img.titshub.com/101325000/101325324/medium@2x/1.jpg
200 OK 35 kB URL GET HTTP/3 img.titshub.com/101325000/101325324/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash e3c1712e440e21dc9474c16fb4150990
62e407109999538f6c77f84dbfb1a17c500714e4
bc7a4b2bc59144933eed580fe0b320666f12813148bee808ea52187166ced889
GET /101325000/101325324/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 34633
last-modified: Fri, 10 Sep 2021 22:46:25 GMT
etag: "613be041-8749"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 114354
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UaVhhBi9VdzR79NyGfk26oSImsQ6stll%2BvmsAeZIxRq0s0w341ka%2FUsEDzFqrK18ObdZOHidKk76bGFJAj6btZu0gcLd1saHdojHC59fEJTw65JLP8iXTLMaUxF2k9kudt8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18137129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101312000/101312789/medium@2x/1.jpg
200 OK 43 kB URL GET HTTP/3 img.titshub.com/101312000/101312789/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 0e6385770b098a8b4f1d0cdab099dcce
77165f9dc2b334d6e26427a998e6ba9b56f072e6
5d3b1f73d1e3d74649fa5f4dae65ed7ecc439d3738e7cb4412ccff4a3b224918
GET /101312000/101312789/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 42759
last-modified: Wed, 08 Sep 2021 12:51:55 GMT
etag: "6138b1eb-a707"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1805124
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jJPaVz%2B6kWxZiYLFjrkedf6M67ebgMHfJedyUqUd0uZnuJW%2FLwYVEC%2BCnOpqddA0%2Fu2IhhhCdKlaM5mxeAcHo8zf8lrheMN4EAXVFHD3ZR3goT%2FReJawIWP16V%2BKuqtXHsw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18147129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101327000/101327845/medium@2x/1.jpg
200 OK 36 kB URL GET HTTP/3 img.titshub.com/101327000/101327845/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash aba1a9c463a98911b55b6814e152f0e1
1494edefc4256895fca8d2125b3a31a608191ea7
6dda6b4bb1434fe3b0a1a086b6bcc32e12484327e06fa1a56f127f51f169f2f0
GET /101327000/101327845/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 35518
last-modified: Sat, 11 Sep 2021 15:04:35 GMT
etag: "613cc583-8abe"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 451401
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BTX%2FP0Mbu8gkUIzB%2Bok0nOjC2GP67ujNIf1vWpecQV3PJvSZemU8tHhzjgbJVpcLsudhQMEvlNyXnEhczAkui3%2BgrW0dJ4%2F41WLxHtRNrjLfr9NjJl3eiKqQDoT0zVeES8w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd180e7129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101314000/101314017/medium@2x/1.jpg
200 OK 28 kB URL GET HTTP/3 img.titshub.com/101314000/101314017/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 4fb7f506a6895835841bb0909bb54d1b
aa47063869b3b0390388edd454bca45c00cbd6d7
a45d994c4862edff2b6ff84232dcd11080203d48a854fd9410a66aed973066a5
GET /101314000/101314017/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 28453
last-modified: Thu, 09 Sep 2021 10:29:33 GMT
etag: "6139e20d-6f25"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 532634
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LKVmH1dtUcpRX8yVqqinMoXWCwIl2zqeLUwcV1PgV49C7cjjQkstaIKJ%2F8FDsDSB%2BH4RYj4IEZP7ruyLw%2BsCN7yC7%2BDQ55RpyI20c0UYUsas6a8hhFgJc62JXtzKwgigQl4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd180f7129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101311000/101311353/medium@2x/1.jpg
200 OK 22 kB URL GET HTTP/3 img.titshub.com/101311000/101311353/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 6c3f34a01240a23a70bcd7b38f118dd2
25617a7196d9f1bcf0d189598adc8946b5c3a305
b46f07dee118babd528d9c3a8dc860024a933a6d3184c49b84abec52b057c714
GET /101311000/101311353/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 22514
last-modified: Wed, 08 Sep 2021 12:30:02 GMT
etag: "6138acca-57f2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 538032
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9u%2F4v2fsRLX9M0q9TVMMiqK6wsZCrAZ63z1TkSWEoi3bL1OK94dPiM540UU3gzYQs1fQtIAafZ4KCQkAxh7O6zPR4mHxh05zUgeHSRIXG1Sp6Kd5E3ULEBmTxnwWxUOEOr0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18117129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101315000/101315369/medium@2x/1.jpg
200 OK 44 kB URL GET HTTP/3 img.titshub.com/101315000/101315369/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash d9356f9b7c75b83b4c59773e5a3c70df
e330a43ff33bd2a0b42754095f03ef481bfde4ca
015cec8c3398275f6d00c3c843ab114129c1c8cb585660551dcddc071975f65c
GET /101315000/101315369/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 43960
last-modified: Wed, 08 Sep 2021 14:46:31 GMT
etag: "6138ccc7-abb8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 359712
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N4WZBrNNDlTv97VcDeSBUlcwhFZQRT2ZJN8gluuENSHN2AFv3FbtgA7sMyzjPAJ8OsPU0%2FfhNXuB4nbVJUbwFcJCVGGJCFHAAiGvZMqCnvNZSPPbNJYTh8TfQsQJ4zDXIho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18107129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101325000/101325015/medium@2x/1.jpg
200 OK 50 kB URL GET HTTP/3 img.titshub.com/101325000/101325015/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 1f9c6a913a1bc4a112b6cf00e3191a06
b42b61e381b454a2f0b3c3d5b5e0c4b14c838f1c
5242aa507352790150f3522130548dedc85c98520be928c362f4e9b917e45308
GET /101325000/101325015/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 50337
last-modified: Fri, 10 Sep 2021 22:21:26 GMT
etag: "613bda66-c4a1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 532598
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=758OOraD1XoZ468msOyM1g2vqAmlmYA5aUWU1BPtUvNBe6Mp6RBkDvaPIpL8yDgDnM04%2Bq4CeMAEiD1leqtDGVB5vQN%2BI%2BAz4YpeL%2B3B7CvzkRIxF5DgU1HwE9pG%2BvKE9JI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18157129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101328000/101328642/medium@2x/1.jpg
200 OK 53 kB URL GET HTTP/3 img.titshub.com/101328000/101328642/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 5225e2fa89ca8941201b6802a3163e2d
74b25b1a584af1f335633a02fe129c3e698dbda8
409172e7131643e9f9c473cf77d681a5db03765b7a0433369185e4b71b5b21be
GET /101328000/101328642/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 53367
last-modified: Sat, 11 Sep 2021 10:26:50 GMT
etag: "613c846a-d077"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 451399
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UX9bo1YVFQt4pPmbHTwenxkomjBrq3SQh4ZZ6NjhHRTHuKF7Qu82IrftOXglpvRDlJxBrXNtVtbxu2PRc2dDUDF0cezqM3BuAaKgd8YReGABcO0EEA0x5dTnAV%2BGHIqL25k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18187129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101311000/101311369/medium@2x/1.jpg
200 OK 53 kB URL GET HTTP/3 img.titshub.com/101311000/101311369/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash e9b66192ac1689e904a2803c659043fc
e632680f0edd6cdb216a5f51e7bdc7e3c5d64899
7d060cc811d57c8d25de6f7bb402d5b516d80221e6496ca9ab6bf5df0130c747
GET /101311000/101311369/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 53167
last-modified: Wed, 08 Sep 2021 12:30:42 GMT
etag: "6138acf2-cfaf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 10951
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B0qpPvFj6eBOEatTStkq84fvc%2BKTl%2BETy1TD%2BeQwiDk4JU9bCZYNZ3uREuIf%2FXE5krbocU2nV4Rsl31YcjGg%2Bzoo9cFMYz1okTKzpjXWmpoUqb%2BAnZCU98NUQAVYoThpwaw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18197129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101326000/101326174/medium@2x/1.jpg
200 OK 36 kB URL GET HTTP/3 img.titshub.com/101326000/101326174/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash b4ede956eb56c3c2a50e37a4d05a4ab5
4e373f324debabda6155e75ae1b45ffc3e5f28b1
efdf7528e1306a35cf1b81819f40eadfe4ec5718dc64692a51545cd3be0e14ee
GET /101326000/101326174/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 35998
last-modified: Sat, 11 Sep 2021 14:34:43 GMT
etag: "613cbe83-8c9e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 21025
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jhDsVgDFLagfg1hazuKJZVZ99Z9hB9cD0%2BOS%2B0ABdl%2Fus2YnGILnnnKuXqURs6YV2OcftcFKTa9Sb1wi53d682C7isc3cbwNKNE30GqPcrZpI0gnsmBiqJh1OY147XsAEAM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd181a7129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101323000/101323953/medium@2x/1.jpg
200 OK 38 kB URL GET HTTP/3 img.titshub.com/101323000/101323953/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 30fd51b269e2703277c718a4d6ed1525
b24a8229ee842cba9737a49d3aaaf8bb3602b414
d3f8523b579578806d3c651177185504302fc51ecffc70096ad75aa07b5a84cb
GET /101323000/101323953/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 37692
last-modified: Fri, 10 Sep 2021 15:43:56 GMT
etag: "613b7d3c-933c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1789133
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5EGNf3K%2FVS6J9uMT0Btyc5bnprqGIBZ5VMj4bI3oSn%2BcPxGA7IwUPRTkXpLcGgzZbi%2FfB6wOe%2F4boWwpscbRSHvXeFVkhT8jtrZhJU2Sw3j56OIks8mkUcKqR%2FhlIJ35SDM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd181c7129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101311000/101311809/medium@2x/1.jpg
200 OK 40 kB URL GET HTTP/3 img.titshub.com/101311000/101311809/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 389b7cd17f4a898df1b2489b1497297c
45d9f57d36c33c91bdb12a99348b791047ec08ee
f027bea8f08afa6b1698ef1498477116dd84b0d129fe757faf5fdbc595be5e5d
GET /101311000/101311809/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 40263
last-modified: Wed, 08 Sep 2021 16:50:35 GMT
etag: "6138e9db-9d47"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 167696
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jEtnFu0bkQlj%2BdT9o6pqHGuEPPKfue3ktrjg5FFpefdd%2Bpeyarhm9Cs7nMi06PLR6gmfv0oun7FbX05HCziTO%2BCuAkzW0W%2Bu3X%2BSu0xuQwcoFk%2F0p9UUV54Ui5c2hSoAEIM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd181d7129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101309000/101309022/medium@2x/1.jpg
200 OK 40 kB URL GET HTTP/3 img.titshub.com/101309000/101309022/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 3350ee1d43f6e0f9f431a8eedfc91e88
ee158a88a50eb553d7fe481c3550940b3184d7ad
50601736f89539c5faa85690ce2dc7dfcf8b868a7a023d0c6c7708d0e1f32c74
GET /101309000/101309022/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 40365
last-modified: Wed, 08 Sep 2021 08:25:13 GMT
etag: "61387369-9dad"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 167696
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2zJ5oHqpenrC9im5oyIKCDCURwmJ4e%2FY4FCbVC8Kz3T4%2B%2FZo%2FsgxQD1T%2Fr0ni3eDF1Jb4awQhpwZhfW3FYegCo2Bnr2ECfiVv1eNTSFa7zcmOilmNg%2FC9Zoiywvie%2FfYdKI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd181e7129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101314000/101314818/medium@2x/1.jpg
200 OK 33 kB URL GET HTTP/3 img.titshub.com/101314000/101314818/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 774406ad76ed62533f6f48bf618b6328
f67db83e0037e5dce3d0fc5ddd787695290ac429
f8dbcf1ef4ffc979e6e6cbe5de36a7d0658e8e4567911512366dbf1062592f36
GET /101314000/101314818/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 32627
last-modified: Wed, 08 Sep 2021 14:18:23 GMT
etag: "6138c62f-7f73"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 450734
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F9h6DGJxuAioWvaBVE07iWLtPC%2Fu2wU8BLWTMlcSw09IG7xCIJWAm8u6VhvpmYVrLlJpEZart%2BLExDVfKhpSExuy8M3QNmprjiNLJe8Yw8wasVz8LPsDl6dipGPeR7%2BTrWk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18207129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101315000/101315526/medium@2x/1.jpg
200 OK 34 kB URL GET HTTP/3 img.titshub.com/101315000/101315526/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 4a009785a5fc929dc4866425641b4c49
de715f61eed8629878142210383b2d7441e0e136
dddb66ceb48d5597c1c5803378bc4be44873bfeeec68c974f96e619dd24c3753
GET /101315000/101315526/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 34545
last-modified: Thu, 09 Sep 2021 16:19:37 GMT
etag: "613a3419-86f1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 98242
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4FKtauSFrowucrSTVLCTOBRjC%2Bd0ybKOmza7T0sR6iYv4eGOxmYtoXVW3A5JI7lUm7%2FeggCBkLWr3JH8zhWA6czkfF0K8X2va7GSqhcCd366Zsa57RfAgEAk5gc%2FgtP6lM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18217129-OSL
alt-svc: h3=":443"; ma=86400
cdnjs.cloudflare.com/ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.js
200 OK 1.7 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash eb638361f3402431eb2195f569607d91
c00d931f8738add2a738429784343ea1702b19cf
2a9c9c017aa931fb3ea3db71751ab13c8d8f7e5c4e6f785d3922ad07820443b7
GET /ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 1675
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04020-18dd"
last-modified: Mon, 04 May 2020 16:17:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 267430
expires: Sun, 17 Nov 2024 10:33:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=99cbx0cyEsF2J7gjcAVHZsHA8r0ek%2FEyvWy3d54JnoDZSXnggGc0gMSzDgkG%2BNe%2Fut7VoJ4vhWagFbp5PmXn5M2KN7LdmMfA1kACumnWr1TYtNnk6YKn1zYL9cGY%2FYFtT41N3M4f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82d1f3fe0a2f56ae-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.titshub.com/101328000/101328155/medium@2x/1.jpg
200 OK 34 kB URL GET HTTP/3 img.titshub.com/101328000/101328155/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 67166a219ac089722b0a3b9d458ecd81
71281d92fdcc300f1d709ceb895fab295f1a71ac
8b3c9558606f483826b97a6e202cf8c112b30e03e118f4e2351720b69bafa684
GET /101328000/101328155/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 34287
last-modified: Sat, 11 Sep 2021 15:32:52 GMT
etag: "613ccc24-85ef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1798370
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M4eyugFhhy3w5gtTEfkTQfxL6%2F%2FYcv4pYVkeOGLRGzVaoGDdbAYOgFKOfAI0ttpRfdP2ZSe35KxHU4eaU1li2Q58zVWYJjTX86o0o8s0M4YNvZMxLvLTYv5ZkdcOaShSeK0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd181b7129-OSL
alt-svc: h3=":443"; ma=86400
cdnjs.cloudflare.com/ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.css
200 OK 256 B URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.css
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash 39aa2ea27eb7b72cf73d0d5b4f892daf
9fa0eb7f5d30e7c54f505ffe9fa5a1fe4725279f
e425124d9e8e5674cdad309801b12fdc3804465bc30322d4515b09347a52be05
GET /ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: text/css; charset=utf-8
content-length: 256
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04020-36a"
last-modified: Mon, 04 May 2020 16:17:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 541740
expires: Sun, 17 Nov 2024 10:33:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VBIPymjqZ%2FwcWWtw79vioiL%2Byqmm5TvPXe%2BaQ31lsmfA4eEfMqZiKLw4Njc25%2Be3qt1au7d7xTjxLdNS7jNxdepc%2Fug0UjjH6TgW5u8oK0lDQc7oiWBxZOVJ9mV4o%2FUjUZ1IEBGo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82d1f3fe1a5856ae-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.titshub.com/101324000/101324175/medium@2x/1.jpg
200 OK 36 kB URL GET HTTP/3 img.titshub.com/101324000/101324175/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash a99307a9b72433bba538ce24a56604d4
636f21b75dbf0e0d5f8674fdad2cecd9b515c87b
85d0ae237652437b80de8a7af40354eb4422fc79b15764e215437946e29bde48
GET /101324000/101324175/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 36032
last-modified: Fri, 10 Sep 2021 15:57:07 GMT
etag: "613b8053-8cc0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 532587
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gsemjK7AHDuPHMYThA23HCdN7bNQWuS7tUg%2BWuP2gnt57LiT0e0tE6B6J2Va7mP1DXqqEhmgBwxgkcjVjtGJyzJ7eXXsZncZ14SCDs7yRg1Bz09hEyW%2BJlWRqynSN0DY6%2F0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18237129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101327000/101327352/medium@2x/1.jpg
200 OK 37 kB URL GET HTTP/3 img.titshub.com/101327000/101327352/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 2859fcd844dab99b98b46dd80cbb9053
b3ba3f5254204b7de1f5b5dc7e0f831fec5e3c4a
6d28509e61cdec2f230742ab291623b794c60ea728fd80649a379593064a38bb
GET /101327000/101327352/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 36749
last-modified: Fri, 10 Sep 2021 23:36:34 GMT
etag: "613bec02-8f8d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 434420
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kXwN3MDSgoyIqNa5%2B8472FeZ%2B0UeCQn7ibtA8f61VJsaditmzYXg6X5T8yOFjeJLmMVzrax3DEDiz8EPzZwQR64bHZ%2BRUNzPRBhb96RqvuvQGeYYWwlTlRXjZnJncsQaKQM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18247129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101327000/101327667/medium@2x/1.jpg
200 OK 36 kB URL GET HTTP/3 img.titshub.com/101327000/101327667/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 7bcad0b7271f36e02f6b923aa88e0228
18cae88fcbf823f1249d9d4d59041b2d23b48712
875cc3aa67632e3da9ed2d0ebb20ca8a67247a51caf4494107ee74801c700d4f
GET /101327000/101327667/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 36523
last-modified: Sat, 11 Sep 2021 14:55:58 GMT
etag: "613cc37e-8eab"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 370659
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FBJEef4SMS84j8EpSC5A2FVHav3moO1EkLZO5djqV4XwF%2FKcj1aP5ae%2FwrkeRSWkZrmYqAcorCHycUi7KKVnJJilPVsWGNjPgE7OmOuZ%2BEcYZ3JT26MPHuEY%2B08aMuiqe%2Fo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18267129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101311000/101311901/medium@2x/1.jpg
200 OK 48 kB URL GET HTTP/3 img.titshub.com/101311000/101311901/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 8c11d5154582f9f515beeb573cb87590
5fb23ea05c59ff5f15adf05e996cc01f71829110
90c93bec247d5a9cf31a39a72bdf5c2f499c6acafe1c67b0d30afab97803f3cc
GET /101311000/101311901/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 48443
last-modified: Wed, 08 Sep 2021 16:58:11 GMT
etag: "6138eba3-bd3b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 436862
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Unbq9EKiSeFmPFSfiko6tnk%2BlWY97dZzvaoETRpb4GfgGa%2B3O4axV7GyqYuEj3Fp7oGl0CEY0NfC5I1RCTNffaUtIOGEmab1Z2%2Bh5cTN0TFSeeR0csKLwRNAErv0gNv2uNI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18277129-OSL
alt-svc: h3=":443"; ma=86400
img.titshub.com/101313000/101313097/medium@2x/1.jpg
200 OK 26 kB URL GET HTTP/3 img.titshub.com/101313000/101313097/medium@2x/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash b780a0f69dd9ba40d62d0ea12147362d
dccbb391a1236b7d8e67720edebc868869c75933
1acfb73c4d4a8e759f659b20e92c68822da706b14b436331fa7f0555e3c0e515
GET /101313000/101313097/medium@2x/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: image/jpeg
content-length: 26252
last-modified: Wed, 08 Sep 2021 13:15:08 GMT
etag: "6138b75c-668c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 98349
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SNBgUNaWOoS79%2FV4f1ZhWfa2BdQC0R9Rel88SuprF0MFClUKQjGhl0rYkseOaxTVIvqGfms%2BaBgO8z3cx0DJY7hvzsgrsRPrkp5VS5T5tUvV7SFyqLk%2FuP98kGLrZkUAH6o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f3fd18297129-OSL
alt-svc: h3=":443"; ma=86400
vjs.zencdn.net/7.5.5/video-js.css
200 OK 10 kB URL GET HTTP/2 vjs.zencdn.net/7.5.5/video-js.css
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
FingerprintF0:70:0B:AF:84:8A:AB:25:98:72:B0:E7:EE:F8:2C:2C:6B:58:8E:4E
ValiditySat, 03 Jun 2023 21:48:23 GMT - Thu, 04 Jul 2024 21:48:22 GMT
File type ASCII text, with very long lines (5636)
Hash 29daa9b197765c0111b16939ce1264a9
d8ee7d372482beea64fc1ce2c520702f72632bf1
f53fc4c5e613265564b6bbd94ae0af0ba9cb6c31ba804193b0fa548b96f6ee08
GET /7.5.5/video-js.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 13 Jun 2019 18:18:21 GMT
etag: "29daa9b197765c0111b16939ce1264a9"
cache-control: public, max-age=31536000
content-type: text/css; charset=utf-8
content-encoding: gzip
date: Tue, 28 Nov 2023 10:33:30 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 262
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 10533
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/silvermine-videojs-quality-selector@1.1.2/dist/css/quality-selector.min.css
200 OK 375 B URL GET HTTP/2 cdn.jsdelivr.net/npm/silvermine-videojs-quality-selector@1.1.2/dist/css/quality-selector.min.css
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (449)
Hash ab70ea10db46a2b5fe2f7890b1f3a752
acb58a65732d4d7daf6c663aae785750461a2b1f
bbd9db8e1c208458a477d2d4bf7187b0fdf46ed806104228f278aeda0cf91cf4
GET /npm/silvermine-videojs-quality-selector@1.1.2/dist/css/quality-selector.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.1.2
x-jsd-version-type: version
etag: W/"299-rLWKZXMtTX2vbGY6rnhXUEYaKx8"
content-encoding: br
accept-ranges: bytes
date: Tue, 28 Nov 2023 10:33:30 GMT
age: 22282425
x-served-by: cache-fra-eddf8230075-FRA, cache-bma1682-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 375
X-Firefox-Spdy: h2
vjs.zencdn.net/7.5.5/video.min.js
200 OK 139 kB URL GET HTTP/2 vjs.zencdn.net/7.5.5/video.min.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
FingerprintF0:70:0B:AF:84:8A:AB:25:98:72:B0:E7:EE:F8:2C:2C:6B:58:8E:4E
ValiditySat, 03 Jun 2023 21:48:23 GMT - Thu, 04 Jul 2024 21:48:22 GMT
File type Unicode text, UTF-8 text, with very long lines (65133)
Size 139 kB (139372 bytes)
Hash abf127b5ab0bb498119a93890119a660
86083627a04fe65a9ff242a3edb746b94da084a8
4122c012e6c8aba50f529e47785cd402e2b1f6dc1c643907a9fb65375d5cee11
GET /7.5.5/video.min.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 13 Jun 2019 18:18:22 GMT
etag: "abf127b5ab0bb498119a93890119a660"
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
content-encoding: gzip
date: Tue, 28 Nov 2023 10:33:30 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 139372
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js
200 OK 1.1 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (1619)
Hash 45f12de4d7b95a193ecdc5cfde664bb9
ee9541cf1a95d2a885f8b143a105caaa08ca9c9d
39b8fe6364621725ff90431a34af0f87976d95c00cbfd1d0f3711a3f1fa1a07b
GET /npm/js-cookie@2/src/js.cookie.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.2.1
x-jsd-version-type: version
etag: W/"79f-7pVBzxqV0qiF+LFDoQXKqgjKnJ0"
content-encoding: br
accept-ranges: bytes
date: Tue, 28 Nov 2023 10:33:30 GMT
age: 9313
x-served-by: cache-fra-eddf8230099-FRA, cache-bma1682-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1078
X-Firefox-Spdy: h2
game.starswalker.site/PXXlKV5.js
200 OK 76 kB URL GET HTTP/2 game.starswalker.site/PXXlKV5.js
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Hash 519b032751547884fd5d2e6e166ad119
c82d285f32bd3eaa4d84bad8efd79f9377d529dc
48e8b22f691fbdb884c0056ba6629545071794cb51d3e79661d17e4d8c716626
GET /PXXlKV5.js HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
content-length: 76041
last-modified: Mon, 27 Nov 2023 07:10:46 GMT
vary: Accept-Encoding
etag: "656440f6-12909"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 30
cf-ray: 82c89a8c5ba8d912-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
game.starswalker.site/8hDbqgb.js
200 OK 87 kB URL GET HTTP/2 game.starswalker.site/8hDbqgb.js
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Hash 6b4984dd977acd1a8e3350f22b7297ce
176f1ebd8361a32a00d07143149419f11d76006a
2a5c9bdabbd7c997e5e2f4d24f34160351567a015343cf45033d17ef79cb56c9
GET /8hDbqgb.js HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
content-length: 86788
last-modified: Mon, 27 Nov 2023 07:10:46 GMT
vary: Accept-Encoding
etag: "656440f6-15304"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 285
cf-ray: 82c8a0a709c1d953-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
game.starswalker.site/2wN4cQa.js
200 OK 87 kB URL GET HTTP/2 game.starswalker.site/2wN4cQa.js
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Hash 6b4984dd977acd1a8e3350f22b7297ce
176f1ebd8361a32a00d07143149419f11d76006a
2a5c9bdabbd7c997e5e2f4d24f34160351567a015343cf45033d17ef79cb56c9
GET /2wN4cQa.js HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
content-length: 86788
last-modified: Mon, 27 Nov 2023 07:10:46 GMT
vary: Accept-Encoding
etag: "656440f6-15304"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 285
cf-ray: 82c8a0a709c1d953-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
game.starswalker.site/uW4V6g3.js
200 OK 76 kB URL GET HTTP/2 game.starswalker.site/uW4V6g3.js
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Hash 519b032751547884fd5d2e6e166ad119
c82d285f32bd3eaa4d84bad8efd79f9377d529dc
48e8b22f691fbdb884c0056ba6629545071794cb51d3e79661d17e4d8c716626
GET /uW4V6g3.js HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
content-length: 76041
last-modified: Mon, 27 Nov 2023 07:10:46 GMT
vary: Accept-Encoding
etag: "656440f6-12909"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 30
cf-ray: 82c89a8c5ba8d912-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
awrfds3.pornpapa.com/WMLj7S7.js
200 OK 76 kB URL GET HTTP/2 awrfds3.pornpapa.com/WMLj7S7.js
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subject0i.sh-cdn.com
Fingerprint9C:0A:E3:14:BD:5B:E9:35:E7:06:CC:82:53:EA:FC:46:92:CB:9E:49
ValiditySat, 11 Nov 2023 13:27:07 GMT - Fri, 09 Feb 2024 13:27:06 GMT
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Hash 519b032751547884fd5d2e6e166ad119
c82d285f32bd3eaa4d84bad8efd79f9377d529dc
48e8b22f691fbdb884c0056ba6629545071794cb51d3e79661d17e4d8c716626
GET /WMLj7S7.js HTTP/1.1
Host: awrfds3.pornpapa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
content-length: 76041
last-modified: Mon, 27 Nov 2023 07:10:46 GMT
vary: Accept-Encoding
etag: "656440f6-12909"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 30
cf-ray: 82c89a8c5ba8d912-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
game.starswalker.site/Qa9gbH3.js
200 OK 76 kB URL GET HTTP/2 game.starswalker.site/Qa9gbH3.js
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Hash 519b032751547884fd5d2e6e166ad119
c82d285f32bd3eaa4d84bad8efd79f9377d529dc
48e8b22f691fbdb884c0056ba6629545071794cb51d3e79661d17e4d8c716626
GET /Qa9gbH3.js HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
content-length: 76041
last-modified: Mon, 27 Nov 2023 07:10:46 GMT
vary: Accept-Encoding
etag: "656440f6-12909"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 30
cf-ray: 82c89a8c5ba8d912-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
game.starswalker.site/8sq5gA5.js
200 OK 76 kB URL GET HTTP/2 game.starswalker.site/8sq5gA5.js
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Hash 519b032751547884fd5d2e6e166ad119
c82d285f32bd3eaa4d84bad8efd79f9377d529dc
48e8b22f691fbdb884c0056ba6629545071794cb51d3e79661d17e4d8c716626
GET /8sq5gA5.js HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
content-length: 76041
last-modified: Mon, 27 Nov 2023 07:10:46 GMT
vary: Accept-Encoding
etag: "656440f6-12909"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 30
cf-ray: 82c89a8c5ba8d912-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-154720556-8
200 OK 69 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-154720556-8
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4179)
Hash 07f121694f74c1b60f342b009a1df9ba
74acf68b3f8f4aa3bb57c30d717290481539ce75
7eff47cbf3b2266f619ebcdead89cc2ec522633589b1d95df48f7175b6e36ca7
GET /gtag/js?id=UA-154720556-8 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Nov 2023 10:33:31 GMT
expires: Tue, 28 Nov 2023 10:33:31 GMT
cache-control: private, max-age=900
last-modified: Tue, 28 Nov 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68716
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
aibsgc.com/av/1150082/inp3.js
200 OK 205 kB URL GET HTTP/1.1 aibsgc.com/av/1150082/inp3.js
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectaibsgc.com
FingerprintAA:E0:15:CB:09:39:12:50:2B:AF:47:C2:5D:57:26:C6:C9:D9:42:43
ValidityThu, 19 Oct 2023 07:55:06 GMT - Wed, 17 Jan 2024 07:55:05 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 205 kB (204807 bytes)
Hash a06fbf7e1d4badb2d2fa6f8da02233fe
fc983ea25650b6d51cd0b7cea249b56b978a7d37
0428f7d78b976e79a4a360f9df2b8588d85dd74cc5beec81f07a98a6e56466eb
GET /av/1150082/inp3.js HTTP/1.1
Host: aibsgc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:31 GMT
Content-Type: application/javascript
Content-Length: 204807
Last-Modified: Fri, 24 Nov 2023 14:40:27 GMT
Connection: keep-alive
ETag: "6560b5db-32007"
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
Referrer-Policy: strict-origin
Accept-Ranges: bytes
unpkg.com/silvermine-videojs-quality-selector@1.1.2/dist/js/silvermine-videojs-quality-selector.min.js
200 OK 31 kB URL GET HTTP/2 unpkg.com/silvermine-videojs-quality-selector@1.1.2/dist/js/silvermine-videojs-quality-selector.min.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (21159)
Hash 242c96b6f341fad00f677b568a7a6e6b
7ba156f36a99393095461ef4ed1f29e5a26732e6
2b17f02db63529b2ba6fe67c320b69ff803b775b7bd6c70ce4809c5c660ab30b
GET /silvermine-videojs-quality-selector@1.1.2/dist/js/silvermine-videojs-quality-selector.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:31 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Wed, 10 Jan 2018 00:56:00 GMT
etag: W/"5329-e6FW82qZOTCVRh707R8p5aJnMuY"
via: 1.1 fly.io
fly-request-id: 01HFZMJFGH0APDVR9FC6H5D1F1-arn
cf-cache-status: HIT
age: 372539
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82d1f401ca79569a-OSL
content-encoding: br
X-Firefox-Spdy: h2
staggeredravehospitality.com/f4/b6/56/f4b6562d7ac3653eb00cba8ec1a19ab1.js
200 OK 23 kB URL GET HTTP/1.1 staggeredravehospitality.com/f4/b6/56/f4b6562d7ac3653eb00cba8ec1a19ab1.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectstaggeredravehospitality.com
Fingerprint94:15:A2:BE:85:1C:E6:CD:42:41:6A:80:69:CC:B9:C2:5F:A2:E8:D5
ValiditySun, 05 Nov 2023 07:08:05 GMT - Sat, 03 Feb 2024 07:08:04 GMT
File type ASCII text, with very long lines (59727), with no line terminators
Hash 9cffb31ca194949fffed82f49a00382f
b8c15be48d2c54cae91ea7892c97752eddbeb26d
63b8e597b42d35103374652f03ebed9326a5a419007b8c8c8515e0d2b6b565a0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /f4/b6/56/f4b6562d7ac3653eb00cba8ec1a19ab1.js HTTP/1.1
Host: staggeredravehospitality.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 10:33:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6eda4a604ae7be34e769c12d99cd4750
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 04:57:34 GMT
expires: Fri, 22 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 452157
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img.titshub.com/101313000/101313097/player/1.jpg
200 OK 9.9 kB URL GET HTTP/3 img.titshub.com/101313000/101313097/player/1.jpg
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 592x585, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 390x222, components 3\012- data
Hash e403ac328272c62805fffac4a5f6096c
da85e5267e11ef7117afddc0683b26ac4353f7e3
71274bee59e531470c0005484c798d3e624a1c3e3b85f49baa720b48e77234ba
GET /101313000/101313097/player/1.jpg HTTP/1.1
Host: img.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:31 GMT
content-type: image/jpeg
content-length: 9865
last-modified: Fri, 03 Sep 2021 08:26:28 GMT
etag: "6131dc34-2689"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oe%2FG6Vo9JNyeLWoximz2GSPlO5zrABg7U1O7g0miWkR%2Bgbx9aXlZLn799jDIlxdsp8XAPlNr4fGNx8qZ8ksyDr6u0yYMXeaydkJZbZsE2Z5qkYchaYopb4E6P8iGwTM46gc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f4057e4b7129-OSL
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:36:53 GMT
expires: Thu, 21 Nov 2024 21:36:53 GMT
cache-control: public, max-age=31536000
age: 478598
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.titshub.com/js/videojs.persistvolume.js
200 OK 17 kB URL GET HTTP/3 www.titshub.com/js/videojs.persistvolume.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
Hash f2bdaf6b076a3f5c4b201043fa99e7e6
f55071bc8b46698523719fa2be0528fdbf2dc53b
7876724352a649e130f98ef346619e17272581ce1db46e7dbafc470a7354d055
GET /js/videojs.persistvolume.js HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
last-modified: Fri, 03 Sep 2021 08:42:02 GMT
vary: Accept-Encoding
etag: W/"6131dfda-e5f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 448916
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s49nIip%2B1pGr%2BqNB2hjf%2FDsP7FGPTOTavu3lqhddO3OZef1EWGREwylRNq8jyQbfSB6NrSL4EKXmNGp4FfXsApMlqVbBKSiwn943c%2BwTyf212AE4v5bXr76%2FnCZ%2FpgNoIw0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f3fccfc87129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
syndication.realsrv.com/splash.php?native-settings=1&idzone=4348472&cookieconsent=true&&p=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F
200 OK 5.1 kB URL GET HTTP/1.1 syndication.realsrv.com/splash.php?native-settings=1&idzone=4348472&cookieconsent=true&&p=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
Fingerprint33:54:4D:F8:0E:E4:00:D3:20:90:CA:61:C8:CC:4D:D5:CB:BB:83:57
ValidityThu, 05 Oct 2023 15:34:07 GMT - Wed, 03 Jan 2024 15:34:06 GMT
File type JSON data\012- , ASCII text, with very long lines (10145), with no line terminators
Hash fe57ef400562608cc2de61a0972cae22
6ebcd56ec5e228bbc0cb8af4457ee30d100fd30a
3327ee410dbd819f52607fadbe05a715c20b88ab423ca197a9d684d90b59a180
GET /splash.php?native-settings=1&idzone=4348472&cookieconsent=true&&p=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.titshub.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226565c1fc3832e9.37924155685982320%22%3B%7D; expires=Thu, 27 Nov 2025 10:33:32 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v4%7C%7CNOR%7C4348472%7C75891238%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Ce3e97ed67856076b04d0dd1dd53f1453%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167612%7C52a09dce169cb9c4042274615bd8f18f%7Cok%22%7D; expires=Wed, 29 Nov 2023 10:33:32 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v4%7C%7CNOR%7C4348472%7C23975207%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Ce3e97ed67856076b04d0dd1dd53f1453%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167612%7C40266336d083712f16328745c8864ba4%7Cok%22%7D; expires=Wed, 29 Nov 2023 10:33:32 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v4%7C%7CNOR%7C4348472%7C75891228%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Ce3e97ed67856076b04d0dd1dd53f1453%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167612%7C9dc6a1b0b6714c543849beb733dbc853%7Cok%22%7D; expires=Wed, 29 Nov 2023 10:33:32 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v4%7C%7CNOR%7C4348472%7C75891162%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Ce3e97ed67856076b04d0dd1dd53f1453%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167612%7C0c584565bfb1cccca9b08285efbe45f3%7Cok%22%7D; expires=Wed, 29 Nov 2023 10:33:32 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v4%7C%7CNOR%7C4348472%7C75891210%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Ce3e97ed67856076b04d0dd1dd53f1453%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167612%7Ca8fe5409543f2b6acde95ecd2aeb60b7%7Cok%22%7D; expires=Wed, 29 Nov 2023 10:33:32 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
cdn.tapioni.com/adgpt.js
200 OK 821 B IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:5F:F1:E0:0C:5E:00:4E:6A:BF:B1:5F:40:29:66:0E:3F:9C:24:5F
ValidityWed, 30 Aug 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (2037), with no line terminators
Hash 693221b5c25db72479c9c7d7563e4267
755d9ef9e300269b949b6ce924a04edacc35d957
62951f58fc513237d4ed36e3b4050dabaccd9a7f57b5e9c951d3a7de9ab3a013
GET /adgpt.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: application/javascript
content-length: 821
last-modified: Mon, 27 Nov 2023 07:10:46 GMT
vary: Accept-Encoding
etag: "656440f6-335"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 98083
accept-ranges: bytes
server: cloudflare
cf-ray: 82d1f40899c92d7a-ARN
X-Firefox-Spdy: h2
game.starswalker.site/api/click/7262050128703625095?c=90
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/7262050128703625095?c=90
IP
ASN #24940 Hetzner Online GmbH
Requested by https://game.starswalker.site/api/spots/321353?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/7262050128703625095?c=90 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/api/spots/321353?p=1&s1=%subid1%&kw=
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:32 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
game.starswalker.site/api/click/9428422306263831095?c=90
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/9428422306263831095?c=90
IP
ASN #24940 Hetzner Online GmbH
Requested by https://game.starswalker.site/api/spots/321352?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/9428422306263831095?c=90 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/api/spots/321352?p=1&s1=%subid1%&kw=
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:32 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
game.starswalker.site/api/users/377400?v2=1&fill=0&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25&s2=%25subid2%25&i=1&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F
200 OK 530 B URL GET HTTP/2 game.starswalker.site/api/users/377400?v2=1&fill=0&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25&s2=%25subid2%25&i=1&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type gzip compressed data, from Unix\012- data
Hash d3f9f52c10562fe412bd474f62f3595f
e892f6c73eacbf8d38098f05d555ac3cecdc8983
8424a0dfa24a5e63b340e4b4dd9b60f72fa48978a55b0aeff35b25cf3ad6942e
GET /api/users/377400?v2=1&fill=0&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25&s2=%25subid2%25&i=1&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://www.titshub.com
access-control-expose-headers: X-Asg-Config, X-t
x-robots-tag: noindex, nofollow
x-t: 0
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
game.starswalker.site/api/click/6166003172254038095?c=90
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/6166003172254038095?c=90
IP
ASN #24940 Hetzner Online GmbH
Requested by https://game.starswalker.site/api/spots/321354?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/6166003172254038095?c=90 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/api/spots/321354?p=1&s1=%subid1%&kw=
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:32 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
s.orbsrv.com/v1/api.php
200 OK 3.0 kB IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://game.starswalker.site/api/spots/321355?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectorbsrv.com
FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34
ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT
File type JSON data\012- , ASCII text, with very long lines (6277), with no line terminators
Hash 3378ffe8cacc2516e9cb9ae608667829
d1f4eb4c1453a378e21a015ed3dae8d9ae9422b8
2019b1d60b8a42c04e4e007438d2df0b7a45c4c8f5f4aebba4ec660171094089
POST /v1/api.php HTTP/1.1
Host: s.orbsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 330
Origin: https://game.starswalker.site
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:32 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://game.starswalker.site
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226565c1fc92e750.983829913385506815%22%3B%7D; expires=Thu, 27-Nov-2025 10:33:32 GMT; Max-Age=63072000; path=/; domain=orbsrv.com; secure; SameSite=None
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s.orbsrv.com/v1/api.php
200 OK 3.0 kB IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://game.starswalker.site/api/spots/321355?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectorbsrv.com
FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34
ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT
File type JSON data\012- , ASCII text, with very long lines (6308), with no line terminators
Hash ec5bb1186b9b1ea4577318533bafd868
10e6eb8047b9ef83ea10a7763af651c4daada778
aa1668114fb84740c75ac8b7e88106deba25902a39a6db6dbb860b5dd864f392
POST /v1/api.php HTTP/1.1
Host: s.orbsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 330
Origin: https://game.starswalker.site
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:32 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://game.starswalker.site
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226565c1fc911219.270066062283913865%22%3B%7D; expires=Thu, 27-Nov-2025 10:33:32 GMT; Max-Age=63072000; path=/; domain=orbsrv.com; secure; SameSite=None
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s.orbsrv.com/v1/api.php
200 OK 3.1 kB IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://game.starswalker.site/api/spots/321355?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectorbsrv.com
FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34
ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT
File type JSON data\012- , ASCII text, with very long lines (6692), with no line terminators
Hash 011afe0219e1103b4d92a82f6fe643df
dcf9c4d5f0deb925d056912d86a4702d697437af
dad905cffaeadeb3fba2858322777c08c7de6833c67566cee611ba1be5b22b72
POST /v1/api.php HTTP/1.1
Host: s.orbsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 330
Origin: https://game.starswalker.site
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:32 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://game.starswalker.site
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226565c1fc93ebc4.195279721079225616%22%3B%7D; expires=Thu, 27-Nov-2025 10:33:32 GMT; Max-Age=63072000; path=/; domain=orbsrv.com; secure; SameSite=None
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
www.titshub.com/css/plugins.css
200 OK 12 kB URL GET HTTP/3 www.titshub.com/css/plugins.css
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (29529)
Hash 4092218dab88f50c2ae78b636da0f06e
6534c8b0dfeaa401038c595a238f3fed21b69da6
2e3480402dc98bc43baa6327e8765e2e07dfc5781359086cb11993e817776cb6
GET /css/plugins.css HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: text/css
last-modified: Fri, 03 Sep 2021 08:42:37 GMT
vary: Accept-Encoding
etag: W/"6131dffd-c445"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1806323
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Es0tY4YfuNG7jMK28h2AQg%2FOrkynzOz7JtYy7%2F7uH5CZ%2BK%2FEsvcImWSwFNHYqYsw1eUqGOr%2F4qFbeHWtFwlYPnS6faQRZyGL%2FW6ER0ViTxU%2F1PA8ReINvstt%2BeWLH9NReQ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f3fcbfb17129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
game.starswalker.site/api/spots/321357?p=1&s1=%subid1%&kw=
200 OK 7.2 kB URL GET HTTP/2 game.starswalker.site/api/spots/321357?p=1&s1=%subid1%&kw=
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (6876)
Hash 0418ac3bb6e49fc11d0e08fce6205cb6
6fc3cbce17071cb37e2ff23f7a693e630edc1180
1cfb0eeca8463549ba8b5e377fca13ebaf6d5c0865beb1a22f91eb582abe70e8
GET /api/spots/321357?p=1&s1=%subid1%&kw= HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.r2m03.amazontrust.com/
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash ab08b21b37480bf609deaf73dcbf1e34
4121333c3a37ff481b30918ce3a1aa643cf813c2
d8c99d9c9d12731615d29afd9aba86e213ce6c7dfb8938334de50d3edfd78fcd
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 28 Nov 2023 10:33:32 GMT
Last-Modified: Tue, 28 Nov 2023 09:56:01 GMT
Server: ECAcc (ska/F6CC)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Gp0wqR1RP2_mlblGVNuLx-UVjft3x2wO3YgT3oXHO8hKtxtsoybI0Q==
Age: 2251
a.orbsrv.com/ad-provider.js
200 OK 33 kB URL GET HTTP/2 a.orbsrv.com/ad-provider.js
IP
ASN #60068 Datacamp Limited
Requested by https://game.starswalker.site/api/spots/321357?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectorbsrv.com
FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34
ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT
File type gzip compressed data, from Unix\012- data
Hash eab3b58955ba637b248675e05563f498
8329187c910787116eac156fa0c3dd2e1fad80a6
dba95361ce12c7f72df32e5a8e870ed1018cc2b6934ae8cbdbabe133059ef593
GET /ad-provider.js HTTP/1.1
Host: a.orbsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"075f126ac630e1b7e6c94201389"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Mon, 27 Nov 2023 13:29:27 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJDQH3QykAAAwBuUwKAQH3CQAAAAwB1GY4nAH3yQEAAA
x-77-nzt-ray: c0a4cc28af63fb7ffcc16565b714240e
x-accel-expires: @1701167849
x-accel-date: 1701157049
x-77-cache: HIT
x-77-age: 11029
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 9, 10563
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
s.orbsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1P7UoDMRB8FV+gYb9yyfpb/ypU+gAxdy2ibaVXUGEe3r0rugthmOzszAqJbpg3Uu8o36veq8A5OSWTxNnw9LyFMT7Pl9PhnPr5CGUfhCDKpQgqea0FJrWwGzLVwD7kSrD4IBeDERQULVnNFpSIiFEyHndb7F4egnEuDkZsjndxRWy3wPS9SFlr78rTnl2yiYzNTSjnV3cpw74sgzi045Tma7vMX+3jfbqk+e06rc6rpyovDn9E9GZRKZtK5IoirHSbf04d+B+7hUZetSIQvyGwxW2MSC1tsC6q2UsfRymdxoGqeht98vwL0ukbbGcBAAA=
200 OK 20 B URL GET HTTP/1.1 s.orbsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1P7UoDMRB8FV+gYb9yyfpb/ypU+gAxdy2ibaVXUGEe3r0rugthmOzszAqJbpg3Uu8o36veq8A5OSWTxNnw9LyFMT7Pl9PhnPr5CGUfhCDKpQgqea0FJrWwGzLVwD7kSrD4IBeDERQULVnNFpSIiFEyHndb7F4egnEuDkZsjndxRWy3wPS9SFlr78rTnl2yiYzNTSjnV3cpw74sgzi045Tma7vMX+3jfbqk+e06rc6rpyovDn9E9GZRKZtK5IoirHSbf04d+B+7hUZetSIQvyGwxW2MSC1tsC6q2UsfRymdxoGqeht98vwL0ukbbGcBAAA=
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://game.starswalker.site/api/spots/321357?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectorbsrv.com
FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34
ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz1P7UoDMRB8FV+gYb9yyfpb/ypU+gAxdy2ibaVXUGEe3r0rugthmOzszAqJbpg3Uu8o36veq8A5OSWTxNnw9LyFMT7Pl9PhnPr5CGUfhCDKpQgqea0FJrWwGzLVwD7kSrD4IBeDERQULVnNFpSIiFEyHndb7F4egnEuDkZsjndxRWy3wPS9SFlr78rTnl2yiYzNTSjnV3cpw74sgzi045Tma7vMX+3jfbqk+e06rc6rpyovDn9E9GZRKZtK5IoirHSbf04d+B+7hUZetSIQvyGwxW2MSC1tsC6q2UsfRymdxoGqeht98vwL0ukbbGcBAAA= HTTP/1.1
Host: s.orbsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game.starswalker.site
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226565c1fc97c817.796955723032478931%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://game.starswalker.site
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Thu, 27 Nov 2025 10:33:32 GMT; path=/; domain=.orbsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s.orbsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2PUU4DMQxEr8IFGtmOnTj9pr8gFfUA291shaAt6lYCpDk8ySKIpeRp5MnYQhI3zBvxB7JtjNsoKBwKBZXApnh63kMZH9fb5XQN4/WMyCUJQSLnLHAq7hkq6lYURt64JHOCmbvGpFBCBLUSi6qdAhEjG3aHPQ4vj00onAsY7eN299CO2pi+ulNHT26mNqU0u+TJcspMNYmWo5r3RpyGcw3Lfbgtn8P7W72F5fVe1+A1UpL0hD+h1aa7ImuUNlY7hFUelu/LCPy3RV8fW70ikPJLYG2rMTAdSx1nkarTWIziPLDOUx6TeB2I6g/wgQk6ZgEAAA==
200 OK 20 B URL GET HTTP/1.1 s.orbsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2PUU4DMQxEr8IFGtmOnTj9pr8gFfUA291shaAt6lYCpDk8ySKIpeRp5MnYQhI3zBvxB7JtjNsoKBwKBZXApnh63kMZH9fb5XQN4/WMyCUJQSLnLHAq7hkq6lYURt64JHOCmbvGpFBCBLUSi6qdAhEjG3aHPQ4vj00onAsY7eN299CO2pi+ulNHT26mNqU0u+TJcspMNYmWo5r3RpyGcw3Lfbgtn8P7W72F5fVe1+A1UpL0hD+h1aa7ImuUNlY7hFUelu/LCPy3RV8fW70ikPJLYG2rMTAdSx1nkarTWIziPLDOUx6TeB2I6g/wgQk6ZgEAAA==
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://game.starswalker.site/api/spots/321354?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectorbsrv.com
FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34
ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz2PUU4DMQxEr8IFGtmOnTj9pr8gFfUA291shaAt6lYCpDk8ySKIpeRp5MnYQhI3zBvxB7JtjNsoKBwKBZXApnh63kMZH9fb5XQN4/WMyCUJQSLnLHAq7hkq6lYURt64JHOCmbvGpFBCBLUSi6qdAhEjG3aHPQ4vj00onAsY7eN299CO2pi+ulNHT26mNqU0u+TJcspMNYmWo5r3RpyGcw3Lfbgtn8P7W72F5fVe1+A1UpL0hD+h1aa7ImuUNlY7hFUelu/LCPy3RV8fW70ikPJLYG2rMTAdSx1nkarTWIziPLDOUx6TeB2I6g/wgQk6ZgEAAA== HTTP/1.1
Host: s.orbsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game.starswalker.site
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226565c1fc97c817.796955723032478931%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://game.starswalker.site
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Thu, 27 Nov 2025 10:33:32 GMT; path=/; domain=.orbsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s.orbsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1Q7UoDQQx8FV+gR772Nulv/atQ6QNcr3tFtK20BRXm4c1d0Q0sQybJTCIkumJeiT9QWauuVRDcBXUmHRfD88sGxvg8X06Hczeej1COXgiiXKvAKdwrTLyyCwp54uiLEywJCjEYQUEZUtRsRh2RFY7kzYoVCtSCp+0G29fHZINrgJEq+c8OkEqWmL6XMVKkNm2Tuu4mabs67pWiujXxFm0uxGE4tu56Gy7Xr+HjvV2669utLS4WfS0yK/wlMlZzl7KppMd8hCU9XH9OI/Bfdl8AZekVgcQdgS33ZGDikcx73ov5mAeYXPfeT+kydm0K/gXlQfVTcwEAAA==
200 OK 20 B URL GET HTTP/1.1 s.orbsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1Q7UoDQQx8FV+gR772Nulv/atQ6QNcr3tFtK20BRXm4c1d0Q0sQybJTCIkumJeiT9QWauuVRDcBXUmHRfD88sGxvg8X06Hczeej1COXgiiXKvAKdwrTLyyCwp54uiLEywJCjEYQUEZUtRsRh2RFY7kzYoVCtSCp+0G29fHZINrgJEq+c8OkEqWmL6XMVKkNm2Tuu4mabs67pWiujXxFm0uxGE4tu56Gy7Xr+HjvV2669utLS4WfS0yK/wlMlZzl7KppMd8hCU9XH9OI/Bfdl8AZekVgcQdgS33ZGDikcx73ov5mAeYXPfeT+kydm0K/gXlQfVTcwEAAA==
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://game.starswalker.site/api/spots/321353?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectorbsrv.com
FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34
ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz1Q7UoDQQx8FV+gR772Nulv/atQ6QNcr3tFtK20BRXm4c1d0Q0sQybJTCIkumJeiT9QWauuVRDcBXUmHRfD88sGxvg8X06Hczeej1COXgiiXKvAKdwrTLyyCwp54uiLEywJCjEYQUEZUtRsRh2RFY7kzYoVCtSCp+0G29fHZINrgJEq+c8OkEqWmL6XMVKkNm2Tuu4mabs67pWiujXxFm0uxGE4tu56Gy7Xr+HjvV2669utLS4WfS0yK/wlMlZzl7KppMd8hCU9XH9OI/Bfdl8AZekVgcQdgS33ZGDikcx73ov5mAeYXPfeT+kydm0K/gXlQfVTcwEAAA== HTTP/1.1
Host: s.orbsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game.starswalker.site
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226565c1fc97c817.796955723032478931%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://game.starswalker.site
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Thu, 27 Nov 2025 10:33:32 GMT; path=/; domain=.orbsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp
200 OK 11 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp
IP
ASN #60068 Datacamp Limited
Requested by https://game.starswalker.site/api/spots/321355?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1f71c07cf737e9027cde5dee229a9b0a
60d474e1dc6e8fabe193a4bd84fbb74e53023f98
9cf04beccfad94fe5b38de5e76c962cf57935abf856f9fc719ae25e7e58ea428
GET /library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: image/webp
content-length: 10878
last-modified: Wed, 03 Nov 2021 16:29:44 GMT
etag: "6182b8f8-2a7e"
expires: Fri, 30 Jun 2023 18:47:51 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: EQwBuUwJDQH3PfHFAA
x-77-nzt-ray: c0a4cc283d56158efcc165652d15f02f
x-accel-expires: @1719731263
x-accel-date: 1688195263
x-cache-lb: HIT
x-age-lb: 12972349
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 12972349
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/319620/e6207b2b4e8a54dbf5a9e8d5ca6f201ffa2361ab.webp
200 OK 15 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/319620/e6207b2b4e8a54dbf5a9e8d5ca6f201ffa2361ab.webp
IP
ASN #60068 Datacamp Limited
Requested by https://game.starswalker.site/api/spots/321354?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dbc12f39b969b075358d687d7831197c
e6207b2b4e8a54dbf5a9e8d5ca6f201ffa2361ab
0eddb716ef8c7a4687d9e6d3e098ba3e1312733326b27bec2f43e86c86c78d20
GET /library/319620/e6207b2b4e8a54dbf5a9e8d5ca6f201ffa2361ab.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: image/webp
content-length: 15054
last-modified: Thu, 04 Nov 2021 10:55:06 GMT
etag: "6183bc0a-3ace"
expires: Wed, 20 Sep 2023 05:43:41 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3TLovAA
x-77-nzt-ray: c0a4cc283d56158efcc16565d9ff0630
x-accel-expires: @1729575728
x-accel-date: 1698039728
x-cache-lb: HIT
x-age-lb: 3127884
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 3127884
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp
200 OK 11 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp
IP
ASN #60068 Datacamp Limited
Requested by https://game.starswalker.site/api/spots/321355?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1f71c07cf737e9027cde5dee229a9b0a
60d474e1dc6e8fabe193a4bd84fbb74e53023f98
9cf04beccfad94fe5b38de5e76c962cf57935abf856f9fc719ae25e7e58ea428
GET /library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: image/webp
content-length: 10878
last-modified: Wed, 03 Nov 2021 16:29:44 GMT
etag: "6182b8f8-2a7e"
expires: Fri, 30 Jun 2023 18:47:51 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: EQwBuUwJDQH3PfHFAA
x-77-nzt-ray: c0a4cc283d56158efcc1656517ba2030
x-accel-expires: @1719731263
x-accel-date: 1688195263
x-cache-lb: HIT
x-age-lb: 12972349
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 12972349
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp
200 OK 11 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp
IP
ASN #60068 Datacamp Limited
Requested by https://game.starswalker.site/api/spots/321355?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1f71c07cf737e9027cde5dee229a9b0a
60d474e1dc6e8fabe193a4bd84fbb74e53023f98
9cf04beccfad94fe5b38de5e76c962cf57935abf856f9fc719ae25e7e58ea428
GET /library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: image/webp
content-length: 10878
last-modified: Wed, 03 Nov 2021 16:29:44 GMT
etag: "6182b8f8-2a7e"
expires: Fri, 30 Jun 2023 18:47:51 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: EQwBuUwJDQH3PfHFAA
x-77-nzt-ray: c0a4cc283d56158efcc16565686dc53a
x-accel-expires: @1719731263
x-accel-date: 1688195263
x-cache-lb: HIT
x-age-lb: 12972349
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 12972349
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp
200 OK 11 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp
IP
ASN #60068 Datacamp Limited
Requested by https://game.starswalker.site/api/spots/321355?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1f71c07cf737e9027cde5dee229a9b0a
60d474e1dc6e8fabe193a4bd84fbb74e53023f98
9cf04beccfad94fe5b38de5e76c962cf57935abf856f9fc719ae25e7e58ea428
GET /library/319620/60d474e1dc6e8fabe193a4bd84fbb74e53023f98.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: image/webp
content-length: 10878
last-modified: Wed, 03 Nov 2021 16:29:44 GMT
etag: "6182b8f8-2a7e"
expires: Fri, 30 Jun 2023 18:47:51 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: EQwBuUwJDQH3PfHFAA
x-77-nzt-ray: c0a4cc283d56158efcc165651ffd783b
x-accel-expires: @1719731263
x-accel-date: 1688195263
x-cache-lb: HIT
x-age-lb: 12972349
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 12972349
accept-ranges: bytes
X-Firefox-Spdy: h2
s.orbsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1PW2rDQAy8Si+QRa/17ua7/W0hJQdYr+1Q2sQlDrSFOXxlh1YCMYw0GklIdMe8k/xAca+6V0HhUCiYBI6G55cDjPE5Xy+nObT5DOXSCUGUUxJkKjknmOTEmRApOy5ddGzeoCIGIyjIU6KarSgQESNFPB0POL4+OlM4FTB8s9fVFb7dHNP3Km00RK4px1bqyDZ1paaknQ5ToylNcR3EqZ7HsNzqdfmqH+/jNSxvt3Fz3jzVH3GHP8Jzt6qUTcXv8iBsdF1+Lg34H7sfjbhpRSDljsDmvzFQR9NKfauSbOpzSwOVSEqpcuu0l1/UqT1KZwEAAA==
200 OK 20 B URL GET HTTP/1.1 s.orbsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1PW2rDQAy8Si+QRa/17ua7/W0hJQdYr+1Q2sQlDrSFOXxlh1YCMYw0GklIdMe8k/xAca+6V0HhUCiYBI6G55cDjPE5Xy+nObT5DOXSCUGUUxJkKjknmOTEmRApOy5ddGzeoCIGIyjIU6KarSgQESNFPB0POL4+OlM4FTB8s9fVFb7dHNP3Km00RK4px1bqyDZ1paaknQ5ToylNcR3EqZ7HsNzqdfmqH+/jNSxvt3Fz3jzVH3GHP8Jzt6qUTcXv8iBsdF1+Lg34H7sfjbhpRSDljsDmvzFQR9NKfauSbOpzSwOVSEqpcuu0l1/UqT1KZwEAAA==
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://game.starswalker.site/api/spots/321352?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectorbsrv.com
FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34
ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz1PW2rDQAy8Si+QRa/17ua7/W0hJQdYr+1Q2sQlDrSFOXxlh1YCMYw0GklIdMe8k/xAca+6V0HhUCiYBI6G55cDjPE5Xy+nObT5DOXSCUGUUxJkKjknmOTEmRApOy5ddGzeoCIGIyjIU6KarSgQESNFPB0POL4+OlM4FTB8s9fVFb7dHNP3Km00RK4px1bqyDZ1paaknQ5ToylNcR3EqZ7HsNzqdfmqH+/jNSxvt3Fz3jzVH3GHP8Jzt6qUTcXv8iBsdF1+Lg34H7sfjbhpRSDljsDmvzFQR9NKfauSbOpzSwOVSEqpcuu0l1/UqT1KZwEAAA== HTTP/1.1
Host: s.orbsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game.starswalker.site
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226565c1fc97c817.796955723032478931%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://game.starswalker.site
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.029701%22%7D; expires=Thu, 27 Nov 2025 10:33:32 GMT; path=/; domain=.orbsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s.orbsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2PYU7DMAyFr8IFFtmOkzj7zf6CNLQDtGk7IdiK1kmA9A6PWwSxlDy95PlzhCTumHdiD5T2Me6joHKoFFQCJ8XT8xHK+Jhv1/Mc2nxB5JqFIJFLERhVswIVK2yGROa65mQE9QuqolBCBHlJiqqrCkTEKAmH0xGnl0d3KpcKhnf2faXCu6tr+lqjg+Tc97VOOQ+mKXZ5GmJfqFXTSdsaJZy7yxiWe3dbPrv3t/EWltf7uJE3puNXwp/htVtTkTWKz+WLsNnd8n1twP8zzduRtqwIpP4qsPrfGGhZ2Rr32tpgJKNV6tiyzzyNeSjTD6kxzs9nAQAA
200 OK 20 B URL GET HTTP/1.1 s.orbsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2PYU7DMAyFr8IFFtmOkzj7zf6CNLQDtGk7IdiK1kmA9A6PWwSxlDy95PlzhCTumHdiD5T2Me6joHKoFFQCJ8XT8xHK+Jhv1/Mc2nxB5JqFIJFLERhVswIVK2yGROa65mQE9QuqolBCBHlJiqqrCkTEKAmH0xGnl0d3KpcKhnf2faXCu6tr+lqjg+Tc97VOOQ+mKXZ5GmJfqFXTSdsaJZy7yxiWe3dbPrv3t/EWltf7uJE3puNXwp/htVtTkTWKz+WLsNnd8n1twP8zzduRtqwIpP4qsPrfGGhZ2Rr32tpgJKNV6tiyzzyNeSjTD6kxzs9nAQAA
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://game.starswalker.site/api/spots/321355?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectorbsrv.com
FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34
ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz2PYU7DMAyFr8IFFtmOkzj7zf6CNLQDtGk7IdiK1kmA9A6PWwSxlDy95PlzhCTumHdiD5T2Me6joHKoFFQCJ8XT8xHK+Jhv1/Mc2nxB5JqFIJFLERhVswIVK2yGROa65mQE9QuqolBCBHlJiqqrCkTEKAmH0xGnl0d3KpcKhnf2faXCu6tr+lqjg+Tc97VOOQ+mKXZ5GmJfqFXTSdsaJZy7yxiWe3dbPrv3t/EWltf7uJE3puNXwp/htVtTkTWKz+WLsNnd8n1twP8zzduRtqwIpP4qsPrfGGhZ2Rr32tpgJKNV6tiyzzyNeSjTD6kxzs9nAQAA HTTP/1.1
Host: s.orbsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game.starswalker.site
DNT: 1
Connection: keep-alive
Referer: https://game.starswalker.site/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226565c1fc97c817.796955723032478931%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:33 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://game.starswalker.site
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.029701%22%7D; expires=Thu, 27 Nov 2025 10:33:33 GMT; path=/; domain=.orbsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
www.googletagmanager.com/gtag/js?id=G-3SCCHRNFC7&l=dataLayer&cx=c
200 OK 81 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-3SCCHRNFC7&l=dataLayer&cx=c
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash 1acdd632e44c7b6d336f5b1a1a966dbd
b2c84b53a215ad1badd572ac8f3d73b039a2f1fc
9c39846c757398840fbd4af831ecba4ba149861796a181ac9d064bdaef2dbf2b
GET /gtag/js?id=G-3SCCHRNFC7&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Nov 2023 10:33:33 GMT
expires: Tue, 28 Nov 2023 10:33:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80991
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
proceedglad.com/pixel/purst?dl=0&th=0&sc=0&rs=1684&rd=1684&fd=1258&bv=23.11.v.9&tmpl=70
200 OK 0 B URL GET HTTP/1.1 proceedglad.com/pixel/purst?dl=0&th=0&sc=0&rs=1684&rd=1684&fd=1258&bv=23.11.v.9&tmpl=70
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1684&rd=1684&fd=1258&bv=23.11.v.9&tmpl=70 HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 10:33:33 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
www.titshub.com/apple-touch-icon.png?v=2
200 OK 23 kB URL GET HTTP/3 www.titshub.com/apple-touch-icon.png?v=2
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 241acd55d03fe71f20cb93dfc0e4a164
9f9d9d9444185911a6df9398b51ed0849ad87e05
b2f4db0c3c1ff1fbee584ba4d0bae83aa686df907c0d4b0c0b054d4b5e3d78cc
GET /apple-touch-icon.png?v=2 HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154; show_pops2=true2; pp_show_on_f4b6562d7ac3653eb00cba8ec1a19ab1=1; kt_tcookie=1; kt_is_visited=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: image/png
content-length: 23327
last-modified: Tue, 14 Sep 2021 12:59:08 GMT
etag: "61409c9c-5b1f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 114349
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dBR5IpdOeQ%2FPiDHmoPHYDyS2%2BYN5Avc8jHxRrDFhivHDVQGGET3T%2BcPOK9AjIYluGyFJ7Z3LciwP%2FGXL%2FKKPvh2Rc9ofCi6fP1fdokaVLfQs4uSUcP%2FiWDEmHSEZFhmAUmI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f40e8d737129-OSL
alt-svc: h3=":443"; ma=86400
www.titshub.com/favicon-16x16.png?v=2
200 OK 799 B URL GET HTTP/3 www.titshub.com/favicon-16x16.png?v=2
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f24a8a48274d4a0a0da84f7a5642cba
edce2dc38cb77a4210e93739f54599bc594b89ff
9287ad9b455b7fb54de4a0945429d9a43add9530d01f08522188fec0a6203149
GET /favicon-16x16.png?v=2 HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154; show_pops2=true2; pp_show_on_f4b6562d7ac3653eb00cba8ec1a19ab1=1; kt_tcookie=1; kt_is_visited=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: image/png
content-length: 799
last-modified: Tue, 14 Sep 2021 12:59:08 GMT
etag: "61409c9c-31f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 534715
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C%2BM92CUEqT%2BKKQz5nPYnNlKqgj1MoqhMLqDYun%2FvupK1VD8Mf7ShWhb07FE0QPDqwC%2BE15l0yV%2BIqyrOZwEC%2F8rGEs%2BiV0ezB53verR7pU16S77JaCslW2c7Bn1NkYT2m0M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f40e8d767129-OSL
alt-svc: h3=":443"; ma=86400
proceedglad.com/cd/5a/be/cd5abed78dd39775e853bf48dc8fdf15.js
200 OK 15 kB URL GET HTTP/1.1 proceedglad.com/cd/5a/be/cd5abed78dd39775e853bf48dc8fdf15.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT
File type ASCII text, with very long lines (42757), with no line terminators
Hash bdfa8447120f73aefb837d8040867dc3
a1089d8bed573d708b823c81d7f3f73c75e4fc75
5757544cf6487b508c1dc2b6eecac0863df05497acee550fe3f5ac218457410c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /cd/5a/be/cd5abed78dd39775e853bf48dc8fdf15.js HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 10:33:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ff9ad0f83fc53e31a9e1116a90c5bbf1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 7b62f9015a92a4f34d2db01badc87960
f356fadeb0e0c590501912e9196b5aac47a79b8b
a2a6bb03e28261c40e795eefb727d116f11cbd556945d148b5c4c86ae34d1bd0
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: uid_id2=313274ae-a5cd-4f76-bf30-b10015368d77:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.titshub.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL GET HTTP/2 banquetunarmedgrater.com/advertisers.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 8950fb8030f3ff4361b342258b4824cc
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 28 Nov 2023 10:33:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AxZ%2BUBJPxA46IDU3FzzaYa3hEPK4vLHua6DTdKtx7wiVlLg%2FfbNAmc4KCNrIEG0ikhJLKV5IAvH7lGQpYvnqLgL2KCn2jykUMigbAaqoo0%2BYjr6RpNFP0U8aOigpgKjOZNTg6he17%2FxZUM4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f40f4969b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 7b62f9015a92a4f34d2db01badc87960
f356fadeb0e0c590501912e9196b5aac47a79b8b
a2a6bb03e28261c40e795eefb727d116f11cbd556945d148b5c4c86ae34d1bd0
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: uid_id2=313274ae-a5cd-4f76-bf30-b10015368d77:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.titshub.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 7b62f9015a92a4f34d2db01badc87960
f356fadeb0e0c590501912e9196b5aac47a79b8b
a2a6bb03e28261c40e795eefb727d116f11cbd556945d148b5c4c86ae34d1bd0
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: uid_id2=313274ae-a5cd-4f76-bf30-b10015368d77:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.titshub.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/802424/447b51d5f457de99fa73f67c2c6fa5972a2f6500.webp
200 OK 6.7 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/802424/447b51d5f457de99fa73f67c2c6fa5972a2f6500.webp
IP
ASN #60068 Datacamp Limited
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f455b1a3c302f58bd4038016b164f133
447b51d5f457de99fa73f67c2c6fa5972a2f6500
12abce016739da92b819bf81e3d5a1433bc28440c7af1919d47175376eee4cca
GET /library/802424/447b51d5f457de99fa73f67c2c6fa5972a2f6500.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: image/webp
content-length: 6658
last-modified: Mon, 19 Sep 2022 10:30:02 GMT
etag: "632844aa-1a02"
expires: Tue, 19 Sep 2023 10:32:38 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3SkJcAA
x-77-nzt-ray: c0a4cc283d56158efdc1656540580f22
x-accel-expires: @1726657331
x-accel-date: 1695121331
x-cache-lb: HIT
x-age-lb: 6046282
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 6046282
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/140058/a0df5c23efcee52a99fe073a05b56d57e3f8a452.webp
200 OK 11 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/140058/a0df5c23efcee52a99fe073a05b56d57e3f8a452.webp
IP
ASN #60068 Datacamp Limited
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 532d1e5a87c63c6b3b95dcfeaed2e9fa
a0df5c23efcee52a99fe073a05b56d57e3f8a452
44bd8c81a5015fb8eef901a20569b69dc421fcffc831263ff88ec087dd47b091
GET /library/140058/a0df5c23efcee52a99fe073a05b56d57e3f8a452.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: image/webp
content-length: 10738
last-modified: Wed, 03 Nov 2021 11:53:34 GMT
etag: "6182783e-29f2"
expires: Tue, 24 Oct 2023 15:18:30 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH31hZIAQ
x-77-nzt-ray: c0a4cc283d56158efdc16565abcf5222
x-accel-expires: @1711201959
x-accel-date: 1679665959
x-cache-lb: HIT
x-age-lb: 21501654
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 21501654
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/802424/6f51268b321cf79d9f6b96c9493eb6cadd45173e.webp
200 OK 4.8 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/802424/6f51268b321cf79d9f6b96c9493eb6cadd45173e.webp
IP
ASN #60068 Datacamp Limited
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7a44e7b5bcaaaa1064c79cabcb4175cf
6f51268b321cf79d9f6b96c9493eb6cadd45173e
c35646cb2d80b4566132f8d43e3522394f1ab4e1408f5f2756356720b14a64e8
GET /library/802424/6f51268b321cf79d9f6b96c9493eb6cadd45173e.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: image/webp
content-length: 4756
last-modified: Mon, 19 Sep 2022 10:30:02 GMT
etag: "632844aa-1294"
expires: Tue, 19 Sep 2023 10:32:38 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3TkJcAA
x-77-nzt-ray: c0a4cc283d56158efdc1656596fd7123
x-accel-expires: @1726657327
x-accel-date: 1695121327
x-cache-lb: HIT
x-age-lb: 6046286
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 6046286
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/802424/87b39bc2e2b67510e42778441a315bbe710a4315.webp
200 OK 5.3 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/802424/87b39bc2e2b67510e42778441a315bbe710a4315.webp
IP
ASN #60068 Datacamp Limited
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 63226ff52768593adfe226bcdce21621
87b39bc2e2b67510e42778441a315bbe710a4315
424f0140ba2c5b50cdae25c7e2f2b69a51de9ba0aa20512272fc6cd41ade5300
GET /library/802424/87b39bc2e2b67510e42778441a315bbe710a4315.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: image/webp
content-length: 5294
last-modified: Mon, 19 Sep 2022 10:30:02 GMT
etag: "632844aa-14ae"
expires: Tue, 19 Sep 2023 10:32:38 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3SEJcAA
x-77-nzt-ray: c0a4cc283d56158efdc165650806c223
x-accel-expires: @1726657333
x-accel-date: 1695121333
x-cache-lb: HIT
x-age-lb: 6046280
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 6046280
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/802424/e767d8f630d3e31c569c7e2111f9a6c816bff6dd.webp
200 OK 5.2 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/802424/e767d8f630d3e31c569c7e2111f9a6c816bff6dd.webp
IP
ASN #60068 Datacamp Limited
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash befaeb747cf664f8ba60650faf70d64e
e767d8f630d3e31c569c7e2111f9a6c816bff6dd
7889676654d8669c2a0ddab1635667eb29797da54f67064afc05a2396f9c72b9
GET /library/802424/e767d8f630d3e31c569c7e2111f9a6c816bff6dd.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: image/webp
content-length: 5172
last-modified: Mon, 19 Sep 2022 10:30:02 GMT
etag: "632844aa-1434"
expires: Tue, 19 Sep 2023 10:32:38 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3+kJcAA
x-77-nzt-ray: c0a4cc283d56158efdc165655860cd23
x-accel-expires: @1726657155
x-accel-date: 1695121155
x-cache-lb: HIT
x-age-lb: 6046458
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 6046458
accept-ranges: bytes
X-Firefox-Spdy: h2
proceedglad.com/pixel/pure
200 OK 0 B URL POST HTTP/1.1 proceedglad.com/pixel/pure
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /pixel/pure HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 10:33:33 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
xdiwbc.com/template/dark.html
200 OK 1.6 kB URL GET HTTP/2 xdiwbc.com/template/dark.html
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectxdiwbc.com
Fingerprint5D:41:10:46:C6:59:EE:4D:26:CD:FC:4F:4C:13:35:6F:6E:2E:05:91
ValidityMon, 02 Oct 2023 04:50:38 GMT - Sun, 31 Dec 2023 04:50:37 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4959), with no line terminators
Hash 6a2826b9f4dcb6ce900d380cb99ff9f1
f53e7ddc0f280034a6801f471b0b90cb820ff432
8069f7d1e6b8a2d641dc76a20035a55e132d5dde949089a74ab119d0095ee4a8
GET /template/dark.html HTTP/1.1
Host: xdiwbc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://www.titshub.com
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Mon, 27 Nov 2023 20:09:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Aq98JuDqfMz8LCWQ%2BJBAFlade4Lt8V9XmgCOHDBQSFiuQXvxCi9jxSN2hn39YsCKoq2E%2B6S2LSMOeyiymHZOx%2FCPXbj4gPEUug%2FgWYpvnayNI%2Fzz1P5ElIArnRji"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f411d945b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 27 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: a354a05b6ea7feb508367f3d04f33058
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 28 Nov 2023 10:33:33 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bG%2BDMKekornNLxiNDjfZHcZr99LShU7Z1z4FRZrgVv%2FeALzl2w9BmnvAuSfg%2F1jAEXWNmIRsLbh4TQ5W7287xQpiEDwnGWKnoOXpmXekQoPGy9RevZiiOnZdkdW9Hix%2FKZ6Q5%2BI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f40f0d3f5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
s.magsrv.com/splash.php?idzone=4646920
200 OK 2.7 kB URL GET HTTP/1.1 s.magsrv.com/splash.php?idzone=4646920
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (1595)
Hash d2498cc5ad38a5aa138f24aecf3bf812
0fab39d4a757e12fcf3cc476d59cc535de702b85
49bdeb1071678a3a572aefc2652f207392cbc7c2a2c0de034d42f2f563c9ff22
GET /splash.php?idzone=4646920 HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:33 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226565c1fdf0c596.116398971080096250%22%3B%7D; expires=Thu, 27 Nov 2025 10:33:33 GMT; path=; domain=.magsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C4646920%7C81873074%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167613%7Cb436060a549f132a638b1da627b0098d%7Cok%22%7D; expires=Wed, 29 Nov 2023 10:33:33 GMT; path=/; domain=.magsrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://www.titshub.com
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s.magsrv.com/splash.php?idzone=4248614
200 OK 2.7 kB URL GET HTTP/1.1 s.magsrv.com/splash.php?idzone=4248614
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (1599)
Hash 27166e1cd48dead599b891b00e35bd32
30f69984d802f5154a0ab902db53aa28e595c1b2
0c91efb61eb6bd42278f40ab483f640000402ef055e94ba6bdf0a78b1311f85b
GET /splash.php?idzone=4248614 HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:33 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226565c1fdf117a9.625809562407223716%22%3B%7D; expires=Thu, 27 Nov 2025 10:33:33 GMT; path=; domain=.magsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C4248614%7C82276128%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167613%7Ce174b7b7d5ce3f839beb6ab2687a436f%7Cok%22%7D; expires=Mon, 26 Feb 2024 10:33:33 GMT; path=/; domain=.magsrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://www.titshub.com
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s.magsrv.com/splash.php?idzone=4287292
200 OK 2.5 kB URL GET HTTP/1.1 s.magsrv.com/splash.php?idzone=4287292
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (1591)
Hash 0e0055c6d487d892c06bdede63cd5566
29d8b287ddf066c2e0be683aeeb223ff9d82dffa
76707c5547703b518ee9f57dfb62225d1379f8a52cf8bc9202f816a0f9412550
GET /splash.php?idzone=4287292 HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:33 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226565c1fdf0fe29.44877433926679373%22%3B%7D; expires=Thu, 27 Nov 2025 10:33:33 GMT; path=; domain=.magsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C4287292%7C84865580%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167613%7Cdba1516b372481d73869e9ae53f8fee6%7Cok%22%7D; expires=Wed, 29 Nov 2023 10:33:33 GMT; path=/; domain=.magsrv.com; Secure; SameSite=none
zone-cap-4287292=1; expires=Tue, 28 Nov 2023 10:38:33 GMT; path=/; domain=.magsrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://www.titshub.com
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
proceedglad.com/pixel/pure
200 OK 0 B URL POST HTTP/1.1 proceedglad.com/pixel/pure
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /pixel/pure HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 73
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 10:33:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
prhzxq.com/wnrw?aid=14636219872452758185&a=1
200 OK 0 B URL GET HTTP/2 prhzxq.com/wnrw?aid=14636219872452758185&a=1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectprhzxq.com
FingerprintAF:E4:1D:E8:DA:E7:CB:59:A8:A1:F6:FC:7B:22:BD:88:80:FA:14:B0
ValidityFri, 15 Sep 2023 17:07:53 GMT - Thu, 14 Dec 2023 17:07:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wnrw?aid=14636219872452758185&a=1 HTTP/1.1
Host: prhzxq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 10:33:34 GMT
content-length: 0
access-control-allow-origin: https://www.titshub.com
X-Firefox-Spdy: h2
proceedglad.com/sbar.json?key=cd5abed78dd39775e853bf48dc8fdf15&uuid=313274ae-a5cd-4f76-bf30-b10015368d77%3A1%3A1
200 OK 4.2 kB URL GET HTTP/1.1 proceedglad.com/sbar.json?key=cd5abed78dd39775e853bf48dc8fdf15&uuid=313274ae-a5cd-4f76-bf30-b10015368d77%3A1%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5782), with no line terminators
Hash c6f772e92dd38a5c7baa68dea3eb4264
227d0c77ac62d17284270c07301f3eb2c7208f8f
da755de44d43211a93de40e25c9670b238cc21fee21857427b7d57a1bccecc18
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=cd5abed78dd39775e853bf48dc8fdf15&uuid=313274ae-a5cd-4f76-bf30-b10015368d77%3A1%3A1 HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 10:33:34 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.titshub.com
Access-Control-Allow-Origin: https://www.titshub.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17371668; expires=Wed, 29 Nov 2023 10:33:33 GMT; secure; SameSite=None
uid_id2=313274ae-a5cd-4f76-bf30-b10015368d77:1:1; expires=Tue, 05 Dec 2023 10:33:33 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 29 Nov 2023 10:33:34 GMT; secure; SameSite=None
uncs=1; expires=Wed, 29 Nov 2023 10:33:34 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 29 Nov 2023 10:33:34 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 29 Nov 2023 10:33:34 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 56dea5e7428b1250aa89069f1d803014
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
i.wmgtr.com/cic/RX-QvcWbJxEMKmM6159dgjoepUXJT3t0.png
24 kB URL GET i.wmgtr.com/cic/RX-QvcWbJxEMKmM6159dgjoepUXJT3t0.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecti.wmgtr.com
FingerprintEC:B5:1E:3E:A4:6B:92:23:E2:9E:1E:FC:99:58:59:8E:23:DD:C1:25
ValidityMon, 23 Oct 2023 00:02:20 GMT - Sun, 21 Jan 2024 00:02:19 GMT
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash 9bc2299de203204ec573f1095030ee5f
7aec0b322e0f8179655bef54ce41f63057640677
c8d7ae8f3f594f7997a6b90c0a4256d929f8bc3e1473369a28fa86e1620ec339
GET /cic/RX-QvcWbJxEMKmM6159dgjoepUXJT3t0.png HTTP/1.1
Host: i.wmgtr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: image/png
server: nginx/1.19.0
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-option: nosniff
content-encoding: gzip
cache-control: max-age=82800
expires: Wed, 29 Nov 2023 09:33:34 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
go.xlivrdr.com/smartpop/662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=594678&memberId=y9mbPDSz-eeiohyIOhgMma5N04soB19jSPEFi9U__HjZQrkfKfBUcp5pwItJDhvUhX56PCqlcHHgq71VS-v1uDoku9ZlPIFZdI6UCC4ZlqHcugi6_gUIDRUi&p1=4073714&ax=0&tag=-girls%2Fmobile
302 Found 0 B URL GET HTTP/2 go.xlivrdr.com/smartpop/662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=594678&memberId=y9mbPDSz-eeiohyIOhgMma5N04soB19jSPEFi9U__HjZQrkfKfBUcp5pwItJDhvUhX56PCqlcHHgq71VS-v1uDoku9ZlPIFZdI6UCC4ZlqHcugi6_gUIDRUi&p1=4073714&ax=0&tag=-girls%2Fmobile
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectxlivrdr.com
FingerprintDA:D9:AC:E4:B1:E8:44:C4:D9:A4:0E:1B:DF:33:4B:24:74:45:7D:0E
ValidityWed, 03 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smartpop/662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=594678&memberId=y9mbPDSz-eeiohyIOhgMma5N04soB19jSPEFi9U__HjZQrkfKfBUcp5pwItJDhvUhX56PCqlcHHgq71VS-v1uDoku9ZlPIFZdI6UCC4ZlqHcugi6_gUIDRUi&p1=4073714&ax=0&tag=-girls%2Fmobile HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 28 Nov 2023 10:33:34 GMT
content-length: 0
location: https://go.mnaspm.com/api/models/vast?action=sbSignupWithModel&ax=0&campaignId=662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f&campaignType=smartpop&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745523&masterSmartpopId=2683&memberId=y9mbPDSz-eeiohyIOhgMma5N04soB19jSPEFi9U__HjZQrkfKfBUcp5pwItJDhvUhX56PCqlcHHgq71VS-v1uDoku9ZlPIFZdI6UCC4ZlqHcugi6_gUIDRUi&mlView=1&p1=4073714&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=3588&sourceId=594678&tag=-girls%2Fmobile&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31904
access-control-allow-origin: https://www.titshub.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: _var=8684233.31904_ZTJjNzVhZDk=; Path=/; Expires=Thu, 28 Dec 2023 10:33:34 GMT; HttpOnly; SameSite=Strict
__cflb=02DiuDFRFiBZBvMSLtr56RYDQPp7N2PDV755RmECBVQfE; SameSite=None; Secure; path=/; expires=Wed, 29-Nov-23 10:33:34 GMT; HttpOnly
server: cloudflare
cf-ray: 82d1f415afa5b518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
proceedglad.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3o2gCKJLLh6EOXhYwUy6p6czM%2B5BjGskGJOwu5Kj1K%2BelKnuaqu6pyc5BReWPcnszWPnm2SDGsT9AwSdeJFFYceD5GDunoU9isxkYPRB93uvvgf1fd%2BrB0fFJfFR0Ivtj82B0pouR3W%2FdnNHpcKUrrZ5rxb4df9WbUelK81btf7kZ3vvBH5U99%2BqfSj5nllu%2BIHvB35QW1NWxqa%2FPEWhsrNOUO%2F49WajHkRN9O3%2Fe1d4cNSD6F2SG1Bi%2FMLuL0%2Bg%2BAhp8v1t6fZyk739QVJomhuLnjj9JN1LTZkimZex9RCnp7NpGDcm5KtrMOnpTAFM73iiAEyNifdHAJaezmiC9U6umDINmYKJl1H2RpB6BEVH4OY%2BlHhGAC6wuYU0ebxpbEn3r1A6Qcdk4fnfUOWYLPy5iDT5blWrfu2u0UWuTOrQjyuo%2FgiqO0JWnCM%2F8KDKc%2FD8CyjxG1l%2BvoE0Od5y2kCJizfDIGy0mlQu0YiLpWbcWllicegvsYnDUbjSFq3W1CKlRlDxCFoOQJ2HYvIpD0Xsocg8JOKiRqNO7PutmMVh2G5yzsOQ86i9IiIRNtuxj4JPNAyQZwNwPQC3h8jsIfbUo2fRDdjiR7jdCk54cDlBT1QoJUHpCEpKUCqCMicoe9WJ0K7hqsdCu4IFs9yY5bAamrx7RE9M3pUpOcouyWsT77yXbixiT17UuIgok6LVFiLstFqRbEchi5ttwduxiIMITlVQ7tpU6YEak8Xwc2RqTK7RX8HoOZw%2BB1evghZvgJbDVsMH3R022z4O0rPM2DSjGa1zk0CYClm%2BgHzfO9KX5PXpDtcXmpD86bu%2Fh9MAtxUyW%2BEz9TNBVz8c3jElOb5jSkeebGW5StQBnez3bk5zef2bj%2BR%2BaaxYv%2B0GX7%2FHJ8CkPLsnXb5BU6HSriPfriohpF0zlkvyw7rbkWy7cLurhU2LbGP7%2FbX1JLPSOWXSEagaE%2FLlX%2BBqTF558dPp2735YAfKjmCLCknxlMwCyozAs0O4bM7fGQKr5zMs81AW1dA22PxQKwIt5z1lFdx%2Fejavj9xDdK0Hmt9HmlTo2Qo9XYHqAVxxfZhndn45096QaesdM231oytznbqoySj2Y%2Bk3JIs7LG5RX3TiZofRTiBbLKIBcjeW8qd%2F%2FgUAAP%2F%2FAQAA%2F%2F8YuGLmkwQAAA%3D%3D
200 OK 7 B URL GET HTTP/1.1 proceedglad.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3o2gCKJLLh6EOXhYwUy6p6czM%2B5BjGskGJOwu5Kj1K%2BelKnuaqu6pyc5BReWPcnszWPnm2SDGsT9AwSdeJFFYceD5GDunoU9isxkYPRB93uvvgf1fd%2BrB0fFJfFR0Ivtj82B0pouR3W%2FdnNHpcKUrrZ5rxb4df9WbUelK81btf7kZ3vvBH5U99%2BqfSj5nllu%2BIHvB35QW1NWxqa%2FPEWhsrNOUO%2F49WajHkRN9O3%2Fe1d4cNSD6F2SG1Bi%2FMLuL0%2Bg%2BAhp8v1t6fZyk739QVJomhuLnjj9JN1LTZkimZex9RCnp7NpGDcm5KtrMOnpTAFM73iiAEyNifdHAJaezmiC9U6umDINmYKJl1H2RpB6BEVH4OY%2BlHhGAC6wuYU0ebxpbEn3r1A6Qcdk4fnfUOWYLPy5iDT5blWrfu2u0UWuTOrQjyuo%2FgiqO0JWnCM%2F8KDKc%2FD8CyjxG1l%2BvoE0Od5y2kCJizfDIGy0mlQu0YiLpWbcWllicegvsYnDUbjSFq3W1CKlRlDxCFoOQJ2HYvIpD0Xsocg8JOKiRqNO7PutmMVh2G5yzsOQ86i9IiIRNtuxj4JPNAyQZwNwPQC3h8jsIfbUo2fRDdjiR7jdCk54cDlBT1QoJUHpCEpKUCqCMicoe9WJ0K7hqsdCu4IFs9yY5bAamrx7RE9M3pUpOcouyWsT77yXbixiT17UuIgok6LVFiLstFqRbEchi5ttwduxiIMITlVQ7tpU6YEak8Xwc2RqTK7RX8HoOZw%2BB1evghZvgJbDVsMH3R022z4O0rPM2DSjGa1zk0CYClm%2BgHzfO9KX5PXpDtcXmpD86bu%2Fh9MAtxUyW%2BEz9TNBVz8c3jElOb5jSkeebGW5StQBnez3bk5zef2bj%2BR%2BaaxYv%2B0GX7%2FHJ8CkPLsnXb5BU6HSriPfriohpF0zlkvyw7rbkWy7cLurhU2LbGP7%2FbX1JLPSOWXSEagaE%2FLlX%2BBqTF558dPp2735YAfKjmCLCknxlMwCyozAs0O4bM7fGQKr5zMs81AW1dA22PxQKwIt5z1lFdx%2Fejavj9xDdK0Hmt9HmlTo2Qo9XYHqAVxxfZhndn45096QaesdM231oytznbqoySj2Y%2Bk3JIs7LG5RX3TiZofRTiBbLKIBcjeW8qd%2F%2FgUAAP%2F%2FAQAA%2F%2F8YuGLmkwQAAA%3D%3D
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3o2gCKJLLh6EOXhYwUy6p6czM%2B5BjGskGJOwu5Kj1K%2BelKnuaqu6pyc5BReWPcnszWPnm2SDGsT9AwSdeJFFYceD5GDunoU9isxkYPRB93uvvgf1fd%2BrB0fFJfFR0Ivtj82B0pouR3W%2FdnNHpcKUrrZ5rxb4df9WbUelK81btf7kZ3vvBH5U99%2BqfSj5nllu%2BIHvB35QW1NWxqa%2FPEWhsrNOUO%2F49WajHkRN9O3%2Fe1d4cNSD6F2SG1Bi%2FMLuL0%2Bg%2BAhp8v1t6fZyk739QVJomhuLnjj9JN1LTZkimZex9RCnp7NpGDcm5KtrMOnpTAFM73iiAEyNifdHAJaezmiC9U6umDINmYKJl1H2RpB6BEVH4OY%2BlHhGAC6wuYU0ebxpbEn3r1A6Qcdk4fnfUOWYLPy5iDT5blWrfu2u0UWuTOrQjyuo%2FgiqO0JWnCM%2F8KDKc%2FD8CyjxG1l%2BvoE0Od5y2kCJizfDIGy0mlQu0YiLpWbcWllicegvsYnDUbjSFq3W1CKlRlDxCFoOQJ2HYvIpD0Xsocg8JOKiRqNO7PutmMVh2G5yzsOQ86i9IiIRNtuxj4JPNAyQZwNwPQC3h8jsIfbUo2fRDdjiR7jdCk54cDlBT1QoJUHpCEpKUCqCMicoe9WJ0K7hqsdCu4IFs9yY5bAamrx7RE9M3pUpOcouyWsT77yXbixiT17UuIgok6LVFiLstFqRbEchi5ttwduxiIMITlVQ7tpU6YEak8Xwc2RqTK7RX8HoOZw%2BB1evghZvgJbDVsMH3R022z4O0rPM2DSjGa1zk0CYClm%2BgHzfO9KX5PXpDtcXmpD86bu%2Fh9MAtxUyW%2BEz9TNBVz8c3jElOb5jSkeebGW5StQBnez3bk5zef2bj%2BR%2BaaxYv%2B0GX7%2FHJ8CkPLsnXb5BU6HSriPfriohpF0zlkvyw7rbkWy7cLurhU2LbGP7%2FbX1JLPSOWXSEagaE%2FLlX%2BBqTF558dPp2735YAfKjmCLCknxlMwCyozAs0O4bM7fGQKr5zMs81AW1dA22PxQKwIt5z1lFdx%2Fejavj9xDdK0Hmt9HmlTo2Qo9XYHqAVxxfZhndn45096QaesdM231oytznbqoySj2Y%2Bk3JIs7LG5RX3TiZofRTiBbLKIBcjeW8qd%2F%2FgUAAP%2F%2FAQAA%2F%2F8YuGLmkwQAAA%3D%3D HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: u_pl=17371668; uid_id2=313274ae-a5cd-4f76-bf30-b10015368d77:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 10:33:34 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 41c43efd48520455d14ec5b0f810257c
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=313274ae-a5cd-4f76-bf30-b10015368d77&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=cd5abed78dd39775e853bf48dc8fdf15&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=10
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=313274ae-a5cd-4f76-bf30-b10015368d77&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=cd5abed78dd39775e853bf48dc8fdf15&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=10
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=313274ae-a5cd-4f76-bf30-b10015368d77&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=cd5abed78dd39775e853bf48dc8fdf15&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=10 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 28 Nov 2023 10:33:34 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 30860131ec98bb935bc7e5da3b8c0966
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=313274ae-a5cd-4f76-bf30-b10015368d77&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=f4b6562d7ac3653eb00cba8ec1a19ab1&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=10
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=313274ae-a5cd-4f76-bf30-b10015368d77&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=f4b6562d7ac3653eb00cba8ec1a19ab1&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=10
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=313274ae-a5cd-4f76-bf30-b10015368d77&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=f4b6562d7ac3653eb00cba8ec1a19ab1&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=10 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 28 Nov 2023 10:33:34 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 13ca161e8c5cf85da0f8d35bcc414dfb
Strict-Transport-Security: max-age=0; includeSubdomains
go.bbrdbr.com/easy?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&xhVersion=1&skipOffset=00:00:05&memberId=e73abd64-96b0-4edd-b355-2bb6e303a5d0&sourceId=7407&p1=50168&p2=79550&contentType=video/mp4&no_bb=1
302 Found 0 B URL GET HTTP/2 go.bbrdbr.com/easy?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&xhVersion=1&skipOffset=00:00:05&memberId=e73abd64-96b0-4edd-b355-2bb6e303a5d0&sourceId=7407&p1=50168&p2=79550&contentType=video/mp4&no_bb=1
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /easy?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&xhVersion=1&skipOffset=00:00:05&memberId=e73abd64-96b0-4edd-b355-2bb6e303a5d0&sourceId=7407&p1=50168&p2=79550&contentType=video/mp4&no_bb=1 HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 28 Nov 2023 10:33:34 GMT
content-length: 0
location: https://go.bbrdbr.com/api/models/vast?action=sbSignupWithModel&campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&campaignType=smartpop&contentType=video%2Fmp4&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745641&masterSmartpopId=2683&memberId=e73abd64-96b0-4edd-b355-2bb6e303a5d0&mlView=1&no_bb=1&p1=50168&p2=79550&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=5347&sourceId=7407&usePreroll=true&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&variationId=31904&xhVersion=1
access-control-allow-origin: https://www.titshub.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: _var=67247758.31904_ZTJjNzVhZDk=; Path=/; Expires=Thu, 28 Dec 2023 10:33:34 GMT; HttpOnly; SameSite=Strict
__cflb=04dToPfSdwpmYL4m1jJR4AaLHvZoKEtWsjJ2fb2JNQ; SameSite=None; Secure; path=/; expires=Wed, 29-Nov-23 10:33:34 GMT; HttpOnly
server: cloudflare
cf-ray: 82d1f416ba8356a2-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/img/close.png
200 OK 6.0 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/img/close.png
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced\012- data
Hash c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/ssp/notifications/text_bubble/2/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:35 GMT
content-type: image/png
content-length: 5982
last-modified: Tue, 12 Jul 2022 10:56:24 GMT
etag: "62cd5358-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 13099
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jg9aroeK9QT6xeelwBFOTOqtZjmYYcItu2aOobY3FOrKiNX8iU8%2B0fdu6lzROZcvSOq%2FhxG9Mkev6Xvs%2BRJdmXHbzkYAAGGkGF9WEB2zMrS0jnt%2FZYUmOiumsuzdTTi1ohMyPIviTZIf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f419ebcc6627-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/29/79/b6/2979b6cd81afad6251e222515b2d8311/1663145782.html
200 OK 2.9 kB URL GET HTTP/2 cdn.barscreative1.com/sb/au/29/79/b6/2979b6cd81afad6251e222515b2d8311/1663145782.html
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectcdn.barscreative1.com
Fingerprint55:06:B7:F1:EF:E9:55:FB:7C:8C:4F:5D:DB:05:C9:15:19:90:9B:2F
ValiditySat, 11 Nov 2023 03:00:51 GMT - Fri, 09 Feb 2024 03:00:50 GMT
File type gzip compressed data, from Unix\012- data
Hash 4c50621dd7c9200969701e5affbeb929
28767ee49f432cbedd2f5cb88b68a92c8c0cea7d
c2937ec1fec304cedebe03623a7bcfdf31b3db78b52375e70fb83d67d19b176b
GET /sb/au/29/79/b6/2979b6cd81afad6251e222515b2d8311/1663145782.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Wed, 14 Sep 2022 08:56:26 GMT
etag: W/"6321973a-6ef"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Tue, 28 Nov 2023 11:33:34 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/img/number.png
200 OK 1.1 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/img/number.png
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type PNG image data, 43 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e4414e85c588bf7db195e49c02ab2bb
09254e79b255f1b2dfe45adbbe44583a4b433782
0b977ec6e7cf5d35df03cd3a8041f5f523f5d4059ac67c152c0a7b613e20b762
GET /sb/ssp/notifications/text_bubble/2/img/number.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:35 GMT
content-type: image/png
content-length: 1138
last-modified: Tue, 12 Jul 2022 10:56:23 GMT
etag: "62cd5357-472"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1762332
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mM%2F8LmL1tKJn1Fo00ciCZr3OvyLitL1pR4yfkCbGCjQVe21%2FauTltf%2BtDZojzgGiPE3VD7AfffibpOMC9RGnuGen7%2Bz5tSDWqKE8YmG8UnHiYSDFnP839ZgqSg41QGtsnQSA2rQK%2Fpjc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f419ebd26627-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
i.wmgtr.com/cic/jM3-cBg6FdfQzbNCLprsoWE9X3xuNSno.png
20 kB URL GET i.wmgtr.com/cic/jM3-cBg6FdfQzbNCLprsoWE9X3xuNSno.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecti.wmgtr.com
FingerprintEC:B5:1E:3E:A4:6B:92:23:E2:9E:1E:FC:99:58:59:8E:23:DD:C1:25
ValidityMon, 23 Oct 2023 00:02:20 GMT - Sun, 21 Jan 2024 00:02:19 GMT
File type gzip compressed data, from Unix\012- data
Hash e8a90247fce46c0872681e409214fa5b
ce620db9e44f2f7ffbfba99c4e8167ba00637a6d
623e35b2c50f2de252922206926652d392d10afaa42f5af312ee5b951801a39f
GET /cic/jM3-cBg6FdfQzbNCLprsoWE9X3xuNSno.png HTTP/1.1
Host: i.wmgtr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: image/png
server: nginx/1.19.0
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-option: nosniff
content-encoding: gzip
cache-control: max-age=82800
expires: Wed, 29 Nov 2023 09:33:34 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/css/animate.css
200 OK 6.0 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/css/animate.css
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash e1d8acd5ee9d1a90ea09313cbd8f2b02
8a8327b115d1356715e63270d1ce6d46124c7b1a
3028c87fc798ac3741f02079034e6c23462afc0c5e6c8d321188ce3716c8472a
GET /sb/ssp/notifications/text_bubble/2/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: text/css
last-modified: Tue, 12 Jul 2022 10:56:21 GMT
etag: W/"62cd5355-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2265943
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t8f7a2zTC99KLbyLerKbCuYKVdpX7PvxSMUK9%2B%2BzIn%2FyalB8JrQr15PJeQZ3G23j%2Bf1g7PStdCn%2BMaIJnoQiCyIn5ErI051N2%2BDVd9rZyyaDkCyhj7EQMbQ4zB2qrPbflpZVR1beWgTO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f4194aee6627-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/8f/ea/84/8fea842e6725570caddafd3fafefc6de/1690854301.png
200 OK 84 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/8f/ea/84/8fea842e6725570caddafd3fafefc6de/1690854301.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b04a52f62d43c486f98525e20fa79b58
3147acec66d5c9af77a1dc8a74ba5548e713753d
a28b993efcf36015497d94c679678869052d7c3b2b0c30b30068d0a452969f6b
GET /si/8f/ea/84/8fea842e6725570caddafd3fafefc6de/1690854301.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:35 GMT
content-type: image/png
content-length: 84058
server: nginx/1.21.6
last-modified: Tue, 01 Aug 2023 01:45:09 GMT
etag: "64c863a5-1485a"
expires: Thu, 30 Nov 2023 10:33:35 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
game.starswalker.site/api/click/16286680643406075095?c=60&data[error]=3
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/16286680643406075095?c=60&data[error]=3
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/16286680643406075095?c=60&data[error]=3 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:35 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
game.starswalker.site/api/users/410357?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25
200 OK 404 B URL GET HTTP/2 game.starswalker.site/api/users/410357?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type ASCII text, with very long lines (343)
Hash af1f67ab23fff141c9e16e4705dcf8a8
12a4f60902988c6fcd032b0816a677e25f821271
f82f8760a264c0208294681eaa793cd8c5f0a5c2b3918b416d3cef11252f30b4
GET /api/users/410357?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
game.starswalker.site/api/click/16286680643406075095?c=60&data[error]=400
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/16286680643406075095?c=60&data[error]=400
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/16286680643406075095?c=60&data[error]=400 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:35 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
crmt.livejasmin.com/vast/v3?psid=twnred&site=jsm¶ms_utm_source=58264_11957&utm_medium=partner&utm_campaign=dpi&utm_source=58264_11957&campaign_id=115464&subaffid=30b5c446-319e-4c06-80c7-855749c94c7c&tricky_partner=on&ms_notrack=1&pstour=t1&psprogram=REVS&categoryName=girl
200 OK 4.0 MB URL GET HTTP/2 crmt.livejasmin.com/vast/v3?psid=twnred&site=jsm¶ms_utm_source=58264_11957&utm_medium=partner&utm_campaign=dpi&utm_source=58264_11957&campaign_id=115464&subaffid=30b5c446-319e-4c06-80c7-855749c94c7c&tricky_partner=on&ms_notrack=1&pstour=t1&psprogram=REVS&categoryName=girl
IP
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectcrmt.livejasmin.com
Fingerprint06:5B:EE:D4:4A:DB:0A:F6:16:AC:2A:8E:64:38:78:A8:BA:09:9A:3A
ValidityFri, 29 Sep 2023 19:01:04 GMT - Thu, 28 Dec 2023 19:01:03 GMT
Size 4.0 MB (3978702 bytes)
Hash 65ab2a7e2b52f0e4d01dca07a6873430
616d2d32156268ff230d6b936da33364504165b2
f7b0a864eb44a64cb039f27ec0983442cc40e113a98dd6d3dde34c22652e46fe
GET /vast/v3?psid=twnred&site=jsm¶ms_utm_source=58264_11957&utm_medium=partner&utm_campaign=dpi&utm_source=58264_11957&campaign_id=115464&subaffid=30b5c446-319e-4c06-80c7-855749c94c7c&tricky_partner=on&ms_notrack=1&pstour=t1&psprogram=REVS&categoryName=girl HTTP/1.1
Host: crmt.livejasmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/xml; charset=utf-8
cache-control: no-cache
date: Tue, 28 Nov 2023 10:33:34 GMT
x-target-pstool: 401_1
x-ud-id: nNqhH/bdX
access-control-allow-origin: https://www.titshub.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
server: unknown
x-cache-status: R-MISS
set-cookie: psui=a59f007fbf3384ccc33cc586d5d348f0; Path=/; Expires=Thu, 28-Dec-23 10:33:34 GMT; SameSite=None; Secure
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 04:57:34 GMT
expires: Fri, 22 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 452161
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
game.starswalker.site/api/users/456014?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25
200 OK 1.9 kB URL GET HTTP/2 game.starswalker.site/api/users/456014?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type gzip compressed data, from Unix\012- data
Hash 752a740005d5356b3e9085fe55e936b8
4f33877f7173ba0b9a46db6ce65932b2aae71a1b
98adb084358f98f32492d5d9a9ec92154763247e2c34f2313e0fd228f60c19a8
GET /api/users/456014?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
proceedglad.com/pixel/sbs?c=1
200 OK 0 B URL GET HTTP/1.1 proceedglad.com/pixel/sbs?c=1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: u_pl=17371668; uid_id2=313274ae-a5cd-4f76-bf30-b10015368d77:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 10:33:35 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
go.mnaspm.com/api/models/vast?action=sbSignupWithModel&ax=0&campaignId=662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f&campaignType=smartpop&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745523&masterSmartpopId=2683&memberId=UvDBSgq0QuCGfcnhW2PyR8dgSFGANczDhTccpToHtOMXi73D0uF7qyd9bleJ94jSfJ8p7LCiweTWhEFHubOjDvauxAbXVlvplAl0NGZGKxnbma31_gUIDRUi&mlView=1&p1=3844985&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=3588&sourceId=594678&tag=-girls%2Fmobile&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31904
200 OK 998 B URL GET HTTP/2 go.mnaspm.com/api/models/vast?action=sbSignupWithModel&ax=0&campaignId=662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f&campaignType=smartpop&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745523&masterSmartpopId=2683&memberId=UvDBSgq0QuCGfcnhW2PyR8dgSFGANczDhTccpToHtOMXi73D0uF7qyd9bleJ94jSfJ8p7LCiweTWhEFHubOjDvauxAbXVlvplAl0NGZGKxnbma31_gUIDRUi&mlView=1&p1=3844985&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=3588&sourceId=594678&tag=-girls%2Fmobile&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31904
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (2232), with no line terminators
Hash 24bbabe5d027171fb7d09a71f7128942
1549668a9b91c2de65e481f0089eff07f324e053
0a37b84a3a415607388958a90af9226f1ff39bd396f651e488bd4cf4959a2328
GET /api/models/vast?action=sbSignupWithModel&ax=0&campaignId=662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f&campaignType=smartpop&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745523&masterSmartpopId=2683&memberId=UvDBSgq0QuCGfcnhW2PyR8dgSFGANczDhTccpToHtOMXi73D0uF7qyd9bleJ94jSfJ8p7LCiweTWhEFHubOjDvauxAbXVlvplAl0NGZGKxnbma31_gUIDRUi&mlView=1&p1=3844985&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=3588&sourceId=594678&tag=-girls%2Fmobile&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31904 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.titshub.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: text/xml; charset=utf-8
access-control-allow-origin: null
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtqFVfs5Aboo4dwjrD6Nq1kfmADCp; SameSite=None; Secure; path=/; expires=Wed, 29-Nov-23 10:33:34 GMT; HttpOnly
server: cloudflare
cf-ray: 82d1f4168d970b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.titshub.com/vpaid/videojs_5.vast.vpaid.min.js
200 OK 33 kB URL GET HTTP/3 www.titshub.com/vpaid/videojs_5.vast.vpaid.min.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (32057)
Hash 3eb2d1bdcb22ab1037fe9f6b5cf00143
b065d9fabe06ca3488cdd628c6da319c49dd4a78
66348d21d329d78be67f953ac0aad20a504ec3f3f911d3d67f58516475a18036
GET /vpaid/videojs_5.vast.vpaid.min.js HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
last-modified: Mon, 10 Apr 2023 14:18:22 GMT
vary: Accept-Encoding
etag: W/"64341aae-19ebe"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1806323
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cysbZkVggAp6mWBVUwJYzBhjdSlB%2BKCb1SSjKDle0k2dS2P9cegnURI4BZprpgDop%2FNTr9%2BhQ9nxPiJC1AFH2l%2F%2BHZrcN1BWAhd0hTEKIWf8FhqaUfNeB%2Fv8nPDhIhecUmQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f3fccfc67129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
206 Partial Content 35 kB URL GET HTTP/2 cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerSectigo Limited
Subject*.zblkqa.com
Fingerprint78:E7:B2:86:25:92:88:24:6D:8D:51:1E:AC:78:AC:9C:F3:91:E1:EA
ValidityTue, 17 Oct 2023 00:00:00 GMT - Sat, 16 Nov 2024 23:59:59 GMT
Hash 4491e9c93e91143cc6b44741b81a48f2
a7506fe566b90f54ad0d25d5b0b644584d59086e
0335a21ab7a159a6ce62c03cfe8801f211818845bd91bac25afded5654028027
GET /video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368 HTTP/1.1
Host: cdn.zblkqa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=2293760-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:35 GMT
content-type: binary/octet-stream
content-length: 35380
etag: "9568234c5f4888256c779be7a59902d9"
expires: Tue, 28 Nov 2023 11:29:28 GMT
last-modified: Tue, 28 Nov 2023 10:29:28 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-id-2: 3d1d941fbe792aeff1e829b094136390c69e62d96eb3bc552085f87039d206b4
x-amz-request-id: 179BC2B5B315DA3A
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=28800
cf-cache-status: HIT
server: cloudflare
cf-ray: 82d1ee33dd5c1c81-AMS
alt-svc: h3=":443"; ma=86400
age: 242
content-range: bytes 2293760-2329139/2329140
X-Firefox-Spdy: h2
game.starswalker.site/api/click/15497503094067882095?c=60&data[error]=3
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/15497503094067882095?c=60&data[error]=3
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/15497503094067882095?c=60&data[error]=3 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:35 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
galleryn3.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a15/e7d97fe191aee014b21a95b413a238c3.mp4?psid=twnred
206 Partial Content 1.4 MB URL GET HTTP/2 galleryn3.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a15/e7d97fe191aee014b21a95b413a238c3.mp4?psid=twnred
IP
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerSectigo Limited
Subject*.vcmdiawe.com
FingerprintAA:C6:B9:40:26:EC:8E:97:8B:70:D4:4A:8A:19:9C:C6:19:5D:07:EE
ValidityTue, 02 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 1.4 MB (1415372 bytes)
Hash e631ba61d7a665ce4000183fd622d553
880e07c59fc99bea52b4c23ee05b6ac1b0e27eb0
98b9cf4212cb50ce9aa90e361f632d40ecff18156e27ab846cd2d2361e720d2c
GET /f8d2e11bd6c43618af00d6f28c91232a15/e7d97fe191aee014b21a95b413a238c3.mp4?psid=twnred HTTP/1.1
Host: galleryn3.vcmdiawe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:35 GMT
content-type: video/mp4
content-length: 1415372
last-modified: Fri, 17 Jan 2020 08:27:01 GMT
x-rgw-object-type: Normal
etag: "e631ba61d7a665ce4000183fd622d553"
access-control-allow-origin: *
x-content-type-options: nosniff
x-cache-source: Origin
x-cache-status: R-HIT
expires: Tue, 12 Dec 2023 10:33:35 GMT
server: unknown
x-cdn-node: sesto
cache-control: max-age=1209600
x-real-source: -
content-range: bytes 0-1415371/1415372
X-Firefox-Spdy: h2
game.starswalker.site/api/click/15497503094067882095?c=60&data[error]=400
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/15497503094067882095?c=60&data[error]=400
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/15497503094067882095?c=60&data[error]=400 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:35 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
galleryn3.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a15/e7d97fe191aee014b21a95b413a238c3.mp4?psid=twnred
206 Partial Content 39 kB URL GET HTTP/2 galleryn3.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a15/e7d97fe191aee014b21a95b413a238c3.mp4?psid=twnred
IP
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerSectigo Limited
Subject*.vcmdiawe.com
FingerprintAA:C6:B9:40:26:EC:8E:97:8B:70:D4:4A:8A:19:9C:C6:19:5D:07:EE
ValidityTue, 02 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT
Hash 872ec75df7105ed897e5bb0a671b869b
6a3b7082fcc68460a6613be12ef9cbffd9c1263b
397072aec239788633e31e2f179cf2ee43e62ef2f8d4a58f1a0e13154250ded7
GET /f8d2e11bd6c43618af00d6f28c91232a15/e7d97fe191aee014b21a95b413a238c3.mp4?psid=twnred HTTP/1.1
Host: galleryn3.vcmdiawe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=1376256-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:35 GMT
content-type: video/mp4
content-length: 39116
last-modified: Fri, 17 Jan 2020 08:27:01 GMT
x-rgw-object-type: Normal
etag: "e631ba61d7a665ce4000183fd622d553"
access-control-allow-origin: *
x-content-type-options: nosniff
x-cache-source: Origin
x-cache-status: R-HIT
expires: Tue, 12 Dec 2023 10:33:35 GMT
server: unknown
x-cdn-node: sesto
cache-control: max-age=1209600
x-real-source: -
content-range: bytes 1376256-1415371/1415372
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 1.8 MB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size 1.8 MB (1804733 bytes)
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 70bc7632a51871d670ea992adb7bb4db
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 28 Nov 2023 10:33:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tcoFEdJpT5KO9MpAy%2Fnxk%2FF7f2fwJCOiWjGgNUwSpbYou%2BPuslw7slkUnr7QqN7qS6kXeJFc63vNgxvot9x6ox2sLuBaNw75ykRYqkOvchMJOmfvjAy4WfCze3Fk5GL29RqxWl8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f40ad9057127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
game.starswalker.site/api/click/8226402008356003095?c=60&data[error]=3
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/8226402008356003095?c=60&data[error]=3
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/8226402008356003095?c=60&data[error]=3 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:36 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
s.magsrv.com/vregister.php?a=vview&errorcode=3&idzone=4248614&dg=3329327-NOR-82276128-3-0-1-0-InLine
200 OK 20 B URL GET HTTP/1.1 s.magsrv.com/vregister.php?a=vview&errorcode=3&idzone=4248614&dg=3329327-NOR-82276128-3-0-1-0-InLine
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /vregister.php?a=vview&errorcode=3&idzone=4248614&dg=3329327-NOR-82276128-3-0-1-0-InLine HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226565c1fdf0fe29.44877433926679373%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C4287292%7C84865580%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167613%7Cdba1516b372481d73869e9ae53f8fee6%7Cok%22%7D; zone-cap-4287292=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
game.starswalker.site/api/click/8226402008356003095?c=60&data[error]=400
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/8226402008356003095?c=60&data[error]=400
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/8226402008356003095?c=60&data[error]=400 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:36 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
s.magsrv.com/vregister.php?a=vview&errorcode=400&idzone=4248614&dg=3329327-NOR-82276128-3-0-1-0-InLine
200 OK 20 B URL GET HTTP/1.1 s.magsrv.com/vregister.php?a=vview&errorcode=400&idzone=4248614&dg=3329327-NOR-82276128-3-0-1-0-InLine
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /vregister.php?a=vview&errorcode=400&idzone=4248614&dg=3329327-NOR-82276128-3-0-1-0-InLine HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226565c1fdf0fe29.44877433926679373%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C4287292%7C84865580%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167613%7Cdba1516b372481d73869e9ae53f8fee6%7Cok%22%7D; zone-cap-4287292=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
game.starswalker.site/api/click/8454499748378675095?c=60&data[error]=3
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/8454499748378675095?c=60&data[error]=3
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/8454499748378675095?c=60&data[error]=3 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:36 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
206 Partial Content 2.3 MB URL GET HTTP/2 cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerSectigo Limited
Subject*.zblkqa.com
Fingerprint78:E7:B2:86:25:92:88:24:6D:8D:51:1E:AC:78:AC:9C:F3:91:E1:EA
ValidityTue, 17 Oct 2023 00:00:00 GMT - Sat, 16 Nov 2024 23:59:59 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 2.3 MB (2329140 bytes)
Hash 9568234c5f4888256c779be7a59902d9
d12ba3dc50bdccf02bc84e1e0b7efd8447ca75bb
1679496d43632c13ccd1b39693ea7e4a0a502a941272dfa334043b8b6d24332b
GET /video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368 HTTP/1.1
Host: cdn.zblkqa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:36 GMT
content-type: binary/octet-stream
content-length: 2329140
etag: "9568234c5f4888256c779be7a59902d9"
expires: Tue, 28 Nov 2023 11:29:28 GMT
last-modified: Tue, 28 Nov 2023 10:29:28 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-id-2: 3d1d941fbe792aeff1e829b094136390c69e62d96eb3bc552085f87039d206b4
x-amz-request-id: 179BC2B5B315DA3A
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=28800
cf-cache-status: HIT
server: cloudflare
cf-ray: 82d1ee33dd5c1c81-AMS
alt-svc: h3=":443"; ma=86400
age: 243
content-range: bytes 0-2329139/2329140
X-Firefox-Spdy: h2
galleryn3.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a15/e7d97fe191aee014b21a95b413a238c3.mp4?psid=twnred
206 Partial Content 629 kB URL GET HTTP/2 galleryn3.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a15/e7d97fe191aee014b21a95b413a238c3.mp4?psid=twnred
IP
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerSectigo Limited
Subject*.vcmdiawe.com
FingerprintAA:C6:B9:40:26:EC:8E:97:8B:70:D4:4A:8A:19:9C:C6:19:5D:07:EE
ValidityTue, 02 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT
Size 629 kB (628940 bytes)
Hash ce4b0fa218dadc4d090410d68676e71a
4506e74141a8cd00a285c4091d41093fb8f31205
e77877726bce3b5acf63521dba37d8a73c4fba498549cdec02b1c2e4120f72c4
GET /f8d2e11bd6c43618af00d6f28c91232a15/e7d97fe191aee014b21a95b413a238c3.mp4?psid=twnred HTTP/1.1
Host: galleryn3.vcmdiawe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=786432-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:36 GMT
content-type: video/mp4
content-length: 628940
last-modified: Fri, 17 Jan 2020 08:27:01 GMT
x-rgw-object-type: Normal
etag: "e631ba61d7a665ce4000183fd622d553"
access-control-allow-origin: *
x-content-type-options: nosniff
x-cache-source: Origin
x-cache-status: R-HIT
expires: Tue, 12 Dec 2023 10:33:36 GMT
server: unknown
x-cdn-node: sesto
cache-control: max-age=1209600
x-real-source: -
content-range: bytes 786432-1415371/1415372
X-Firefox-Spdy: h2
www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
200 OK 2.0 MB URL User Request GET HTTP/2 www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (7475)
Size 2.0 MB (1951639 bytes)
Hash 0c1c38807198a7f6ca7a1039500b330f
0801a2cd9e182d1665e38b8a40709fb4bac96c8a
e93a9522ff042cc5e2a188a7fd081d199f9444c1ea8d0ccf6024b163c205b103
GET /videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/ HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; path=/; domain=.titshub.com; SameSite=Lax
second_643539=true; expires=Tue, 28-Nov-2023 10:33:28 GMT; Max-Age=0; path=/
kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; expires=Wed, 29-Nov-2023 10:33:29 GMT; Max-Age=86400; path=/; domain=.titshub.com; SameSite=Lax
kt_ips=91.90.42.154; expires=Wed, 29-Nov-2023 10:33:29 GMT; Max-Age=86400; path=/; domain=.titshub.com; SameSite=Lax
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=REQl%2Blt2b9Uz0aAHxEXoILbfs%2B%2FcCweaLPSAfqMfRrBQNXJzWfusAEzhCajGJKwvW0q8PO0fjPGbXW2J20Nf43OR%2FVheKdML1Tpz5fIAb130NG0EDN0ML%2FfTcmwMsWj8YlU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f3fa2bc456b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
game.starswalker.site/api/click/8454499748378675095?c=60&data[error]=400
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/8454499748378675095?c=60&data[error]=400
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/8454499748378675095?c=60&data[error]=400 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:36 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
game.starswalker.site/api/click/2917594559766571095?c=60&data[error]=400
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/2917594559766571095?c=60&data[error]=400
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/2917594559766571095?c=60&data[error]=400 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:36 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
game.starswalker.site/api/click/2917594559766571095?c=60&data[error]=3
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/2917594559766571095?c=60&data[error]=3
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/2917594559766571095?c=60&data[error]=3 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:36 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
game.starswalker.site/api/click/6302381592521733095?c=60&data[error]=3
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/6302381592521733095?c=60&data[error]=3
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/6302381592521733095?c=60&data[error]=3 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:36 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
s.magsrv.com/vregister.php?a=vview&errorcode=3&idzone=4646920&dg=5786572-NOR-81873074-3-0-1-0-InLine
200 OK 20 B URL GET HTTP/1.1 s.magsrv.com/vregister.php?a=vview&errorcode=3&idzone=4646920&dg=5786572-NOR-81873074-3-0-1-0-InLine
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /vregister.php?a=vview&errorcode=3&idzone=4646920&dg=5786572-NOR-81873074-3-0-1-0-InLine HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226565c1fdf0fe29.44877433926679373%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C4287292%7C84865580%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167613%7Cdba1516b372481d73869e9ae53f8fee6%7Cok%22%7D; zone-cap-4287292=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
game.starswalker.site/api/click/6302381592521733095?c=60&data[error]=400
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/6302381592521733095?c=60&data[error]=400
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/6302381592521733095?c=60&data[error]=400 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:36 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
s.magsrv.com/vregister.php?a=vview&errorcode=400&idzone=4646920&dg=5786572-NOR-81873074-3-0-1-0-InLine
200 OK 20 B URL GET HTTP/1.1 s.magsrv.com/vregister.php?a=vview&errorcode=400&idzone=4646920&dg=5786572-NOR-81873074-3-0-1-0-InLine
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /vregister.php?a=vview&errorcode=400&idzone=4646920&dg=5786572-NOR-81873074-3-0-1-0-InLine HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226565c1fdf0fe29.44877433926679373%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C4287292%7C84865580%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167613%7Cdba1516b372481d73869e9ae53f8fee6%7Cok%22%7D; zone-cap-4287292=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
206 Partial Content 1.7 MB URL GET HTTP/2 cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerSectigo Limited
Subject*.zblkqa.com
Fingerprint78:E7:B2:86:25:92:88:24:6D:8D:51:1E:AC:78:AC:9C:F3:91:E1:EA
ValidityTue, 17 Oct 2023 00:00:00 GMT - Sat, 16 Nov 2024 23:59:59 GMT
Size 1.7 MB (1673780 bytes)
Hash 31ddd309f919e1db4213db559a0966c0
6397ee7b85a15685f75871fd9f77bf84fa5d4540
33cdc5d13cd9599c90cd0dceec3b767abdd5c56761fd5add14e4a79800d9ff6b
GET /video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368 HTTP/1.1
Host: cdn.zblkqa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=655360-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:36 GMT
content-type: binary/octet-stream
content-length: 1673780
etag: "9568234c5f4888256c779be7a59902d9"
expires: Tue, 28 Nov 2023 11:29:28 GMT
last-modified: Tue, 28 Nov 2023 10:29:28 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-id-2: 3d1d941fbe792aeff1e829b094136390c69e62d96eb3bc552085f87039d206b4
x-amz-request-id: 179BC2B5B315DA3A
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=28800
cf-cache-status: HIT
server: cloudflare
cf-ray: 82d1ee33dd5c1c81-AMS
alt-svc: h3=":443"; ma=86400
age: 243
content-range: bytes 655360-2329139/2329140
X-Firefox-Spdy: h2
cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
206 Partial Content 2.3 MB URL GET HTTP/2 cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerSectigo Limited
Subject*.zblkqa.com
Fingerprint78:E7:B2:86:25:92:88:24:6D:8D:51:1E:AC:78:AC:9C:F3:91:E1:EA
ValidityTue, 17 Oct 2023 00:00:00 GMT - Sat, 16 Nov 2024 23:59:59 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 2.3 MB (2329140 bytes)
Hash 9568234c5f4888256c779be7a59902d9
d12ba3dc50bdccf02bc84e1e0b7efd8447ca75bb
1679496d43632c13ccd1b39693ea7e4a0a502a941272dfa334043b8b6d24332b
GET /video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368 HTTP/1.1
Host: cdn.zblkqa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:36 GMT
content-type: binary/octet-stream
content-length: 2329140
etag: "9568234c5f4888256c779be7a59902d9"
expires: Tue, 28 Nov 2023 11:29:28 GMT
last-modified: Tue, 28 Nov 2023 10:29:28 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-id-2: 3d1d941fbe792aeff1e829b094136390c69e62d96eb3bc552085f87039d206b4
x-amz-request-id: 179BC2B5B315DA3A
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=28800
cf-cache-status: HIT
server: cloudflare
cf-ray: 82d1ee33dd5c1c81-AMS
alt-svc: h3=":443"; ma=86400
age: 243
content-range: bytes 0-2329139/2329140
X-Firefox-Spdy: h2
u3y8v8u4.aucdn.net/library/141372/6143e03a2a294d9c05f2edcafb29c0d172a71cb1.mp4
206 Partial Content 5.5 MB URL GET HTTP/2 u3y8v8u4.aucdn.net/library/141372/6143e03a2a294d9c05f2edcafb29c0d172a71cb1.mp4
IP
ASN #60068 Datacamp Limited
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 5.5 MB (5531340 bytes)
Hash 45d6de3300b5363c8e088bded1ffdaa8
6143e03a2a294d9c05f2edcafb29c0d172a71cb1
1f7e74c1c320567068ac70ac395cb088e801068918f697ac65379fc22c5a342b
GET /library/141372/6143e03a2a294d9c05f2edcafb29c0d172a71cb1.mp4 HTTP/1.1
Host: u3y8v8u4.aucdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:36 GMT
content-type: video/mp4
content-length: 5531340
last-modified: Tue, 14 Mar 2023 13:10:26 GMT
etag: "64107242-5466cc"
expires: Wed, 13 Mar 2024 13:17:04 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH32uFGAA
x-77-nzt-ray: c0a4cc283d56158e00c265650580f019
x-accel-expires: @1728058278
x-accel-date: 1696522278
x-cache-lb: HIT
x-age-lb: 4645338
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 4645338
content-range: bytes 0-5531339/5531340
X-Firefox-Spdy: h2
cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
206 Partial Content 35 kB URL GET HTTP/2 cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerSectigo Limited
Subject*.zblkqa.com
Fingerprint78:E7:B2:86:25:92:88:24:6D:8D:51:1E:AC:78:AC:9C:F3:91:E1:EA
ValidityTue, 17 Oct 2023 00:00:00 GMT - Sat, 16 Nov 2024 23:59:59 GMT
Hash 4491e9c93e91143cc6b44741b81a48f2
a7506fe566b90f54ad0d25d5b0b644584d59086e
0335a21ab7a159a6ce62c03cfe8801f211818845bd91bac25afded5654028027
GET /video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368 HTTP/1.1
Host: cdn.zblkqa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=2293760-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:37 GMT
content-type: binary/octet-stream
content-length: 35380
etag: "9568234c5f4888256c779be7a59902d9"
expires: Tue, 28 Nov 2023 11:29:28 GMT
last-modified: Tue, 28 Nov 2023 10:29:28 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-id-2: 3d1d941fbe792aeff1e829b094136390c69e62d96eb3bc552085f87039d206b4
x-amz-request-id: 179BC2B5B315DA3A
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=28800
cf-cache-status: HIT
server: cloudflare
cf-ray: 82d1ee33dd5c1c81-AMS
alt-svc: h3=":443"; ma=86400
age: 244
content-range: bytes 2293760-2329139/2329140
X-Firefox-Spdy: h2
cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
206 Partial Content 1.5 MB URL GET HTTP/2 cdn.zblkqa.com/video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerSectigo Limited
Subject*.zblkqa.com
Fingerprint78:E7:B2:86:25:92:88:24:6D:8D:51:1E:AC:78:AC:9C:F3:91:E1:EA
ValidityTue, 17 Oct 2023 00:00:00 GMT - Sat, 16 Nov 2024 23:59:59 GMT
Size 1.5 MB (1542708 bytes)
Hash 54736bfb46bf1a78670fe61d634cbfb3
0bc2ed3897553c3264ed1d39eb60066184bc5f11
14d5778a139c8e9b42be3efd88403cf50f43b69039728519ca83567db137841c
GET /video/bb824bf18d996f38bc5e64bc2700cef8.mp4?cb=1701167368 HTTP/1.1
Host: cdn.zblkqa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=786432-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:37 GMT
content-type: binary/octet-stream
content-length: 1542708
etag: "9568234c5f4888256c779be7a59902d9"
expires: Tue, 28 Nov 2023 11:29:28 GMT
last-modified: Tue, 28 Nov 2023 10:29:28 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-id-2: 3d1d941fbe792aeff1e829b094136390c69e62d96eb3bc552085f87039d206b4
x-amz-request-id: 179BC2B5B315DA3A
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=28800
cf-cache-status: HIT
server: cloudflare
cf-ray: 82d1ee33dd5c1c81-AMS
alt-svc: h3=":443"; ma=86400
age: 244
content-range: bytes 786432-2329139/2329140
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/error?errorcode=400&p=APeICDOGjggdMFgMhAPnYAwZNGrkUDimTUMdEmnYuIFDoRg3bg7OqIEDBg4cNBTSaePwBowYMTbaiJFSxEoZLV_GvDGTBkwZCuGwGXMwoYgxZ4r2URAQ&s=d48ae6f9bd16b5b57fa9bc5a56acb74345b2bb36e100a7147be4928240882a4c1701167614
200 OK 0 B URL GET HTTP/2 pxl.tsyndicate.com/api/v1/error?errorcode=400&p=APeICDOGjggdMFgMhAPnYAwZNGrkUDimTUMdEmnYuIFDoRg3bg7OqIEDBg4cNBTSaePwBowYMTbaiJFSxEoZLV_GvDGTBkwZCuGwGXMwoYgxZ4r2URAQ&s=d48ae6f9bd16b5b57fa9bc5a56acb74345b2bb36e100a7147be4928240882a4c1701167614
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintF2:3C:80:FB:F4:C8:BF:02:DD:BF:23:DD:27:74:AB:0B:89:F6:13:5E
ValiditySun, 12 Nov 2023 09:06:58 GMT - Sat, 10 Feb 2024 09:06:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v1/error?errorcode=400&p=APeICDOGjggdMFgMhAPnYAwZNGrkUDimTUMdEmnYuIFDoRg3bg7OqIEDBg4cNBTSaePwBowYMTbaiJFSxEoZLV_GvDGTBkwZCuGwGXMwoYgxZ4r2URAQ&s=d48ae6f9bd16b5b57fa9bc5a56acb74345b2bb36e100a7147be4928240882a4c1701167614 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: ts_uid=2d861dee-10dd-476f-8146-ee949e99f573; bfq=APeIECNCx5YZNXDAwIGDRhcWIsYU3BLjoYgyE2PcgBFDRg0aHB32URAQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:37 GMT
content-length: 0
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
game.starswalker.site/api/users/456453?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25
200 OK 408 B URL GET HTTP/2 game.starswalker.site/api/users/456453?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type ASCII text, with very long lines (374)
Hash 19838c0088860a3d0df93bcb0b74fae6
1bd1e09cf0f549c05a4980b464f75cc2c6fbd1a4
c57d1458741c49f46bbce2aa188789ac2d04cad41b927ad38926e255d225a869
GET /api/users/456453?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
game.starswalker.site/api/click/3213247327213713095?c=60&data[error]=3
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/3213247327213713095?c=60&data[error]=3
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/3213247327213713095?c=60&data[error]=3 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:37 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
game.starswalker.site/api/click/3213247327213713095?c=60&data[error]=400
200 OK 0 B URL GET HTTP/2 game.starswalker.site/api/click/3213247327213713095?c=60&data[error]=400
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/3213247327213713095?c=60&data[error]=400 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:37 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/error?errorcode=3&p=APeICDOGjggdMFgMhAPnoAwcNmDIUDimTUMdNXLQsHEDh0IxbtwcnFEDBwwcOGgopNPmYIwbMGLE4GgjhkoRLGW4hCmTps0YNWwohMNmzMGEIsacOdpHQUA%3D&s=073c42dbf92f94c990b549c140d2e25bc0bba9e6bf605b369892263065f8429f1701167614
200 OK 0 B URL GET HTTP/2 pxl.tsyndicate.com/api/v1/error?errorcode=3&p=APeICDOGjggdMFgMhAPnoAwcNmDIUDimTUMdNXLQsHEDh0IxbtwcnFEDBwwcOGgopNPmYIwbMGLE4GgjhkoRLGW4hCmTps0YNWwohMNmzMGEIsacOdpHQUA%3D&s=073c42dbf92f94c990b549c140d2e25bc0bba9e6bf605b369892263065f8429f1701167614
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintF2:3C:80:FB:F4:C8:BF:02:DD:BF:23:DD:27:74:AB:0B:89:F6:13:5E
ValiditySun, 12 Nov 2023 09:06:58 GMT - Sat, 10 Feb 2024 09:06:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v1/error?errorcode=3&p=APeICDOGjggdMFgMhAPnoAwcNmDIUDimTUMdNXLQsHEDh0IxbtwcnFEDBwwcOGgopNPmYIwbMGLE4GgjhkoRLGW4hCmTps0YNWwohMNmzMGEIsacOdpHQUA%3D&s=073c42dbf92f94c990b549c140d2e25bc0bba9e6bf605b369892263065f8429f1701167614 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: ts_uid=2d861dee-10dd-476f-8146-ee949e99f573; bfq=APeIECNCx5YZNXDAwIGDRhcWIsYU3BLjoYgyE2PcgBFDRg0aHB32URAQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:37 GMT
content-length: 0
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/error?errorcode=400&p=APeICDOGjggdMFgMhAPnoAwcNmDIUDimTUMdNXLQsHEDh0IxbtwcnFEDBwwcOGgopNPmYIwbMGLE4GgjhkoRLGW4hCmTps0YNWwohMNmzMGEIsacOdpHQUA%3D&s=073c42dbf92f94c990b549c140d2e25bc0bba9e6bf605b369892263065f8429f1701167614
200 OK 0 B URL GET HTTP/2 pxl.tsyndicate.com/api/v1/error?errorcode=400&p=APeICDOGjggdMFgMhAPnoAwcNmDIUDimTUMdNXLQsHEDh0IxbtwcnFEDBwwcOGgopNPmYIwbMGLE4GgjhkoRLGW4hCmTps0YNWwohMNmzMGEIsacOdpHQUA%3D&s=073c42dbf92f94c990b549c140d2e25bc0bba9e6bf605b369892263065f8429f1701167614
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintF2:3C:80:FB:F4:C8:BF:02:DD:BF:23:DD:27:74:AB:0B:89:F6:13:5E
ValiditySun, 12 Nov 2023 09:06:58 GMT - Sat, 10 Feb 2024 09:06:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v1/error?errorcode=400&p=APeICDOGjggdMFgMhAPnoAwcNmDIUDimTUMdNXLQsHEDh0IxbtwcnFEDBwwcOGgopNPmYIwbMGLE4GgjhkoRLGW4hCmTps0YNWwohMNmzMGEIsacOdpHQUA%3D&s=073c42dbf92f94c990b549c140d2e25bc0bba9e6bf605b369892263065f8429f1701167614 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: ts_uid=2d861dee-10dd-476f-8146-ee949e99f573; bfq=APeIECNCx5YZNXDAwIGDRhcWIsYU3BLjoYgyE2PcgBFDRg0aHB32URAQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:37 GMT
content-length: 0
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
s.magsrv.com/vregister.php?a=vview&errorcode=400&idzone=4287292&dg=5955790-NOR-84865580-3-0-1-1-Wrapper
200 OK 0 B URL GET HTTP/1.1 s.magsrv.com/vregister.php?a=vview&errorcode=400&idzone=4287292&dg=5955790-NOR-84865580-3-0-1-1-Wrapper
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vregister.php?a=vview&errorcode=400&idzone=4287292&dg=5955790-NOR-84865580-3-0-1-1-Wrapper HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226565c1fdf0fe29.44877433926679373%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C4287292%7C84865580%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167613%7Cdba1516b372481d73869e9ae53f8fee6%7Cok%22%7D; zone-cap-4287292=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/?video_id=101313097&mode=async&action=js_stats&rand=1701167616370
200 OK 43 B URL GET HTTP/3 www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/?video_id=101313097&mode=async&action=js_stats&rand=1701167616370
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/?video_id=101313097&mode=async&action=js_stats&rand=1701167616370 HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154; show_pops2=true2; pp_show_on_f4b6562d7ac3653eb00cba8ec1a19ab1=1; kt_tcookie=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: image/gif
content-length: 43
set-cookie: kt_is_visited=1; expires=Wed, 29-Nov-2023 10:33:32 GMT; Max-Age=86400; path=/; domain=.titshub.com; SameSite=Lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2LwIIWMu2iIGqIEMuFOE1S9z0ovghuIyc%2B6wgvUWfW2717i3iGfeYo%2B%2BR25h3ah5tNw%2FVrKQQEPpmSRs5gfBIQPH0ESsYit2KopGaROnhWTS%2FnQPeHbuKe1MEVG7%2BPzNXNE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f40a5a107129-OSL
alt-svc: h3=":443"; ma=86400
go.mnaspm.com/api/models/vast?action=sbSignupWithModel&ax=0&campaignId=662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f&campaignType=smartpop&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745523&masterSmartpopId=2683&memberId=y9mbPDSz-eeiohyIOhgMma5N04soB19jSPEFi9U__HjZQrkfKfBUcp5pwItJDhvUhX56PCqlcHHgq71VS-v1uDoku9ZlPIFZdI6UCC4ZlqHcugi6_gUIDRUi&mlView=1&p1=4073714&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=3588&sourceId=594678&tag=-girls%2Fmobile&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31904
200 OK 2.2 kB URL GET HTTP/2 go.mnaspm.com/api/models/vast?action=sbSignupWithModel&ax=0&campaignId=662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f&campaignType=smartpop&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745523&masterSmartpopId=2683&memberId=y9mbPDSz-eeiohyIOhgMma5N04soB19jSPEFi9U__HjZQrkfKfBUcp5pwItJDhvUhX56PCqlcHHgq71VS-v1uDoku9ZlPIFZdI6UCC4ZlqHcugi6_gUIDRUi&mlView=1&p1=4073714&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=3588&sourceId=594678&tag=-girls%2Fmobile&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31904
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type XML document, ASCII text, with very long lines (2272), with no line terminators
Hash 46a2a67cc1597967a156ca849e447196
89cfafd034a58de8709ded0f6125df4f5f271bd9
dbc1da71da4d1abc2bf169610dc550ad03f71589428aa832f00aad338b7ff36f
GET /api/models/vast?action=sbSignupWithModel&ax=0&campaignId=662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f&campaignType=smartpop&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745523&masterSmartpopId=2683&memberId=y9mbPDSz-eeiohyIOhgMma5N04soB19jSPEFi9U__HjZQrkfKfBUcp5pwItJDhvUhX56PCqlcHHgq71VS-v1uDoku9ZlPIFZdI6UCC4ZlqHcugi6_gUIDRUi&mlView=1&p1=4073714&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=3588&sourceId=594678&tag=-girls%2Fmobile&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31904 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.titshub.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: text/xml; charset=utf-8
access-control-allow-origin: null
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtr4j9PoyecweyjPiCwX7DSushKBS; SameSite=None; Secure; path=/; expires=Wed, 29-Nov-23 10:33:34 GMT; HttpOnly
server: cloudflare
cf-ray: 82d1f4169d9f0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
vast.livejasmin.com/?psid=ed_exo0vb0no&subaffid=809887&ms_notrack=1&pstour=t1&psprogram=REVS&utm_source=exo&site=jsm&utm_medium=network&categoryName=girl
200 OK 3.2 kB URL GET HTTP/2 vast.livejasmin.com/?psid=ed_exo0vb0no&subaffid=809887&ms_notrack=1&pstour=t1&psprogram=REVS&utm_source=exo&site=jsm&utm_medium=network&categoryName=girl
IP
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectlubet.vast.livejasmin.com
FingerprintE5:4D:69:59:60:D2:67:4A:5E:8D:F1:D6:98:35:85:B6:EF:47:B3:71
ValidityWed, 18 Oct 2023 17:01:04 GMT - Tue, 16 Jan 2024 17:01:03 GMT
File type ASCII text, with very long lines (3263), with no line terminators
Hash 6313faf8c2b33b9e11cd0b4e5206fcbb
01f91346977fc95f29ba65ea66274c73c50e4a63
5ccbcac198a0516944d6803392e6ebd7bf353fd1e0342db5cc94679b25c95647
GET /?psid=ed_exo0vb0no&subaffid=809887&ms_notrack=1&pstour=t1&psprogram=REVS&utm_source=exo&site=jsm&utm_medium=network&categoryName=girl HTTP/1.1
Host: vast.livejasmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: text/xml; charset=utf-8
x-target-pstool: 401_16
x-ud-id: 9Hk5B/oOA
access-control-allow-origin: https://www.titshub.com
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type
access-control-allow-methods: OPTIONS, GET
server: unknown
set-cookie: psui=a59f007fbf3384ccc33cc586d5d348f0; Path=/; Expires=Thu, 28-Dec-23 10:33:34 GMT; SameSite=None; Secure
X-Firefox-Spdy: h2
u3y8v8u4.aucdn.net/library/254774/06296888d5ac0ffaf5a13b9f59f7aa91c5893f02.mp4
206 Partial Content 1.8 MB URL GET HTTP/2 u3y8v8u4.aucdn.net/library/254774/06296888d5ac0ffaf5a13b9f59f7aa91c5893f02.mp4
IP
ASN #60068 Datacamp Limited
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
Size 1.8 MB (1774626 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /library/254774/06296888d5ac0ffaf5a13b9f59f7aa91c5893f02.mp4 HTTP/1.1
Host: u3y8v8u4.aucdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:35 GMT
content-type: video/mp4
content-length: 1774626
last-modified: Sun, 14 May 2023 15:55:18 GMT
etag: "64610466-1b1422"
expires: Mon, 13 May 2024 16:08:07 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3qLQEAQ
x-77-nzt-ray: c0a4cc283d56158effc1656599351a39
x-accel-expires: @1715618007
x-accel-date: 1684082007
x-cache-lb: HIT
x-age-lb: 17085608
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17085608
content-range: bytes 0-1774625/1774626
X-Firefox-Spdy: h2
game.starswalker.site/api/users/8367751735491004095/998169?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
200 OK 1.5 kB URL GET HTTP/2 game.starswalker.site/api/users/8367751735491004095/998169?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type XML document, ASCII text, with very long lines (1585), with no line terminators
Hash 41e254ca65fcc7c925db270c282df70b
8e67e11f71379b46973c0fb3842b1edca1538051
faf7f49c97a57bd8e798470be05d3c119b4c4dc3ef6d3a883267e841b9c7e62e
GET /api/users/8367751735491004095/998169?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://www.titshub.com
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
twinrdsrv.com/preroll.engine?id=b26133e8-9b00-406c-8288-8040245364ae&zid=52159&cvs={ClientVideoSupport}&time={TimeOffset}&stdtime={StdTimeOffset}&abr={IsAdblockRequest}&pageurl={PageUrl}&tid={TrackingId}&res={Resolution}&bw={BrowserWidth}&bh={BrowserHeight}&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&referrerUrl={ReferrerUrl}&pw={PlayerWidth}&ph={PlayerHeight}
200 OK 7.6 kB URL GET HTTP/2 twinrdsrv.com/preroll.engine?id=b26133e8-9b00-406c-8288-8040245364ae&zid=52159&cvs={ClientVideoSupport}&time={TimeOffset}&stdtime={StdTimeOffset}&abr={IsAdblockRequest}&pageurl={PageUrl}&tid={TrackingId}&res={Resolution}&bw={BrowserWidth}&bh={BrowserHeight}&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&referrerUrl={ReferrerUrl}&pw={PlayerWidth}&ph={PlayerHeight}
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint44:DC:AB:AD:02:68:C6:90:3B:A8:AF:E2:FD:7E:D7:F2:0E:5D:AC:2E
ValidityTue, 18 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (7563), with no line terminators
Hash 2c375b2909c12f37850df444c5e222c8
9e189e217c4464929dc795cc646858b669e248b7
97e335a780e0251e7e52f2214ccdde2c111bad92c1b893b8a4dbd2b7b086c458
GET /preroll.engine?id=b26133e8-9b00-406c-8288-8040245364ae&zid=52159&cvs={ClientVideoSupport}&time={TimeOffset}&stdtime={StdTimeOffset}&abr={IsAdblockRequest}&pageurl={PageUrl}&tid={TrackingId}&res={Resolution}&bw={BrowserWidth}&bh={BrowserHeight}&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&referrerUrl={ReferrerUrl}&pw={PlayerWidth}&ph={PlayerHeight} HTTP/1.1
Host: twinrdsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
cache-control: private, no-transform
access-control-allow-credentials: true
content-encoding: gzip
p3p: CP="CAO PSA OUR IND"
access-control-allow-origin: https://www.titshub.com
set-cookie: IKSR={}; path=/; SameSite=None; secure
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4g5wVDSfmgQCy0pXDu2hGnhFlD%2FIpO%2BqUoI01hXlvr%2FYEfbv8S6TirvZPCWgPtcjqB3hwNkz7aJBHr7Aih42ZcY4FFZdTVISLpQeLY99myOW%2BRQAfWQZXrR%2Bbh1Oam4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f41358de7127-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
unpkg.com/silvermine-videojs-quality-selector/dist/js/silvermine-videojs-quality-selector.min.js
302 Found 21 kB URL GET HTTP/2 unpkg.com/silvermine-videojs-quality-selector/dist/js/silvermine-videojs-quality-selector.min.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /silvermine-videojs-quality-selector/dist/js/silvermine-videojs-quality-selector.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /silvermine-videojs-quality-selector@1.1.2/dist/js/silvermine-videojs-quality-selector.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HGAQBSDQDRDST7BE6PHQ8MRY-arn
cf-cache-status: HIT
age: 513
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82d1f3fd0e70569a-OSL
X-Firefox-Spdy: h2
tsyndicate.com/do2/73bf5f0328964e589291bd0a8387bdb0/vast?
200 OK 5.6 kB URL GET HTTP/2 tsyndicate.com/do2/73bf5f0328964e589291bd0a8387bdb0/vast?
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintF2:3C:80:FB:F4:C8:BF:02:DD:BF:23:DD:27:74:AB:0B:89:F6:13:5E
ValiditySun, 12 Nov 2023 09:06:58 GMT - Sat, 10 Feb 2024 09:06:57 GMT
File type XML document, ASCII text, with very long lines (5609), with no line terminators
Hash 7977068d2d5fb7c33cfaa1b809605c57
fdd85a63ef8458b7b8ba984f0ddbcace7a37cb11
a6bd6345715200594466865ff6c4a4b320b9ee57abc595c88a138b6762b41232
GET /do2/73bf5f0328964e589291bd0a8387bdb0/vast? HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: application/xml; charset=utf-8
access-control-allow-origin: https://www.titshub.com
access-control-allow-methods: POST, GET, HEAD
access-control-allow-headers: Accept, X-Requested-With, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Legacy
access-control-allow-credentials: true
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-api-version: 2
x-vast: 3.0
x-request-id: e149bf853116acc4
set-cookie: ts_uid=571f2f5d-d0a0-411b-a50f-50462ec9d3eb; expires=Tue, 28 May 2024 10:33:34 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
bfq=APeIECNCx5YZNXDAwIGDRhcWIsYU3BLjoYgyE2PcgBFDRg0aHB32URAQ; expires=Wed, 29 Nov 2023 10:33:34 GMT; domain=.tsyndicate.com; path=/; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
www.titshub.com/js/plugins.js
200 OK 139 kB URL GET HTTP/3 www.titshub.com/js/plugins.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
Size 139 kB (138878 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/plugins.js HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
last-modified: Fri, 03 Sep 2021 08:42:02 GMT
vary: Accept-Encoding
etag: W/"6131dfda-21e7e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 102981
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D8cMlq6VY7uNpjuM%2Ba6DfsAxxrk3yEO4XsdppPMDI1PFFghlEojTId0jgrVp%2BHU%2BXRe0cr%2BYItTuIKf6dMFglPUe99aobbwQCnhjlPJ2fC%2F1fwCEv2ZurlupYt4hcUi9Cvg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f3fcbfb77129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
game.starswalker.site/api/spots/321354?p=1&s1=%subid1%&kw=
200 OK 13 kB URL GET HTTP/2 game.starswalker.site/api/spots/321354?p=1&s1=%subid1%&kw=
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (710)
Hash a3f464c4fac236adf9d57655c248daab
02bdcac513e27d860c659dd28eef58cc30014122
d823b5637fdbd98929b19206a020f2d67938cd828445370bd857b9da0fbb69d5
GET /api/spots/321354?p=1&s1=%subid1%&kw= HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
game.starswalker.site/api/users/356906?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25
200 OK 831 B URL GET HTTP/2 game.starswalker.site/api/users/356906?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type ASCII text, with very long lines (883), with no line terminators
Hash a8175381a2a648ffdf0968e07b3a3974
48144507be3cd4350ca47d1b249bf9ddfd1dfe11
43b29c0eb995045c6ff818291b68f940b032c931db7b2b2c68939aa94371f8cc
GET /api/users/356906?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
galleryn0.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a15/2ec8c164439b842a02c9a11203e44dcf.mp4?psid=ed_exo0vb0no
206 Partial Content 4.0 MB URL GET HTTP/2 galleryn0.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a15/2ec8c164439b842a02c9a11203e44dcf.mp4?psid=ed_exo0vb0no
IP
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerSectigo Limited
Subject*.vcmdiawe.com
FingerprintAA:C6:B9:40:26:EC:8E:97:8B:70:D4:4A:8A:19:9C:C6:19:5D:07:EE
ValidityTue, 02 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT
Size 4.0 MB (3975309 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f8d2e11bd6c43618af00d6f28c91232a15/2ec8c164439b842a02c9a11203e44dcf.mp4?psid=ed_exo0vb0no HTTP/1.1
Host: galleryn0.vcmdiawe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 28 Nov 2023 10:33:35 GMT
content-type: video/mp4
content-length: 3975309
last-modified: Thu, 21 Sep 2023 09:56:23 GMT
x-rgw-object-type: Normal
etag: "6961876fc56b908f186d8182fe07cceb"
access-control-allow-origin: *
x-content-type-options: nosniff
x-cache-source: Origin
x-cache-status: R-HIT
expires: Tue, 12 Dec 2023 10:33:35 GMT
server: unknown
x-cdn-node: sesto
cache-control: max-age=1209600
x-real-source: -
content-range: bytes 0-3975308/3975309
X-Firefox-Spdy: h2
www.titshub.com/vpaid/videojs.vast.vpaid.min.css
200 OK 2.0 kB URL GET HTTP/3 www.titshub.com/vpaid/videojs.vast.vpaid.min.css
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1995), with no line terminators
Hash baedc257029b5207975b29c0686f4d63
05a3fadb1e8710938065ebff068da1bad1d80d2d
e1e5a57ab44fca6e9f7b437fbc6dfa7221eaa6c6a40013718e2972c1ec438b44
GET /vpaid/videojs.vast.vpaid.min.css HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: text/css
last-modified: Mon, 10 Apr 2023 14:18:23 GMT
vary: Accept-Encoding
etag: W/"64341aaf-7c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 463523
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zCZCfaM5JNrsYz9b%2FRaqRSj73FD7n8lP6EskuDlGm2dT2smxbsygUdQfpzLzX%2Bp1m%2F3Lpq8YLBTdBwY7rr9xHZv2YC2Q0LvclqBiGlb7XslsiqnyBnaGTNFoTa4z9UuvqpI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f3fcdfd47129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Roboto:300,400,700
200 OK 6.4 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (6530), with no line terminators
Hash 9b55b51caebe742936e81a05c87129d6
9c09adf793b625f14d06e44c538cc800912fc6c1
195246f7de49c3922daaf4ff0d5959e0e9e575ed28772bb497327465830f2ad0
GET /css?family=Roboto:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Nov 2023 10:33:31 GMT
date: Tue, 28 Nov 2023 10:33:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 04:53:27 GMT
expires: Fri, 22 Nov 2024 04:53:27 GMT
cache-control: public, max-age=31536000
age: 452404
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prhzxq.com/wnload?a=1&e=aeyJwaWQiOjExNTAwODIsInNpZCI6MTE5NTE5OSwid2lkIjo0Mzk5MzgsImQiOiIiLCJsaSI6Mn0=&tz=0&if=0&u=aHR0cHM6Ly93d3cudGl0c2h1Yi5jb20vdmlkZW9zLzEwMTMxMzA5Ny9lNGFjYTZhZDM0ZWUzMGY4YTA0ZTI5NTQ0NmM5MmE1ZS8=&inc=1
200 OK 745 B URL GET HTTP/2 prhzxq.com/wnload?a=1&e=aeyJwaWQiOjExNTAwODIsInNpZCI6MTE5NTE5OSwid2lkIjo0Mzk5MzgsImQiOiIiLCJsaSI6Mn0=&tz=0&if=0&u=aHR0cHM6Ly93d3cudGl0c2h1Yi5jb20vdmlkZW9zLzEwMTMxMzA5Ny9lNGFjYTZhZDM0ZWUzMGY4YTA0ZTI5NTQ0NmM5MmE1ZS8=&inc=1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectprhzxq.com
FingerprintAF:E4:1D:E8:DA:E7:CB:59:A8:A1:F6:FC:7B:22:BD:88:80:FA:14:B0
ValidityFri, 15 Sep 2023 17:07:53 GMT - Thu, 14 Dec 2023 17:07:52 GMT
File type Unicode text, UTF-8 text, with very long lines (826), with no line terminators
Hash fb0695b387692418fa5d46c2179e0811
abc85c97eeb6c44cd8938df92e7e83065e61d7e5
3b424a29c104becafd62e8a350a33725e9f3ef0f19691ebadc658fec667260ba
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wnload?a=1&e=aeyJwaWQiOjExNTAwODIsInNpZCI6MTE5NTE5OSwid2lkIjo0Mzk5MzgsImQiOiIiLCJsaSI6Mn0=&tz=0&if=0&u=aHR0cHM6Ly93d3cudGl0c2h1Yi5jb20vdmlkZW9zLzEwMTMxMzA5Ny9lNGFjYTZhZDM0ZWUzMGY4YTA0ZTI5NTQ0NmM5MmE1ZS8=&inc=1 HTTP/1.1
Host: prhzxq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
accept-ch: Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
game.starswalker.site/api/users/3594215791324352095/1636048?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
200 OK 1.6 kB URL GET HTTP/2 game.starswalker.site/api/users/3594215791324352095/1636048?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type XML document, ASCII text, with very long lines (1605), with no line terminators
Hash 2fbe4cd33ff046e1628b1d93d9f52876
d5c46330ad4bddd318ba46b6ff917985d0c92ca8
5f6b34a8ce5ab8e09baf8fbc1aa5bb94b695ee4b6e3b74a3ceae74115fc3df96
GET /api/users/3594215791324352095/1636048?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://www.titshub.com
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
game.starswalker.site/api/users/8367751735491004095/998173?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
200 OK 1.6 kB URL GET HTTP/2 game.starswalker.site/api/users/8367751735491004095/998173?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type XML document, ASCII text, with very long lines (1612), with no line terminators
Hash 59f6f36801a80262c096c9ad769f001b
38a44dcdda72e94e492683532548e7dc46b88303
d2ebdf5f61d42008e93969aa51d3007ca7c3f8de796b2ed114ec86ea5653f980
GET /api/users/8367751735491004095/998173?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://www.titshub.com
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
game.starswalker.site/api/spots/321355?p=1&s1=%subid1%&kw=
200 OK 13 kB URL GET HTTP/2 game.starswalker.site/api/spots/321355?p=1&s1=%subid1%&kw=
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (710)
Hash 17e9f72dc35eeb79674f657621a5fa16
5f662971b8a14bc55be412a5643338f594d437ff
3e4c540201b146f3d9e6d30869c1e5b3e8d78762ff437c15db80f00c90c1672e
GET /api/spots/321355?p=1&s1=%subid1%&kw= HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: nauid=1MU6uHXWgLeCkox6IUZK; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
xngqoc.com/cuload?a=1&e=aeyJwaWQiOjExNDQ2NDYsInNpZCI6MTE5MDM3NSwid2lkIjo0NDU2NDMsImQiOiIiLCJsaSI6MX0=&tz=0&if=0&u=aHR0cHM6Ly93d3cudGl0c2h1Yi5jb20vdmlkZW9zLzEwMTMxMzA5Ny9lNGFjYTZhZDM0ZWUzMGY4YTA0ZTI5NTQ0NmM5MmE1ZS8=
0 B URL GET xngqoc.com/cuload?a=1&e=aeyJwaWQiOjExNDQ2NDYsInNpZCI6MTE5MDM3NSwid2lkIjo0NDU2NDMsImQiOiIiLCJsaSI6MX0=&tz=0&if=0&u=aHR0cHM6Ly93d3cudGl0c2h1Yi5jb20vdmlkZW9zLzEwMTMxMzA5Ny9lNGFjYTZhZDM0ZWUzMGY4YTA0ZTI5NTQ0NmM5MmE1ZS8=
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /cuload?a=1&e=aeyJwaWQiOjExNDQ2NDYsInNpZCI6MTE5MDM3NSwid2lkIjo0NDU2NDMsImQiOiIiLCJsaSI6MX0=&tz=0&if=0&u=aHR0cHM6Ly93d3cudGl0c2h1Yi5jb20vdmlkZW9zLzEwMTMxMzA5Ny9lNGFjYTZhZDM0ZWUzMGY4YTA0ZTI5NTQ0NmM5MmE1ZS8= HTTP/1.1
Host: xngqoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
twinrdsrv.com/preroll.engine?id=6ad96df4-2aad-435f-b4e3-8b8b1a0e95a1&zid=40386&cvs={ClientVideoSupport}&time={TimeOffset}&stdtime={StdTimeOffset}&abr={IsAdblockRequest}&pageurl={PageUrl}&tid={TrackingId}&res={Resolution}&bw={BrowserWidth}&bh={BrowserHeight}&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&referrerUrl={ReferrerUrl}&pw={PlayerWidth}&ph={PlayerHeight}
200 OK 7.6 kB URL GET HTTP/2 twinrdsrv.com/preroll.engine?id=6ad96df4-2aad-435f-b4e3-8b8b1a0e95a1&zid=40386&cvs={ClientVideoSupport}&time={TimeOffset}&stdtime={StdTimeOffset}&abr={IsAdblockRequest}&pageurl={PageUrl}&tid={TrackingId}&res={Resolution}&bw={BrowserWidth}&bh={BrowserHeight}&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&referrerUrl={ReferrerUrl}&pw={PlayerWidth}&ph={PlayerHeight}
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint44:DC:AB:AD:02:68:C6:90:3B:A8:AF:E2:FD:7E:D7:F2:0E:5D:AC:2E
ValidityTue, 18 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (7611), with no line terminators
Hash ffb5fd22e2267311f961e0b001a25cfd
d178c25d08e301840536956433159807767d8b37
14cb089af6a43fc3579e0fe1c6eefa65d0fa02bfeca13988d2c52bafaa80ef20
GET /preroll.engine?id=6ad96df4-2aad-435f-b4e3-8b8b1a0e95a1&zid=40386&cvs={ClientVideoSupport}&time={TimeOffset}&stdtime={StdTimeOffset}&abr={IsAdblockRequest}&pageurl={PageUrl}&tid={TrackingId}&res={Resolution}&bw={BrowserWidth}&bh={BrowserHeight}&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&referrerUrl={ReferrerUrl}&pw={PlayerWidth}&ph={PlayerHeight} HTTP/1.1
Host: twinrdsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
cache-control: private, no-transform
access-control-allow-credentials: true
content-encoding: gzip
p3p: CP="CAO PSA OUR IND"
access-control-allow-origin: https://www.titshub.com
set-cookie: IKSR={}; path=/; SameSite=None; secure
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fYsiiaYBYcd8EGXrCD449RONb08%2ByQ%2BESqwuzs4cr1ByjupdiIFNmIYXfiZvwjGaQr6Hod7VEeNOjAHqjaPqwUo4j%2B%2F17X6DEwcQ7EkBmSttBLL%2FpjoBQZX6is7YTys%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f41358e37127-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
i.wmgtr.com/cim/fQGdkCqPGvKCgjtfINqwhFuDvEfMKFtB.png
0 B URL GET i.wmgtr.com/cim/fQGdkCqPGvKCgjtfINqwhFuDvEfMKFtB.png
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecti.wmgtr.com
FingerprintEC:B5:1E:3E:A4:6B:92:23:E2:9E:1E:FC:99:58:59:8E:23:DD:C1:25
ValidityMon, 23 Oct 2023 00:02:20 GMT - Sun, 21 Jan 2024 00:02:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cim/fQGdkCqPGvKCgjtfINqwhFuDvEfMKFtB.png HTTP/1.1
Host: i.wmgtr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: image/png
server: nginx/1.19.0
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-option: nosniff
content-encoding: gzip
cache-control: max-age=82800
expires: Wed, 29 Nov 2023 09:33:34 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
tsyndicate.com/do2/4c30b83a1dd9447c8f221f048ddaf6cd/vast?
200 OK 5.6 kB URL GET HTTP/2 tsyndicate.com/do2/4c30b83a1dd9447c8f221f048ddaf6cd/vast?
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintF2:3C:80:FB:F4:C8:BF:02:DD:BF:23:DD:27:74:AB:0B:89:F6:13:5E
ValiditySun, 12 Nov 2023 09:06:58 GMT - Sat, 10 Feb 2024 09:06:57 GMT
File type XML document, ASCII text, with very long lines (5615), with no line terminators
Hash c1b3b0843743794d6661f69c15d630ca
457585e8707ad7f0c0910b708a462ad359dee336
e6902fa295f9c60506d06d0c61c6a4239ab5a405f7c8390266eedd66d0f1092d
GET /do2/4c30b83a1dd9447c8f221f048ddaf6cd/vast? HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: application/xml; charset=utf-8
access-control-allow-origin: https://www.titshub.com
access-control-allow-methods: POST, GET, HEAD
access-control-allow-headers: Accept, X-Requested-With, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Legacy
access-control-allow-credentials: true
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-api-version: 2
x-vast: 3.0
x-request-id: 8a8e5bfb3ac23218
set-cookie: ts_uid=2d861dee-10dd-476f-8146-ee949e99f573; expires=Tue, 28 May 2024 10:33:34 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
bfq=APeIECNCx5YZNXDAwIGDRhcWIsYU3BLjoYgyE2PcgBFDRg0aHB32URAQ; expires=Wed, 29 Nov 2023 10:33:34 GMT; domain=.tsyndicate.com; path=/; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
www.titshub.com/js/kvs/main.min.js
200 OK 307 kB URL GET HTTP/3 www.titshub.com/js/kvs/main.min.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
Size 307 kB (307089 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/kvs/main.min.js HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
last-modified: Fri, 03 Sep 2021 08:42:02 GMT
vary: Accept-Encoding
etag: W/"6131dfda-4af91"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 272671
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lwgiPVAnz60s7viga%2Fo8fcoz9LRHAe4gLMk4zW4XsCIIaXPO%2Bvh%2B6cZyxUccXJAU56KLqVCiTrxLFqtt4qS6ZY%2F08tCPIme8xSGVS0PWaktrPZUxVR4DKl5el%2FjBoxptbdI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f3fcbfb27129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
xngqoc.com/er?a=1
0 B IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /er?a=1 HTTP/1.1
Host: xngqoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
game.starswalker.site/api/users/433863?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25
200 OK 544 B URL GET HTTP/2 game.starswalker.site/api/users/433863?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type ASCII text, with very long lines (616), with no line terminators
Hash bbb236447bcbeed2611a9ab02484ac5c
1aa3e5b56199981d6c1d9683170c55b9af4da2f3
5321506d4db60832d3c032cab6a727d38a14ccd7639f1bb97d3cd6863cefe5c9
GET /api/users/433863?host=www.titshub.com&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F&i=1&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
www.titshub.com/img/logo.svg?v=1
200 OK 75 kB URL GET HTTP/3 www.titshub.com/img/logo.svg?v=1
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (34533)
Hash dc2571c3ceec09fd6f9bc3bec9d6c8d1
2cc47aadf526865c0b15374f7c54bd65cedb49e9
f417ab74a1dc5c7507af27ca2dc5b8481b073a280eefd9d0739cbcb510981620
GET /img/logo.svg?v=1 HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/css/main.css
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154; show_pops2=true2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:31 GMT
content-type: image/svg+xml
last-modified: Tue, 14 Sep 2021 11:48:24 GMT
etag: W/"12539-5cbf328b51200"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2521
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f4z6dXOcqwEEK%2F47vS92RVh1bJ2%2BxgBNKdj6IhvSPr5KBKOf0Bml5KqAL38L6ce1tnBOd1DTnfmSFcOPyvdWI7glINJBYj8xl9KdDTbrXXCE9xbL%2FG6PqSnyAPZmGGATaDU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f404fdc87129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
game.starswalker.site/api/users/3594215791324352095/1635942?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
200 OK 1.5 kB URL GET HTTP/2 game.starswalker.site/api/users/3594215791324352095/1635942?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type XML document, ASCII text, with very long lines (1586), with no line terminators
Hash 9765f3517c16fe20d120bf1c7372ebe7
493c1d262b87f5fd98f716d4b03359cd2b81df6d
99bdfb0899b11020e94fe808638213f3bbc1b5abbba088090c7dfa25396a0ab8
GET /api/users/3594215791324352095/1635942?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://www.titshub.com
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
game.starswalker.site/api/settings/377400
200 OK 33 B URL GET HTTP/2 game.starswalker.site/api/settings/377400
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 511ff610a0435434dd22a4836719fbb3
0cf692a9ecb6dd3d715e3315e0eeccc1c384f0c3
d090111da31c837d965f1dcf49b00a53cf41686d0913627f78c5ff36d693c6d0
GET /api/settings/377400 HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
a.realsrv.com/nativeads-v2.js
200 OK 45 kB URL GET HTTP/2 a.realsrv.com/nativeads-v2.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
Fingerprint33:54:4D:F8:0E:E4:00:D3:20:90:CA:61:C8:CC:4D:D5:CB:BB:83:57
ValidityThu, 05 Oct 2023 15:34:07 GMT - Wed, 03 Jan 2024 15:34:06 GMT
File type C source, ASCII text, with very long lines (45113), with no line terminators
Hash 0a128366c7602cbe2c595077f69ff177
6bb4324d11390cf5846f680a86f0af3e6d11a868
3d0c91e2041f64eadb079287c1ebdcbd7209b7ec359248f7d2eb4a02a5490457
GET /nativeads-v2.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6bb4324d11390cf5846f680a86f"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Mon, 27 Nov 2023 13:30:26 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EgwBeX8tUAH3OSkAAAwB1GY4EQH3mgEAAA
x-77-nzt-ray: c1fb98194258ad39fac16565ed78082b
x-accel-expires: @1701167855
x-accel-date: 1701157057
x-77-cache: HIT
x-77-age: 10963
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 10553
x-77-pop: copenhagenDK
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/css/style.css
200 OK 9.2 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/css/style.css
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type ASCII text, with very long lines (9771), with no line terminators
Hash 3bf44c419c27c2507bc1b009469c4482
b645016017cbba34b71497b76eb2a89ea7d54839
dca224015fb9353a013d68f8d9c8d5e028940fd9f0750e17b4dc66fb620dd64a
GET /sb/ssp/notifications/text_bubble/2/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: text/css
last-modified: Tue, 12 Jul 2022 11:09:04 GMT
etag: W/"62cd5650-23e9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2361130
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cVQiVO1SdC6OKfvJW3pCSlfvTxzHzuSLAK1wYD7uKhrd6zWhI%2B6CUwt91tTkzJhvRUTQtjH7CxKaWVnsPQC%2BWC15rz3lk7LvmkZlKhduKaQ%2FXjIFk9vT8VhbDL4OVTlovKgP4Wh%2B4Abf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f4194add6627-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
game.starswalker.site/api/users/321378?v2=1&fill=0&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25&s2=%25subid2%25&i=1&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F
200 OK 3.0 kB URL GET HTTP/2 game.starswalker.site/api/users/321378?v2=1&fill=0&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25&s2=%25subid2%25&i=1&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type XML document, ASCII text, with very long lines (3107), with no line terminators
Hash d6ea2d7c4b9baf6301f449d8ec0cd9d4
1bc2a1bd3ca93f19fe036666cb43da27c894687e
33c9c5649a7dde264b45248a9a79794d6245f3e4df915adf3edbd842225596ce
GET /api/users/321378?v2=1&fill=0&kw=hairy%2CMature%2Cbabes%2Cpussy%2Ccelebrity%2Ctitshub&s1=%25subid1%25&s2=%25subid2%25&i=1&url=https%3A%2F%2Fwww.titshub.com%2Fvideos%2F101313097%2Fe4aca6ad34ee30f8a04e295446c92a5e%2F HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:32 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://www.titshub.com
access-control-expose-headers: X-Asg-Config, X-t
x-robots-tag: noindex, nofollow
x-t: 0
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
game.starswalker.site/api/users/8367751735491004095/998168?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
200 OK 1.5 kB URL GET HTTP/2 game.starswalker.site/api/users/8367751735491004095/998168?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type XML document, ASCII text, with very long lines (1593), with no line terminators
Hash 5ae31cef140328a76581eb51907a3a78
17575c630fa47f84d03e41076424b4b147d916d3
02da7ecc89b5c98d0497d3b029a0a503fb6e5da9e97f4b96bf120a40f3a231a1
GET /api/users/8367751735491004095/998168?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://www.titshub.com
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/img/arrow.png
200 OK 2.3 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/img/arrow.png
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type PNG image data, 52 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 41109abf05740798aa2e66a3e938c8de
706e93332bf4819e9f4059765340cf97981bd1fe
2fbf669490df5b04badb9886ca664dbd9a0d66e0ecdc951b822feb6089fac0ea
GET /sb/ssp/notifications/text_bubble/2/img/arrow.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:35 GMT
content-type: image/png
content-length: 2332
last-modified: Tue, 12 Jul 2022 10:56:23 GMT
etag: "62cd5357-91c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1309458
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RmssNcL9GZG3%2Fb7DyyE1%2BgXUrnt8BndqvctBUbiB%2FgVrSxF%2FdyLXpDZAydry2arkrMQ7Z%2BTMVDcRbPxulK0ONKynlAScQ3Cxve%2FuHPFzZONq0mUdcHwWKAi%2B%2B8tuFqOprZgIrMTn0zen"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f419ebd06627-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.titshub.com/js/main.js
200 OK 21 kB URL GET HTTP/3 www.titshub.com/js/main.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
Hash f436e20fd95f485efc2719182d34f97e
4a86ece7e9f2197bf6d19cfd0b64277418d1d41b
e80c10a9bcd29596e504584d3941e09317c7f15bf6bbcfcfd4fcceb2f9d367d0
GET /js/main.js HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: application/javascript
last-modified: Fri, 03 Sep 2021 08:42:01 GMT
vary: Accept-Encoding
etag: W/"6131dfd9-513c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 365911
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PymF4MAuiSdpgEjYmeqlOwgTDnscbfPHba48h20c5bylwiuvK9auey8a5WDbjDTiiK7XGLhlRlaGNRMhRJPrv262DBGvCrdp7ebGpuAgVsrHxjYVmSuA0CcKepx1CHpzp0M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f3fcbfb87129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
game.starswalker.site/api/spots/321352?p=1&s1=%subid1%&kw=
200 OK 13 kB URL GET HTTP/2 game.starswalker.site/api/spots/321352?p=1&s1=%subid1%&kw=
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (710)
Hash 87ab3f4c516f7b0de5cb3d32d4085198
fe911e476f253ba00c1f3a79b90164b039eb008b
c8eeb01328a063abda6eb8f52d097bf664c4b090ebb6be2f6974e88c814ec47e
GET /api/spots/321352?p=1&s1=%subid1%&kw= HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: nauid=6xYIowmyt9CMtI1Kqb2r; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
game.starswalker.site/api/spots/321353?p=1&s1=%subid1%&kw=
200 OK 13 kB URL GET HTTP/2 game.starswalker.site/api/spots/321353?p=1&s1=%subid1%&kw=
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (710)
Hash 95d93b369cc49b66b5304621c8eacef2
213bf27458c77532b7d02aa6cb40c34795254b43
bb8201e449f01ec5e9de79e0840d9854972c4266762b9b6206a24c03f5e1944f
GET /api/spots/321353?p=1&s1=%subid1%&kw= HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: nauid=o7hcvN79OGkTitQ9RqLL; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/error?errorcode=3&p=APeICDOGjggdMFgMhAPnYAwZNGrkUDimTUMdEmnYuIFDoRg3bg7OqIEDBg4cNBTSaePwBowYMTbaiJFSxEoZLV_GvDGTBkwZCuGwGXMwoYgxZ4r2URAQ&s=d48ae6f9bd16b5b57fa9bc5a56acb74345b2bb36e100a7147be4928240882a4c1701167614
200 OK 0 B URL GET HTTP/2 pxl.tsyndicate.com/api/v1/error?errorcode=3&p=APeICDOGjggdMFgMhAPnYAwZNGrkUDimTUMdEmnYuIFDoRg3bg7OqIEDBg4cNBTSaePwBowYMTbaiJFSxEoZLV_GvDGTBkwZCuGwGXMwoYgxZ4r2URAQ&s=d48ae6f9bd16b5b57fa9bc5a56acb74345b2bb36e100a7147be4928240882a4c1701167614
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintF2:3C:80:FB:F4:C8:BF:02:DD:BF:23:DD:27:74:AB:0B:89:F6:13:5E
ValiditySun, 12 Nov 2023 09:06:58 GMT - Sat, 10 Feb 2024 09:06:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v1/error?errorcode=3&p=APeICDOGjggdMFgMhAPnYAwZNGrkUDimTUMdEmnYuIFDoRg3bg7OqIEDBg4cNBTSaePwBowYMTbaiJFSxEoZLV_GvDGTBkwZCuGwGXMwoYgxZ4r2URAQ&s=d48ae6f9bd16b5b57fa9bc5a56acb74345b2bb36e100a7147be4928240882a4c1701167614 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: ts_uid=2d861dee-10dd-476f-8146-ee949e99f573; bfq=APeIECNCx5YZNXDAwIGDRhcWIsYU3BLjoYgyE2PcgBFDRg0aHB32URAQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:37 GMT
content-length: 0
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
game.starswalker.site/api/users/8367751735491004095/998167?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
200 OK 1.9 kB URL GET HTTP/2 game.starswalker.site/api/users/8367751735491004095/998167?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type XML document, ASCII text, with very long lines (1921), with no line terminators
Hash c9c556b57eab1e5a1f5bd064474e4b59
155d97d04b9ebbbd09e6a1181d5416d59857785b
075dfe61871eca3c7cbf73a9c02773fe204063dab90f7f26aed96bc80da3848c
GET /api/users/8367751735491004095/998167?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Cookie: nauid=o7hcvN79OGkTitQ9RqLL; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://www.titshub.com
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/js/jquery.min.js
200 OK 90 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/js/jquery.min.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type ASCII text, with very long lines (65451)
Hash 561acb3e541133bbdd2c0c19f8ee35a1
ffd1353cf3f77d25f801c84d8208613eb0d3d548
9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc
GET /sb/ssp/notifications/text_bubble/2/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:35 GMT
content-type: application/javascript
last-modified: Tue, 12 Jul 2022 10:56:19 GMT
etag: W/"62cd5353-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1497524
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rIrmAzqYfDFXJuFzRdCjTybdvDx3JSaknaLRaAw7VKY89twDCZIWDpu0Q%2BVQ%2FYMnQ3I7%2BRAzNUcmWewzF0LugUwgmhiIdKnqzjBXUdKcdKSrRp9%2F3OkAH8pFXr2K179ut0my%2BGBzGmDE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f41a0be66627-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
200 OK 6.8 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (7013), with no line terminators
Hash 49475c425d6c00477bb339179326c49b
bd97deeb753f44f43a21feafa92d98239fa511bd
598841a98ad357d2896d2f093ea3e4e1d44e24b3351268ffd45e61ff8c1d0e09
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Nov 2023 10:33:35 GMT
date: Tue, 28 Nov 2023 10:33:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.titshub.com/css/main.css
200 OK 78 kB URL GET HTTP/3 www.titshub.com/css/main.css
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint77:AE:05:1C:88:54:A4:07:37:7E:B6:E8:90:25:BE:C7:36:4B:B3:F8
ValidityTue, 14 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
File type assembler source, ASCII text, with very long lines (492)
Hash 4971b45ab6068ed60a73a1679ad3672a
8d441b776b80c2ab2620140867ffbbd6635cb6c3
cc9fe6217237396decd355f16167620186113e9cdd5567cd9bde41c8f56f869c
GET /css/main.css HTTP/1.1
Host: www.titshub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Cookie: PHPSESSID=sbon1ndsebace597d05qgc6avg; kt_qparams=id%3D101313097%26dir%3De4aca6ad34ee30f8a04e295446c92a5e; kt_ips=91.90.42.154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:30 GMT
content-type: text/css
last-modified: Mon, 23 May 2022 12:36:29 GMT
vary: Accept-Encoding
etag: W/"628b7fcd-131f9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 544147
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dcnewlwav3XBXGeUiP5s8R9uk3fJhwfPei36FD1rY4N4Re2RnOeQucjfZLUsBsz2aLA1jiUd60gNioyvLMk6fCZqGHtlUoX6ISMuDNOkvSG%2FEV93EBxn1g5dWWU2nQhogU8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f3fcbfaa7129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
proceedglad.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSu3o2gCKLLXjwIc%2FCwgpl0T3ene9yDuK4rwTUJuys5SnVV9aRMdVdb1T09ySm4sOxJZm8eO98kG9Qg7g8QdOJFFoUdD5KDuXsW9igyk4HRB93vvfoe1Pd9rx4cVOfERUXPNj%2FWe1IpuhK23da1LZlzXdvW%2Br2W57bd660tma8G11uD6c%2F03%2FHcsO2%2B1fpQsB290nE91%2FVcr3VLGpHqwcoMhSxOul6767aDTtsLAwzM%2F3tbObDUAe%2BfkyuQfPLC9i9PINkYefb9TWF3Sl28%2FUFWKVpqgz4%2F%2FiTfyXWdI1uUqXGQ5sfzaWg7IeSrS9D58VwBdP9wqgCJnBDnDw9JfjyniaR%2FdME0URA5Ev4y6v4YQo0h6RhM34fkzwjAONY3kGeP17Wp6e4FSqfohCw9%2FxuynpClP68iz767oeSgdVerqpQ6txikDeRgDNkbo6hOUe45kPUpWPkFJP%2BNrDy%2FjTw73LBKQ%2FKzN33P70QBFcs0ZHw5SKPV5ST13eVk6nDor8Y8imYWSTmGTMdQYghqHVTTTzqoUgdV4SDjZy0adlPXjdIk9f04YIz5PmNhvMpD7gdx6qJiUw1DlMUQTA3BzD4Ks48d%2BehZeAWm%2BhF2u4HlDmxJ0OcNakFQW4KaEtSSoC4J6n5zxJXt2OYxV7ZKvHnuzLPfjHTZO6BHuuyJnBwU5%2BS1qXfOS1euYkectRgPaSJ4FHPud6MoFHHoJ2kQcxanPPVCWNlA2kszpXtyQq76n6OQE3KJ%2FoqEnsKqUzD5Kmj1Bmg9ijou6PYoiF3s5SeFNnlBC9pmOgPXDYpyCeWuc6DOyeuzHa4tBRDs6bu%2F%2B7MAMw0K0%2BAz%2BTNBTz0c3dE1Obyja0uebBSlzOQene73bklLcfmbj8RurQ1fu2mHX7%2FHpsC0PLknbHmb5lzmPUu%2BvSE5F%2BaWNkyQH9bslkg2K7t9ozJ5VdzefP%2FWWlYYYa3U%2BRhUTgj58i8wOSGvvPjp7O1ee7AFacYwVYOsekrmAanHYMU%2BbLHgbzWBUYuZpHBQV83IdJLFoZIESix6mjSw%2F%2BmTRX1gH6JnHNDyPvKsQd806KsGVA1hq8ujsjCLyxPljBJlnMNEGfXowlwrz1qhF4g4iSPGeSIY96KOH%2Fuu2%2BE8iLrC66K0EyF%2B%2BudfAAAA%2F%2F8BAAD%2F%2Fwyw7ACTBAAA
200 OK 0 B URL GET HTTP/1.1 proceedglad.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSu3o2gCKLLXjwIc%2FCwgpl0T3ene9yDuK4rwTUJuys5SnVV9aRMdVdb1T09ySm4sOxJZm8eO98kG9Qg7g8QdOJFFoUdD5KDuXsW9igyk4HRB93vvfoe1Pd9rx4cVOfERUXPNj%2FWe1IpuhK23da1LZlzXdvW%2Br2W57bd660tma8G11uD6c%2F03%2FHcsO2%2B1fpQsB290nE91%2FVcr3VLGpHqwcoMhSxOul6767aDTtsLAwzM%2F3tbObDUAe%2BfkyuQfPLC9i9PINkYefb9TWF3Sl28%2FUFWKVpqgz4%2F%2FiTfyXWdI1uUqXGQ5sfzaWg7IeSrS9D58VwBdP9wqgCJnBDnDw9JfjyniaR%2FdME0URA5Ev4y6v4YQo0h6RhM34fkzwjAONY3kGeP17Wp6e4FSqfohCw9%2FxuynpClP68iz767oeSgdVerqpQ6txikDeRgDNkbo6hOUe45kPUpWPkFJP%2BNrDy%2FjTw73LBKQ%2FKzN33P70QBFcs0ZHw5SKPV5ST13eVk6nDor8Y8imYWSTmGTMdQYghqHVTTTzqoUgdV4SDjZy0adlPXjdIk9f04YIz5PmNhvMpD7gdx6qJiUw1DlMUQTA3BzD4Ks48d%2BehZeAWm%2BhF2u4HlDmxJ0OcNakFQW4KaEtSSoC4J6n5zxJXt2OYxV7ZKvHnuzLPfjHTZO6BHuuyJnBwU5%2BS1qXfOS1euYkectRgPaSJ4FHPud6MoFHHoJ2kQcxanPPVCWNlA2kszpXtyQq76n6OQE3KJ%2FoqEnsKqUzD5Kmj1Bmg9ijou6PYoiF3s5SeFNnlBC9pmOgPXDYpyCeWuc6DOyeuzHa4tBRDs6bu%2F%2B7MAMw0K0%2BAz%2BTNBTz0c3dE1Obyja0uebBSlzOQene73bklLcfmbj8RurQ1fu2mHX7%2FHpsC0PLknbHmb5lzmPUu%2BvSE5F%2BaWNkyQH9bslkg2K7t9ozJ5VdzefP%2FWWlYYYa3U%2BRhUTgj58i8wOSGvvPjp7O1ee7AFacYwVYOsekrmAanHYMU%2BbLHgbzWBUYuZpHBQV83IdJLFoZIESix6mjSw%2F%2BmTRX1gH6JnHNDyPvKsQd806KsGVA1hq8ujsjCLyxPljBJlnMNEGfXowlwrz1qhF4g4iSPGeSIY96KOH%2Fuu2%2BE8iLrC66K0EyF%2B%2BudfAAAA%2F%2F8BAAD%2F%2Fwyw7ACTBAAA
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSu3o2gCKLLXjwIc%2FCwgpl0T3ene9yDuK4rwTUJuys5SnVV9aRMdVdb1T09ySm4sOxJZm8eO98kG9Qg7g8QdOJFFoUdD5KDuXsW9igyk4HRB93vvfoe1Pd9rx4cVOfERUXPNj%2FWe1IpuhK23da1LZlzXdvW%2Br2W57bd660tma8G11uD6c%2F03%2FHcsO2%2B1fpQsB290nE91%2FVcr3VLGpHqwcoMhSxOul6767aDTtsLAwzM%2F3tbObDUAe%2BfkyuQfPLC9i9PINkYefb9TWF3Sl28%2FUFWKVpqgz4%2F%2FiTfyXWdI1uUqXGQ5sfzaWg7IeSrS9D58VwBdP9wqgCJnBDnDw9JfjyniaR%2FdME0URA5Ev4y6v4YQo0h6RhM34fkzwjAONY3kGeP17Wp6e4FSqfohCw9%2FxuynpClP68iz767oeSgdVerqpQ6txikDeRgDNkbo6hOUe45kPUpWPkFJP%2BNrDy%2FjTw73LBKQ%2FKzN33P70QBFcs0ZHw5SKPV5ST13eVk6nDor8Y8imYWSTmGTMdQYghqHVTTTzqoUgdV4SDjZy0adlPXjdIk9f04YIz5PmNhvMpD7gdx6qJiUw1DlMUQTA3BzD4Ks48d%2BehZeAWm%2BhF2u4HlDmxJ0OcNakFQW4KaEtSSoC4J6n5zxJXt2OYxV7ZKvHnuzLPfjHTZO6BHuuyJnBwU5%2BS1qXfOS1euYkectRgPaSJ4FHPud6MoFHHoJ2kQcxanPPVCWNlA2kszpXtyQq76n6OQE3KJ%2FoqEnsKqUzD5Kmj1Bmg9ijou6PYoiF3s5SeFNnlBC9pmOgPXDYpyCeWuc6DOyeuzHa4tBRDs6bu%2F%2B7MAMw0K0%2BAz%2BTNBTz0c3dE1Obyja0uebBSlzOQene73bklLcfmbj8RurQ1fu2mHX7%2FHpsC0PLknbHmb5lzmPUu%2BvSE5F%2BaWNkyQH9bslkg2K7t9ozJ5VdzefP%2FWWlYYYa3U%2BRhUTgj58i8wOSGvvPjp7O1ee7AFacYwVYOsekrmAanHYMU%2BbLHgbzWBUYuZpHBQV83IdJLFoZIESix6mjSw%2F%2BmTRX1gH6JnHNDyPvKsQd806KsGVA1hq8ujsjCLyxPljBJlnMNEGfXowlwrz1qhF4g4iSPGeSIY96KOH%2Fuu2%2BE8iLrC66K0EyF%2B%2BudfAAAA%2F%2F8BAAD%2F%2Fwyw7ACTBAAA HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: u_pl=17371668; uid_id2=313274ae-a5cd-4f76-bf30-b10015368d77:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 10:33:35 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 746de4c878dc845b57f873ecb1d85647
Strict-Transport-Security: max-age=0; includeSubdomains
xngqoc.com/admc?a=2&pid=1150082&sid=1195199&wid=439938&fp=4cb725660c43031e3b06c75892d96c5a&f=8&tz=0
0 B URL GET xngqoc.com/admc?a=2&pid=1150082&sid=1195199&wid=439938&fp=4cb725660c43031e3b06c75892d96c5a&f=8&tz=0
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /admc?a=2&pid=1150082&sid=1195199&wid=439938&fp=4cb725660c43031e3b06c75892d96c5a&f=8&tz=0 HTTP/1.1
Host: xngqoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
go.xlivrdr.com/smartpop/662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=594678&memberId=UvDBSgq0QuCGfcnhW2PyR8dgSFGANczDhTccpToHtOMXi73D0uF7qyd9bleJ94jSfJ8p7LCiweTWhEFHubOjDvauxAbXVlvplAl0NGZGKxnbma31_gUIDRUi&p1=3844985&ax=0&tag=-girls%2Fmobile
302 Found 2.2 kB URL GET HTTP/2 go.xlivrdr.com/smartpop/662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=594678&memberId=UvDBSgq0QuCGfcnhW2PyR8dgSFGANczDhTccpToHtOMXi73D0uF7qyd9bleJ94jSfJ8p7LCiweTWhEFHubOjDvauxAbXVlvplAl0NGZGKxnbma31_gUIDRUi&p1=3844985&ax=0&tag=-girls%2Fmobile
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectxlivrdr.com
FingerprintDA:D9:AC:E4:B1:E8:44:C4:D9:A4:0E:1B:DF:33:4B:24:74:45:7D:0E
ValidityWed, 03 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smartpop/662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=594678&memberId=UvDBSgq0QuCGfcnhW2PyR8dgSFGANczDhTccpToHtOMXi73D0uF7qyd9bleJ94jSfJ8p7LCiweTWhEFHubOjDvauxAbXVlvplAl0NGZGKxnbma31_gUIDRUi&p1=3844985&ax=0&tag=-girls%2Fmobile HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 28 Nov 2023 10:33:34 GMT
content-length: 0
location: https://go.mnaspm.com/api/models/vast?action=sbSignupWithModel&ax=0&campaignId=662caa72b7c524d066b181904a6fe35b35c20b36796cca3110a610b44239cb2f&campaignType=smartpop&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745523&masterSmartpopId=2683&memberId=UvDBSgq0QuCGfcnhW2PyR8dgSFGANczDhTccpToHtOMXi73D0uF7qyd9bleJ94jSfJ8p7LCiweTWhEFHubOjDvauxAbXVlvplAl0NGZGKxnbma31_gUIDRUi&mlView=1&p1=3844985&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=3588&sourceId=594678&tag=-girls%2Fmobile&usePreroll=true&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=31904
access-control-allow-origin: https://www.titshub.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: _var=8684233.31904_ZTJjNzVhZDk=; Path=/; Expires=Thu, 28 Dec 2023 10:33:34 GMT; HttpOnly; SameSite=Strict
__cflb=02DiuDFRFiBZBvMSLtsgHAjogiG8Ahr7acznyxMs9Y3ak; SameSite=None; Secure; path=/; expires=Wed, 29-Nov-23 10:33:34 GMT; HttpOnly
server: cloudflare
cf-ray: 82d1f415afa0b518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
game.starswalker.site/api/users/3594215791324352095/1636035?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
200 OK 1.9 kB URL GET HTTP/2 game.starswalker.site/api/users/3594215791324352095/1636035?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjecta.kainpopoy.com
FingerprintC3:A0:4A:E1:FD:8F:13:AA:57:82:A1:48:49:49:CA:4B:E3:5C:64:33
ValidityMon, 06 Nov 2023 16:27:10 GMT - Sun, 04 Feb 2024 16:27:09 GMT
File type XML document, ASCII text, with very long lines (1922), with no line terminators
Hash 3d9a04be16c078c8107f7a463473ccd5
302643e2529cc7481269d575089426a7d206f8c2
0fd4f7b2f2eba3cc5e05bfcc10ee47b3a611ee1a6ce0f88ed981e14083c7d387
GET /api/users/3594215791324352095/1636035?fill=0&kw=hairy,Mature,babes,pussy,celebrity,titshub HTTP/1.1
Host: game.starswalker.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Cookie: nauid=o7hcvN79OGkTitQ9RqLL
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://www.titshub.com
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
xdiwbc.com/template/social.html
200 OK 4.6 kB URL GET HTTP/2 xdiwbc.com/template/social.html
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectxdiwbc.com
Fingerprint5D:41:10:46:C6:59:EE:4D:26:CD:FC:4F:4C:13:35:6F:6E:2E:05:91
ValidityMon, 02 Oct 2023 04:50:38 GMT - Sun, 31 Dec 2023 04:50:37 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4639), with no line terminators
Hash 474cf430e4f70fc61a3695cb75f686de
8c14127415e490dff27896747f730ca8e49a957a
12fe3666e6b24360e737799e0cb1eafc47e6f11ccc109562f5426767a8529ef7
GET /template/social.html HTTP/1.1
Host: xdiwbc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.titshub.com/
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:33 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://www.titshub.com
cache-control: max-age=14400
cf-cache-status: HIT
age: 1977
last-modified: Tue, 28 Nov 2023 10:00:36 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B%2F4d%2FcpqaDNvSO%2FJjSPXteU1U0jvbPckP%2B828Rf2CXR1MCvYk6O20A6rf3WocxYG57B%2Ba3nMlYGR%2BaxEzvsH%2BHh20wmdEULviMOQRhGbpxmImY%2BWHeyFOCW%2BIXO7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82d1f411d943b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
go.bbrdbr.com/api/models/vast?action=sbSignupWithModel&campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&campaignType=smartpop&contentType=video%2Fmp4&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745641&masterSmartpopId=2683&memberId=e73abd64-96b0-4edd-b355-2bb6e303a5d0&mlView=1&no_bb=1&p1=50168&p2=79550&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=5347&sourceId=7407&usePreroll=true&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&variationId=31904&xhVersion=1
200 OK 2.0 kB URL GET HTTP/3 go.bbrdbr.com/api/models/vast?action=sbSignupWithModel&campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&campaignType=smartpop&contentType=video%2Fmp4&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745641&masterSmartpopId=2683&memberId=e73abd64-96b0-4edd-b355-2bb6e303a5d0&mlView=1&no_bb=1&p1=50168&p2=79550&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=5347&sourceId=7407&usePreroll=true&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&variationId=31904&xhVersion=1
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type XML document, ASCII text, with very long lines (2074), with no line terminators
Hash 60fa1644581f9c8d812daf9aef332388
e979548bb28a469f54270fd6915f59f3f7424aa8
42c65159ee5646e01c1b8d0cfe7a69fc04b79ce93015816b09bf488ad77210df
GET /api/models/vast?action=sbSignupWithModel&campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&campaignType=smartpop&contentType=video%2Fmp4&creativeId=0fe634b4ed7128d94852002b593185fc904d0c54974e9bbbec389730ba324b3e&duration=00%3A00%3A30&iterationId=745641&masterSmartpopId=2683&memberId=e73abd64-96b0-4edd-b355-2bb6e303a5d0&mlView=1&no_bb=1&p1=50168&p2=79550&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=5347&sourceId=7407&usePreroll=true&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&variationId=31904&xhVersion=1 HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.titshub.com
Referer: https://www.titshub.com/
DNT: 1
Connection: keep-alive
Cookie: __cflb=04dToPfSdwpmYL4m1jJR4AaLHvZoKEtWsjJ2fb2JNQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 28 Nov 2023 10:33:34 GMT
content-type: text/xml; charset=utf-8
access-control-allow-origin: https://www.titshub.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 82d1f418bda8b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
s.magsrv.com/vregister.php?a=vview&errorcode=3&idzone=4287292&dg=5955790-NOR-84865580-3-0-1-1-Wrapper
200 OK 0 B URL GET HTTP/1.1 s.magsrv.com/vregister.php?a=vview&errorcode=3&idzone=4287292&dg=5955790-NOR-84865580-3-0-1-1-Wrapper
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vregister.php?a=vview&errorcode=3&idzone=4287292&dg=5955790-NOR-84865580-3-0-1-1-Wrapper HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226565c1fdf0fe29.44877433926679373%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C4287292%7C84865580%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Ctitshub.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701167613%7Cdba1516b372481d73869e9ae53f8fee6%7Cok%22%7D; zone-cap-4287292=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Nov 2023 10:33:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/js/script.js
200 OK 892 B URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/notifications/text_bubble/2/js/script.js
IP
Requested by https://www.titshub.com/videos/101313097/e4aca6ad34ee30f8a04e295446c92a5e/
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type ASCII text, with very long lines (959), with no line terminators
Hash 9d441b1ef0d4f07226844f2a75309fe0
588ed7e74f0c215a09e72131be39b930479dccf9
5df48723b4f69d2ecdd0de387d4233bf720e3c0cac669645d8a5ca6cb31e9bf8
GET /sb/ssp/notifications/text_bubble/2/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.titshub.com
DNT: 1
Connection: keep-alive
Referer: https://www.titshub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 10:33:35 GMT
content-type: application/javascript
last-modified: Tue, 12 Jul 2022 10:56:18 GMT
etag: W/"62cd5352-37c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1481923
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QhXNtux0%2Fz8uCNmM1iSB098qiNTf4%2BEs5MpIqp3yQ1BptHi02PjGFOYEd%2BFO5PdU619j9z0CxhJwDdG1mGe2DvVlmVl31I74dip%2FNdDSFXLA5nrHbM42xqzkFQyyw17OSbohrYnsZA1I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d1f41abcb56627-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
104.21.53.7
173.233.137.44
188.114.96.1
93.93.51.191
95.211.229.247
185.76.9.19
159.69.137.49
185.162.85.20
121.127.45.82
95.216.206.230
0.0.0.0