVht3AITi7TBfwwBC3dsQEEDAUwtiiuDYb4grghusIMBS1wY2ICQ5SxkCzOIgbkgIgbEjM4MRmGDR14zuHQ9JjWuGYP1dLAFEaTliA9BohGTyMQlOlGJR-xCHxQQEA%3D%3D&s=83ff1d7509c5099491a2acf89419043a2c03a74e2460519444630befc566415d1741361446
200 OK 43 B URL GET pxl.tsyndicate.com/api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWXjjIR04C0XYCTNnosUzGcvEkEGDDI4aYlrggAGjRgsaNsakFFMGxowWOWCQyVHDRpkZZgqWEfEwTJ0xGWHYuBGTBg4ZLWKQMXOTRpgbOFTeMEOjxc8bNGCYGWNyjIwwRCGSsbMwBo0bMXA8hFNHTNsbOXDccAgRDkYdNmDgWPpwDpyJOmCyrJFjxsMxbf7ilYEXRtGpC204FiHGjZuFNGbAgMvyYRs3IBnOkCHDsgg4p1PHyDnDxsM6MTKioXNxjo4XL868cfEGzZwxcOTQmeNizJs2L-a0CaMczhs4L8bUiDGjRhgaZs7GoCq1zJgZW3HEGG2D64wxP1mrb6j-xk6ds200nipDTI0xMYyRA1Nv2WDDD3XMgVASZPRAxnpi2WdGDGLMcBJl2uUQXhgwBFiGDTXgQIYYZoiBgxj66UdDDgDKACBMOcRgA3hhqbcUGVYFGAYXdbAkgw1zvFGHHPAx2MNklfHoow1tlNEGTXIYaQcMWcCARBxPCGGFDUaQUUccTZAYRRlD0KHHG3l4GcYXM3xxBx5VxNGGEWcEgUYWR0gXRBtDaDHDEVfEsUQLQwxhhh1NKCHEGk7AUYMSd-BghRFskKGGGDlQcYQZSEyBBg5lyGCFHXPMQcSZZrmhxxxGNIGDEXpUIccTRdigxBGRyUAHE1-cUUUSREhRRRpKwvAjHDH0oFhLjRX7Yxh49ABDWmQ8p1sZbtARRhoIhdGctY-FgdgWMnYxF5ELweACSzbZxpkZ6a4bw2OwfZEcUjqoK5q7ctjxV0MPmQdbvLXdVkcaGWH1XUwrRSXDTy_REFcLYpCY0gw5tHcVh-1ZmFYaf4kQows5uUCDDC40RENacnwBckYjl3xyyjWsfBtaOojQxBt6pMEGG2G8UMO6IKBwRRpuVHvHHCA4QQUI6627AwhHuzHj1HhcDUK_qtGwbgogHGHeGm-80BqE68UAghFpyFGGGW_g8QJ3Xk_7GL4iOPFEWm-0PAbeeqfFBt5FOEFtGXZ84TYbbdVwA1a1reSaHGd8poMMIVYkwkGJiyHHQjjItTniX7TxBhkLyTDYvJvL8cZCm72hUGLnxp3HQny1nJztuD_E-RdmJsXy27rxBodvwBGU7bbdfgtdWndktB5JaaEhvep2vzZDRnakcdBwSHcURrYuNFlqGGeU4YIaChXWb0aua0tH3y3U4UYadERlgwtkyMD3HO_TAcZq0BrR4EA0vsPbQb7Qv7TQoQ13kVht3AITi7TBfwwBC3dsQEEDAUwtiiuDYb4grghusIMBS1wY2ICQ5SxkCzOIgbkgIgbEjM4MRmGDR14zuHQ9JjWuGYP1dLAFEaTliA9BohGTyMQlOlGJR-xCHxQQEA%3D%3D&s=83ff1d7509c5099491a2acf89419043a2c03a74e2460519444630befc566415d1741361446
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintDD:F4:01:F5:4B:E9:C1:58:A8:6C:99:A8:32:23:75:72:3B:76:00:F4
ValiditySat, 25 Jan 2025 00:07:38 GMT - Fri, 25 Apr 2025 00:07:37 GMT
File type GIF image data, version 89a, 1 x 1
Hash ba036c43037cfe89320d1ef7b64cd43f
88c72d3e26047eb1e45e5564a76427734f120efe
42cb846e07917f6731406e500f24aeb2e88c42cda124eaa59e08c5331cad8bcb
GET /api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWXjjIR04C0XYCTNnosUzGcvEkEGDDI4aYlrggAGjRgsaNsakFFMGxowWOWCQyVHDRpkZZgqWEfEwTJ0xGWHYuBGTBg4ZLWKQMXOTRpgbOFTeMEOjxc8bNGCYGWNyjIwwRCGSsbMwBo0bMXA8hFNHTNsbOXDccAgRDkYdNmDgWPpwDpyJOmCyrJFjxsMxbf7ilYEXRtGpC204FiHGjZuFNGbAgMvyYRs3IBnOkCHDsgg4p1PHyDnDxsM6MTKioXNxjo4XL868cfEGzZwxcOTQmeNizJs2L-a0CaMczhs4L8bUiDGjRhgaZs7GoCq1zJgZW3HEGG2D64wxP1mrb6j-xk6ds200nipDTI0xMYyRA1Nv2WDDD3XMgVASZPRAxnpi2WdGDGLMcBJl2uUQXhgwBFiGDTXgQIYYZoiBgxj66UdDDgDKACBMOcRgA3hhqbcUGVYFGAYXdbAkgw1zvFGHHPAx2MNklfHoow1tlNEGTXIYaQcMWcCARBxPCGGFDUaQUUccTZAYRRlD0KHHG3l4GcYXM3xxBx5VxNGGEWcEgUYWR0gXRBtDaDHDEVfEsUQLQwxhhh1NKCHEGk7AUYMSd-BghRFskKGGGDlQcYQZSEyBBg5lyGCFHXPMQcSZZrmhxxxGNIGDEXpUIccTRdigxBGRyUAHE1-cUUUSREhRRRpKwvAjHDH0oFhLjRX7Yxh49ABDWmQ8p1sZbtARRhoIhdGctY-FgdgWMnYxF5ELweACSzbZxpkZ6a4bw2OwfZEcUjqoK5q7ctjxV0MPmQdbvLXdVkcaGWH1XUwrRSXDTy_REFcLYpCY0gw5tHcVh-1ZmFYaf4kQows5uUCDDC40RENacnwBckYjl3xyyjWsfBtaOojQxBt6pMEGG2G8UMO6IKBwRRpuVHvHHCA4QQUI6627AwhHuzHj1HhcDUK_qtGwbgogHGHeGm-80BqE68UAghFpyFGGGW_g8QJ3Xk_7GL4iOPFEWm-0PAbeeqfFBt5FOEFtGXZ84TYbbdVwA1a1reSaHGd8poMMIVYkwkGJiyHHQjjItTniX7TxBhkLyTDYvJvL8cZCm72hUGLnxp3HQny1nJztuD_E-RdmJsXy27rxBodvwBGU7bbdfgtdWndktB5JaaEhvep2vzZDRnakcdBwSHcURrYuNFlqGGeU4YIaChXWb0aua0tH3y3U4UYadERlgwtkyMD3HO_TAcZq0BrR4EA0vsPbQb7Qv7TQoQ13kVht3AITi7TBfwwBC3dsQEEDAUwtiiuDYb4grghusIMBS1wY2ICQ5SxkCzOIgbkgIgbEjM4MRmGDR14zuHQ9JjWuGYP1dLAFEaTliA9BohGTyMQlOlGJR-xCHxQQEA%3D%3D&s=83ff1d7509c5099491a2acf89419043a2c03a74e2460519444630befc566415d1741361446 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Cookie: cookie_user_id=f390ed8e-81a0-48f8-a4ad-976bc71b9330; bfq=APeIECNCx5YYOWjYWBijCwsRYwoedCiijMQYN2jEoEHjBg4aNbr0URAQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: image/gif
content-length: 43
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
GET img.doppiocdn.com/thumbs/1741361370/137667820_webp
200 OK 5.9 kB URL GET img.doppiocdn.com/thumbs/1741361370/137667820_webp
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerGoogle Trust Services
Subjectdoppiocdn.com
FingerprintD4:37:B9:D4:35:04:38:4C:DB:FF:48:66:41:B9:8C:CA:FC:01:51:95
ValidityFri, 07 Feb 2025 02:05:59 GMT - Thu, 08 May 2025 03:05:57 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 618cd4cbd7eeb93e98f7390023527311
954fbdcf090c8153d65fe3e8d43b6dc396bf5f5f
49fb0c4e0d4db3a623f373f297d83b933c8c317484d06b0980670d9ee065f1a0
GET /thumbs/1741361370/137667820_webp HTTP/1.1
Host: img.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.blcdog.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: image/webp
content-length: 5880
etag: "618cd4cbd7eeb93e98f7390023527311"
last-modified: Fri, 07 Mar 2025 15:28:56 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 38
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 91cb22d82c7e7129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET hentaiera.com/css/emoji.css
200 OK 1.8 kB URL GET hentaiera.com/css/emoji.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type ASCII text, with very long lines (1810), with no line terminators
Hash a4c32f51ecebc77444208c3897180028
a9459a1f61dfec7aee76aaf9a032e5e2bb1fa8ba
70602f89d07ccd92aab7a5dbf83abfc1095733e85e42c3352d3752cf934e2e81
GET /css/emoji.css HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=2193
alt-svc: h3=":443"; ma=86400
etag: W/"891-606aef54-bd6b165ec1317136;br"
expires: Wed, 05 Mar 2025 08:27:33 GMT
last-modified: Mon, 05 Apr 2021 11:07:00 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 478237
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WUNE7uG7c7jp1Xw3WeJu7sgPANNC8OBwsb17mP1zmDkb3KP9hJ7pI2cHJ3BBYhu3nIavwqAcvCuv4T%2FM3VqLK07jihlBW2vLHcxBLPelbnpH8%2BYUxRO03QqymbET18%2BH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1d9c6568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=31&recv=12&lost=0&retrans=0&sent_bytes=21723&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=373&x=1", cfExtPri, cfHdrFlush;dur=0
GET hentaiera.com/js/comments_86t67v.js
200 OK 16 kB URL GET hentaiera.com/js/comments_86t67v.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type JavaScript source, ASCII text, with very long lines (315)
Hash 9dc73d6a5903c9aaf111bb62b9659724
47dc7a5f5aa8f0bfd8bf564bc91418fb70e821dc
5b61ddfe5186d989e70633be7f65222c99e203423dfd632b4ea0da0a6c3ba4c2
GET /js/comments_86t67v.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
last-modified: Sat, 22 Feb 2025 18:22:31 GMT
etag: W/"3fa9-67ba15e7-2c1c3a5abeae4a2b;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6344
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BjcAZ%2BeA%2B0NPaKUE0usE%2FOASygl8aqBpYaTDVIHUx6v1R4%2FeD0aiiQK1lz2ouukjPD29UsE4yxmHfw5BymerM%2Frnm22Xu5EH%2Fepie%2Fw2Uqyi66tE9cvW1EU7Hpme1Qi4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1e9d9568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=32&recv=12&lost=0&retrans=0&sent_bytes=22157&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=383&x=1", cfExtPri, cfHdrFlush;dur=2
GET t.dtscout.com/pv/?_a=v&_h=hentaiera.com&_ss=36q245q4g9&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1j9b&_cb=_dtspv.c
200 OK 52 B URL GET t.dtscout.com/pv/?_a=v&_h=hentaiera.com&_ss=36q245q4g9&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1j9b&_cb=_dtspv.c
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectdtscout.com
Fingerprint4B:34:25:C3:56:75:F4:5A:B8:45:F5:43:DE:C9:89:43:D2:87:85:48
ValidityFri, 07 Mar 2025 01:14:02 GMT - Thu, 05 Jun 2025 02:13:46 GMT
File type ASCII text, with no line terminators
Hash c42d00d2e9bafec6ce45fc58e517e8ef
61f0ee1af34f5a5827af88edec9813b0ff1f494e
7aaa7fc42ff5810ea0daba819f0ac07cb32e63f5796ad09b77a5a60eb8a09a62
GET /pv/?_a=v&_h=hentaiera.com&_ss=36q245q4g9&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1j9b&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Cookie: m=1; df=1741361447
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: application/javascript
x-t: 0.195
x-c: 0
expires: Fri, 07 Mar 2025 15:30:46 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DOQ8eyWj6Sm0Je26UfuMtl%2B2ILPwtu7khsld0FdHmAIJojygKwCxIHicNdRucdk0M0MBP8CDNf3YzDkjXN2Q4dEEOhXn48qRXJIyeWUGYHuDiX1BJSadtGZYG%2FBaC%2FU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22d52fb056cc-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=2514&min_rtt=457&rtt_var=3059&sent=12&recv=13&lost=0&retrans=0&sent_bytes=5194&recv_bytes=1386&delivery_rate=6464285&cwnd=257&unsent_bytes=0&cid=0fb62d8c82c14233&ts=860&x=0"
X-Firefox-Spdy: h2
GET go.ohscprts.com/abc.gif?abTest=landingvast_aaa_base_4&abTestVariant=landingvast_aaa_base_4_paidUsers_69&action=sbSignupWithModelSoft&campaignId=c5135a4f2a1f31dec37f81076f43ce3228115817d90d19693df2b5c1c9764766&campaignType=smartpop&creativeId=64aa773d65c5f686d1966f029df63edc83b8a97f98d2fb375d94354688799472&iterationId=943842&landing=landingVAST&masterSmartpopId=2683&memberId=v0Y0HqOBV6FduqMbfQeCtzoydua_3_wxUqmFgAhYGsmAmCZ3GWqK-CCfvMJBkNp5Jw8VFldjb9TGfHSh8e2VvssDzoc2nzsFM8FzUrOE6JGmp2tL_gUIDRUi&onlineModels=Sofiasbus&p1=4600593&referrer=https%3A%2F%2Fhentaiera.com%2F&ruleId=29&segment=hls-Sofiasbus-1&smartpopId=13956&sourceId=792790&stripcashR=1&tag=girls&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=34019
200 OK 0 B URL GET go.ohscprts.com/abc.gif?abTest=landingvast_aaa_base_4&abTestVariant=landingvast_aaa_base_4_paidUsers_69&action=sbSignupWithModelSoft&campaignId=c5135a4f2a1f31dec37f81076f43ce3228115817d90d19693df2b5c1c9764766&campaignType=smartpop&creativeId=64aa773d65c5f686d1966f029df63edc83b8a97f98d2fb375d94354688799472&iterationId=943842&landing=landingVAST&masterSmartpopId=2683&memberId=v0Y0HqOBV6FduqMbfQeCtzoydua_3_wxUqmFgAhYGsmAmCZ3GWqK-CCfvMJBkNp5Jw8VFldjb9TGfHSh8e2VvssDzoc2nzsFM8FzUrOE6JGmp2tL_gUIDRUi&onlineModels=Sofiasbus&p1=4600593&referrer=https%3A%2F%2Fhentaiera.com%2F&ruleId=29&segment=hls-Sofiasbus-1&smartpopId=13956&sourceId=792790&stripcashR=1&tag=girls&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=34019
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectohscprts.com
Fingerprint48:C0:E3:D2:86:6D:F6:80:29:25:37:6B:BD:CB:C2:B5:49:9B:AA:44
ValidityMon, 17 Feb 2025 13:02:29 GMT - Sun, 18 May 2025 14:02:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /abc.gif?abTest=landingvast_aaa_base_4&abTestVariant=landingvast_aaa_base_4_paidUsers_69&action=sbSignupWithModelSoft&campaignId=c5135a4f2a1f31dec37f81076f43ce3228115817d90d19693df2b5c1c9764766&campaignType=smartpop&creativeId=64aa773d65c5f686d1966f029df63edc83b8a97f98d2fb375d94354688799472&iterationId=943842&landing=landingVAST&masterSmartpopId=2683&memberId=v0Y0HqOBV6FduqMbfQeCtzoydua_3_wxUqmFgAhYGsmAmCZ3GWqK-CCfvMJBkNp5Jw8VFldjb9TGfHSh8e2VvssDzoc2nzsFM8FzUrOE6JGmp2tL_gUIDRUi&onlineModels=Sofiasbus&p1=4600593&referrer=https%3A%2F%2Fhentaiera.com%2F&ruleId=29&segment=hls-Sofiasbus-1&smartpopId=13956&sourceId=792790&stripcashR=1&tag=girls&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=34019 HTTP/1.1
Host: go.ohscprts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 91cb22d9590ab4ee-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET hentaiera.com/css/achievement.css
200 OK 5.7 kB URL GET hentaiera.com/css/achievement.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type ASCII text, with very long lines (5723), with no line terminators
Hash 46da0ff44833e98c3c94632a9f97103b
dc45e4ec47a138853d7db3ca0eb25efa520395ef
c134eaa787ed5d49b85cc7a22bca25686f7ab5ac06e292706a9704615d99d33a
GET /css/achievement.css HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Wed, 05 Mar 2025 07:36:09 GMT
last-modified: Mon, 05 Apr 2021 11:07:00 GMT
etag: W/"1653-606aef54-8421139887e822db;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 558451
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GUaTEMNNyNhhfutCh9Nc8ULVT7O0r%2F6XBkS8%2BtYz6n4I35FbgS%2F8mtLBR2Es8GFQnwCuCsW5X4ROsZO600EayS9RwAwGydDPBMfyBupPIa5BstdHFPzz0JBfhr3e9fSc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1d9b9568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=29&recv=12&lost=0&retrans=0&sent_bytes=19479&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=371&x=1", cfExtPri, cfHdrFlush;dur=0
GET go.blcdog.com/smartpop/c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88?userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&sourceId=271332&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&p1=3947042
302 Found 701 B URL GET go.blcdog.com/smartpop/c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88?userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&sourceId=271332&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&p1=3947042
IP
Requested by https://tsyndicate.com/iframes2/118fb12710e542fe984542b9473a5b6a.html?
Certificate IssuerLet's Encrypt
Subjectblcdog.com
Fingerprint57:8F:1F:6B:97:7B:9F:52:34:BD:D8:1B:81:39:C9:9B:93:6B:1A:45
ValidityMon, 03 Mar 2025 17:34:12 GMT - Sun, 01 Jun 2025 17:34:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smartpop/c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88?userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&sourceId=271332&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&p1=3947042 HTTP/1.1
Host: go.blcdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tsyndicate.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 07 Mar 2025 15:30:46 GMT
content-length: 0
location: https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91cb22ceed297130-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET hentaiera.com/js/fastselect.standalone.min.js
200 OK 19 kB URL GET hentaiera.com/js/fastselect.standalone.min.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/fastselect.standalone.min.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
last-modified: Mon, 05 Apr 2021 11:07:08 GMT
etag: W/"4b5c-606aef5c-743926d07faffa41;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 707
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JFgX0KTm0H06PyPYntpA9%2FH6bgipj26PJ3%2FzyCgPfNwTCz6SLje6OYpzEEIw3MwdeAPFDjN2t1qbAgFKVhx1%2BmqKt%2FMCugXBDJcV%2BdDrenndKrlb04E3oKPpWose7Emx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c20a1d568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6616&min_rtt=3025&rtt_var=3188&sent=54&recv=16&lost=0&retrans=0&sent_bytes=46184&recv_bytes=7507&delivery_rate=424674&cwnd=24000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=402&x=1", cfExtPri, cfHdrFlush;dur=3
GET maxcdn.bootstrapcdn.com/bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2
200 OK 18 kB URL GET maxcdn.bootstrapcdn.com/bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint53:78:04:46:B4:48:0A:28:30:67:23:9B:D5:25:73:FE:FA:81:58:19
ValidityThu, 16 Jan 2025 00:27:53 GMT - Wed, 16 Apr 2025 01:27:34 GMT
File type Web Open Font Format (Version 2), TrueType, length 18028, version 1.589
Hash 448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c
GET /bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hentaiera.com
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:45 GMT
content-type: font/woff2
content-length: 18028
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "448c34a56d699c29117adc64c43affeb"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 09/26/2024 10:28:49
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 907
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 9bf592c696b326d184f6faa0fa8e694c
cdn-cache: HIT
cf-cache-status: HIT
age: 8927906
accept-ranges: bytes
priority: u=4,i=?0
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 91cb22c83d35712f-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET hentaiera.com/images/flags_sprite.png
200 OK 68 kB URL GET hentaiera.com/images/flags_sprite.png
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type PNG image data, 64 x 1050, 8-bit/color RGBA, interlaced
Hash c8041fac2ae280c593128b52a8c1e65a
5145da83d6f3f238d627d62e2a8ce467e2bb18fc
a112bd3fdb104fe5d8637b2ac64731fec3c2abd186d7ab77cb42c07ddaf59288
GET /images/flags_sprite.png HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/css/main_zk4t1iocu8.css
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:45 GMT
content-type: image/png
cache-control: public, max-age=31536000
expires: Thu, 06 Mar 2025 16:37:13 GMT
last-modified: Mon, 05 Apr 2021 11:07:01 GMT
etag: W/"10817-606aef55-bcb10c0222548933;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
age: 149422
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3DtEIwAdOVRQpyOzvJk%2FXWuQihhshj755On85D1yJs3ki7IEl3Tt39Wf81SPw4fByGJyfOPCCFiBnFS8w74ivzHHCaXjXVweocNAinPwiyoL5ckzYyYULi0PWBuqoNlr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c9c81f568b-OSL
server-timing: cfL4;desc="?proto=QUIC&rtt=9865&min_rtt=2260&rtt_var=8037&sent=175&recv=25&lost=0&retrans=0&sent_bytes=175127&recv_bytes=9011&delivery_rate=898782&cwnd=96000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=1641&x=1", cfExtPri, cfHdrFlush;dur=0
GET img.doppiocdn.com/thumbs/1741361370/148500811_webp
200 OK 7.6 kB URL GET img.doppiocdn.com/thumbs/1741361370/148500811_webp
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerGoogle Trust Services
Subjectdoppiocdn.com
FingerprintD4:37:B9:D4:35:04:38:4C:DB:FF:48:66:41:B9:8C:CA:FC:01:51:95
ValidityFri, 07 Feb 2025 02:05:59 GMT - Thu, 08 May 2025 03:05:57 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp
Hash f3e693c438a906448fdaae4e5b9902cd
6d57fb118f5e0b01c50f187e2896a597eb62c9e8
164644ae32dc5062f179ee5b467ec9891f7a012bdd230ec99b4f536eca37bffd
GET /thumbs/1741361370/148500811_webp HTTP/1.1
Host: img.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.blcdog.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: image/webp
content-length: 7612
etag: "f3e693c438a906448fdaae4e5b9902cd"
last-modified: Fri, 07 Mar 2025 15:28:35 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 67
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 91cb22d81c607129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET img.doppiocdn.com/thumbs/1741361370/39148094_webp
200 OK 7.3 kB URL GET img.doppiocdn.com/thumbs/1741361370/39148094_webp
IP
Requested by https://creative.blcdog.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=c3fa347280578e90a9e8ab1e6280c0e361524d151dcbfe6bb5b723fee947ce88&campaignType=smartpop&creativeId=b160433c2853da2b5fcdd96aad45f0decdee3f81ac66505bfb91d936621845ea&iterationId=945689&masterSmartpopId=1605&memberId=6IA1s8Fxt2D2rI4Ra3LPENReC5yG18ktp2vr12lOVOOYi8ge-jkG-_U7myr141R4LKL7f50uy2nJ5CFvCWO24h2XiqI2k6wg2_36voXF0UUqKSA_gUIDRUi&modelPromotion=1&p1=3947042&quality=240p&ruleId=3&smartpopId=1547&sourceId=271332&usePreroll=0&userId=ed4e3449202a44afa8131507a9d12a1c962321860e4bfcc2aa1b33a18897b60e&variationId=34450&webp=1
Certificate IssuerGoogle Trust Services
Subjectdoppiocdn.com
FingerprintD4:37:B9:D4:35:04:38:4C:DB:FF:48:66:41:B9:8C:CA:FC:01:51:95
ValidityFri, 07 Feb 2025 02:05:59 GMT - Thu, 08 May 2025 03:05:57 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 90e8c0bc5701e397feedccc8d2a1736b
55b1cf0f383f97877fa5cd311fb0e054d172a1bd
1186a2288cd64f7790b261d71b266ca7cd088fd43b0519101e90c4eb2652c177
GET /thumbs/1741361370/39148094_webp HTTP/1.1
Host: img.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.blcdog.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 07 Mar 2025 15:30:47 GMT
content-type: image/webp
content-length: 7312
etag: "90e8c0bc5701e397feedccc8d2a1736b"
last-modified: Fri, 07 Mar 2025 15:28:18 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 50
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 91cb22d7ec0c7129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET hentaiera.com/css/responsive_bcg2y4.css
200 OK 29 kB URL GET hentaiera.com/css/responsive_bcg2y4.css
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
Hash f848d7e7a3c367e8aed1bcaf17312566
44a969c5ee715bacfe767b8a688dedfab6207b37
2b9329c91e28003ff0e15fffc0074bf64b91b3d7cd575b308c3d94ab95c3b5ad
GET /css/responsive_bcg2y4.css HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Fri, 07 Mar 2025 07:33:01 GMT
last-modified: Tue, 13 Feb 2024 11:01:45 GMT
etag: W/"716e-65cb4c19-76835d934f1c5656;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 550049
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SypQP30OVY7zH%2Bj9oovnq4ySFqiRhXhTaSanq6B27LYNIz00US0PGWYwLiOWBXF2rRo%2FURSo93mYAwpoYUVOYAX2EAaPe1vLr7tJbwojkKkAKDP3e7Og8u%2FI%2B5uTwZNo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c1d9b3568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6493&min_rtt=3025&rtt_var=3924&sent=32&recv=12&lost=0&retrans=0&sent_bytes=22157&recv_bytes=5217&delivery_rate=18530&cwnd=12000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=377&x=1", cfExtPri, cfHdrFlush;dur=8
GET hentaiera.com/js/search_2x0kjd.js
200 OK 2.2 kB URL GET hentaiera.com/js/search_2x0kjd.js
IP
Requested by https://hentaiera.com/gallery/1273738/
Certificate IssuerGoogle Trust Services
Subjecthentaiera.com
Fingerprint66:87:FC:27:70:64:36:A2:3F:84:BC:2F:A4:8F:36:8A:F1:76:93:09
ValidityThu, 09 Jan 2025 22:41:02 GMT - Wed, 09 Apr 2025 23:38:37 GMT
File type JavaScript source, ASCII text, with very long lines (2530), with no line terminators
Hash b0685bafebf4be399ba0898da121e7cf
61c3bcfe06fa584dcefbd01b5b1b430e34d9380c
b33757b7f593a407ec2d10f158dd94af454f94fd5c97e1124e689196cc7aa560
GET /js/search_2x0kjd.js HTTP/1.1
Host: hentaiera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hentaiera.com/gallery/1273738/
Cookie: PHPSESSID=sh6uf8ca1dgvmh341fj2mgr22u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 07 Mar 2025 15:30:44 GMT
content-type: text/javascript
last-modified: Wed, 21 Sep 2022 07:50:15 GMT
etag: W/"86f-632ac237-e6245b5fcc90e552;br"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6344
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YOaGyz4S0eQYA46kkZUquIpT91inKLTHE9X2odNtDXj%2BgsWBoKpQNuDQXdXVU0abZkktEmq7BkWwhmFw2iPkyZdbzHOr9vhiQ8%2FQD%2Fl0a8WyfrS6L2UzYMwWGW5FFdhj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91cb22c20a0d568b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=6616&min_rtt=3025&rtt_var=3188&sent=54&recv=16&lost=0&retrans=0&sent_bytes=46184&recv_bytes=7507&delivery_rate=424674&cwnd=24000&unsent_bytes=0&cid=b12d7a58a8981a72&ts=399&x=1", cfExtPri, cfHdrFlush;dur=6
104.21.41.3
142.250.178.42
162.55.130.248
23.109.170.227
95.173.205.15
185.76.9.1
0.0.0.0