new.lewd.ninja/pug.js
25 B IP
File type ASCII text, with no line terminators
Hash acb8501274106c8c5d25141dd0dc252a
86eeee52b9443b6df7caffbf9fd4a7031fff5ccc
615ee8ac2cde2b20b7ae8fbb6ef33a9128193f07590540b77e514627be7ae1cd
GET /pug.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:13 GMT
content-type: application/javascript
content-length: 25
vary: Accept-Encoding
etag: "19-hu7uUrlEO233yv+/n9SnAx//XMw"
last-modified: 2023-11-03T22:39:23.019Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 82e67e5e5a150b31-OSL
alt-svc: h3=":443"; ma=86400
cdn.tapioni.com/vast-im.js
87 kB URL cdn.tapioni.com/vast-im.js
IP
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Hash 3270f5552a6b219080d466395f99e9dd
e9374c6b5c07c1b6a1e27147e35be9e9447dd49a
7cc379a857e3679e6891d65b543e809a344491b2a1b19927df43a48b25c7cd40
GET /vast-im.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 22:23:13 GMT
content-type: application/javascript
content-length: 86755
last-modified: Thu, 30 Nov 2023 11:46:10 GMT
vary: Accept-Encoding
etag: "65687602-152e3"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 38072
accept-ranges: bytes
server: cloudflare
cf-ray: 82e67e5f1b9b9900-ARN
X-Firefox-Spdy: h2
cdn.tapioni.com/asg-iframe.js
37 kB URL cdn.tapioni.com/asg-iframe.js
IP
File type Unicode text, UTF-8 text, with very long lines (65498), with no line terminators
Hash 7e90c768c202b8a1898b8aa9449d79fb
1635a4de86e11756e87710ac3e667e2049516164
3477cc11a8301babc768e167dff4d533c7cbe281d42acb35f5042b49836cf194
GET /asg-iframe.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 22:23:13 GMT
content-type: application/javascript
content-length: 36801
last-modified: Thu, 30 Nov 2023 11:46:10 GMT
vary: Accept-Encoding
etag: "65687602-8fc1"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 38069
accept-ranges: bytes
server: cloudflare
cf-ray: 82e67e5f1ba19900-ARN
X-Firefox-Spdy: h2
slit.lewd.rip/lMKFG41.js
76 kB IP
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Hash 6a761bae4530f6bfb270abfa75b1cb9b
617e8fd84f14b7a601d055c6ff2ad09441e823c6
8e629883ac62697032eb697449e83a2969d69e7e8adb7a624157e6e1a4afc13e
GET /lMKFG41.js HTTP/1.1
Host: slit.lewd.rip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:13 GMT
content-type: application/javascript
content-length: 75986
last-modified: Thu, 30 Nov 2023 11:46:10 GMT
vary: Accept-Encoding
etag: "65687602-128d2"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 59
cf-ray: 82e2de9effc04e1c-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
104 kB URL new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16954)
Size 104 kB (104511 bytes)
Hash ffe2852b71ca5cb66b1ce8f9265e1ed7
999dd4fa45913968fc3f5bb122b1ed5b76188040
f22f753a5abd4688e2c6554b3bd00574687ae4d5589daa9224a8555217b425ce
GET /animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 22:23:13 GMT
content-type: text/html;charset=UTF-8
cf-ray: 82e67e5778d3568f-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: *, *
vary: Accept-Encoding
server-timing: -;dur=0;desc="Generate"
set-cookie: i18n_redirected=en; Path=/; Expires=Fri, 29 Nov 2024 22:23:12 GMT; SameSite=Lax
auth.strategy=local; Path=/
__cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p; SameSite=Lax; path=/; expires=Fri, 01-Dec-23 22:23:13 GMT; HttpOnly
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
new.lewd.ninja/_nuxt/96ca5f2.js
200 OK 53 kB URL GET HTTP/3 new.lewd.ninja/_nuxt/96ca5f2.js
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash f7c9cabcaebbfe65488e17d01a8eae84
14cac9f2b829461c592a0df59590d78bf15c69a0
96dbb8220bfce17f9b1a379bec078960aaa17e96219d31a4c0db9d00ea9f4957
GET /_nuxt/96ca5f2.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2a90f-FMrJ8rgpRhxZKg31lZDXi/FcaaA"
last-modified: 2023-11-03T22:39:56.939Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 672422
server: cloudflare
cf-ray: 82e67e5e6a200b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 13:41:11 GMT
expires: Fri, 29 Nov 2024 13:41:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 31324
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
7.8 kB URL fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:00:51 GMT
expires: Fri, 29 Nov 2024 04:00:51 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
age: 66144
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
7.9 kB URL fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 02:38:20 GMT
expires: Fri, 29 Nov 2024 02:38:20 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 71095
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
new.lewd.ninja/_nuxt/img/logo-ua.7e20ab7.jpg
1.1 kB URL new.lewd.ninja/_nuxt/img/logo-ua.7e20ab7.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 52x52, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 403e7442c3c2839afa6095cda1cdbb9a
c12e8b590d3175cf9fc7e5a701cf92591a1426ae
27d1831d37effaf126fe1b39d331066dbfec7d170382748388e173b7182e7fa3
GET /_nuxt/img/logo-ua.7e20ab7.jpg HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p; google-analytics_v4_fizD__engagementStart=1701382994954; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=731870639; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=876c0ad4-3186-4323-802f-5bddcff44946; google-analytics_v4_fizD__let=1701382994954
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:16 GMT
content-type: image/webp
content-length: 1104
access-control-allow-origin: *, *
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=15392
content-disposition: inline; filename="logo-ua.webp"
etag: "3c20-dHSo1DWAvkOyrIz36Z/bk71G2qI"
last-modified: 2023-11-03T22:39:56.891Z
server-timing: -;dur=0;desc="Generate"
vary: Accept
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: max-age=2678400
cf-cache-status: HIT
age: 146857
accept-ranges: bytes
server: cloudflare
cf-ray: 82e67e703abd0b31-OSL
alt-svc: h3=":443"; ma=86400
xxx.lewd.ninja/changelog
204 No Content 0 B IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /changelog HTTP/1.1
Host: xxx.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Referer: https://new.lewd.ninja/
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 30 Nov 2023 22:23:16 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
x-easter: L1
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 82e67e70697f5696-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
c.lwd.lcdn.to/images/anim/MjAzMTE4NC1kcmFnb24tYmFsbC1hbmRyb2lkLTE4LWFuYWwtYW5pbWF0ZWQ=.jpg
24 kB URL c.lwd.lcdn.to/images/anim/MjAzMTE4NC1kcmFnb24tYmFsbC1hbmRyb2lkLTE4LWFuYWwtYW5pbWF0ZWQ=.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 640x360, components 3\012- data
Hash 52c5bc63f2aa1ee7ffb1c47425ba5021
0f03d80ecb5cb95402a4e14f80e8ee9ff66cd168
68ba65dad7918e8c21a7f86e8416bf5f6e8a035cea28545e7cc8d183b40e09d5
GET /images/anim/MjAzMTE4NC1kcmFnb24tYmFsbC1hbmRyb2lkLTE4LWFuYWwtYW5pbWF0ZWQ=.jpg HTTP/1.1
Host: c.lwd.lcdn.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 30 Nov 2023 22:23:16 GMT
Content-Type: image/jpeg
Content-Length: 24082
Connection: keep-alive
Last-Modified: Thu, 06 Sep 2018 11:15:10 GMT
ETag: "5b910c3e-5e12"
X-Cache-Status: HIT
Accept-Ranges: bytes
c.lwd.lcdn.to/images/anim/MjAzMTE2OC1kcmFnb24tYmFsbC1hbmRyb2lkLTE4LWFzcy1hbmltYXRlZA==.jpg
12 kB URL c.lwd.lcdn.to/images/anim/MjAzMTE2OC1kcmFnb24tYmFsbC1hbmRyb2lkLTE4LWFzcy1hbmltYXRlZA==.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 640x360, components 3\012- data
Hash 2572e7a29e96aaa398721a32d42285f0
52876a0423f669e640ef1d9b922421e5a27e7d15
46d54a01dad458817fe31a24afbec46799ff801faf7e5514699bef9ec498d34a
GET /images/anim/MjAzMTE2OC1kcmFnb24tYmFsbC1hbmRyb2lkLTE4LWFzcy1hbmltYXRlZA==.jpg HTTP/1.1
Host: c.lwd.lcdn.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 30 Nov 2023 22:23:16 GMT
Content-Type: image/jpeg
Content-Length: 11780
Connection: keep-alive
Last-Modified: Thu, 06 Sep 2018 11:14:42 GMT
ETag: "5b910c22-2e04"
X-Cache-Status: HIT
Accept-Ranges: bytes
c.lwd.lcdn.to/images/anim/MjA2ODQ2OS1kcmFnb24tYmFsbC1hbmRyb2lkLTE4LTJnaXJscy0zZA==.jpg
49 kB URL c.lwd.lcdn.to/images/anim/MjA2ODQ2OS1kcmFnb24tYmFsbC1hbmRyb2lkLTE4LTJnaXJscy0zZA==.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 1280x720, components 3\012- data
Hash 3b6dae66cf36584bcb7116b3d14f809e
8cc506180fc3f96c0b456c4859723fe2f6439177
c79bcfa8ced866b10eef6e361621ccfcc1072430e856ef92fcd760ab012e8a1f
GET /images/anim/MjA2ODQ2OS1kcmFnb24tYmFsbC1hbmRyb2lkLTE4LTJnaXJscy0zZA==.jpg HTTP/1.1
Host: c.lwd.lcdn.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 30 Nov 2023 22:23:16 GMT
Content-Type: image/jpeg
Content-Length: 49342
Connection: keep-alive
Last-Modified: Thu, 06 Sep 2018 11:54:08 GMT
ETag: "5b911560-c0be"
X-Cache-Status: HIT
Accept-Ranges: bytes
c.lwd.lcdn.to/images/anim/MjA5Mzk0OC1kcmFnb24tYmFsbC10b3dhLTFnaXJsLTNk.jpg
200 OK 47 kB URL GET HTTP/1.1 c.lwd.lcdn.to/images/anim/MjA5Mzk0OC1kcmFnb24tYmFsbC10b3dhLTFnaXJsLTNk.jpg
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerLet's Encrypt
Subjectc.lwd.lcdn.to
Fingerprint7B:7C:DB:A5:AC:7D:D3:BE:4A:33:AE:25:F7:04:6B:32:18:39:5A:E8
ValidityTue, 28 Nov 2023 16:34:54 GMT - Mon, 26 Feb 2024 16:34:53 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 1920x1080, components 3\012- data
Hash 941bb69e116e42badfef5001d51d2502
9ec209c5cec47f839cfb2c2e74d14d71b28e2960
72c92140319133aab8b9bb12696a0b5116e681a1fcb5b159d506075910d9fb40
GET /images/anim/MjA5Mzk0OC1kcmFnb24tYmFsbC10b3dhLTFnaXJsLTNk.jpg HTTP/1.1
Host: c.lwd.lcdn.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 30 Nov 2023 22:23:16 GMT
Content-Type: image/jpeg
Content-Length: 47449
Connection: keep-alive
Last-Modified: Thu, 06 Sep 2018 11:52:12 GMT
ETag: "5b9114ec-b959"
X-Cache-Status: HIT
Accept-Ranges: bytes
c.lwd.lcdn.to/images/anim/NjI4MTg4NS1kcmFnb24tYmFsbC1wYW4tZHJhZ29uLWJhbGwtMWJveS1hbmltYXRlZA==.jpg
200 OK 101 kB URL GET HTTP/1.1 c.lwd.lcdn.to/images/anim/NjI4MTg4NS1kcmFnb24tYmFsbC1wYW4tZHJhZ29uLWJhbGwtMWJveS1hbmltYXRlZA==.jpg
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerLet's Encrypt
Subjectc.lwd.lcdn.to
Fingerprint7B:7C:DB:A5:AC:7D:D3:BE:4A:33:AE:25:F7:04:6B:32:18:39:5A:E8
ValidityTue, 28 Nov 2023 16:34:54 GMT - Mon, 26 Feb 2024 16:34:53 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.134.100", baseline, precision 8, 800x900, components 3\012- data
Size 101 kB (100644 bytes)
Hash fe0b65b5a246ef99bfebfda10e6e4fc7
758bebe646cfa37068e383537227c6277b1f28e1
97a636603c9f0a48d04454d87540185f78f53e7a0037fbe06a4f4bc84c4211f2
GET /images/anim/NjI4MTg4NS1kcmFnb24tYmFsbC1wYW4tZHJhZ29uLWJhbGwtMWJveS1hbmltYXRlZA==.jpg HTTP/1.1
Host: c.lwd.lcdn.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 30 Nov 2023 22:23:16 GMT
Content-Type: image/jpeg
Content-Length: 100644
Connection: keep-alive
Last-Modified: Sat, 25 Jun 2022 00:17:10 GMT
ETag: "62b65406-18924"
X-Cache-Status: HIT
Accept-Ranges: bytes
v.lwd.lcdn.to/NTUwOTMzMS1iYXViZWxsZS1vb2Zyb3dkeS0xYm95LTIwMjE=.mp4
206 Partial Content 114 kB URL GET HTTP/1.1 v.lwd.lcdn.to/NTUwOTMzMS1iYXViZWxsZS1vb2Zyb3dkeS0xYm95LTIwMjE=.mp4
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerLet's Encrypt
Subjectc.lwd.lcdn.to
Fingerprint7B:7C:DB:A5:AC:7D:D3:BE:4A:33:AE:25:F7:04:6B:32:18:39:5A:E8
ValidityTue, 28 Nov 2023 16:34:54 GMT - Mon, 26 Feb 2024 16:34:53 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 114 kB (113711 bytes)
Hash 57592b6583cd1af9eff20f34bcab07ac
a1b669e2f8bba1c33952c16aef6c70e7f5e4bc41
a81d2d154e8d2f509c5638a52fc184af6b6386ea2167f3e2296425796544b3f9
GET /NTUwOTMzMS1iYXViZWxsZS1vb2Zyb3dkeS0xYm95LTIwMjE=.mp4 HTTP/1.1
Host: v.lwd.lcdn.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 30 Nov 2023 22:23:16 GMT
Content-Type: video/mp4
Content-Length: 113711
Connection: keep-alive
Last-Modified: Fri, 31 Dec 2021 05:24:38 GMT
ETag: "61ce9416-1bc2f"
X-Cache-Status: HIT
Content-Range: bytes 0-113710/113711
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 13:41:11 GMT
expires: Fri, 29 Nov 2024 13:41:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 31326
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=643057
1.5 kB URL poweredby.jads.co/adshow.php?adzone=643057
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (395), with CRLF, LF line terminators
Hash f1e7be706300af38ac10001c2f249b85
0c7dd5d92be21ba4fc8ca78ad98f2809144c65bc
d5dbfe02fd4fe9c574c968ccd3f2d34ce9ad3afe758c831f6666c47adaf2516d
GET /adshow.php?adzone=643057 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 30 Nov 2023 22:23:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=eff1fea409fec2c00c1e6ff944286914; expires=Fri, 29-Nov-2024 22:23:17 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps1411=1; expires=Fri, 01-Dec-2023 22:23:17 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjQzMjI5MTtpOjE3MDE2NDIxOTc7fQ%3D%3D; expires=Sun, 03-Dec-2023 22:23:17 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 03-Dec-2023 22:23:17 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
cdn.tsyndicate.com/sdk/v1/bi.js
200 OK 3.1 kB URL GET HTTP/2 cdn.tsyndicate.com/sdk/v1/bi.js
IP
Requested by https://a.labadena.com/api/spots/454102?p=1&s1=%subid1%&kw=
Certificate IssuerSectigo Limited
Subjectcdn.tsyndicate.com
FingerprintB6:87:8F:D6:E3:48:CF:61:4E:55:B9:6B:66:FC:B2:13:7F:A0:0D:BA
ValidityWed, 14 Jun 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type C source, ASCII text, with very long lines (7708)
Hash 132db549c9f97232cccb62af9f2156b9
27a33f324e81bb08d48875a20ef18d1f22d90af9
566f0492535dba4934209ea2b08a9ee357f4c7febf4defc717e0cb1d789bb0e5
GET /sdk/v1/bi.js HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.labadena.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 30 Nov 2023 22:23:17 GMT
content-type: application/javascript
content-length: 3084
server: nginx
last-modified: Mon, 02 Oct 2023 10:01:05 GMT
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
etag: W/"651a94e1-1e65"
content-encoding: gzip
age: 4873360
accept-ranges: bytes
X-Firefox-Spdy: h2
a.labadena.com/api/click/14045181009719873095?c=90
200 OK 0 B URL GET HTTP/2 a.labadena.com/api/click/14045181009719873095?c=90
IP
ASN #24940 Hetzner Online GmbH
Requested by https://a.labadena.com/api/spots/454102?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintD1:B7:B1:28:3A:1E:A1:04:6C:C3:7F:01:5F:80:CD:37:98:B7:BA:61
ValiditySat, 07 Oct 2023 23:27:10 GMT - Fri, 05 Jan 2024 23:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/14045181009719873095?c=90 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.labadena.com/api/spots/454102?p=1&s1=%subid1%&kw=
Cookie: nauid=wLhc9M7ebStCNnro25y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:17 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
i.jads.co/network/user11892/1411-1443472872.gif
38 kB URL i.jads.co/network/user11892/1411-1443472872.gif
IP
File type GIF image data, version 89a, 728 x 90\012- data
Hash 2a12b72b7fa8a2dd81fa1c4b118be110
00792c0291692bcd35b8e78444abb3a67427344a
d8eb2878c5829086741910516e18b29cca7f36e656cb55245e50c03289fa74e9
GET /network/user11892/1411-1443472872.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=eff1fea409fec2c00c1e6ff944286914; imps1411=1; juicy_data_1=YToxOntpOjQzMjI5MTtpOjE3MDE2NDIxOTc7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 30 Nov 2023 22:23:17 GMT
Connection: Keep-Alive
ETag: "1456943626"
Cache-Control: max-age=23023299
Content-Length: 38347
Content-Type: image/gif
Last-Modified: Wed, 02 Mar 2016 18:33:46 GMT
Accept-Ranges: bytes
X-HW: 1701382997.dop208.sk1.t,1701382997.cds209.sk1.shn,1701382997.cds209.sk1.c
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
25 kB URL www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (56398), with no line terminators
Hash eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 18:20:53 GMT
expires: Fri, 29 Nov 2024 18:20:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/css
vary: Accept-Encoding
age: 14544
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 13:41:11 GMT
expires: Fri, 29 Nov 2024 13:41:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 31326
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
lcdn.tsyndicate.com/sdk/v1/b.b.js
2.6 kB URL lcdn.tsyndicate.com/sdk/v1/b.b.js
IP
File type ASCII text, with very long lines (2590)
Hash b0a8eae036a72f605538b002e33f7023
5916ea9eeb0b676d6f44637601c40d0dc69542d1
7b9affd37cf01ac1a4c5f4a4ccb1936f0412ff771fb24e36a55682d2bf0ac554
GET /sdk/v1/b.b.js HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tsyndicate.com/
Cookie: ts_uid=025526ca-bc72-4798-8717-4b04fad17d01; bfq=APeIECNCx5YZMGbcmEGDRhcWIsYU3BLjoYgyE2PcgBGDho0cM3Lc6NJH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 22:23:18 GMT
content-type: application/javascript
content-length: 2640
server: nginx
last-modified: Tue, 25 Jul 2023 12:28:26 GMT
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
etag: W/"64bfbfea-1f37"
content-encoding: gzip
age: 10371586
accept-ranges: bytes
X-Firefox-Spdy: h2
a.labadena.com/api/users/10089315437755073095/2033800?fill=0&kw=free%20porn%20games,adult%20games,xxx%20games%20pc,xxx%20games%20android,porn%20game%20apk,incest%20games,rule%2034%20comics,incest%20comics,rule%2034%20webm,rule%2034%20animations,r34%20incest,r34%20comics,3dcg,2dcg,3dcg%20games,2dcg%20games,lewd%20games,xxx%20manga,sexy%20games
3.6 kB URL a.labadena.com/api/users/10089315437755073095/2033800?fill=0&kw=free%20porn%20games,adult%20games,xxx%20games%20pc,xxx%20games%20android,porn%20game%20apk,incest%20games,rule%2034%20comics,incest%20comics,rule%2034%20webm,rule%2034%20animations,r34%20incest,r34%20comics,3dcg,2dcg,3dcg%20games,2dcg%20games,lewd%20games,xxx%20manga,sexy%20games
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintD1:B7:B1:28:3A:1E:A1:04:6C:C3:7F:01:5F:80:CD:37:98:B7:BA:61
ValiditySat, 07 Oct 2023 23:27:10 GMT - Fri, 05 Jan 2024 23:27:09 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (1603)
Hash 2cb57b056ee052370b9b4398c696af29
7e044144a81b6558ad910dd56155b99cb8543d5d
bdb174687eb54baa15e1d797ef4e41e1f59a33ecbb77efb7445ec1cd364783e9
GET /api/users/10089315437755073095/2033800?fill=0&kw=free%20porn%20games,adult%20games,xxx%20games%20pc,xxx%20games%20android,porn%20game%20apk,incest%20games,rule%2034%20comics,incest%20comics,rule%2034%20webm,rule%2034%20animations,r34%20incest,r34%20comics,3dcg,2dcg,3dcg%20games,2dcg%20games,lewd%20games,xxx%20manga,sexy%20games HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://new.lewd.ninja/
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Cookie: nauid=wLhc9M7ebStCNnro25y3; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:18 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://new.lewd.ninja
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
15 kB URL fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.recaptcha.net
DNT: 1
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 10:04:07 GMT
expires: Fri, 29 Nov 2024 10:04:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 44351
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=se38m182o523
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.recaptcha.net
DNT: 1
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 11:28:20 GMT
expires: Fri, 29 Nov 2024 11:28:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 39298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP
Requested by https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=se38m182o523
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:43 GMT
expires: Wed, 06 Dec 2023 21:37:43 GMT
cache-control: public, max-age=604800
age: 89135
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
go.xlivrdr.com/smartpop/0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=477848&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&p1=4360760
0 B URL go.xlivrdr.com/smartpop/0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=477848&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&p1=4360760
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smartpop/0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11?userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&sourceId=477848&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&p1=4360760 HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tsyndicate.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 30 Nov 2023 22:23:18 GMT
content-length: 0
location: https://creative.mnaspm.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&mlView=1&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&usePreroll=0&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&webp=1
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: _var=887637.32246_OWQzYzU1NjU=; Path=/; Expires=Sat, 30 Dec 2023 22:23:18 GMT; HttpOnly; SameSite=Strict
__cflb=02DiuDFRFiBZBvMSLtrsn3TfoaR3cJpttSJ5NCsNmvuGg; SameSite=None; Secure; path=/; expires=Fri, 01-Dec-23 22:23:18 GMT; HttpOnly
server: cloudflare
cf-ray: 82e67e7d7e74568e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
tsyndicate.com/do2/ae5f1b7edc9f4a0d9d4a817f40cf2170/vast?subid=%25subid1%25&categories=free+porn+games%2Cadult+games%2Cxxx+games+pc%2Cxxx+games+android%2Cporn+game+apk%2Cincest+games%2Crule+34+comics%2Cincest+comics%2Crule+34+webm%2Crule+34+animations%2Cr34+incest%2Cr34+comics%2C3dcg%2C2dcg%2C3dcg+games%2C2dcg+games%2Clewd+games%2Cxxx+manga%2Csexy+games
193 kB URL tsyndicate.com/do2/ae5f1b7edc9f4a0d9d4a817f40cf2170/vast?subid=%25subid1%25&categories=free+porn+games%2Cadult+games%2Cxxx+games+pc%2Cxxx+games+android%2Cporn+game+apk%2Cincest+games%2Crule+34+comics%2Cincest+comics%2Crule+34+webm%2Crule+34+animations%2Cr34+incest%2Cr34+comics%2C3dcg%2C2dcg%2C3dcg+games%2C2dcg+games%2Clewd+games%2Cxxx+manga%2Csexy+games
IP
ASN #24940 Hetzner Online GmbH
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (5174)
Size 193 kB (193186 bytes)
Hash a29b7ac6a4e9f4355f7b6032df79114a
2252e4367625a6949c183a5802e7753781ffadfc
27b609abaa009cc60f5ebf03202e25c644df19094198470f394edba28f22ad02
GET /do2/ae5f1b7edc9f4a0d9d4a817f40cf2170/vast?subid=%25subid1%25&categories=free+porn+games%2Cadult+games%2Cxxx+games+pc%2Cxxx+games+android%2Cporn+game+apk%2Cincest+games%2Crule+34+comics%2Cincest+comics%2Crule+34+webm%2Crule+34+animations%2Cr34+incest%2Cr34+comics%2C3dcg%2C2dcg%2C3dcg+games%2C2dcg+games%2Clewd+games%2Cxxx+manga%2Csexy+games HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://new.lewd.ninja/
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Cookie: ts_uid=025526ca-bc72-4798-8717-4b04fad17d01; bfq=APeIECNCx5YZMGbcmEGDRhcWIsYU3BLjoYgyE2PcgBGDho0cM3Lc6NJH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:18 GMT
content-type: application/xml; charset=utf-8
access-control-allow-origin: https://new.lewd.ninja
access-control-allow-methods: POST, GET, HEAD
access-control-allow-headers: Accept, X-Requested-With, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Legacy
access-control-allow-credentials: true
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-api-version: 2
x-vast: 3.0
x-request-id: 1db4af1bf19f9eaa
set-cookie: ts_uid=025526ca-bc72-4798-8717-4b04fad17d01; expires=Thu, 30 May 2024 22:23:18 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
bfq=APeIECNCx5YZMGbcmEGDRhcWIsYU3BLjoYgyE2PcgBGDho0cM3Lc6NJH; expires=Fri, 01 Dec 2023 22:23:18 GMT; domain=.tsyndicate.com; path=/; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
u3y8v8u4.aucdn.net/library/161858/7610392ea6e68eeadb64277c5c306394afbe8eb4.mp4
2.0 MB URL u3y8v8u4.aucdn.net/library/161858/7610392ea6e68eeadb64277c5c306394afbe8eb4.mp4
IP
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 2.0 MB (2044961 bytes)
Hash a6c1b17ddd5e057770595670b8e1c8f4
7610392ea6e68eeadb64277c5c306394afbe8eb4
7cfc19a497c0f0f8e0a8fec7db39625fc1d7a8aa098e5b9fae939ac0797d30f5
GET /library/161858/7610392ea6e68eeadb64277c5c306394afbe8eb4.mp4 HTTP/1.1
Host: u3y8v8u4.aucdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Thu, 30 Nov 2023 22:23:19 GMT
content-type: video/mp4
content-length: 2044961
last-modified: Fri, 23 Jun 2023 21:05:23 GMT
etag: "64960913-1f3421"
accept-ch:
expires: Tue, 16 Jul 2024 21:13:45 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: MISS
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3TlyzAA
x-77-nzt-ray: c0a4cc286ffaeb43570b6965588f380d
x-accel-expires: @1721164425
x-accel-date: 1689628425
x-cache-lb: HIT
x-age-lb: 11754574
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 11754574
content-range: bytes 0-2044960/2044961
X-Firefox-Spdy: h2
a.labadena.com/api/click/18309456216879457095?c=60&data[error]=3
0 B URL a.labadena.com/api/click/18309456216879457095?c=60&data[error]=3
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintD1:B7:B1:28:3A:1E:A1:04:6C:C3:7F:01:5F:80:CD:37:98:B7:BA:61
ValiditySat, 07 Oct 2023 23:27:10 GMT - Fri, 05 Jan 2024 23:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/18309456216879457095?c=60&data[error]=3 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: nauid=wLhc9M7ebStCNnro25y3; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:19 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
a.labadena.com/api/click/18309456216879457095?c=60&data[error]=400
0 B URL a.labadena.com/api/click/18309456216879457095?c=60&data[error]=400
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintD1:B7:B1:28:3A:1E:A1:04:6C:C3:7F:01:5F:80:CD:37:98:B7:BA:61
ValiditySat, 07 Oct 2023 23:27:10 GMT - Fri, 05 Jan 2024 23:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/18309456216879457095?c=60&data[error]=400 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: nauid=wLhc9M7ebStCNnro25y3; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:19 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
s.orbsrv.com/vregister.php?a=vview&errorcode=3&idzone=4247832&dg=6184456-NOR-87974542-3-0-1-0-InLine
200 OK 20 B URL GET HTTP/1.1 s.orbsrv.com/vregister.php?a=vview&errorcode=3&idzone=4247832&dg=6184456-NOR-87974542-3-0-1-0-InLine
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerLet's Encrypt
Subjectorbsrv.com
FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34
ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /vregister.php?a=vview&errorcode=3&idzone=4247832&dg=6184456-NOR-87974542-3-0-1-0-InLine HTTP/1.1
Host: s.orbsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2265690b565e54a8.932623503689937805%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C4247832%7C87974542%7C0%7C%7C110%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Cnew.lewd.ninja%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701382998%7C212cb514a6dd1f3fb29e9b7bd15523be%7Cok%22%7D; zone-cap-4247832=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 30 Nov 2023 22:23:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s.orbsrv.com/vregister.php?a=vview&errorcode=400&idzone=4247832&dg=6184456-NOR-87974542-3-0-1-0-InLine
20 B URL s.orbsrv.com/vregister.php?a=vview&errorcode=400&idzone=4247832&dg=6184456-NOR-87974542-3-0-1-0-InLine
IP
ASN #60781 LeaseWeb Netherlands B.V.
Certificate IssuerLet's Encrypt
Subjectorbsrv.com
FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34
ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /vregister.php?a=vview&errorcode=400&idzone=4247832&dg=6184456-NOR-87974542-3-0-1-0-InLine HTTP/1.1
Host: s.orbsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2265690b565e54a8.932623503689937805%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C4247832%7C87974542%7C0%7C%7C110%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Cnew.lewd.ninja%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1701382998%7C212cb514a6dd1f3fb29e9b7bd15523be%7Cok%22%7D; zone-cap-4247832=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 30 Nov 2023 22:23:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&mlView=1&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&usePreroll=0&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&webp=1
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 22:23:19 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: eOt3YX0Nm2YrsRFghHjY+ldPpZhMsRS8Tg9HXo+sQY2MfQ8piotah5MMqRgsIwcNTLmVbQ2iqoU=
x-amz-request-id: Y49M74J1R1NSP1TJ
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.mnaspm.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 1141
expires: Fri, 01 Dec 2023 02:23:19 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e67e83afe956c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.recaptcha.net/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
200 OK 16 kB URL GET HTTP/3 www.recaptcha.net/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
IP
Requested by https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=se38m182o523
Certificate IssuerGoogle Trust Services LLC
Subjectmisc.google.com
Fingerprint60:EB:F2:B5:46:D7:39:12:3D:8C:D5:9A:EC:14:D4:9C:47:0F:DE:DE
ValidityMon, 23 Oct 2023 11:19:58 GMT - Mon, 15 Jan 2024 11:19:57 GMT
File type gzip compressed data\012- data
Hash b34e86ccdf4117e23a91ea6ac50a5f2d
7b875d40d5f0319e89e371800c3303750af8bccf
cecc8d83966e5b05658c0db3e99b5b0d32b4150aaf7928489cb132f8b404ca80
GET /recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=se38m182o523
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 30 Nov 2023 22:23:18 GMT
date: Thu, 30 Nov 2023 22:23:18 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XUEANjzI0aYWS0IHMjR5gWNHKUudEiJA0YLW7MwFFwBo0yOEzWEPEwTJ0xGcXQwEEmR1ExI8uMgUmDjI0YLXCEiSFSBtUyOWrUmGEjh5idPcnYoUjjRgwcD-HUEbMQRw0YXHvCgbNwKNWKIubAmaiDBlcYN2zAeDimDd2-N27gGBrWDMWHYty4WTgDrkwaNB62cYOR4QwZMgaLgLO5s40aNPDWiZERDR06cOboePHizBsXeNiksSOHjBwXY960eTGnTRg5sN_AeQEX8wyzNirLSBzjJZmbNnD6DSxDDBkzOWw0pRFmpRgzM2rEoB6-YVYz3svYGCPD4NQYP-rMQZiETA8yMcAAgxk3fBeDGDPVMN0YNeRgRn0wxDCGfDUQdZ4YOIjRVVcpjUGVhzR0FYN4ZryEw4gFkidhGFzUIaAMNszxRh1yTNhfD2UpNlSLL9rQRhltiMGff2EUsUQaOUABYw1yODFGHk5A0QIdMRABhxZnyHHGFWnUcUMcdLQwBw5M1OGGGk3Y4QQbT-gxhhNUyFHGEmjYkQMMUcphBxFOlOEdFF_YVgccbrCRxRs5tMEGEUHccNMaZ8hQRRtPNGFoFHnk0AIWRrhRhhR0iPHGfEPMsAYWZOBhRQtjBFpFEkRIUUUaPMIAIxwx4PhXYDDwJAIZwmUUhgtshCGGQWW4MWxwbfg6Rhh8bTEiCzPE0EVaNVLkAg7pqdQCDA6JcN5CMLgQIWGkfQFHtjqUG-FzXckQrp6HyfuQUqSRa25cItRRRxoZ2aoVjM-2IIZHIpWVAw5RmcUSDRzRYIZB65ERoa9pHCZCDjG4cKcLNMjgQkM0-CrHFxlnxLHH5YY8Mmq-1hFGRk28oUcabBT7Qg3mgoACl24Ae8ccIMAJQoDm7gAC0OIpjUfTIOjJELjmpgDCEUqt8cYLoQUYYYQgGJGGnGa8gccLAfLcK2FA6SCCE0_4-sbJY7T9dtwPsWF3EU74epAdX8jJBkU1JMatDTgI-JCWk-kgLw43PPT3F2LI0RZav5YBeBtvkLGQDDg8Jbkcb1D20BsK9YWt2XksFC4ZeTROhxx1lLF4GY657RpsstE2bLHHHqQscMK94OsdGVGVuK9oJG9ryQ_NoWdGpNMB7dwtmJlGmCO6QIaHMsgt_Vh9rddgDFQVLrndB33xPVW-0tEsQze8i4MMOeQQuQjyh0-__fjT34lEY5DAlUEvX4AWReoXg5kEcH-aSyAbEEKH1EkrciO6FkTEwJfMTawObJhIWvRGLsJ0BgZ9UEBAAA%3D%3D&s=a63616e3c7eb28d0dd1e4f9c5ed7d4105d872ec87acbca19b6f194ca0949edfe1701382997&w=t&r=1&d=983&priv=true
24 B URL pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XUEANjzI0aYWS0IHMjR5gWNHKUudEiJA0YLW7MwFFwBo0yOEzWEPEwTJ0xGcXQwEEmR1ExI8uMgUmDjI0YLXCEiSFSBtUyOWrUmGEjh5idPcnYoUjjRgwcD-HUEbMQRw0YXHvCgbNwKNWKIubAmaiDBlcYN2zAeDimDd2-N27gGBrWDMWHYty4WTgDrkwaNB62cYOR4QwZMgaLgLO5s40aNPDWiZERDR06cOboePHizBsXeNiksSOHjBwXY960eTGnTRg5sN_AeQEX8wyzNirLSBzjJZmbNnD6DSxDDBkzOWw0pRFmpRgzM2rEoB6-YVYz3svYGCPD4NQYP-rMQZiETA8yMcAAgxk3fBeDGDPVMN0YNeRgRn0wxDCGfDUQdZ4YOIjRVVcpjUGVhzR0FYN4ZryEw4gFkidhGFzUIaAMNszxRh1yTNhfD2UpNlSLL9rQRhltiMGff2EUsUQaOUABYw1yODFGHk5A0QIdMRABhxZnyHHGFWnUcUMcdLQwBw5M1OGGGk3Y4QQbT-gxhhNUyFHGEmjYkQMMUcphBxFOlOEdFF_YVgccbrCRxRs5tMEGEUHccNMaZ8hQRRtPNGFoFHnk0AIWRrhRhhR0iPHGfEPMsAYWZOBhRQtjBFpFEkRIUUUaPMIAIxwx4PhXYDDwJAIZwmUUhgtshCGGQWW4MWxwbfg6Rhh8bTEiCzPE0EVaNVLkAg7pqdQCDA6JcN5CMLgQIWGkfQFHtjqUG-FzXckQrp6HyfuQUqSRa25cItRRRxoZ2aoVjM-2IIZHIpWVAw5RmcUSDRzRYIZB65ERoa9pHCZCDjG4cKcLNMjgQkM0-CrHFxlnxLHH5YY8Mmq-1hFGRk28oUcabBT7Qg3mgoACl24Ae8ccIMAJQoDm7gAC0OIpjUfTIOjJELjmpgDCEUqt8cYLoQUYYYQgGJGGnGa8gccLAfLcK2FA6SCCE0_4-sbJY7T9dtwPsWF3EU74epAdX8jJBkU1JMatDTgI-JCWk-kgLw43PPT3F2LI0RZav5YBeBtvkLGQDDg8Jbkcb1D20BsK9YWt2XksFC4ZeTROhxx1lLF4GY657RpsstE2bLHHHqQscMK94OsdGVGVuK9oJG9ryQ_NoWdGpNMB7dwtmJlGmCO6QIaHMsgt_Vh9rddgDFQVLrndB33xPVW-0tEsQze8i4MMOeQQuQjyh0-__fjT34lEY5DAlUEvX4AWReoXg5kEcH-aSyAbEEKH1EkrciO6FkTEwJfMTawObJhIWvRGLsJ0BgZ9UEBAAA%3D%3D&s=a63616e3c7eb28d0dd1e4f9c5ed7d4105d872ec87acbca19b6f194ca0949edfe1701382997&w=t&r=1&d=983&priv=true
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 0959ba36d476b6dc1994ba3c678b07c4
d30b94da72daa02766965206a85b7e0356375f5e
897410b87e27e3dfba3a7d6caab315a5e69cc941bb96d91fc74878a9b051843a
GET /api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XUEANjzI0aYWS0IHMjR5gWNHKUudEiJA0YLW7MwFFwBo0yOEzWEPEwTJ0xGcXQwEEmR1ExI8uMgUmDjI0YLXCEiSFSBtUyOWrUmGEjh5idPcnYoUjjRgwcD-HUEbMQRw0YXHvCgbNwKNWKIubAmaiDBlcYN2zAeDimDd2-N27gGBrWDMWHYty4WTgDrkwaNB62cYOR4QwZMgaLgLO5s40aNPDWiZERDR06cOboePHizBsXeNiksSOHjBwXY960eTGnTRg5sN_AeQEX8wyzNirLSBzjJZmbNnD6DSxDDBkzOWw0pRFmpRgzM2rEoB6-YVYz3svYGCPD4NQYP-rMQZiETA8yMcAAgxk3fBeDGDPVMN0YNeRgRn0wxDCGfDUQdZ4YOIjRVVcpjUGVhzR0FYN4ZryEw4gFkidhGFzUIaAMNszxRh1yTNhfD2UpNlSLL9rQRhltiMGff2EUsUQaOUABYw1yODFGHk5A0QIdMRABhxZnyHHGFWnUcUMcdLQwBw5M1OGGGk3Y4QQbT-gxhhNUyFHGEmjYkQMMUcphBxFOlOEdFF_YVgccbrCRxRs5tMEGEUHccNMaZ8hQRRtPNGFoFHnk0AIWRrhRhhR0iPHGfEPMsAYWZOBhRQtjBFpFEkRIUUUaPMIAIxwx4PhXYDDwJAIZwmUUhgtshCGGQWW4MWxwbfg6Rhh8bTEiCzPE0EVaNVLkAg7pqdQCDA6JcN5CMLgQIWGkfQFHtjqUG-FzXckQrp6HyfuQUqSRa25cItRRRxoZ2aoVjM-2IIZHIpWVAw5RmcUSDRzRYIZB65ERoa9pHCZCDjG4cKcLNMjgQkM0-CrHFxlnxLHH5YY8Mmq-1hFGRk28oUcabBT7Qg3mgoACl24Ae8ccIMAJQoDm7gAC0OIpjUfTIOjJELjmpgDCEUqt8cYLoQUYYYQgGJGGnGa8gccLAfLcK2FA6SCCE0_4-sbJY7T9dtwPsWF3EU74epAdX8jJBkU1JMatDTgI-JCWk-kgLw43PPT3F2LI0RZav5YBeBtvkLGQDDg8Jbkcb1D20BsK9YWt2XksFC4ZeTROhxx1lLF4GY657RpsstE2bLHHHqQscMK94OsdGVGVuK9oJG9ryQ_NoWdGpNMB7dwtmJlGmCO6QIaHMsgt_Vh9rddgDFQVLrndB33xPVW-0tEsQze8i4MMOeQQuQjyh0-__fjT34lEY5DAlUEvX4AWReoXg5kEcH-aSyAbEEKH1EkrciO6FkTEwJfMTawObJhIWvRGLsJ0BgZ9UEBAAA%3D%3D&s=a63616e3c7eb28d0dd1e4f9c5ed7d4105d872ec87acbca19b6f194ca0949edfe1701382997&w=t&r=1&d=983&priv=true HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tsyndicate.com/
Cookie: ts_uid=025526ca-bc72-4798-8717-4b04fad17d01; bfq=APeIECNCx5YZMGbcmEGDRhcWIsYU3BLjoYgyE2PcgBGDho0cM3Lc6NJH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:19 GMT
content-type: text/plain; charset=utf-8
content-length: 24
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
a.labadena.com/api/click/483609699298775095?c=60&data[error]=3
0 B URL a.labadena.com/api/click/483609699298775095?c=60&data[error]=3
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintD1:B7:B1:28:3A:1E:A1:04:6C:C3:7F:01:5F:80:CD:37:98:B7:BA:61
ValiditySat, 07 Oct 2023 23:27:10 GMT - Fri, 05 Jan 2024 23:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/483609699298775095?c=60&data[error]=3 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: nauid=wLhc9M7ebStCNnro25y3; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:19 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
a.labadena.com/api/click/483609699298775095?c=60&data[error]=400
0 B URL a.labadena.com/api/click/483609699298775095?c=60&data[error]=400
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintD1:B7:B1:28:3A:1E:A1:04:6C:C3:7F:01:5F:80:CD:37:98:B7:BA:61
ValiditySat, 07 Oct 2023 23:27:10 GMT - Fri, 05 Jan 2024 23:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/483609699298775095?c=60&data[error]=400 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: nauid=wLhc9M7ebStCNnro25y3; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:19 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/error?errorcode=3&p=APeICDOGjggdMFgMhAPnIA0cMWTEUDimTUMdNGbcuGHDhkIxbtwclJGjhg0aNhKKoNPmYIwbMGLMwEEyBw6FLGW4hCmTZg6bJj2KgMNmzEGVY84c7aMgIA%3D%3D&s=53668527c6ca49d4d5d45d7bc71fb9eb1a293a4ebe675298ecca3e38568230211701382998
0 B URL pxl.tsyndicate.com/api/v1/error?errorcode=3&p=APeICDOGjggdMFgMhAPnIA0cMWTEUDimTUMdNGbcuGHDhkIxbtwclJGjhg0aNhKKoNPmYIwbMGLMwEEyBw6FLGW4hCmTZg6bJj2KgMNmzEGVY84c7aMgIA%3D%3D&s=53668527c6ca49d4d5d45d7bc71fb9eb1a293a4ebe675298ecca3e38568230211701382998
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v1/error?errorcode=3&p=APeICDOGjggdMFgMhAPnIA0cMWTEUDimTUMdNGbcuGHDhkIxbtwclJGjhg0aNhKKoNPmYIwbMGLMwEEyBw6FLGW4hCmTZg6bJj2KgMNmzEGVY84c7aMgIA%3D%3D&s=53668527c6ca49d4d5d45d7bc71fb9eb1a293a4ebe675298ecca3e38568230211701382998 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: ts_uid=025526ca-bc72-4798-8717-4b04fad17d01; bfq=APeIECNCx5YZMGbcmEGDRhcWIsYU3BLjoYgyE2PcgBGDho0cM3Lc6NJH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:19 GMT
content-length: 0
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/error?errorcode=400&p=APeICDOGjggdMFgMhAPnIA0cMWTEUDimTUMdNGbcuGHDhkIxbtwclJGjhg0aNhKKoNPmYIwbMGLMwEEyBw6FLGW4hCmTZg6bJj2KgMNmzEGVY84c7aMgIA%3D%3D&s=53668527c6ca49d4d5d45d7bc71fb9eb1a293a4ebe675298ecca3e38568230211701382998
200 OK 0 B URL GET HTTP/2 pxl.tsyndicate.com/api/v1/error?errorcode=400&p=APeICDOGjggdMFgMhAPnIA0cMWTEUDimTUMdNGbcuGHDhkIxbtwclJGjhg0aNhKKoNPmYIwbMGLMwEEyBw6FLGW4hCmTZg6bJj2KgMNmzEGVY84c7aMgIA%3D%3D&s=53668527c6ca49d4d5d45d7bc71fb9eb1a293a4ebe675298ecca3e38568230211701382998
IP
ASN #24940 Hetzner Online GmbH
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintF2:3C:80:FB:F4:C8:BF:02:DD:BF:23:DD:27:74:AB:0B:89:F6:13:5E
ValiditySun, 12 Nov 2023 09:06:58 GMT - Sat, 10 Feb 2024 09:06:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v1/error?errorcode=400&p=APeICDOGjggdMFgMhAPnIA0cMWTEUDimTUMdNGbcuGHDhkIxbtwclJGjhg0aNhKKoNPmYIwbMGLMwEEyBw6FLGW4hCmTZg6bJj2KgMNmzEGVY84c7aMgIA%3D%3D&s=53668527c6ca49d4d5d45d7bc71fb9eb1a293a4ebe675298ecca3e38568230211701382998 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: ts_uid=025526ca-bc72-4798-8717-4b04fad17d01; bfq=APeIECNCx5YZMGbcmEGDRhcWIsYU3BLjoYgyE2PcgBGDho0cM3Lc6NJH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:19 GMT
content-length: 0
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/elapsedtime?f=banner%20300x250&sc=d340cfc5138246688cb355c310b2a375&hn=a.labadena.com&et=234
200 OK 0 B URL GET HTTP/2 pxl.tsyndicate.com/api/v1/elapsedtime?f=banner%20300x250&sc=d340cfc5138246688cb355c310b2a375&hn=a.labadena.com&et=234
IP
ASN #24940 Hetzner Online GmbH
Requested by https://a.labadena.com/api/spots/454102?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintF2:3C:80:FB:F4:C8:BF:02:DD:BF:23:DD:27:74:AB:0B:89:F6:13:5E
ValiditySun, 12 Nov 2023 09:06:58 GMT - Sat, 10 Feb 2024 09:06:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v1/elapsedtime?f=banner%20300x250&sc=d340cfc5138246688cb355c310b2a375&hn=a.labadena.com&et=234 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.labadena.com/
Cookie: ts_uid=025526ca-bc72-4798-8717-4b04fad17d01; bfq=APeIECNCx5YZMGbcmEGDRhcWIsYU3BLjoYgyE2PcgBGDho0cM3Lc6NJH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:19 GMT
content-length: 0
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1701382950/121599269_webp
200 OK 12 kB URL GET HTTP/2 img.strpst.com/thumbs/1701382950/121599269_webp
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&mlView=1&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&usePreroll=0&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&webp=1
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7c44d42c8b52017680fd5a21556fa00e
07906c62d7f166f09067b9840ccc148066752c8c
a9c56b14d55b4851b2113cd72ed1213423c698656c9216569384152e97e2011f
GET /thumbs/1701382950/121599269_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 22:23:20 GMT
content-type: image/webp
content-length: 11540
etag: "7c44d42c8b52017680fd5a21556fa00e"
last-modified: Thu, 30 Nov 2023 22:21:23 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 57
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e67e860c46b4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
go.mnaspm.com/abc.gif?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Ftsyndicate.com%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A873%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A578%2C%22duration%22%3A69%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A579%2C%22duration%22%3A83%2C%22transferSize%22%3A80725%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A1221%2C%22duration%22%3A0%7D%5D&mh=1325916136
103 B URL go.mnaspm.com/abc.gif?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Ftsyndicate.com%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A873%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A578%2C%22duration%22%3A69%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A579%2C%22duration%22%3A83%2C%22transferSize%22%3A80725%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A1221%2C%22duration%22%3A0%7D%5D&mh=1325916136
IP
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Ftsyndicate.com%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A873%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A578%2C%22duration%22%3A69%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A579%2C%22duration%22%3A83%2C%22transferSize%22%3A80725%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A1221%2C%22duration%22%3A0%7D%5D&mh=1325916136 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:20 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtqFKBH2KiRQdzrXviqaxrJgupK4Q; SameSite=None; Secure; path=/; expires=Fri, 01-Dec-23 22:23:20 GMT; HttpOnly
server: cloudflare
cf-ray: 82e67e85f917b4fa-OSL
alt-svc: h3=":443"; ma=86400
slit.lewd.rip/api/users/453988?host=new.lewd.ninja&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fnew.lewd.ninja%2Fanimation%2F6281885-dragon-ball-pan-dragon-ball-1boy-animated&i=1&kw=free%20porn%20games%2Cadult%20games%2Cxxx%20games%20pc%2Cxxx%20games%20android%2Cporn%20game%20apk%2Cincest%20games%2Crule%2034%20comics%2Cincest%20comics%2Crule%2034%20webm%2Crule%2034%20animations%2Cr34%20incest%2Cr34%20comics%2C3dcg%2C2dcg%2C3dcg%20games%2C2dcg%20games%2Clewd%20games%2Cxxx%20manga%2Csexy%20games&s1=%25subid1%25&s2=%25subid2%25
385 B URL slit.lewd.rip/api/users/453988?host=new.lewd.ninja&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fnew.lewd.ninja%2Fanimation%2F6281885-dragon-ball-pan-dragon-ball-1boy-animated&i=1&kw=free%20porn%20games%2Cadult%20games%2Cxxx%20games%20pc%2Cxxx%20games%20android%2Cporn%20game%20apk%2Cincest%20games%2Crule%2034%20comics%2Cincest%20comics%2Crule%2034%20webm%2Crule%2034%20animations%2Cr34%20incest%2Cr34%20comics%2C3dcg%2C2dcg%2C3dcg%20games%2C2dcg%20games%2Clewd%20games%2Cxxx%20manga%2Csexy%20games&s1=%25subid1%25&s2=%25subid2%25
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (345)
Hash cef84fcf43dff5fc0857e1c5cca92d16
4b001bc2c8797b9d6ba50d61c8c3ffb28f46e237
ec5d9ee173c32cfd4020523c6e7b3000213fbec6aceae37433af39903e3b91a3
GET /api/users/453988?host=new.lewd.ninja&ev=211&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fnew.lewd.ninja%2Fanimation%2F6281885-dragon-ball-pan-dragon-ball-1boy-animated&i=1&kw=free%20porn%20games%2Cadult%20games%2Cxxx%20games%20pc%2Cxxx%20games%20android%2Cporn%20game%20apk%2Cincest%20games%2Crule%2034%20comics%2Cincest%20comics%2Crule%2034%20webm%2Crule%2034%20animations%2Cr34%20incest%2Cr34%20comics%2C3dcg%2C2dcg%2C3dcg%20games%2C2dcg%20games%2Clewd%20games%2Cxxx%20manga%2Csexy%20games&s1=%25subid1%25&s2=%25subid2%25 HTTP/1.1
Host: slit.lewd.rip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:18 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=ogJccu0co4eFC8OYaxI0; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
strip.chat/checkUrl
200 OK 15 B IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.mnaspm.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&mlView=1&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&usePreroll=0&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&webp=1
Certificate IssuerLet's Encrypt
Subjectstrip.chat
Fingerprint32:43:98:B3:F1:A4:7F:EA:CD:7E:ED:A8:AD:61:E3:B9:56:E7:03:A5
ValidityMon, 16 Oct 2023 04:48:18 GMT - Sun, 14 Jan 2024 04:48:17 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 7fb97eb7c8636552ad068f6d56b5ea34
b69679936779fb02503bc0fe1374a737cc762ecb
e78008828abaa93c4462e326ef384dcda1443352a0f24bdeedada6a6fdbfd1d5
GET /checkUrl HTTP/1.1
Host: strip.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://creative.mnaspm.com
alt-svc: h3=":443"; ma=2592000
content-type: application/json
date: Thu, 30 Nov 2023 22:23:20 GMT
content-length: 15
X-Firefox-Spdy: h2
go.mnaspm.com/event/ml
200 OK 123 B IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&mlView=1&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&usePreroll=0&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&webp=1
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type JSON data\012- , ASCII text
Hash a9fd749b5ef3a564ecfce36b417bf563
f911ba629819d7c043277150a6a659e650437a54
e62f4a457f75af537bcb618caad5e0bc1558b0887e027f90d8b0cd4dc0d67079
POST /event/ml HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 174
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:20 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtrtWofa23shHb53UTmD9sjY4comE; SameSite=None; Secure; path=/; expires=Fri, 01-Dec-23 22:23:20 GMT; HttpOnly
server: cloudflare
cf-ray: 82e67e875a0eb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
new.lewd.ninja/cdn-cgi/rum?
204 No Content 0 B URL POST HTTP/3 new.lewd.ninja/cdn-cgi/rum?
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 676
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p; google-analytics_v4_fizD__engagementStart=1701382994954; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=731870639; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=876c0ad4-3186-4323-802f-5bddcff44946; google-analytics_v4_fizD__let=1701382994954; naslvq=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 204 No Content
date: Thu, 30 Nov 2023 22:23:28 GMT
access-control-allow-origin: https://new.lewd.ninja
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 82e67eba48150b31-OSL
x-frame-options: DENY
x-content-type-options: nosniff
new.lewd.ninja/_nuxt/css/4fac9a6.css
200 OK 524 B URL GET HTTP/3 new.lewd.ninja/_nuxt/css/4fac9a6.css
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (524), with no line terminators
Hash 38e124de5cbaf1738a1f238c6d22cdab
065a1a4f9d6dfaf293c99c07bbd26c485b8eeb17
167650990d45b391dc8cb29cf9df85af21c7660b7f4d07f8ea20ec4e35046f9e
GET /_nuxt/css/4fac9a6.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"20c-BloaT51t+vKTyZwHu9JsSFuO6xc"
last-modified: 2023-11-03T22:39:56.927Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 677280
server: cloudflare
cf-ray: 82e67e615b870b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.labadena.com/api/spots/454102?p=1&s1=%subid1%&kw=
200 OK 13 kB URL GET HTTP/2 a.labadena.com/api/spots/454102?p=1&s1=%subid1%&kw=
IP
ASN #24940 Hetzner Online GmbH
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintD1:B7:B1:28:3A:1E:A1:04:6C:C3:7F:01:5F:80:CD:37:98:B7:BA:61
ValiditySat, 07 Oct 2023 23:27:10 GMT - Fri, 05 Jan 2024 23:27:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (710)
Hash 24abce962a03c14276e1159d7e14eaae
e465d1cd44bac2fa8678a2a7e29ba4a58a78fec4
8eab3beed44c507cbd7c6711046d242597a334ea491e2f2025c3b06f19584201
GET /api/spots/454102?p=1&s1=%subid1%&kw= HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: nauid=wLhc9M7ebStCNnro25y3
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:16 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
new.lewd.ninja/_nuxt/css/b511cb9.css
200 OK 1.9 kB URL GET HTTP/3 new.lewd.ninja/_nuxt/css/b511cb9.css
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (1909), with no line terminators
Hash 28d087fb09915af676bc6b1511c6f1ce
14cdd152d6594dff2cbbad2b0a37a5f5183d349b
8ae431d118279d9dfa133dab4ac66c0dd1818457bb9cdbc682c4e745d06d2731
GET /_nuxt/css/b511cb9.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:13 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"775-FM3RUtZZTf8su60rCjel9Rg9NJs"
last-modified: 2023-11-03T22:39:56.915Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 329528
server: cloudflare
cf-ray: 82e67e5e6a1a0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
creative.mnaspm.com/widgets/v4/Universal/main.672e6e87c69b0c60653e.css
200 OK 13 kB URL GET HTTP/3 creative.mnaspm.com/widgets/v4/Universal/main.672e6e87c69b0c60653e.css
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&mlView=1&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&usePreroll=0&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&webp=1
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type ASCII text, with very long lines (13396), with no line terminators
Hash d55b785d72863fbb8425a36b7d675ec2
546cda15b6fb2a67ce1f102dc82eefb6f749f9c3
a4d09f6a50b6d96e7f22ab12f406dcf44be0d815105018cc5c7f1105fbf597f7
GET /widgets/v4/Universal/main.672e6e87c69b0c60653e.css HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&mlView=1&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&usePreroll=0&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&webp=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:19 GMT
content-type: text/css
last-modified: Thu, 30 Nov 2023 11:58:38 GMT
etag: W/"656878ee-3454"
expires: Thu, 30 Nov 2023 22:23:27 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 2
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e67e80ac2eb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
new.lewd.ninja/_nuxt/css/1c9a4f3.css
200 OK 15 kB URL GET HTTP/3 new.lewd.ninja/_nuxt/css/1c9a4f3.css
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (8020)
Hash 7805289423de172f2e84eea70a2aeed8
1a86aeb0e639931489fc2ff7b6ddf79a2345390e
a51a46e4742b5d626fca63fc077dfe3718029c109e6952ca37a1e5fb6c9837bf
GET /_nuxt/css/1c9a4f3.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:13 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"3bfd-GoausOY5kxSJ/C/3tt33miNFOQ4"
last-modified: 2023-11-03T22:39:22.983Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 663662
server: cloudflare
cf-ray: 82e67e5e6a170b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
new.lewd.ninja/_nuxt/css/02955de.css
200 OK 2.2 kB URL GET HTTP/3 new.lewd.ninja/_nuxt/css/02955de.css
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (2186), with no line terminators
Hash 83a9bffffc2e0c9e35b5edab8d78d8ed
70933cb935781add2e4482de474872e70ba49d90
7b5854a9faed811e7ad0f95043d4b7d9a1b2bbeb87026f93ea135899de561baf
GET /_nuxt/css/02955de.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"886-fEe5pN/vgiDMb8mzQ7O9wsHy7gk"
last-modified: 2023-11-03T22:39:22.991Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 663663
server: cloudflare
cf-ray: 82e67e615b830b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
new.lewd.ninja/_nuxt/css/d188683.css
200 OK 287 B URL GET HTTP/3 new.lewd.ninja/_nuxt/css/d188683.css
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 191b325e961c3c13f93edd94f123917e
f5c26ffb76966c1f0cd4be008307fd6d2e37662a
95120f69629ffe32782c8bae4577871b92e6b8c5a84bcd5589f409014df446c2
GET /_nuxt/css/d188683.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"11f-9cJv+3aWbB8M1L4Agwf9bS43Zio"
last-modified: 2023-11-03T22:39:56.915Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 494995
server: cloudflare
cf-ray: 82e67e616b8f0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
go.mnaspm.com/app/domain-checker/get-check
200 OK 124 B URL GET HTTP/3 go.mnaspm.com/app/domain-checker/get-check
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&mlView=1&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&usePreroll=0&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&webp=1
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type ASCII text, with no line terminators
Hash 4b0b69cd7aef688e498bd709f89903a2
43079e32823805962d46e63aee8c0cc6b8b44a7b
adec4f12d8456d689ad5ac172bd759e394dba1e7ccd7b321f4e23f70470ab5f6
GET /app/domain-checker/get-check HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:19 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=0H28upDCGznfDm9XVE9Kb8v5TrfcnGC5aNGbec3XpeQ; SameSite=None; Secure; path=/; expires=Fri, 01-Dec-23 22:23:19 GMT; HttpOnly
server: cloudflare
cf-ray: 82e67e8578a3b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.google.com/recaptcha/api.js
200 OK 850 B URL GET HTTP/2 www.google.com/recaptcha/api.js
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type ASCII text, with very long lines (850), with no line terminators
Hash 57e10dcd72dd2953878092014eae522b
95ba7e48825c26c5d9395ef2edb73e790bce6fa7
c7b54326365940d062bce26ed41579eebcb4946a86ba280790b603926692bd59
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Thu, 30 Nov 2023 22:23:14 GMT
date: Thu, 30 Nov 2023 22:23:14 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
new.lewd.ninja/_nuxt/e3139c5.js
200 OK 4.9 kB URL GET HTTP/3 new.lewd.ninja/_nuxt/e3139c5.js
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (5192), with no line terminators
Hash 470148ea42a9e75f849b647e6f706976
ef10f68262607f586fc17dc2f62b5d305f546d95
e5a3597f29dc26de6f31b3242128f7d480fcde2f4902080f476025a53323dc3f
GET /_nuxt/e3139c5.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1316-0fwBvLCG+GYaK75mxOJd2TUyrCs"
last-modified: 2023-11-03T22:39:56.899Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 142482
server: cloudflare
cf-ray: 82e67e5e6a220b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.tapioni.com/adgpt.js
200 OK 2.0 kB IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:5F:F1:E0:0C:5E:00:4E:6A:BF:B1:5F:40:29:66:0E:3F:9C:24:5F
ValidityWed, 30 Aug 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (2128), with no line terminators
Hash 257d92a54d9c3ccd0a024d89ab4dfedf
5ca9822257e3aa7d6f0f01a58389662356671994
0766365877f7bad458befc202f2ad119e070213be926a664d532cb03599b2280
GET /adgpt.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 22:23:14 GMT
content-type: application/javascript
content-length: 818
last-modified: Thu, 30 Nov 2023 11:46:10 GMT
vary: Accept-Encoding
etag: "65687602-332"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 38074
accept-ranges: bytes
server: cloudflare
cf-ray: 82e67e665ff69900-ARN
X-Firefox-Spdy: h2
new.lewd.ninja/_nuxt/css/53580c5.css
200 OK 354 B URL GET HTTP/3 new.lewd.ninja/_nuxt/css/53580c5.css
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (354), with no line terminators
Hash 0edda3d4d8ac571787e9e06d9d6176da
a85b590184fc6ccbe9e692329bca6e25088daf50
3b103c55ed03bb3e2089ccf3c721e07295d431bb21db511913652cff72f3789b
GET /_nuxt/css/53580c5.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"162-qFtZAYT8bMvp5pIym8puJQiNr1A"
last-modified: 2023-11-03T22:39:22.983Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 404850
server: cloudflare
cf-ray: 82e67e615b890b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.labadena.com/api/users/10089315437755073095/2033805?fill=0&kw=free%20porn%20games,adult%20games,xxx%20games%20pc,xxx%20games%20android,porn%20game%20apk,incest%20games,rule%2034%20comics,incest%20comics,rule%2034%20webm,rule%2034%20animations,r34%20incest,r34%20comics,3dcg,2dcg,3dcg%20games,2dcg%20games,lewd%20games,xxx%20manga,sexy%20games
200 OK 2.0 kB URL GET HTTP/2 a.labadena.com/api/users/10089315437755073095/2033805?fill=0&kw=free%20porn%20games,adult%20games,xxx%20games%20pc,xxx%20games%20android,porn%20game%20apk,incest%20games,rule%2034%20comics,incest%20comics,rule%2034%20webm,rule%2034%20animations,r34%20incest,r34%20comics,3dcg,2dcg,3dcg%20games,2dcg%20games,lewd%20games,xxx%20manga,sexy%20games
IP
ASN #24940 Hetzner Online GmbH
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintD1:B7:B1:28:3A:1E:A1:04:6C:C3:7F:01:5F:80:CD:37:98:B7:BA:61
ValiditySat, 07 Oct 2023 23:27:10 GMT - Fri, 05 Jan 2024 23:27:09 GMT
File type XML document, ASCII text, with very long lines (2077), with no line terminators
Hash b8a2aaa49b872fc53ba5685482ceea22
e057e4a08c4952c8486681e5765e16974bc5ff07
ea12025bf015e36211d10ef2bb0b2ef439c7c56412c038e6248261fedb15b67c
GET /api/users/10089315437755073095/2033805?fill=0&kw=free%20porn%20games,adult%20games,xxx%20games%20pc,xxx%20games%20android,porn%20game%20apk,incest%20games,rule%2034%20comics,incest%20comics,rule%2034%20webm,rule%2034%20animations,r34%20incest,r34%20comics,3dcg,2dcg,3dcg%20games,2dcg%20games,lewd%20games,xxx%20manga,sexy%20games HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://new.lewd.ninja/
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Cookie: nauid=wLhc9M7ebStCNnro25y3; asgfp=e19e1989b72653a7152c87a7240d524a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:18 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://new.lewd.ninja
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
new.lewd.ninja/_nuxt/css/58cee63.css
200 OK 389 B URL GET HTTP/3 new.lewd.ninja/_nuxt/css/58cee63.css
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (389), with no line terminators
Hash 56a5485ddcdcc44d7a08a3d63ffbce43
edd4ab62de52984cf77d0a484d72733d6ad8708f
807aec1f916e8cfd01a35c5704972740c3728eebda257167f55a89decec738d3
GET /_nuxt/css/58cee63.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"185-7dSrYt5SmEz3fQpITXJzPWrYcI8"
last-modified: 2023-11-03T22:39:22.983Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 575280
server: cloudflare
cf-ray: 82e67e615b8a0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
vlcdn.tsyndicate.com/videos/1/e/18d4b5b8cb257220546fc6d01d89301c195d16/330x250.mp4
206 Partial Content 16 kB URL GET HTTP/2 vlcdn.tsyndicate.com/videos/1/e/18d4b5b8cb257220546fc6d01d89301c195d16/330x250.mp4
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerSectigo Limited
Subjectvlcdn.tsyndicate.com
Fingerprint1F:5F:CD:0C:ED:2D:5C:55:51:6E:02:EF:68:C7:7C:B3:8D:DB:D3:76
ValidityMon, 21 Aug 2023 00:00:00 GMT - Fri, 20 Sep 2024 23:59:59 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash 14f7e85d2c830cf8abe1f104af5e4e8e
07aea04ddfebc48c14be0ceda36f4be9048edb85
744d4069374df9b34ed917488687e2fc2131bb0fa8217a8a41c2868b49fbf39f
GET /videos/1/e/18d4b5b8cb257220546fc6d01d89301c195d16/330x250.mp4 HTTP/1.1
Host: vlcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: ts_uid=025526ca-bc72-4798-8717-4b04fad17d01; bfq=APeIECNCx5YZMGbcmEGDRhcWIsYU3BLjoYgyE2PcgBGDho0cM3Lc6NJH
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Thu, 30 Nov 2023 22:23:19 GMT
content-type: video/mp4
content-length: 16153
server: nginx
last-modified: Fri, 16 Sep 2022 13:51:09 GMT
etag: "63247f4d-3f19"
access-control-allow-origin: *
age: 9694266
content-range: bytes 0-16152/16153
access-control-allow-methods: HEAD,GET,OPTIONS
access-control-expose-headers: Server,Range,Content-Length,Content-Range
access-control-allow-headers: *
access-control-max-age: 31536000
access-control-allow-credentials: true
X-Firefox-Spdy: h2
go.mnaspm.com/app/domain-checker/check-result
204 No Content 0 B URL POST HTTP/3 go.mnaspm.com/app/domain-checker/check-result
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?action=sbSignupWithModel&campaignId=0344371630277140d4e6e843762bdf964d4ae7bf351771961595fbde6c2ada11&campaignType=smartpop&creativeId=d61a8beea3946d486612a3452b3d53ba84299ee51efd9260534d85230347af08&iterationId=765917&masterSmartpopId=1914&memberId=aEKi9P265rNcyNP-t1DpZgrgWiu7qt-s8LunjMvNlOzcNTreKhv90NPrvDNebdP_goupnlYo9mlDA74ekg2UmOMlYQy9-XFneRtbo6cC3kXdxV-c_gUIDRUi&mlView=1&p1=4360760&quality=240p&ruleId=17&smartpopId=1793&sourceId=477848&usePreroll=0&userId=d100f7df1b38527c59f2a01ce658dbfb8b696949c12c1469164f408167d4a1ca&variationId=32246&webp=1
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /app/domain-checker/check-result HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 174
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Thu, 30 Nov 2023 22:23:20 GMT
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtqG3jTHqF85wnSu1apyo4CxgMpQ4; SameSite=None; Secure; path=/; expires=Fri, 01-Dec-23 22:23:20 GMT; HttpOnly
server: cloudflare
cf-ray: 82e67e87fa8bb4fa-OSL
alt-svc: h3=":443"; ma=86400
new.lewd.ninja/flag/gb.svg
200 OK 2.1 kB URL GET HTTP/3 new.lewd.ninja/flag/gb.svg
IP
Requested by https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (2231), with no line terminators
Hash 633c3ded142537234d4702d7fbeb2e7b
fb867fffb53404bcecdac895e3b1e9f42cecbc4d
bfee694cd5d0f957f9640e8cd96eb542c87bbdcae9bb3f41d4a58066a330c238
GET /flag/gb.svg HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/animation/6281885-dragon-ball-pan-dragon-ball-1boy-animated
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=0H28umQBjLg4nPDxub3vkrjj5PsbRi1MwVx7mjgqF4p; google-analytics_v4_fizD__engagementStart=1701382994954; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=731870639; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=876c0ad4-3186-4323-802f-5bddcff44946; google-analytics_v4_fizD__let=1701382994954
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 22:23:15 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"836-I2OrVz9r14mjCOc2QVLcXqUawps"
last-modified: 2023-11-03T22:39:56.971Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 316678
server: cloudflare
cf-ray: 82e67e6bc8d30b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
tsyndicate.com/iframes2/d340cfc5138246688cb355c310b2a375.html?&adb=0&clientjs=1&w=1280&h=1024&tz=0
200 OK 7.1 kB URL GET HTTP/2 tsyndicate.com/iframes2/d340cfc5138246688cb355c310b2a375.html?&adb=0&clientjs=1&w=1280&h=1024&tz=0
IP
ASN #24940 Hetzner Online GmbH
Requested by https://a.labadena.com/api/spots/454102?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintF2:3C:80:FB:F4:C8:BF:02:DD:BF:23:DD:27:74:AB:0B:89:F6:13:5E
ValiditySun, 12 Nov 2023 09:06:58 GMT - Sat, 10 Feb 2024 09:06:57 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7195), with no line terminators
Hash a03fa63ed41e22005aa55884393bd84b
5727d3f93b5733c9bf33f54bf4c08cd91602d66a
fdc8b65996f783bca09282979ba591492fd35b7aeddf0d777d634c0afac774ef
GET /iframes2/d340cfc5138246688cb355c310b2a375.html?&adb=0&clientjs=1&w=1280&h=1024&tz=0 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.labadena.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 22:23:17 GMT
content-type: text/html; charset=utf-8
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-api-version: 2
link: <https://lcdn.tsyndicate.com/sdk/v1/b.b.js>; rel=preload; as=script
x-request-id: 29a20c95f5ea0fc4
set-cookie: ts_uid=025526ca-bc72-4798-8717-4b04fad17d01; expires=Thu, 30 May 2024 22:23:17 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
bfq=APeIECNCx5YZMGbcmEGDRhcWIsYU3BLjoYgyE2PcgBGDho0cM3Lc6NJH; expires=Fri, 01 Dec 2023 22:23:17 GMT; domain=.tsyndicate.com; path=/; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
172.67.5.10
146.19.173.65
135.181.208.216
185.94.236.245
136.243.51.205
45.131.145.132
104.18.51.106
185.76.9.14
0.0.0.0