r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2882
Expires: Thu, 02 Feb 2023 21:10:05 GMT
Date: Thu, 02 Feb 2023 20:22:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15740
Expires: Fri, 03 Feb 2023 00:44:23 GMT
Date: Thu, 02 Feb 2023 20:22:03 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 19:36:07 GMT
content-type: application/json
age: 2756
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
hentai-img.com/image/unseenharbinger-giants-and-the-city-5-german--english/
301 Moved Permanently 162 B URL HTTP/1.1 hentai-img.com/image/unseenharbinger-giants-and-the-city-5-german--english/
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /image/unseenharbinger-giants-and-the-city-5-german--english/ HTTP/1.1
Host: hentai-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 20:22:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://hentai-img.com/image/unseenharbinger-giants-and-the-city-5-german--english/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WOTHOhaQ2sPCo65HgvWMJYgOCvxI6D%2FrZwZI3N2t41rnyvJMmSleZHwX%2BoklxkNH9Yr2tqmcIr2XOu914sMSIkZviW8At%2BJVBA%2FumijzogrtAaWngq7Dfgc0u%2B4M4j%2FGVw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935a2fbeabb23ca-LHR
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18763
Expires: Fri, 03 Feb 2023 01:34:46 GMT
Date: Thu, 02 Feb 2023 20:22:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: OHGyUnDoUwtoERO3R6wR9eGI5EhzQZTs5GERffi169Lo/FJAiSRfdvpu5/36GSeZRuuZ+T8zAOiTgvWmN5r7mg==
x-amz-request-id: AQNWHFSGNGEB3ZAG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 19:23:14 GMT
age: 3529
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 3a50a8c033be057bfb1fc9d177408117
8b1057f3dadf73e960a201bf9a1f2725512bc739
a02b864efb05819f949c88122cea4d05127a28fbbe19c789146fd0e86b399d23
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4191
Cache-Control: max-age=100476
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:03 GMT
Etag: "63daf088-117"
Expires: Sat, 04 Feb 2023 00:16:39 GMT
Last-Modified: Wed, 01 Feb 2023 23:06:48 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 279
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:22:03 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 20:07:19 GMT
age: 884
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3923
Expires: Thu, 02 Feb 2023 21:27:26 GMT
Date: Thu, 02 Feb 2023 20:22:03 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: k4TbqfUfa/un2a+pRdV1lQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MW9CZWQzp9sr7xb+rBYFQRCHaRk=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17065
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:22:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17065
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:22:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17065
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:22:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 46408
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H1HIK6zdv95V96NxqSfHCqYtDQNPZ9NLAwG5oM5mwRr3nAUR0BPxlg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:11 GMT
age: 79014
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 79390
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:46:26 GMT
age: 81339
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 79798
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86qoRJHXcrnBGi3REMF5q3ANzKdqEs5F3yFUBmiIt6SCbBVnhGe2Kw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:58:57 GMT
age: 80588
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 3a50a8c033be057bfb1fc9d177408117
8b1057f3dadf73e960a201bf9a1f2725512bc739
a02b864efb05819f949c88122cea4d05127a28fbbe19c789146fd0e86b399d23
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4193
Cache-Control: max-age=100476
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:05 GMT
Etag: "63daf088-117"
Expires: Sat, 04 Feb 2023 00:16:41 GMT
Last-Modified: Wed, 01 Feb 2023 23:06:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 7467986f34c5ff353e90c89203bfe13e
4da42b51cdd7c24121c2c545b803c6a85d37f44e
7431df115312bf7397da4c322dc8f69a1273875f21d6dcab87952eada4fb6fd1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3536
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:05 GMT
Etag: "63daf345-117"
Last-Modified: Thu, 02 Feb 2023 19:23:09 GMT
Server: ECS (amb/6B74)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hentai-img.com/image/unseenharbinger-giants-and-the-city-5-german--english/
200 OK 12 kB URL HTTP/2 hentai-img.com/image/unseenharbinger-giants-and-the-city-5-german--english/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (581)
Hash db37dc244a2d36ed1ea1e1ff523272b6
f2c83ec8636cc65a8453a605a167b8213b170330
6879ba54934d5ed4087eab5f3917ba17bc2d40ffd8f102ba53bb96c18d4ba17e
GET /image/unseenharbinger-giants-and-the-city-5-german--english/ HTTP/1.1
Host: hentai-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, User-Agent, User-Agent
set-cookie: previous_detail=480575; path=/
adsense=pc-ca-ipp%3D1675369325; expires=Sun, 05-Feb-2023 08:22:05 GMT; Max-Age=216000; path=/; domain=.hentai-img.com
pvcla=1; path=/
fastcgi-cache: MISS
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-cache: MISS, MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4tKsSooW%2FyuaUo8uRGPt8T2ffYL3emAzApimU2m5zdpmD6b2CmfHyRMwQUP0pzRzFfHXUNaYTpZG2cHCnElO4vcIHI%2FFOJ0j9yr%2FjmJUhYLF5%2BDBh0BURcu%2Bd1QKy8UQpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7935a2fe7bab06f5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 7467986f34c5ff353e90c89203bfe13e
4da42b51cdd7c24121c2c545b803c6a85d37f44e
7431df115312bf7397da4c322dc8f69a1273875f21d6dcab87952eada4fb6fd1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3536
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:05 GMT
Last-Modified: Thu, 02 Feb 2023 19:23:09 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtm.js?id=GTM-WK6ZNT
200 OK 48 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WK6ZNT
IP
File type ASCII text, with very long lines (3060)
Hash 639ed4e29814be682cbb255bab9a5af0
29bed3cce3430f22f36504d47c88ac79d5bf780c
59d4e93cb5d96e6d9bb908a09302cf17ba47c18a2c0ee90d356844e4923a5216
GET /gtm.js?id=GTM-WK6ZNT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 20:22:05 GMT
expires: Thu, 02 Feb 2023 20:22:05 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 19:29:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48009
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 6.6 kB IP
Hash 9b0f861f1ac83103e6f195efac3f1e70
ec35c88a9c52fc22bb7f1767c527096d505db278
5bb9473051ec0ade47a5a608d6a331b2f030ab456132d6f73cf6a41cc8d46fed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:22:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 14:35:30 GMT
Expires: Tue, 07 Feb 2023 14:35:29 GMT
Etag: "b22f0161eec4841bea2a7801749d1c99b4baa4cd"
Cache-Control: max-age=410603,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7935a30eea9b0b3d-OSL
ocsp.buypass.com/
200 OK 1.7 kB IP
ASN #20940 Akamai International B.V.
Hash 2517cf256e8cd97f8f72ff7eeab49609
f816c7d29145591601e87269b830f1b026d3209d
31f353245bb7226680e83eb6573425df94b29dc99a74642c0e5852ba5fd8f7b8
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 9fe617bf-6083-461b-bf7f-cc64fa611ea8
Content-Length: 1701
Date: Thu, 02 Feb 2023 20:22:05 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 471 B IP
Hash a464027d50a862a86d20780c8323c490
b22f0161eec4841bea2a7801749d1c99b4baa4cd
03bc1591d6ddb260350e0262d69e04ebf601448ee854b40cd712931bb302591a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:22:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 14:35:30 GMT
Expires: Tue, 07 Feb 2023 14:35:29 GMT
Etag: "b22f0161eec4841bea2a7801749d1c99b4baa4cd"
Cache-Control: max-age=410603,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7935a30e2fc4b505-OSL
poweredby.jads.co/js/jads.js
301 Moved Permanently 178 B URL HTTP/1.1 poweredby.jads.co/js/jads.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 02 Feb 2023 20:22:06 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
File type ASCII text, with very long lines (3758), with no line terminators
Hash 558e1b61fc513016183a3812938e79fb
5f72ea61a2aad8f7a0956321d3fd8524db70eddf
a79f8c0aabfc2d1d45e4df2a86ca9172d292b08987f7a9d5c10bd10abf3aef54
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hentai-img.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:06 GMT
Content-Type: application/x-javascript
Last-Modified: Mon, 21 Nov 2022 05:24:20 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"637b0b84-eae"
Content-Encoding: gzip
ocsp.sectigo.com/
200 OK 1.0 kB IP
Hash 681a40548e0cedf3ca36c226cf10cd2d
c792a50a51a111ef73fb15452cd81bc783a6a390
a4fef40de12967dc307d73043dee3be983004908d4121ced0f36e13d7fb6f1a2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:22:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 14:35:30 GMT
Expires: Tue, 07 Feb 2023 14:35:29 GMT
Etag: "b22f0161eec4841bea2a7801749d1c99b4baa4cd"
Cache-Control: max-age=410602,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7935a30efbf1b4f3-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash a464027d50a862a86d20780c8323c490
b22f0161eec4841bea2a7801749d1c99b4baa4cd
03bc1591d6ddb260350e0262d69e04ebf601448ee854b40cd712931bb302591a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:22:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 14:35:30 GMT
Expires: Tue, 07 Feb 2023 14:35:29 GMT
Etag: "b22f0161eec4841bea2a7801749d1c99b4baa4cd"
Cache-Control: max-age=410602,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7935a30efce1b4ff-OSL
r3.o.lencr.org/
200 OK 1.8 kB IP
ASN #20940 Akamai International B.V.
Hash 78c01d8f178ca43e9f16131708be7b97
ba034118fe062e0ca66f423e7146110c9e2376c5
41da4268ac06486923bbc0694be8c19e098bc23c86025151c127bd1370100040
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "801B5B45DC1D863D1033E596D8746899CC1B8CB8EEF75013A1B1B6CF1CE06841"
Last-Modified: Tue, 31 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3197
Expires: Thu, 02 Feb 2023 21:15:23 GMT
Date: Thu, 02 Feb 2023 20:22:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 1.1 kB IP
ASN #20940 Akamai International B.V.
Hash 0a40869e37d3c238b20a3bcf425e0b0a
b2c3095d241c6d068677c3c1ffbbcd5e5bf016d0
9506af89b8bbd160426f80e21bfe9c3d61b57a779967a14e9d7c5f87d2553f3c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "801B5B45DC1D863D1033E596D8746899CC1B8CB8EEF75013A1B1B6CF1CE06841"
Last-Modified: Tue, 31 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3197
Expires: Thu, 02 Feb 2023 21:15:23 GMT
Date: Thu, 02 Feb 2023 20:22:06 GMT
Connection: keep-alive
dolefulasachasing.com/5e6875da5961e81ed9244698fd54f94d/invoke.js
200 OK 9.8 kB URL HTTP/1.1 dolefulasachasing.com/5e6875da5961e81ed9244698fd54f94d/invoke.js
IP
File type exported SGML document, ASCII text, with very long lines (26989), with no line terminators
Hash 0044305c2af6d7fb67152b3b4e7b894a
cca15e69df6661b54ddedbfa001f8f60559ea467
e379b4ea0e3326c9fb19df330628a28dd73b5f5394832d29fa5c64e28bb0e741
Analyzer Verdict Alert quad9 Sinkholed
GET /5e6875da5961e81ed9244698fd54f94d/invoke.js HTTP/1.1
Host: dolefulasachasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9c527895c757feafe6a1f34296417ce6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
dolefulasachasing.com/05/56/52/055652d312c99a6037d12337a6a1a7a4.js
200 OK 21 kB URL HTTP/1.1 dolefulasachasing.com/05/56/52/055652d312c99a6037d12337a6a1a7a4.js
IP
File type HTML document, ASCII text, with very long lines (60175), with no line terminators
Hash aede5c721507a6c0753d011ae8215cee
13a8c8887aa016badcc324e7568a9ee33c675232
82b4868a72dee0f698f8cc2675de961e6bbd839af42a301c4ac349ddb232595d
Analyzer Verdict Alert quad9 Sinkholed
GET /05/56/52/055652d312c99a6037d12337a6a1a7a4.js HTTP/1.1
Host: dolefulasachasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e0c0d1d9baa3109a24f11f540284a439
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
dolefulasachasing.com/7fd078e363f567e6039e684e541f9020/invoke.js
200 OK 9.8 kB URL HTTP/1.1 dolefulasachasing.com/7fd078e363f567e6039e684e541f9020/invoke.js
IP
File type exported SGML document, ASCII text, with very long lines (26989), with no line terminators
Hash ef467e13772e71cb265772802875f577
5b8e1bad1b9b92f07bf2d3ac327ec54b652d02bb
eccdf0e842f8a896d70c8040b9560cd47a7a5f9a23622967f261c47e990f2824
Analyzer Verdict Alert quad9 Sinkholed
GET /7fd078e363f567e6039e684e541f9020/invoke.js HTTP/1.1
Host: dolefulasachasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a5075c4494821e2834f25654f9915b5b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3f11c62617c2bee07a8ed3cf82151243
ba58aa99e6fda4e73216a5b6a382dfd4f1f5b33a
a0b39826bd54ed8244e2c90f71d51146feaba0b9100446256479344837c50228
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 20:22:06 GMT
Last-Modified: Thu, 02 Feb 2023 18:43:23 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: No6Sv7A9Vg2L7RuFvJfj2Y7O897yBnF-1VlzMIWTUl3WqPhZVNpIWg==
Age: 5924
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash cea3a9211c70419ecee8c81a7e8329fc
4e610e87017df70f2ca75efc31eb400d47259521
ea336cea04b34595f88f2da459cca6d9ee6288730478a315060dff9717fb9295
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://hentai-img.com
access-control-allow-credentials: true
set-cookie: uid_id2=17581b5b-a4e8-4fa5-a803-0bd5b5a7d6b3:2:1; expires=Sun, 30 Jan 2033 20:22:06 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
tgpsew.com/ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8=
200 OK 0 B URL HTTP/2 tgpsew.com/ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8=
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8= HTTP/1.1
Host: tgpsew.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hentai-img.com/
Origin: https://hentai-img.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 02 Feb 2023 20:22:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
X-Firefox-Spdy: h2
dolefulasachasing.com/5e6875da5961e81ed9244698fd54f94d/invoke.js
200 OK 9.8 kB URL HTTP/1.1 dolefulasachasing.com/5e6875da5961e81ed9244698fd54f94d/invoke.js
IP
File type exported SGML document, ASCII text, with very long lines (26989), with no line terminators
Hash 0044305c2af6d7fb67152b3b4e7b894a
cca15e69df6661b54ddedbfa001f8f60559ea467
e379b4ea0e3326c9fb19df330628a28dd73b5f5394832d29fa5c64e28bb0e741
Analyzer Verdict Alert quad9 Sinkholed
GET /5e6875da5961e81ed9244698fd54f94d/invoke.js HTTP/1.1
Host: dolefulasachasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ad20c45730c4efb2101d31709cffb7a9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
simplewebanalysis.com/stats
200 OK 111 B URL HTTP/2 simplewebanalysis.com/stats
IP
Hash 0c27f6b33236c55c41562ba7b1edac35
1e1666433963d33dfb9650b7835a2e156bd07159
2bff97eb34a21ff65007f580452043b093cd541ef986bdeaf65a7a2d5e0e039e
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://hentai-img.com
access-control-allow-credentials: true
set-cookie: uid_id2=af191cff-94a6-4841-b554-2342f99083b6:3:1; expires=Sun, 30 Jan 2033 20:22:06 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
tgpsew.com/ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8=
200 OK 0 B URL HTTP/2 tgpsew.com/ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8=
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8= HTTP/1.1
Host: tgpsew.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hentai-img.com/
Origin: https://hentai-img.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 02 Feb 2023 20:22:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash 069f0444a42e8056564ff2dfe0ae0263
4a89917318ef5075a6c6436aa6a89dc9d6664ab2
bd09b84dbf6c7126da1bff9a4ef902b26481a1193176f61542219c93a9a42e1f
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Cookie: uid_id2=af191cff-94a6-4841-b554-2342f99083b6:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://hentai-img.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
kgdvs9ov3l2aasw4nuts.com/get/1863026?zoneid=1863026&jp=_clnlvjeb4zz3yuoh55p87q&nojs=0&ix=0&abvar=1&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=7428146400480938
200 OK 1.4 kB URL HTTP/2 kgdvs9ov3l2aasw4nuts.com/get/1863026?zoneid=1863026&jp=_clnlvjeb4zz3yuoh55p87q&nojs=0&ix=0&abvar=1&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=7428146400480938
IP
File type ASCII text, with very long lines (5098), with no line terminators
Hash 4c115ec7dd9e9bf634447601bb2f58ee
a1eeff4d5378b725a8cfd3da87e1b25d7a8e829b
07d98f1a25b25d48c9b47ae5b2eae3409fb41ef5352f94759b0e29625d80c6cb
GET /get/1863026?zoneid=1863026&jp=_clnlvjeb4zz3yuoh55p87q&nojs=0&ix=0&abvar=1&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=7428146400480938 HTTP/1.1
Host: kgdvs9ov3l2aasw4nuts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:22:06 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=230202152214c4b79fdc6b4d8b840efb76f3; Path=/; Expires=Fri, 02 Feb 2024 20:22:06 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
dolefulasachasing.com/5e6875da5961e81ed9244698fd54f94d/invoke.js
200 OK 9.8 kB URL HTTP/1.1 dolefulasachasing.com/5e6875da5961e81ed9244698fd54f94d/invoke.js
IP
File type exported SGML document, ASCII text, with very long lines (27001), with no line terminators
Hash cd5c024033f6593af87a2b687c27d44a
a409b21ee8d2b5aacde2f71b911bd77d9df806cf
dedb979ca8fd6080fd8f8b8e8f5945358d4abbcc140ebb584e09189fc35f177e
Analyzer Verdict Alert quad9 Sinkholed
GET /5e6875da5961e81ed9244698fd54f94d/invoke.js HTTP/1.1
Host: dolefulasachasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7392ff6bd6d36b84bd9b2e7039a8fc3c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
tgpsew.com/ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8=
200 OK 0 B URL HTTP/2 tgpsew.com/ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8=
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8= HTTP/1.1
Host: tgpsew.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hentai-img.com/
Origin: https://hentai-img.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 02 Feb 2023 20:22:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=681607
200 OK 1.6 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=681607
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (386), with CRLF, LF line terminators
Hash 4366835efab6290d62a1e538c61f7aec
f4164a46c6b683693458873ab2561ff3b3d77ca2
894115100b3567fe10a05bedfdae5a34141d291cf1b68f6ea1233711147b4aea
GET /adshow.php?adzone=681607 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; expires=Fri, 02-Feb-2024 20:22:06 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps31238=1; expires=Fri, 03-Feb-2023 20:22:06 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjczMjQ4NDtpOjE2NzU2Mjg1MjY7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash 069f0444a42e8056564ff2dfe0ae0263
4a89917318ef5075a6c6436aa6a89dc9d6664ab2
bd09b84dbf6c7126da1bff9a4ef902b26481a1193176f61542219c93a9a42e1f
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Cookie: uid_id2=af191cff-94a6-4841-b554-2342f99083b6:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://hentai-img.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash 069f0444a42e8056564ff2dfe0ae0263
4a89917318ef5075a6c6436aa6a89dc9d6664ab2
bd09b84dbf6c7126da1bff9a4ef902b26481a1193176f61542219c93a9a42e1f
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Cookie: uid_id2=af191cff-94a6-4841-b554-2342f99083b6:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://hentai-img.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 4a29e21453de11a212a64c8cf0b24e7a
7d4c7d136aa6202a2e039e5dc1760e278f8bfd01
ae02de23f172e91055753e7155297b84945eaa056ede4841a9dc7975de6f04a3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 17:56:30 GMT
Expires: Mon, 06 Feb 2023 17:56:29 GMT
Etag: "7d4c7d136aa6202a2e039e5dc1760e278f8bfd01"
Cache-Control: max-age=336261,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7935a315ba490b3d-OSL
tgpsew.com/ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8=
200 OK 0 B URL HTTP/2 tgpsew.com/ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8=
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ntload?a=1&e=aeyJwaWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsImQiOiJoZW50YWktaW1nLmNvbSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8= HTTP/1.1
Host: tgpsew.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hentai-img.com/
Origin: https://hentai-img.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 02 Feb 2023 20:22:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
X-Firefox-Spdy: h2
i.jads.co/network/user500/27384-1528646807.gif
200 OK 492 kB URL HTTP/2 i.jads.co/network/user500/27384-1528646807.gif
IP
File type GIF image data, version 89a, 300 x 250\012- data
Size 492 kB (491831 bytes)
Hash 2430fb30bdaf2bfea334e37d2c15d43a
acad8be838ef0e4551c28f4d2f6b7024f55a5996
8d21f2cc1352430af76fd894e4c6082cc8d622892c7963a1b5298f2af32600d2
GET /network/user500/27384-1528646807.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; imps31238=1; juicy_data_1=YToxOntpOjczMjQ4NDtpOjE2NzU2Mjg1MjY7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
etag: "1528646807"
cache-control: max-age=11856080
content-length: 491831
content-type: image/gif
last-modified: Sun, 10 Jun 2018 16:06:47 GMT
accept-ranges: bytes
x-hw: 1675369327.dop018.sk1.t,1675369327.cds211.sk1.hn,1675369327.cds253.sk1.c
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=681608
200 OK 1.6 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=681608
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (362), with CRLF, LF line terminators
Hash a159a4efb2b191f82aee539b8a4b740e
6dfc4360fd5a62e560c8dc423731bda694659bb0
f82d5f88ac30cc1343c8d0990e80f289926b244791266d03034776da5646eab6
GET /adshow.php?adzone=681608 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; expires=Fri, 02-Feb-2024 20:22:06 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fcfded24631a1b18f0c0f0ca0d37a32d
40a4731eb28232749631636c3ad4924248cfe059
aea7c9ebb4fbbd587bb77a4d1b40674f72a1e573778272ab025186599ea60c2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEA7C9EBB4FBBD587BB77A4D1B40674F72A1E573778272AB025186599EA60C2A"
Last-Modified: Thu, 02 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11195
Expires: Thu, 02 Feb 2023 23:28:42 GMT
Date: Thu, 02 Feb 2023 20:22:07 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 278 B IP
Hash 0730e196e6912c19de0ac8d6ea1fc96c
a074c17d31cbaaefe1a6c4165a1a07c8d97380a7
38d1facacc14358f8fc4ea5f1a43d63113de292e9846e34841aaa6271f0767cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=124008
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:07 GMT
Etag: "63db5cd7-116"
Expires: Sat, 04 Feb 2023 06:48:55 GMT
Last-Modified: Thu, 02 Feb 2023 06:48:55 GMT
Server: nginx
Content-Length: 278
i.jads.co/ads/user57648/ad1496647-1580450297.gif
200 OK 332 kB URL HTTP/2 i.jads.co/ads/user57648/ad1496647-1580450297.gif
IP
File type GIF image data, version 89a, 160 x 600\012- data
Size 332 kB (332111 bytes)
Hash 2ebbf23f9a6a6463e84a19194a8a82ce
c9fb0c201a3087841a2fe922fa05b7c2f50bccb6
58b7d97529777bf6f4066963840faae9379ebbc7fc9b28586a52302583efa364
GET /ads/user57648/ad1496647-1580450297.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; imps31238=1; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
etag: "1580450298"
cache-control: max-age=10199160
content-length: 332111
content-type: image/gif
last-modified: Fri, 31 Jan 2020 05:58:18 GMT
accept-ranges: bytes
x-hw: 1675369327.dop018.sk1.t,1675369327.cds211.sk1.hn,1675369327.cds238.sk1.c
X-Firefox-Spdy: h2
cdn.tsyndicate.com/sdk/v1/bi.js
200 OK 3.3 kB URL HTTP/2 cdn.tsyndicate.com/sdk/v1/bi.js
IP
File type C source, ASCII text, with very long lines (7738)
Hash 8451e5dafd8a46d84dfb845e40aae4e3
678a14552fe93ad4a16459eb7ce62c03b46b33b8
ca130d9f8ce433253a9bd811632314ea5d20283d7e5c9117170523d21196268d
GET /sdk/v1/bi.js HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
content-type: application/javascript
content-length: 3312
last-modified: Fri, 16 Dec 2022 12:41:56 GMT
server: nginx
x-robots-tag: noindex, nofollow
content-encoding: gzip
vary: Accept-Encoding
etag: W/"639c6794-1e83"
age: 4174123
accept-ranges: bytes
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=681607
200 OK 1.6 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=681607
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (410), with CRLF, LF line terminators
Hash 8e6f990fb4d5b241c8bf830923093f82
aedb58210ac5a3ffb35da61a617844e968977401
03891dc1a71022033915d9478b2f4c09757e0854ad6f15a0707c87e831afcdcc
GET /adshow.php?adzone=681607 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; expires=Fri, 02-Feb-2024 20:22:06 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps53761=1; expires=Fri, 03-Feb-2023 20:22:07 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjE1MDg2ODc7aToxNjc1NjI4NTI2O30%3D; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
ocsp.digicert.com/
200 OK 278 B IP
Hash 0730e196e6912c19de0ac8d6ea1fc96c
a074c17d31cbaaefe1a6c4165a1a07c8d97380a7
38d1facacc14358f8fc4ea5f1a43d63113de292e9846e34841aaa6271f0767cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=124008
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:07 GMT
Etag: "63db5cd7-116"
Expires: Sat, 04 Feb 2023 06:48:55 GMT
Last-Modified: Thu, 02 Feb 2023 06:48:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
poweredby.jads.co/adshow.php?adzone=681607
200 OK 1.8 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=681607
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1615), with CRLF, LF line terminators
Hash 0706a805f3192f82a00c56e991f3f450
25a63f19a6906ec5cf1f196e4b09ed605c0d4f54
5e5b2db54c0d6ef97a14cd7d3deb379e5fe4d5623f91fcc4af15470f4ff2637b
GET /adshow.php?adzone=681607 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=0bd5cb54074daa34a89cae01aae47063; expires=Fri, 02-Feb-2024 20:22:07 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps53761=1; expires=Fri, 03-Feb-2023 20:22:07 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjE1MDg2ODc7aToxNjc1NjI4NTI3O30%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
i.jads.co/network/user179029/53761-1668593602-0306310001668593602.gif
200 OK 640 kB URL HTTP/2 i.jads.co/network/user179029/53761-1668593602-0306310001668593602.gif
IP
File type GIF image data, version 89a, 300 x 250\012- data
Size 640 kB (639483 bytes)
Hash 5d81c031b934f2b3a5b846d314eb9e76
3359f60046193b9eea54629cba7dd82c3bd35878
67e1be6c281a93250e688ecf589c4107c1815462ab9f2004ee14cb7e49c2563b
GET /network/user179029/53761-1668593602-0306310001668593602.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=0bd5cb54074daa34a89cae01aae47063; imps31238=1; juicy_data_1=YToxOntpOjE1MDg2ODc7aToxNjc1NjI4NTI3O30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps53761=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
etag: "1668593602"
cache-control: max-age=24820868
content-length: 639483
content-type: image/gif
last-modified: Wed, 16 Nov 2022 10:13:22 GMT
accept-ranges: bytes
x-hw: 1675369327.dop018.sk1.t,1675369327.cds211.sk1.hn,1675369327.cds251.sk1.c
X-Firefox-Spdy: h2
i.jads.co/1x1.gif
200 OK 43 B IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=0bd5cb54074daa34a89cae01aae47063; imps31238=1; juicy_data_1=YToxOntpOjE1MDg2ODc7aToxNjc1NjI4NTI3O30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps53761=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
etag: "1457030838"
cache-control: max-age=11855939
content-length: 43
content-type: image/gif
last-modified: Thu, 03 Mar 2016 18:47:18 GMT
accept-ranges: bytes
x-hw: 1675369327.dop018.sk1.t,1675369327.cds211.sk1.hn,1675369327.cds264.sk1.c
X-Firefox-Spdy: h2
subscribestormyapprobation.com/pixel/purst?dl=0&th=0&sc=0&rs=3755&rd=3755&fd=942&bv=22.10.v.9&tmpl=70
200 OK 0 B URL HTTP/1.1 subscribestormyapprobation.com/pixel/purst?dl=0&th=0&sc=0&rs=3755&rd=3755&fd=942&bv=22.10.v.9&tmpl=70
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=3755&rd=3755&fd=942&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: subscribestormyapprobation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
poweredby.jads.co/adshow.php?adzone=681607
200 OK 1.8 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=681607
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1615), with CRLF, LF line terminators
Hash b609f6ea27f4fe589de03185b8479090
3ed122e3398a0beb031f0eaba8bfbc2d63b7cac5
5201b057ebe708aea664bc0b0bd18882f848bc3c70cef14ceb72312504a04dc1
GET /adshow.php?adzone=681607 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; expires=Fri, 02-Feb-2024 20:22:06 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps47386=1; expires=Fri, 03-Feb-2023 20:22:06 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjEzMTk2ODM7aToxNjc1NjI4NTI2O30%3D; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
i.jads.co/network/user81419/47386-1642692305-0839407001642692305.gif
200 OK 95 kB URL HTTP/2 i.jads.co/network/user81419/47386-1642692305-0839407001642692305.gif
IP
File type GIF image data, version 89a, 300 x 250\012- data
Hash 86c41d07ae1bb1676c7a64d0b5ef44b2
eba7c41a1772c94efb7b89b1e40277741cbfc8fb
57c40ba7ac70b86f5f2f497595be8747d32ba1ca0f6cba6630ebbdb915b08238
GET /network/user81419/47386-1642692305-0839407001642692305.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; imps31238=1; juicy_data_1=YToxOntpOjEzMTk2ODM7aToxNjc1NjI4NTI2O30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps53761=1; imps47386=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
etag: "1642692305"
cache-control: max-age=11249860
content-length: 95260
content-type: image/gif
last-modified: Thu, 20 Jan 2022 15:25:05 GMT
accept-ranges: bytes
x-hw: 1675369327.dop018.sk1.t,1675369327.cds211.sk1.hn,1675369327.cds069.sk1.c
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 47d3156a01937914d3788651a5a1df4e
9f757e95fa9ba9ea3949d29f2617040b3088464a
95796fa7ec26c1f9f6f4d1503b0034405e323786758ae835de2ae53f6e378ec5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "95796FA7EC26C1F9F6F4D1503B0034405E323786758AE835DE2AE53F6E378EC5"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11081
Expires: Thu, 02 Feb 2023 23:26:48 GMT
Date: Thu, 02 Feb 2023 20:22:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 47d3156a01937914d3788651a5a1df4e
9f757e95fa9ba9ea3949d29f2617040b3088464a
95796fa7ec26c1f9f6f4d1503b0034405e323786758ae835de2ae53f6e378ec5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "95796FA7EC26C1F9F6F4D1503B0034405E323786758AE835DE2AE53F6E378EC5"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11081
Expires: Thu, 02 Feb 2023 23:26:48 GMT
Date: Thu, 02 Feb 2023 20:22:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16382f274c17c25978a5f3e291ef984b
1856f18164fbd4e355bc334d7b356249a8dcdbe3
f3e69b4a9c485b22ad35edda40c653b5b40f4477354e6c4554eb8ba60511547e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3E69B4A9C485B22AD35EDDA40C653B5B40F4477354E6C4554EB8BA60511547E"
Last-Modified: Thu, 02 Feb 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14712
Expires: Fri, 03 Feb 2023 00:27:19 GMT
Date: Thu, 02 Feb 2023 20:22:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d13039d250f1d021a465372a2f8c3736
c7de12a63c56f71f77cbd227cbe54cb89e522421
b8f3b9bb597d54fba374ddb7f5efd71b2e7b40beeca0ca76f9877a091d997b38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8F3B9BB597D54FBA374DDB7F5EFD71B2E7B40BEECA0CA76F9877A091D997B38"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11070
Expires: Thu, 02 Feb 2023 23:26:37 GMT
Date: Thu, 02 Feb 2023 20:22:07 GMT
Connection: keep-alive
inflectedminimalbits.com/watch.767873679365.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=17581b5b-a4e8-4fa5-a803-0bd5b5a7d6b3%3A2%3A1
307 Temporary Redirect 0 B URL HTTP/1.1 inflectedminimalbits.com/watch.767873679365.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=17581b5b-a4e8-4fa5-a803-0bd5b5a7d6b3%3A2%3A1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.767873679365.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=17581b5b-a4e8-4fa5-a803-0bd5b5a7d6b3%3A2%3A1 HTTP/1.1
Host: inflectedminimalbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hentai-img.com
Access-Control-Allow-Origin: https://hentai-img.com
Access-Control-Allow-Credentials: true
Location: https://inflectedminimalbits.com/watch.767873679365.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=17581b5b-a4e8-4fa5-a803-0bd5b5a7d6b3%3A2%3A1&shu=3d661b308373f218c7a7212be823d0539d5eff8c057c5d9ebe08730a8b819850bb774fb916a6fbd907f6b9013a9fc30863710c4815ee4b26731a9926d120b5a5fb70958d1cc7ce78bb397a7e24085533b4bb03fdbaf19681bd81f933cb897f688a&pst=1675369387&rmtc=t
Set-Cookie: u_pl=15475157; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.UkbBj3TCG-ToFwjz_zrqMaNGBsoJIjY-qKwrUIJpqGU; expires=Thu, 02 Feb 2023 20:23:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a036de353926915e21676b971acac6b9
Strict-Transport-Security: max-age=0; includeSubdomains
inflectedminimalbits.com/watch.905990109496.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1
307 Temporary Redirect 0 B URL HTTP/1.1 inflectedminimalbits.com/watch.905990109496.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.905990109496.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1 HTTP/1.1
Host: inflectedminimalbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hentai-img.com
Access-Control-Allow-Origin: https://hentai-img.com
Access-Control-Allow-Credentials: true
Location: https://inflectedminimalbits.com/watch.905990109496.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=be0d01bc437f552e178856d80873518f0c7959416a4584646de3a79b05500014174d397ee732380932df30dbec2d5222fc0ee841c670c4142cdc38f82ce398cd273e8359d37c8353a723b3e4425c6bb6ed5422584ac2fd6d953b04b929f1&pst=1675369387&rmtc=t
Set-Cookie: u_pl=15475157; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.UkbBj3TCG-ToFwjz_zrqMaNGBsoJIjY-qKwrUIJpqGU; expires=Thu, 02 Feb 2023 20:23:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8ae641574b863a1479385b7ed88c0a7f
Strict-Transport-Security: max-age=0; includeSubdomains
inflectedminimalbits.com/watch.65987506149.js?key=7fd078e363f567e6039e684e541f9020&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1
307 Temporary Redirect 0 B URL HTTP/1.1 inflectedminimalbits.com/watch.65987506149.js?key=7fd078e363f567e6039e684e541f9020&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.65987506149.js?key=7fd078e363f567e6039e684e541f9020&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1 HTTP/1.1
Host: inflectedminimalbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hentai-img.com
Access-Control-Allow-Origin: https://hentai-img.com
Access-Control-Allow-Credentials: true
Location: https://inflectedminimalbits.com/watch.65987506149.js?key=7fd078e363f567e6039e684e541f9020&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=8ee184bdf2437c0273ee4bba14747cc5628b93c0b6fd08773bd2a5683e96afd9b7ac839adab4c8e09ac80cb7cb57e70d5d75e2fccbeff01c5044c5c61774fe225396936103e9695441fb4815fcd9262ee3512c66c9249637ac2fa7e501c106&pst=1675369387&rmtc=t
Set-Cookie: u_pl=16448109; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.K_x_O-J1MjfXoE07Pd4URdBdYwJCXgZxKtmU6uiN70U; expires=Thu, 02 Feb 2023 20:23:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d0bacc4384805371e79509f159ed7813
Strict-Transport-Security: max-age=0; includeSubdomains
poweredby.jads.co/adshow.php?adzone=681607
200 OK 1.8 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=681607
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1615), with CRLF, LF line terminators
Hash b311f00eda1089f4785b5e478fd1644e
4157310f07afaeff5fb27ae3940f47182043b0b6
b8d70aa3cef474307eb965e36b90634173eeb9d479cd771edc04ce2a299a3579
GET /adshow.php?adzone=681607 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=0bd5cb54074daa34a89cae01aae47063; expires=Fri, 02-Feb-2024 20:22:07 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps47386=1; expires=Fri, 03-Feb-2023 20:22:07 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjEzMTk2ODM7aToxNjc1NjI4NTI3O30%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0e00e462bccaeda805dffe794afa2685
Strict-Transport-Security: max-age=0; includeSubdomains
helpedhandwritingintestine.com/watch.1054297057432.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1
307 Temporary Redirect 0 B URL HTTP/1.1 helpedhandwritingintestine.com/watch.1054297057432.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1054297057432.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1 HTTP/1.1
Host: helpedhandwritingintestine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.6
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hentai-img.com
Access-Control-Allow-Origin: https://hentai-img.com
Access-Control-Allow-Credentials: true
Location: https://helpedhandwritingintestine.com/watch.1054297057432.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=ecad18db6672ca62ad2afa91a0bde7916f1f8792ce29d76825a2a95c1404da354b28da84775275f0169f084f7d3b6f17a45c20d715716bcfd593573d75e2d6e023b24ca6d79454be396d00348d5d2be8642ea8316aa46cfac366ea6d9cfeb9&pst=1675369387&rmtc=t
Set-Cookie: u_pl=15475157; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.UkbBj3TCG-ToFwjz_zrqMaNGBsoJIjY-qKwrUIJpqGU; expires=Thu, 02 Feb 2023 20:23:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: aed8e3ff111dae546346073dace11c1b
Strict-Transport-Security: max-age=0; includeSubdomains
inflectedminimalbits.com/watch.767873679365.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=17581b5b-a4e8-4fa5-a803-0bd5b5a7d6b3%3A2%3A1&shu=3d661b308373f218c7a7212be823d0539d5eff8c057c5d9ebe08730a8b819850bb774fb916a6fbd907f6b9013a9fc30863710c4815ee4b26731a9926d120b5a5fb70958d1cc7ce78bb397a7e24085533b4bb03fdbaf19681bd81f933cb897f688a&pst=1675369387&rmtc=t
200 OK 2.5 kB URL HTTP/1.1 inflectedminimalbits.com/watch.767873679365.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=17581b5b-a4e8-4fa5-a803-0bd5b5a7d6b3%3A2%3A1&shu=3d661b308373f218c7a7212be823d0539d5eff8c057c5d9ebe08730a8b819850bb774fb916a6fbd907f6b9013a9fc30863710c4815ee4b26731a9926d120b5a5fb70958d1cc7ce78bb397a7e24085533b4bb03fdbaf19681bd81f933cb897f688a&pst=1675369387&rmtc=t
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (3165)
Hash a1b505420d6f1bbe5abafecf8ec2995d
1f2de4553cd0d0348556e55a5af620d8b87e44ac
3f9febc912367eabd646c9d67a72e78dc6ff9342174b47d4c5c85b9f1a99c924
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.767873679365.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=17581b5b-a4e8-4fa5-a803-0bd5b5a7d6b3%3A2%3A1&shu=3d661b308373f218c7a7212be823d0539d5eff8c057c5d9ebe08730a8b819850bb774fb916a6fbd907f6b9013a9fc30863710c4815ee4b26731a9926d120b5a5fb70958d1cc7ce78bb397a7e24085533b4bb03fdbaf19681bd81f933cb897f688a&pst=1675369387&rmtc=t HTTP/1.1
Host: inflectedminimalbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Referer: https://hentai-img.com/
Connection: keep-alive
Cookie: u_pl=15475157; ain=eyJhbGciOiJIUzI1NiJ9.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.UkbBj3TCG-ToFwjz_zrqMaNGBsoJIjY-qKwrUIJpqGU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hentai-img.com
Access-Control-Allow-Origin: https://hentai-img.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=17581b5b-a4e8-4fa5-a803-0bd5b5a7d6b3:2:1; expires=Thu, 09 Feb 2023 20:22:07 GMT; secure; SameSite=None
iprc8c4a3638634c7ceeea3d939fcce78a53=3569681; expires=Fri, 03 Feb 2023 00:22:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
pdhtkv5=true; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
uncs5=1; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 071cca5a63f68e267eb3158efe83e6da
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
inflectedminimalbits.com/watch.905990109496.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=be0d01bc437f552e178856d80873518f0c7959416a4584646de3a79b05500014174d397ee732380932df30dbec2d5222fc0ee841c670c4142cdc38f82ce398cd273e8359d37c8353a723b3e4425c6bb6ed5422584ac2fd6d953b04b929f1&pst=1675369387&rmtc=t
200 OK 2.5 kB URL HTTP/1.1 inflectedminimalbits.com/watch.905990109496.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=be0d01bc437f552e178856d80873518f0c7959416a4584646de3a79b05500014174d397ee732380932df30dbec2d5222fc0ee841c670c4142cdc38f82ce398cd273e8359d37c8353a723b3e4425c6bb6ed5422584ac2fd6d953b04b929f1&pst=1675369387&rmtc=t
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (3163)
Hash fc7a7c82ef966c73af8edf6fe5705a18
f250ad982fbf82079b4138eaa160dac56757e62b
c6a7f085f6fb5f22d5cc1d54804644a1894b0fc223e067c4e627526570aaf59d
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.905990109496.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=be0d01bc437f552e178856d80873518f0c7959416a4584646de3a79b05500014174d397ee732380932df30dbec2d5222fc0ee841c670c4142cdc38f82ce398cd273e8359d37c8353a723b3e4425c6bb6ed5422584ac2fd6d953b04b929f1&pst=1675369387&rmtc=t HTTP/1.1
Host: inflectedminimalbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Referer: https://hentai-img.com/
Connection: keep-alive
Cookie: u_pl=15475157; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTQ3NTE1NywiayI6IjVlNjg3NWRhNTk2MWU4MWVkOTI0NDY5OGZkNTRmOTRkIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMzI2ODE1LCJwaWQiOjE0MjQ1NiwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjo1LCJwdCI6NCwicGsiOiJrc2UzM3pwZyIsImNwa3MiOnsgIjI4IjoiZDc5Y2ZmZDNhMGQ1OWY2MTFiNzQyZjRkMWY2NjU4OWEifSwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjkwNzUzNDU3LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6Mzg5MTQsIm9uIjoiV2luZG93cyIsIm92IjoiMTAuMCIsImJpZCI6MTIwNjI1LCJibiI6IkZpcmVmb3giLCJidiI6IjEwNS4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vaGVudGFpLWltZy5jb20vaW1hZ2UvdW5zZWVuaGFyYmluZ2VyLWdpYW50cy1hbmQtdGhlLWNpdHktNS1nZXJtYW4tLWVuZ2xpc2gvIn19.UkbBj3TCG-ToFwjz_zrqMaNGBsoJIjY-qKwrUIJpqGU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hentai-img.com
Access-Control-Allow-Origin: https://hentai-img.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=af191cff-94a6-4841-b554-2342f99083b6:3:1; expires=Thu, 09 Feb 2023 20:22:07 GMT; secure; SameSite=None
iprc8c4a3638634c7ceeea3d939fcce78a53=3569681; expires=Fri, 03 Feb 2023 00:22:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
pdhtkv5=true; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
uncs5=1; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a49836c8777ba09996bca3f00070757b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
inflectedminimalbits.com/watch.65987506149.js?key=7fd078e363f567e6039e684e541f9020&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=8ee184bdf2437c0273ee4bba14747cc5628b93c0b6fd08773bd2a5683e96afd9b7ac839adab4c8e09ac80cb7cb57e70d5d75e2fccbeff01c5044c5c61774fe225396936103e9695441fb4815fcd9262ee3512c66c9249637ac2fa7e501c106&pst=1675369387&rmtc=t
200 OK 2.5 kB URL HTTP/1.1 inflectedminimalbits.com/watch.65987506149.js?key=7fd078e363f567e6039e684e541f9020&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=8ee184bdf2437c0273ee4bba14747cc5628b93c0b6fd08773bd2a5683e96afd9b7ac839adab4c8e09ac80cb7cb57e70d5d75e2fccbeff01c5044c5c61774fe225396936103e9695441fb4815fcd9262ee3512c66c9249637ac2fa7e501c106&pst=1675369387&rmtc=t
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (3178)
Hash 5acdeec566f3d2a5280d62b5749c33b5
8bdad1587eb203be097f1468f422aaee03f8b531
ea9ea95274194c82d029c8b4ed5981baae1186014cda0f8203e56eefac907907
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.65987506149.js?key=7fd078e363f567e6039e684e541f9020&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=8ee184bdf2437c0273ee4bba14747cc5628b93c0b6fd08773bd2a5683e96afd9b7ac839adab4c8e09ac80cb7cb57e70d5d75e2fccbeff01c5044c5c61774fe225396936103e9695441fb4815fcd9262ee3512c66c9249637ac2fa7e501c106&pst=1675369387&rmtc=t HTTP/1.1
Host: inflectedminimalbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Referer: https://hentai-img.com/
Connection: keep-alive
Cookie: u_pl=16448109; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjQ0ODEwOSwiayI6IjdmZDA3OGUzNjNmNTY3ZTYwMzllNjg0ZTU0MWY5MDIwIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMzI2ODE1LCJwaWQiOjE0MjQ1NiwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyNSwicHQiOjQsInBrIjoiY2NtaHRmcGdwIiwiY3BrcyI6eyAiMjkiOiIyN2QwYTdjNDg4YzUwZjJlOWY1ODdmNzdlYzAyN2NhMSJ9LCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9oZW50YWktaW1nLmNvbS9pbWFnZS91bnNlZW5oYXJiaW5nZXItZ2lhbnRzLWFuZC10aGUtY2l0eS01LWdlcm1hbi0tZW5nbGlzaC8ifX0.K_x_O-J1MjfXoE07Pd4URdBdYwJCXgZxKtmU6uiN70U
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hentai-img.com
Access-Control-Allow-Origin: https://hentai-img.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=af191cff-94a6-4841-b554-2342f99083b6:3:1; expires=Thu, 09 Feb 2023 20:22:07 GMT; secure; SameSite=None
iprc9dc4a0b575f008ee10ca3113d4791ee2=3569676; expires=Fri, 03 Feb 2023 00:22:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
pdhtkv25=true; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
uncs25=1; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2fa8a6a60d900a95289b7a0d0186a457
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
poweredby.jads.co/adshow.php?adzone=681607
200 OK 1.8 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=681607
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1615), with CRLF, LF line terminators
Hash a68badcc2cd9cc01d98d4cd5f47d96c4
228fd2631aced3615a42af6a048bb226585a7541
d516b9f35772a01a04de5bb93628b3a4851f9c8db52f680e2786766133777e8a
GET /adshow.php?adzone=681607 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=0bd5cb54074daa34a89cae01aae47063; expires=Fri, 02-Feb-2024 20:22:07 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps53761=1; expires=Fri, 03-Feb-2023 20:22:07 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjE1MDg2ODc7aToxNjc1NjI4NTI3O30%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
poweredby.jads.co/adshow.php?adzone=681607
200 OK 1.6 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=681607
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (410), with CRLF, LF line terminators
Hash 8e6f990fb4d5b241c8bf830923093f82
aedb58210ac5a3ffb35da61a617844e968977401
03891dc1a71022033915d9478b2f4c09757e0854ad6f15a0707c87e831afcdcc
GET /adshow.php?adzone=681607 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=0bd5cb54074daa34a89cae01aae47063; expires=Fri, 02-Feb-2024 20:22:07 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps53761=1; expires=Fri, 03-Feb-2023 20:22:07 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjE1MDg2ODc7aToxNjc1NjI4NTI3O30%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d1ede23ab1ddbc0d7fa930fd3810e49e
879f79b820606c514ae97d5a3c2be12533440a51
7ec120a673fc6ae1a147829269069666ef47b0258b832030906da7dc97ab2a14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7EC120A673FC6AE1A147829269069666EF47B0258B832030906DA7DC97AB2A14"
Last-Modified: Tue, 31 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8059
Expires: Thu, 02 Feb 2023 22:36:26 GMT
Date: Thu, 02 Feb 2023 20:22:07 GMT
Connection: keep-alive
helpedhandwritingintestine.com/watch.1054297057432.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=ecad18db6672ca62ad2afa91a0bde7916f1f8792ce29d76825a2a95c1404da354b28da84775275f0169f084f7d3b6f17a45c20d715716bcfd593573d75e2d6e023b24ca6d79454be396d00348d5d2be8642ea8316aa46cfac366ea6d9cfeb9&pst=1675369387&rmtc=t
200 OK 2.1 kB URL HTTP/1.1 helpedhandwritingintestine.com/watch.1054297057432.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=ecad18db6672ca62ad2afa91a0bde7916f1f8792ce29d76825a2a95c1404da354b28da84775275f0169f084f7d3b6f17a45c20d715716bcfd593573d75e2d6e023b24ca6d79454be396d00348d5d2be8642ea8316aa46cfac366ea6d9cfeb9&pst=1675369387&rmtc=t
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2590)
Hash 0ae4bebe4fe62ae9e90189254065fce8
9e8d45fba0994339f8ad1f8aff50c45d733d7631
48e74d9c850be28d32df43fd14ebf70e0116504923f2e6e2fdb91f52f749e72c
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1054297057432.js?key=5e6875da5961e81ed9244698fd54f94d&kw=%5B%22unseenharbinger%22%2C%22-%22%2C%22giants%22%2C%22and%22%2C%22the%22%2C%22city%22%2C%225%22%2C%22german%22%2C%22english%22%2C%22-%22%2C%22hentai%22%2C%22image%22%5D&refer=https%3A%2F%2Fhentai-img.com%2Fimage%2Funseenharbinger-giants-and-the-city-5-german--english%2F&tz=0&dev=e&res=12.1055&uuid=af191cff-94a6-4841-b554-2342f99083b6%3A3%3A1&shu=ecad18db6672ca62ad2afa91a0bde7916f1f8792ce29d76825a2a95c1404da354b28da84775275f0169f084f7d3b6f17a45c20d715716bcfd593573d75e2d6e023b24ca6d79454be396d00348d5d2be8642ea8316aa46cfac366ea6d9cfeb9&pst=1675369387&rmtc=t HTTP/1.1
Host: helpedhandwritingintestine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Referer: https://hentai-img.com/
Connection: keep-alive
Cookie: u_pl=15475157; ain=eyJhbGciOiJIUzI1NiJ9.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.UkbBj3TCG-ToFwjz_zrqMaNGBsoJIjY-qKwrUIJpqGU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 02 Feb 2023 20:22:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hentai-img.com
Access-Control-Allow-Origin: https://hentai-img.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=af191cff-94a6-4841-b554-2342f99083b6:3:1; expires=Thu, 09 Feb 2023 20:22:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
pdhtkv5=true; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
uncs5=1; expires=Fri, 03 Feb 2023 20:22:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8c0fa3bbabf362b3ab1bc0446aa0e0ab
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sectigo.com/
200 OK 472 B IP
Hash 031be4d46456a983025a51dbafe041b8
028f4f0edcd725d7a87e785c595cb695defeb31f
668963244fb14a5bced5a013c2f8f7ff3aeec27695d402b3c1e07ae528f4e11f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:22:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 03:56:20 GMT
Expires: Wed, 08 Feb 2023 03:56:19 GMT
Etag: "028f4f0edcd725d7a87e785c595cb695defeb31f"
Cache-Control: max-age=458650,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7935a31bfcd4b505-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 031be4d46456a983025a51dbafe041b8
028f4f0edcd725d7a87e785c595cb695defeb31f
668963244fb14a5bced5a013c2f8f7ff3aeec27695d402b3c1e07ae528f4e11f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:22:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 03:56:20 GMT
Expires: Wed, 08 Feb 2023 03:56:19 GMT
Etag: "028f4f0edcd725d7a87e785c595cb695defeb31f"
Cache-Control: max-age=458650,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7935a31bfeb0b4f3-OSL
lcdn.tsyndicate.com/sdk/v1/b.b.js
200 OK 2.8 kB URL HTTP/2 lcdn.tsyndicate.com/sdk/v1/b.b.js
IP
File type ASCII text, with very long lines (2590)
Hash 01c3ce239d639853ba1e41661c115938
704741ca41e890a26eef6190c2d61131ff294f56
9aabcddb7b91826c4b8bf721d77fa448ceba501616a38c6fe0d6c4f11091ed47
GET /sdk/v1/b.b.js HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsyndicate.com/
Cookie: ts_uid=0bf89d9e-17c1-4e23-8dfd-affbd20b19cd; bfq=APeIECNCx5YZMmjYiBEDRxcWIsYU3BLjoYgyE2PYuFGDRo0aN2Tc6NJH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:08 GMT
content-type: application/javascript
content-length: 2808
last-modified: Tue, 22 Feb 2022 13:07:15 GMT
server: nginx
x-robots-tag: noindex, nofollow
content-encoding: gzip
vary: Accept-Encoding
etag: W/"6214e003-1eb1"
age: 28635065
accept-ranges: bytes
X-Firefox-Spdy: h2
tsyndicate.com/iframes2/449e4fe3501746fda88f88df1f88ddf7.html?keywords=UnseenHarbinger,Giants,and,the,City,German,English,&subid=1863026-2407948&adb=0&clientjs=1&w=1280&h=1024&tz=0
200 OK 21 kB URL HTTP/2 tsyndicate.com/iframes2/449e4fe3501746fda88f88df1f88ddf7.html?keywords=UnseenHarbinger,Giants,and,the,City,German,English,&subid=1863026-2407948&adb=0&clientjs=1&w=1280&h=1024&tz=0
IP
ASN #24940 Hetzner Online GmbH
Hash c2d6115fc1c78980de4190f85fadabec
0883ed388ede41637d9c5226ddf9a96ef99089d3
bfe20e695d67dafe37a01ca87f1f7cad80fd09153075090fd9e7bfebc4c149f3
GET /iframes2/449e4fe3501746fda88f88df1f88ddf7.html?keywords=UnseenHarbinger,Giants,and,the,City,German,English,&subid=1863026-2407948&adb=0&clientjs=1&w=1280&h=1024&tz=0 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:22:07 GMT
content-type: text/html; charset=utf-8
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-api-version: 2
link: <https://lcdn.tsyndicate.com/sdk/v1/b.b.js>; rel=preload; as=script, <https://lcdn.tsyndicate.com/images/f/e/dde9ebe8976ed821840bcec39453a32d3a4ed2.gif>; rel=preload; as=image
x-request-id: 131c52c081ba52b8
set-cookie: ts_uid=0bf89d9e-17c1-4e23-8dfd-affbd20b19cd; expires=Wed, 02 Aug 2023 20:22:07 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
bfq=APeIECNCx5YZMmjYiBEDRxcWIsYU3BLjoYgyE2PYuFGDRo0aN2Tc6NJH; expires=Fri, 03 Feb 2023 20:22:07 GMT; domain=.tsyndicate.com; path=/; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=681607
200 OK 1.6 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=681607
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (410), with CRLF, LF line terminators
Hash 8e6f990fb4d5b241c8bf830923093f82
aedb58210ac5a3ffb35da61a617844e968977401
03891dc1a71022033915d9478b2f4c09757e0854ad6f15a0707c87e831afcdcc
GET /adshow.php?adzone=681607 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=0bd5cb54074daa34a89cae01aae47063; expires=Fri, 02-Feb-2024 20:22:07 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps53761=1; expires=Fri, 03-Feb-2023 20:22:07 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjE1MDg2ODc7aToxNjc1NjI4NTI3O30%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/bb/16/b7/bb16b71b76fc43a6abd135721b32a822/1658915518.png
200 OK 145 kB URL HTTP/2 cdn.cloudimagesb.com/cti/bb/16/b7/bb16b71b76fc43a6abd135721b32a822/1658915518.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 145 kB (145012 bytes)
Hash 620dee7dda3ab0a55fef5e66735e48e1
c03458e7950bed758e4352ec7a78bb434a3164b1
8552142726040854ba6a1d57037aa513e8cb424e3e5b96f017fb742f7c9255c3
GET /cti/bb/16/b7/bb16b71b76fc43a6abd135721b32a822/1658915518.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
content-type: image/png
content-length: 145012
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 09:52:06 GMT
etag: "62e10ac6-23674"
expires: Sat, 04 Feb 2023 20:22:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/18/f8/38/18f83825a2a74bc259a3fd10a1236848/1658915435.png
200 OK 185 kB URL HTTP/2 cdn.cloudimagesb.com/cti/18/f8/38/18f83825a2a74bc259a3fd10a1236848/1658915435.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 160 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 185 kB (185150 bytes)
Hash 69cbf6dd022575e7dcaa17248e7e4643
daf78102256bb6d153facc728e9fe73be02138e6
41110fdcc38e4d9358f19dd9440d766d798d159e2bc6dd69197321df9d1b9582
GET /cti/18/f8/38/18f83825a2a74bc259a3fd10a1236848/1658915435.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
content-type: image/png
content-length: 185150
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 09:50:43 GMT
etag: "62e10a73-2d33e"
expires: Sat, 04 Feb 2023 20:22:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/51/8a/76/518a76eae8ceeca92f53a8fb0aa53f71/1652893279.jpg
200 OK 123 kB URL HTTP/2 cdn.cloudimagesb.com/bi/51/8a/76/518a76eae8ceeca92f53a8fb0aa53f71/1652893279.jpg
IP
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:04:29 17:00:40], baseline, precision 8, 300x250, components 3\012- data
Size 123 kB (122567 bytes)
Hash 952943be2b8378749be401609c47fd7c
2b03d1109f8d684ac653d4755ed9c3b0c282aac2
e5995e0440c32086c26242561b68aff4faf1c9c18adcb2c66cc68f4349d43857
GET /bi/51/8a/76/518a76eae8ceeca92f53a8fb0aa53f71/1652893279.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:08 GMT
content-type: image/jpeg
content-length: 122567
server: nginx/1.17.6
last-modified: Wed, 18 May 2022 17:01:27 GMT
etag: "62852667-1dec7"
expires: Sat, 04 Feb 2023 20:22:08 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=681607
200 OK 1.6 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=681607
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (410), with CRLF, LF line terminators
Hash 8e6f990fb4d5b241c8bf830923093f82
aedb58210ac5a3ffb35da61a617844e968977401
03891dc1a71022033915d9478b2f4c09757e0854ad6f15a0707c87e831afcdcc
GET /adshow.php?adzone=681607 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; imps31238=1; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps53761=1; expires=Fri, 03-Feb-2023 20:22:07 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjE1MDg2ODc7aToxNjc1NjI4NTI3O30%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:07 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XggBFDhscwMVrYqCFGTAsaYXDcaIFjTI6VY8TUCJOjZY0yZMjIEPFwjpg0ZBTq2CIiBg4bM2DIsNFCBg0YN3LQwCGiy8MwdcZklElThkuTNGbQkHEyRo4wLMPUwNGiRo4ZNWzAmHHUDI4YPCGSsUPRxlgYD-HUEbOQLt2rcOAUllFRxBw4E3XQnTuj48MxbRTrqBGDhucZV8mYofhQjBs3i2nYiGH0YRs3GCXDqGkj8OvYnVnjeFhHDpvCNWDQ6AxYRJ2dOgbSoQNnjo4XL-TAISNGzho8Lsa8afOiSpsyb6C4SfLmiBUZYe60cVJFD5MmUIxgwUPDTBEccqjgWTKGBhEZSZwRhx1FpBFHHHDEQMcdPbyQhhsH4RGDC3CgAccPbpSBRw8xcFEHDErZUAcdbXzxHRlp1NFGD5x5FpYLMzi1mlEegrgUHXKEYYYZaYzxxRxv9DZGGT3IQQaOa9QY4ogl0lHGHHQAxaFfKsGg5FJMfmFQdW-sgVAPVOS4Y49T0BFGQl_IcKWIJGop2htytBEGHT0kBQMeMgS3ZpZACklkjB1-GKIeb2RY50YzVKamoEuNwUaPa0jZhBNTlCjEEkRMUccTTbxhxhJX1IEGDUuIYUYYaFRRxxts0aEGG3bIMcUNToQhYBxq1ECGWE7AYIUTctxwRQxLGMFGHUHEUAUReTgxBxJ6UEEFHTTggQcWQyClxBdvlKHHGEswQYUNYtiQBhVQyGrEGmc4QcYVS1QxRB5fzDAfEmcYEcMXZ1SRBBFSVJFGXmRslxFBbpiZRgtptHFGdgZfNudCW1RmlQhwyKHVZmW0AENtIpi6EAwugOiQCGPAUWLGG5MM4gw3PCSHHZot9VAZKbcxcskwnFxHHQMnB4OpOORARg4dx3DDGCHRUIYMM7AkGhkt6GiGGDoNbdYYZOSVhmYi5DBhDiSP5UJDNOQlxxdfZyS2C2S7YDbaedURRkad6pEGG2yE8UINJYOAwhUPFnzHHCA4QQUIMbi8AwiEu-HX43hMDsLMDPVccgogHIHzGm-8IANHIDYeAwhGpCFHGWa8gccLjQMOQ15jbCyCE0_kBecXtWeEe15s2F6EEwSXYccXq__GUA033IDDDDZsVJwcZ6CmQ54qPXTQ8dUthMNuImxv4htdX39UY2TI8UZhD70hFA2BqY9HHgvBL8LqoyWHxnLNPfcCwgpjmMMgxp283CEjHdlIXtCAQKWkrSczy4j6zEQHOLWgDm5IAx1EIgMXkIFpO9Ge7Q7yhQ92JC8k6ssNagC9t8ggZiIgEXJiYIMVtjBGzfNLaJD3JDhoKTI0tKENXAjDMIghMuFjHVbYMJHABG9kl4kNDPqggIAA&s=d854988e927aa148cdd3125b7d2d59b2cc9b5b0d508083505a8e2ac12920fbd71675369327&w=t&r=1&d=13&priv=false
200 OK 24 B URL HTTP/2 pxl.tsyndicate.com/api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XggBFDhscwMVrYqCFGTAsaYXDcaIFjTI6VY8TUCJOjZY0yZMjIEPFwjpg0ZBTq2CIiBg4bM2DIsNFCBg0YN3LQwCGiy8MwdcZklElThkuTNGbQkHEyRo4wLMPUwNGiRo4ZNWzAmHHUDI4YPCGSsUPRxlgYD-HUEbOQLt2rcOAUllFRxBw4E3XQnTuj48MxbRTrqBGDhucZV8mYofhQjBs3i2nYiGH0YRs3GCXDqGkj8OvYnVnjeFhHDpvCNWDQ6AxYRJ2dOgbSoQNnjo4XL-TAISNGzho8Lsa8afOiSpsyb6C4SfLmiBUZYe60cVJFD5MmUIxgwUPDTBEccqjgWTKGBhEZSZwRhx1FpBFHHHDEQMcdPbyQhhsH4RGDC3CgAccPbpSBRw8xcFEHDErZUAcdbXzxHRlp1NFGD5x5FpYLMzi1mlEegrgUHXKEYYYZaYzxxRxv9DZGGT3IQQaOa9QY4ogl0lHGHHQAxaFfKsGg5FJMfmFQdW-sgVAPVOS4Y49T0BFGQl_IcKWIJGop2htytBEGHT0kBQMeMgS3ZpZACklkjB1-GKIeb2RY50YzVKamoEuNwUaPa0jZhBNTlCjEEkRMUccTTbxhxhJX1IEGDUuIYUYYaFRRxxts0aEGG3bIMcUNToQhYBxq1ECGWE7AYIUTctxwRQxLGMFGHUHEUAUReTgxBxJ6UEEFHTTggQcWQyClxBdvlKHHGEswQYUNYtiQBhVQyGrEGmc4QcYVS1QxRB5fzDAfEmcYEcMXZ1SRBBFSVJFGXmRslxFBbpiZRgtptHFGdgZfNudCW1RmlQhwyKHVZmW0AENtIpi6EAwugOiQCGPAUWLGG5MM4gw3PCSHHZot9VAZKbcxcskwnFxHHQMnB4OpOORARg4dx3DDGCHRUIYMM7AkGhkt6GiGGDoNbdYYZOSVhmYi5DBhDiSP5UJDNOQlxxdfZyS2C2S7YDbaedURRkad6pEGG2yE8UINJYOAwhUPFnzHHCA4QQUIMbi8AwiEu-HX43hMDsLMDPVccgogHIHzGm-8IANHIDYeAwhGpCFHGWa8gccLjQMOQ15jbCyCE0_kBecXtWeEe15s2F6EEwSXYccXq__GUA033IDDDDZsVJwcZ6CmQ54qPXTQ8dUthMNuImxv4htdX39UY2TI8UZhD70hFA2BqY9HHgvBL8LqoyWHxnLNPfcCwgpjmMMgxp283CEjHdlIXtCAQKWkrSczy4j6zEQHOLWgDm5IAx1EIgMXkIFpO9Ge7Q7yhQ92JC8k6ssNagC9t8ggZiIgEXJiYIMVtjBGzfNLaJD3JDhoKTI0tKENXAjDMIghMuFjHVbYMJHABG9kl4kNDPqggIAA&s=d854988e927aa148cdd3125b7d2d59b2cc9b5b0d508083505a8e2ac12920fbd71675369327&w=t&r=1&d=13&priv=false
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 0959ba36d476b6dc1994ba3c678b07c4
d30b94da72daa02766965206a85b7e0356375f5e
897410b87e27e3dfba3a7d6caab315a5e69cc941bb96d91fc74878a9b051843a
GET /api/v1/p/p.js?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XggBFDhscwMVrYqCFGTAsaYXDcaIFjTI6VY8TUCJOjZY0yZMjIEPFwjpg0ZBTq2CIiBg4bM2DIsNFCBg0YN3LQwCGiy8MwdcZklElThkuTNGbQkHEyRo4wLMPUwNGiRo4ZNWzAmHHUDI4YPCGSsUPRxlgYD-HUEbOQLt2rcOAUllFRxBw4E3XQnTuj48MxbRTrqBGDhucZV8mYofhQjBs3i2nYiGH0YRs3GCXDqGkj8OvYnVnjeFhHDpvCNWDQ6AxYRJ2dOgbSoQNnjo4XL-TAISNGzho8Lsa8afOiSpsyb6C4SfLmiBUZYe60cVJFD5MmUIxgwUPDTBEccqjgWTKGBhEZSZwRhx1FpBFHHHDEQMcdPbyQhhsH4RGDC3CgAccPbpSBRw8xcFEHDErZUAcdbXzxHRlp1NFGD5x5FpYLMzi1mlEegrgUHXKEYYYZaYzxxRxv9DZGGT3IQQaOa9QY4ogl0lHGHHQAxaFfKsGg5FJMfmFQdW-sgVAPVOS4Y49T0BFGQl_IcKWIJGop2htytBEGHT0kBQMeMgS3ZpZACklkjB1-GKIeb2RY50YzVKamoEuNwUaPa0jZhBNTlCjEEkRMUccTTbxhxhJX1IEGDUuIYUYYaFRRxxts0aEGG3bIMcUNToQhYBxq1ECGWE7AYIUTctxwRQxLGMFGHUHEUAUReTgxBxJ6UEEFHTTggQcWQyClxBdvlKHHGEswQYUNYtiQBhVQyGrEGmc4QcYVS1QxRB5fzDAfEmcYEcMXZ1SRBBFSVJFGXmRslxFBbpiZRgtptHFGdgZfNudCW1RmlQhwyKHVZmW0AENtIpi6EAwugOiQCGPAUWLGG5MM4gw3PCSHHZot9VAZKbcxcskwnFxHHQMnB4OpOORARg4dx3DDGCHRUIYMM7AkGhkt6GiGGDoNbdYYZOSVhmYi5DBhDiSP5UJDNOQlxxdfZyS2C2S7YDbaedURRkad6pEGG2yE8UINJYOAwhUPFnzHHCA4QQUIMbi8AwiEu-HX43hMDsLMDPVccgogHIHzGm-8IANHIDYeAwhGpCFHGWa8gccLjQMOQ15jbCyCE0_kBecXtWeEe15s2F6EEwSXYccXq__GUA033IDDDDZsVJwcZ6CmQ54qPXTQ8dUthMNuImxv4htdX39UY2TI8UZhD70hFA2BqY9HHgvBL8LqoyWHxnLNPfcCwgpjmMMgxp283CEjHdlIXtCAQKWkrSczy4j6zEQHOLWgDm5IAx1EIgMXkIFpO9Ge7Q7yhQ92JC8k6ssNagC9t8ggZiIgEXJiYIMVtjBGzfNLaJD3JDhoKTI0tKENXAjDMIghMuFjHVbYMJHABG9kl4kNDPqggIAA&s=d854988e927aa148cdd3125b7d2d59b2cc9b5b0d508083505a8e2ac12920fbd71675369327&w=t&r=1&d=13&priv=false HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsyndicate.com/
Cookie: ts_uid=0bf89d9e-17c1-4e23-8dfd-affbd20b19cd; bfq=APeIECNCx5YZMmjYiBEDRxcWIsYU3BLjoYgyE2PYuFGDRo0aN2Tc6NJH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:22:08 GMT
content-type: text/plain; charset=utf-8
content-length: 24
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/elapsedtime?f=banner%20300x250&sc=449e4fe3501746fda88f88df1f88ddf7&hn=hentai-img.com&et=476
200 OK 0 B URL HTTP/2 pxl.tsyndicate.com/api/v1/elapsedtime?f=banner%20300x250&sc=449e4fe3501746fda88f88df1f88ddf7&hn=hentai-img.com&et=476
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v1/elapsedtime?f=banner%20300x250&sc=449e4fe3501746fda88f88df1f88ddf7&hn=hentai-img.com&et=476 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Cookie: ts_uid=0bf89d9e-17c1-4e23-8dfd-affbd20b19cd; bfq=APeIECNCx5YZMmjYiBEDRxcWIsYU3BLjoYgyE2PYuFGDRo0aN2Tc6NJH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:22:08 GMT
content-length: 0
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=818854
200 OK 1.9 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=818854
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (508), with CRLF, LF line terminators
Hash 085b6189d702bb9e091adfb3b422d256
106df2eac96ea8c3a62c9834b4d0604e7dedf797
640c449adf592b19bf6f8197fcba0bacabca6dd8ce80668d40f778208dbb1a3a
GET /adshow.php?adzone=818854 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; expires=Fri, 02-Feb-2024 20:22:06 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps203=1; expires=Fri, 03-Feb-2023 20:22:06 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
imps203=1; expires=Fri, 03-Feb-2023 20:22:06 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToyOntpOjYzMTM3MjtpOjE2NzU2Mjg1MjY7aTo2MzEzNzM7aToxNjc1NjI4NTI2O30%3D; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
kgdvs9ov3l2aasw4nuts.com/chicken.gif?z=1863026&pb=651d2d38bcf2ea92b3a7ba71123a98171675376526&psp=XmLqsyzT4tVF4FThlOkuBIL2JjjqtbP-4SvMFBsjoEo2UlbWme0cdo3h0T6mTIK__SN9aS4hVR97bcwCDy6SZKekUQipNv_TcqfVr3FQq13qkWbS_KBZ2crr32aOx0vOQ0tKRZb2i_qRq9M6LyO7R1O0B1lq_66ZG3HFnnd53fF07HkUIBdyss9vMAEkeo6d2hALTORX4WymssckGaKSh-NhoQ-i_Dsi0sjBSzGm6Kph_pT9GST8MDZHR7Bzws5lIsiPDmVaP9fzFFDo09I2FwvPh1mUfs58zNkoQtmeHtPuo2jdCg5CSH3aYfQTsb0eZSejr9f8E-cmHosYOV7QhsEbHNIyzM4TFLq4Evylo9lDs5wgkluEtKQEVXdcECuj58LhZVP5Y0JFtZtjG-pP5dk47SsEcguSRaORBUFh-T6UeX64ESv_hBiMgUFxnCYYDqKnWfWblUN_cobYWYUvMHjfWvLvn_3QuinKy1f1WjbpjhGyj8RsJ32CpXvoy9daH-C7LWBJVlxNWZHhJdscQC5_P3PXRJTID3GaFLcEo0qjnzEocHh2X_zKcfpB_oO8kbxAg_TtxHY1QMkuhxX8sjIzIi-3Si4ScHA9CTpJM8OK62tfHzhYi2dD_atH4gVSL9WHmA_LBQoOME6Yx2HlqDkaMl5YpEJ0iYLbAwYt5FFBXuIuhJHfNFN7WnOZAxJIQii7fdbhXjIH_D_uG9BnjdThbMV61p6EdGt-yej4-nbzBOJJfWbrzKFz-J-_etfCDHpK4atwLlzCYbMhe5-dIezzhb4SqqBk6cWdvDKBnJUKrPLzcp7xSZMN4SDGBDo1kpSF9UNI0h5Jz3IDmxKlDMoQvg_BK-gdehY_NecHJLz8uKxczsrDt1XiLzwUh5qBIKdFVlP5GU6q-XGnZ-6mv6nH_J6JnNFuqIEvApbKq9QVkO8OmSqwHHdMgrx40wpkgK0kiWqFPI7RFy6eSAKohnQt&abvar=1&os=0
200 OK 43 B URL HTTP/2 kgdvs9ov3l2aasw4nuts.com/chicken.gif?z=1863026&pb=651d2d38bcf2ea92b3a7ba71123a98171675376526&psp=XmLqsyzT4tVF4FThlOkuBIL2JjjqtbP-4SvMFBsjoEo2UlbWme0cdo3h0T6mTIK__SN9aS4hVR97bcwCDy6SZKekUQipNv_TcqfVr3FQq13qkWbS_KBZ2crr32aOx0vOQ0tKRZb2i_qRq9M6LyO7R1O0B1lq_66ZG3HFnnd53fF07HkUIBdyss9vMAEkeo6d2hALTORX4WymssckGaKSh-NhoQ-i_Dsi0sjBSzGm6Kph_pT9GST8MDZHR7Bzws5lIsiPDmVaP9fzFFDo09I2FwvPh1mUfs58zNkoQtmeHtPuo2jdCg5CSH3aYfQTsb0eZSejr9f8E-cmHosYOV7QhsEbHNIyzM4TFLq4Evylo9lDs5wgkluEtKQEVXdcECuj58LhZVP5Y0JFtZtjG-pP5dk47SsEcguSRaORBUFh-T6UeX64ESv_hBiMgUFxnCYYDqKnWfWblUN_cobYWYUvMHjfWvLvn_3QuinKy1f1WjbpjhGyj8RsJ32CpXvoy9daH-C7LWBJVlxNWZHhJdscQC5_P3PXRJTID3GaFLcEo0qjnzEocHh2X_zKcfpB_oO8kbxAg_TtxHY1QMkuhxX8sjIzIi-3Si4ScHA9CTpJM8OK62tfHzhYi2dD_atH4gVSL9WHmA_LBQoOME6Yx2HlqDkaMl5YpEJ0iYLbAwYt5FFBXuIuhJHfNFN7WnOZAxJIQii7fdbhXjIH_D_uG9BnjdThbMV61p6EdGt-yej4-nbzBOJJfWbrzKFz-J-_etfCDHpK4atwLlzCYbMhe5-dIezzhb4SqqBk6cWdvDKBnJUKrPLzcp7xSZMN4SDGBDo1kpSF9UNI0h5Jz3IDmxKlDMoQvg_BK-gdehY_NecHJLz8uKxczsrDt1XiLzwUh5qBIKdFVlP5GU6q-XGnZ-6mv6nH_J6JnNFuqIEvApbKq9QVkO8OmSqwHHdMgrx40wpkgK0kiWqFPI7RFy6eSAKohnQt&abvar=1&os=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
GET /chicken.gif?z=1863026&pb=651d2d38bcf2ea92b3a7ba71123a98171675376526&psp=XmLqsyzT4tVF4FThlOkuBIL2JjjqtbP-4SvMFBsjoEo2UlbWme0cdo3h0T6mTIK__SN9aS4hVR97bcwCDy6SZKekUQipNv_TcqfVr3FQq13qkWbS_KBZ2crr32aOx0vOQ0tKRZb2i_qRq9M6LyO7R1O0B1lq_66ZG3HFnnd53fF07HkUIBdyss9vMAEkeo6d2hALTORX4WymssckGaKSh-NhoQ-i_Dsi0sjBSzGm6Kph_pT9GST8MDZHR7Bzws5lIsiPDmVaP9fzFFDo09I2FwvPh1mUfs58zNkoQtmeHtPuo2jdCg5CSH3aYfQTsb0eZSejr9f8E-cmHosYOV7QhsEbHNIyzM4TFLq4Evylo9lDs5wgkluEtKQEVXdcECuj58LhZVP5Y0JFtZtjG-pP5dk47SsEcguSRaORBUFh-T6UeX64ESv_hBiMgUFxnCYYDqKnWfWblUN_cobYWYUvMHjfWvLvn_3QuinKy1f1WjbpjhGyj8RsJ32CpXvoy9daH-C7LWBJVlxNWZHhJdscQC5_P3PXRJTID3GaFLcEo0qjnzEocHh2X_zKcfpB_oO8kbxAg_TtxHY1QMkuhxX8sjIzIi-3Si4ScHA9CTpJM8OK62tfHzhYi2dD_atH4gVSL9WHmA_LBQoOME6Yx2HlqDkaMl5YpEJ0iYLbAwYt5FFBXuIuhJHfNFN7WnOZAxJIQii7fdbhXjIH_D_uG9BnjdThbMV61p6EdGt-yej4-nbzBOJJfWbrzKFz-J-_etfCDHpK4atwLlzCYbMhe5-dIezzhb4SqqBk6cWdvDKBnJUKrPLzcp7xSZMN4SDGBDo1kpSF9UNI0h5Jz3IDmxKlDMoQvg_BK-gdehY_NecHJLz8uKxczsrDt1XiLzwUh5qBIKdFVlP5GU6q-XGnZ-6mv6nH_J6JnNFuqIEvApbKq9QVkO8OmSqwHHdMgrx40wpkgK0kiWqFPI7RFy6eSAKohnQt&abvar=1&os=0 HTTP/1.1
Host: kgdvs9ov3l2aasw4nuts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: UID=230202152214c4b79fdc6b4d8b840efb76f3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:22:08 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.impression
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
i.jads.co/network/user1037/203-1520185101.jpg
200 OK 24 kB URL HTTP/2 i.jads.co/network/user1037/203-1520185101.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 9d43d8ef4d6605e218bf318e21923b8c
e8cae62be698d197f2f23ad36815f4e2d3f45881
11114dddf1cf3603f2782c8b8ba1d5dd4403147e9030053c6e268819f56f2f64
GET /network/user1037/203-1520185101.jpg HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; imps31238=1; juicy_data_1=YToyOntpOjYzMTM3MjtpOjE2NzU2Mjg1MjY7aTo2MzEzNzM7aToxNjc1NjI4NTI2O30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps53761=1; imps47386=1; imps203=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:08 GMT
etag: "1520185101"
cache-control: max-age=9068426
content-length: 23898
content-type: image/jpeg
last-modified: Sun, 04 Mar 2018 17:38:21 GMT
accept-ranges: bytes
x-hw: 1675369328.dop018.sk1.t,1675369328.cds211.sk1.hn,1675369328.cds068.sk1.c
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=818859
200 OK 1.9 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=818859
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (508), with CRLF, LF line terminators
Hash 6bb6663df55f878e5ba0d1e323472a9f
02ec234b1e451cfe7bc26c7865814cbdb4cbc698
4710f06cdce1200f859b8c4aac967bf2a7d79dfecdd775d090814319973e1658
GET /adshow.php?adzone=818859 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; expires=Fri, 02-Feb-2024 20:22:06 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps203=1; expires=Fri, 03-Feb-2023 20:22:06 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjYzMTM3MTtpOjE2NzU2Mjg1MjY7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:06 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
i.jads.co/network/user1037/203-1520185104.jpg
200 OK 22 kB URL HTTP/2 i.jads.co/network/user1037/203-1520185104.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 9578b899df11d053eb3a839aab4beb52
a8475c1fa0a6697c29d1803ba363d9a13ada5cf1
fa9ac7faf6266b1c75a90b16bb5e86bde3b70fe5934306646d3364b4097d7144
GET /network/user1037/203-1520185104.jpg HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; imps31238=1; juicy_data_1=YToyOntpOjYzMTM3MjtpOjE2NzU2Mjg1MjY7aTo2MzEzNzM7aToxNjc1NjI4NTI2O30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps53761=1; imps47386=1; imps203=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:08 GMT
etag: "1520185104"
cache-control: max-age=29802265
content-length: 22297
content-type: image/jpeg
last-modified: Sun, 04 Mar 2018 17:38:24 GMT
accept-ranges: bytes
x-hw: 1675369328.dop018.sk1.t,1675369328.cds211.sk1.hn,1675369328.cds251.sk1.c
X-Firefox-Spdy: h2
i.jads.co/network/user1037/203-1520185122.jpg
200 OK 35 kB URL HTTP/2 i.jads.co/network/user1037/203-1520185122.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 6d8cb60f78eac2e195ba42daf999f007
39ee73402e129f951ffeb6f080cd38d00f25363e
60750bfced99c76aa87612f1ce68a07e8b7297c884e2699e98ef20344a72dc39
GET /network/user1037/203-1520185122.jpg HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; imps31238=1; juicy_data_1=YToyOntpOjYzMTM3MjtpOjE2NzU2Mjg1MjY7aTo2MzEzNzM7aToxNjc1NjI4NTI2O30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps53761=1; imps47386=1; imps203=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:08 GMT
etag: "1520185122"
cache-control: max-age=10197239
content-length: 35224
content-type: image/jpeg
last-modified: Sun, 04 Mar 2018 17:38:42 GMT
accept-ranges: bytes
x-hw: 1675369328.dop018.sk1.t,1675369328.cds211.sk1.hn,1675369328.cds069.sk1.c
X-Firefox-Spdy: h2
i.jads.co/network/user1037/203-1520185091.jpg
200 OK 32 kB URL HTTP/2 i.jads.co/network/user1037/203-1520185091.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash df593708df9b8edbd671cb6035557bfe
26c12d2cc657295f4c32af67af64489bbf971968
00cd95d259469a99e07015415c28f0435fc3b5d8640fe1b3e45e75fb9b3bb528
GET /network/user1037/203-1520185091.jpg HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b28d6423b9524691e812a7f73f6c1f0b; imps31238=1; juicy_data_1=YToxOntpOjYzMTM3MTtpOjE2NzU2Mjg1MjY7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps53761=1; imps47386=1; imps203=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:08 GMT
etag: "1520185091"
cache-control: max-age=6705836
content-length: 32245
content-type: image/jpeg
last-modified: Sun, 04 Mar 2018 17:38:11 GMT
accept-ranges: bytes
x-hw: 1675369328.dop018.sk1.t,1675369328.cds211.sk1.hn,1675369328.cds221.sk1.c
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 19:44:08 GMT
expires: Thu, 02 Feb 2023 21:44:08 GMT
cache-control: public, max-age=7200
age: 2281
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ampcid.google.com/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
200 OK 94 B URL HTTP/2 ampcid.google.com/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
IP
File type JSON data\012- , ASCII text
Hash c2144a6b5539facf69724cd8b26dcd81
4893942b88fdcc2e7c9ae52ecc1da5774855b27f
b293ac83010e12a3b2c3efc7185fb005ab4c64c1fa023747a3cb05d53b772115
POST /v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM HTTP/1.1
Host: ampcid.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 33
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 02 Feb 2023 20:22:09 GMT
server: ESF
cache-control: private
content-length: 94
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://hentai-img.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ampcid.google.no/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
200 OK 23 B URL HTTP/2 ampcid.google.no/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
IP
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
POST /v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM HTTP/1.1
Host: ampcid.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 33
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 02 Feb 2023 20:22:09 GMT
server: ESF
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://hentai-img.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
poweredby.jads.co/adshow.php?adzone=818854
200 OK 2.1 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=818854
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1615), with CRLF, LF line terminators
Hash 31bf023966a83a71f8515d93e8c2ed16
a58cb328795855c1b817d2d848e668a22a59402a
e62a9d16d2c82408658dd878eed7fef9fbcdf708ac7744ee1ab3e2ccc2ea7180
GET /adshow.php?adzone=818854 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 20:22:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=da92b3fc1981b5b603a3b064ff61eb52; expires=Fri, 02-Feb-2024 20:22:08 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps203=1; expires=Fri, 03-Feb-2023 20:22:08 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
imps203=1; expires=Fri, 03-Feb-2023 20:22:08 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToyOntpOjYzMTM3MjtpOjE2NzU2Mjg1Mjg7aTo2MzEzNzM7aToxNjc1NjI4NTI4O30%3D; expires=Sun, 05-Feb-2023 20:22:08 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sun, 05-Feb-2023 20:22:08 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
hentai-cosplays.com/api/w/?m=html&search_type=merge&language=en&count=4&tag[]=giants
200 OK 1.2 kB URL HTTP/2 hentai-cosplays.com/api/w/?m=html&search_type=merge&language=en&count=4&tag[]=giants
IP
File type HTML document, ASCII text, with very long lines (303)
Hash aa21a57df0df77c020267b6352e70ab4
27e2a19a3014b3d70bdf04817a67c7bb72652bb1
cb0ceee731c113fcd13331970f81d3d2a2da0a3c75d203a23d3acdac46d84cc9
POST /api/w/?m=html&search_type=merge&language=en&count=4&tag[]=giants HTTP/1.1
Host: hentai-cosplays.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, User-Agent, User-Agent
link: <https://hentai-cosplays.com/search/tag/giants/>; rel="canonical"
access-control-allow-origin: *
fastcgi-cache: HIT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i23tbCiShxX2dObEyoIRmLn4mWP9%2FP0V1dZBMY7EmsiOjGNPNFUiBTZT1C8%2FfLhnNHna4XX43kwpV1ckMgizMwDmK1u3l%2FtJwZFOPrDlUDCZbFn2HbXQjxugjeaKpeR5obYrc2cM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7935a3175daa0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-72226994-1&cid=1543435706.1675369354&jid=1224557858&gjid=741666953&_gid=792766781.1675369357&_u=YCDAgAABAAQCAE~&z=1894922812
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-72226994-1&cid=1543435706.1675369354&jid=1224557858&gjid=741666953&_gid=792766781.1675369357&_u=YCDAgAABAAQCAE~&z=1894922812
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-72226994-1&cid=1543435706.1675369354&jid=1224557858&gjid=741666953&_gid=792766781.1675369357&_u=YCDAgAABAAQCAE~&z=1894922812 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://hentai-img.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 20:22:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-168720792-1&cid=1543435706.1675369354&jid=2046486205&gjid=1905496684&_gid=792766781.1675369357&_u=YCDAAAABAAQCAG~&z=430002214
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-168720792-1&cid=1543435706.1675369354&jid=2046486205&gjid=1905496684&_gid=792766781.1675369357&_u=YCDAAAABAAQCAG~&z=430002214
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-168720792-1&cid=1543435706.1675369354&jid=2046486205&gjid=1905496684&_gid=792766781.1675369357&_u=YCDAAAABAAQCAG~&z=430002214 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://hentai-img.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 20:22:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:22:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-72226994-1&cid=1543435706.1675369354&jid=1224557858&_u=YCDAgAABAAQCAE~&z=177419282
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-72226994-1&cid=1543435706.1675369354&jid=1224557858&_u=YCDAgAABAAQCAE~&z=177419282
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-72226994-1&cid=1543435706.1675369354&jid=1224557858&_u=YCDAgAABAAQCAE~&z=177419282 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 20:22:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-168720792-1&cid=1543435706.1675369354&jid=2046486205&_u=YCDAAAABAAQCAG~&z=1656206318
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-168720792-1&cid=1543435706.1675369354&jid=2046486205&_u=YCDAAAABAAQCAG~&z=1656206318
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-168720792-1&cid=1543435706.1675369354&jid=2046486205&_u=YCDAAAABAAQCAG~&z=1656206318 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 20:22:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-72226994-1&cid=1543435706.1675369354&jid=1224557858&_u=YCDAgAABAAQCAE~&z=177419282
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-72226994-1&cid=1543435706.1675369354&jid=1224557858&_u=YCDAgAABAAQCAE~&z=177419282
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-72226994-1&cid=1543435706.1675369354&jid=1224557858&_u=YCDAgAABAAQCAE~&z=177419282 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 20:22:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-168720792-1&cid=1543435706.1675369354&jid=2046486205&_u=YCDAAAABAAQCAG~&z=1656206318
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-168720792-1&cid=1543435706.1675369354&jid=2046486205&_u=YCDAAAABAAQCAG~&z=1656206318
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-168720792-1&cid=1543435706.1675369354&jid=2046486205&_u=YCDAAAABAAQCAG~&z=1656206318 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 20:22:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-M86Q28D
200 OK 0 B URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M86Q28D
IP
GET /gtm.js?id=GTM-M86Q28D HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 20:22:05 GMT
expires: Thu, 02 Feb 2023 20:22:05 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 19:51:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48778
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ndroip.com/na/waWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsInNyYyI6Mn0=eyJ.js
200 OK 0 B URL HTTP/2 ndroip.com/na/waWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsInNyYyI6Mn0=eyJ.js
IP
GET /na/waWQiOjEwOTc0NDgsInNpZCI6MTEwNzI2Miwid2lkIjoyMzM5MzQsInNyYyI6Mn0=eyJ.js HTTP/1.1
Host: ndroip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:05 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://hentai-img.com
e-tag: bf75d9c3f0cbf333db8962f1e111033a
cache-control: public, max-age=14400, proxy-revalidate
cf-cache-status: HIT
age: 3139
last-modified: Thu, 02 Feb 2023 19:29:46 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H%2BYM2mn6zefAr6m0p6bCARUEwGJQzpfjGrrXMggbyd8Obk1vdmm4QNaJefPB%2BpImh4gtnsNdPbyc3fyGQ1KRhb2DsQblesxICDQLJ0JRztxvLaqcvTYNT4AnrgYj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7935a30e28e50b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kgdvs9ov3l2aasw4nuts.com/lv/esnk/1863026/code.js
200 OK 0 B URL HTTP/2 kgdvs9ov3l2aasw4nuts.com/lv/esnk/1863026/code.js
IP
GET /lv/esnk/1863026/code.js HTTP/1.1
Host: kgdvs9ov3l2aasw4nuts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:22:05 GMT
content-type: application/javascript
last-modified: Tue, 31 Jan 2023 12:19:58 GMT
vary: Accept-Encoding
etag: W/"63d9076e-1aea4"
x-js-ab1: var1
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
cloudflare.com/cdn-cgi/trace
200 OK 0 B URL HTTP/2 cloudflare.com/cdn-cgi/trace
IP
GET /cdn-cgi/trace HTTP/1.1
Host: cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hentai-img.com/
Origin: https://hentai-img.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:06 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 7935a31578600b49-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
porn-images-xxx.com/api/w/?m=html&search_type=merge&language=en&count=4&tag[]=giants
200 OK 0 B URL HTTP/2 porn-images-xxx.com/api/w/?m=html&search_type=merge&language=en&count=4&tag[]=giants
IP
POST /api/w/?m=html&search_type=merge&language=en&count=4&tag[]=giants HTTP/1.1
Host: porn-images-xxx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, User-Agent
link: <https://porn-images-xxx.com/search/tag/giants/>; rel="canonical"
access-control-allow-origin: *
fastcgi-cache: HIT
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-cache: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XAAi2G9rxjpMINwETA1w0bUE7VnbkfxCO%2B3vSRkQ4wjsYNftefP9CfHDWDxCbS44WBPCH6pIJgX11sB6n1vK4B0CgjBjfuP%2FCgYAqvyvNoAFRchk2aP3txlggF416cPeD7nJe1OU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7935a3167a0d0656-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
porn-images-xxx.com/api/w/?m=html&search_type=merge&language=en&count=4&tag[]=giants
200 OK 0 B URL HTTP/2 porn-images-xxx.com/api/w/?m=html&search_type=merge&language=en&count=4&tag[]=giants
IP
POST /api/w/?m=html&search_type=merge&language=en&count=4&tag[]=giants HTTP/1.1
Host: porn-images-xxx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-img.com
Connection: keep-alive
Referer: https://hentai-img.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:07 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, User-Agent
link: <https://porn-images-xxx.com/search/tag/giants/>; rel="canonical"
access-control-allow-origin: *
fastcgi-cache: HIT
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-cache: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GXUZQML6Rn5n7CuJggMl321eRAf3Fi%2BS87CsS5ELP0CAeguAzsiRfOtrjgFYupzLtbVOv0Vv6t4qpa3n631ljukO6H1DvX3%2F1OCLdZp15B013fPK34XEd1fjlabA85S1BPcWoSvX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7935a3166a030656-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cloudflare.com/cdn-cgi/trace
200 OK 0 B URL HTTP/2 cloudflare.com/cdn-cgi/trace
IP
GET /cdn-cgi/trace HTTP/1.1
Host: cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hentai-img.com/
Origin: https://hentai-img.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:06 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 7935a3135de00b49-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
cloudflare.com/cdn-cgi/trace
200 OK 0 B URL HTTP/2 cloudflare.com/cdn-cgi/trace
IP
GET /cdn-cgi/trace HTTP/1.1
Host: cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hentai-img.com/
Origin: https://hentai-img.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:22:06 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 7935a3143ee30b49-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
172.64.136.35
35.156.167.37
104.16.132.229
23.36.76.200
185.94.236.247
185.162.85.2
188.114.96.1