1.6 kB URL baskdisk.com/wynpzyna8i?adb=y&adb=y&adb=y&adb=y&dev=r&key=c45f12193c544105ae2fa175a7362064&kw=[pmv,haven,intl,wave,vol,2]&psid=pmvhaven.com,pmvhaven.com&refer=https://pmvhaven.com/video/INTL-wave-Vol-2_656023cd4b6adec9c424ea3f&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=1&ugd=36&v=24.5.6485
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (758)
Hash 2f80e2d47aaaba6863b3faa953d8562a
80d80eb08a013fc803b9cfc053c6446a96047aac
26ce61303a7f56536246d8e8d9a1ab24553dd412fa0778098f344e6b649825e5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wynpzyna8i?adb=y&adb=y&adb=y&adb=y&dev=r&key=c45f12193c544105ae2fa175a7362064&kw=[pmv,haven,intl,wave,vol,2]&psid=pmvhaven.com,pmvhaven.com&refer=https://pmvhaven.com/video/INTL-wave-Vol-2_656023cd4b6adec9c424ea3f&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=1&ugd=36&v=24.5.6485 HTTP/1.1
Host: baskdisk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 18:46:17 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=23117823; expires=Wed, 08 May 2024 18:46:17 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.R7hMYxG_KZXjJMz4bcQg9trKtd3Qg-aYlbWc_HUtStk; expires=Tue, 07 May 2024 18:47:17 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f9c96a380dfc03cbd80ae79b5d795bf7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET baskdisk.com/api/users?token=L3d5bnB6eW5hOGk_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&uuid=&pii=&in=false
302 Found 0 B URL User Request GET HTTP/1.1 baskdisk.com/api/users?token=L3d5bnB6eW5hOGk_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&uuid=&pii=&in=false
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectbaskdisk.com
Fingerprint38:F5:31:F3:64:B5:5C:ED:CA:6C:5E:FB:F7:04:F9:CE:A5:3C:74:BC
ValidityMon, 29 Apr 2024 12:48:34 GMT - Sun, 28 Jul 2024 12:48:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /api/users?token=L3d5bnB6eW5hOGk_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&uuid=&pii=&in=false HTTP/1.1
Host: baskdisk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baskdisk.com/api/users?token=L3d5bnB6eW5hOGk_a2V5PTljYTYwMWE5ZjQ3YzczNWRmNzZkNWNhNDZmYTI2YTY2JnN1Ym1ldHJpYz0yMzExNzgyMw
Cookie: u_pl=23117823; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMzExNzgyMywiayI6ImM0NWYxMjE5M2M1NDQxMDVhZTJmYTE3NWE3MzYyMDY0Iiwic2lkIjoicG12aGF2ZW4uY29tLHBtdmhhdmVuLmNvbSIsImlzaWQiOjIsImFzaWQiOjEsInppZCI6MzEzNTk4MSwicGlkIjoxMzU5MDQ1LCJhbiI6dHJ1ZSwibGFuIjp0cnVlLCJjaWQiOjE2LCJhaWQiOjI4LCJwdCI6NCwicGsiOiJ3eW5wenluYThpIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOnRydWV9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vcG12aGF2ZW4uY29tL3ZpZGVvL0lOVEwtd2F2ZS1Wb2wtMl82NTYwMjNjZDRiNmFkZWM5YzQyNGVhM2YiLCJhciI6W119fQ.R7hMYxG_KZXjJMz4bcQg9trKtd3Qg-aYlbWc_HUtStk; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.19.5
Date: Tue, 07 May 2024 18:46:18 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://go.camterest.com/smartpop/5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8?userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&memberId=39cd677a8e5836ead6aeaea635514235&p1=ctf
Set-Cookie: pdhtkv=true; expires=Wed, 08 May 2024 18:46:18 GMT
uncs=1; expires=Wed, 08 May 2024 18:46:18 GMT
pdhtkv28=true; expires=Wed, 08 May 2024 18:46:18 GMT
uncs28=1; expires=Wed, 08 May 2024 18:46:18 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 62c7e56d6be07477bfe2501b26d56806
Strict-Transport-Security: max-age=0; includeSubdomains
GET go.camterest.com/smartpop/5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8?userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&memberId=39cd677a8e5836ead6aeaea635514235&p1=ctf
302 Found 0 B URL User Request GET HTTP/2 go.camterest.com/smartpop/5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8?userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&memberId=39cd677a8e5836ead6aeaea635514235&p1=ctf
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectgo.camterest.com
Fingerprint6D:22:79:98:EF:6C:F8:14:AC:D6:1C:33:C5:33:45:18:AF:CB:C2:16
ValidityWed, 24 Apr 2024 06:33:45 GMT - Tue, 23 Jul 2024 06:33:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smartpop/5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8?userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&memberId=39cd677a8e5836ead6aeaea635514235&p1=ctf HTTP/1.1
Host: go.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://baskdisk.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
access-control-allow-credentials: true
alt-svc: h3=":443"; ma=2592000
date: Tue, 07 May 2024 18:46:18 GMT
location: https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
set-cookie: _var=68087848.32818_MTlkOWI5ZjY=; Path=/; Expires=Thu, 06 Jun 2024 18:46:18 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15768000
content-length: 0
X-Firefox-Spdy: h2
GET creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
200 OK 1.2 kB URL User Request GET HTTP/2 creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectcreative.camterest.com
FingerprintB1:2A:B6:DB:A6:43:94:D8:C1:3B:9A:3E:FE:B8:78:39:8C:76:79:8E
ValidityWed, 24 Apr 2024 11:02:07 GMT - Tue, 23 Jul 2024 11:02:06 GMT
File type HTML document, Unicode text, UTF-8 text
Hash 612c75e6d5b92232027a6a1eb9e04c61
d0ae2a9af0eae469c30989ab315663dd04e42975
54b0b8d21460e18d88e27de8b9555d30726adf5ba9f8bc19e67a7729c6d0d73e
GET /LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818 HTTP/1.1
Host: creative.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://baskdisk.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000
cache-control: max-age=10
content-type: text/html; charset=utf-8
date: Tue, 07 May 2024 18:46:18 GMT
etag: "662f55d7-480"
expires: Tue, 07 May 2024 18:46:28 GMT
last-modified: Mon, 29 Apr 2024 08:09:59 GMT
pragma: public
report-to: { "endpoints":[{ "url": "https://go.stripchat.com/report" }], "group": "default", "max_age": 1048576 }, { "url": "https://go.camterest.com/report", "max_age": 1048576 }
strict-transport-security: max-age=15768000
content-length: 1152
X-Firefox-Spdy: h2
GET creative.camterest.com/LPAkira/HelveticaNeue.ttf
200 OK 642 kB URL GET HTTP/3 creative.camterest.com/LPAkira/HelveticaNeue.ttf
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectcreative.camterest.com
FingerprintB1:2A:B6:DB:A6:43:94:D8:C1:3B:9A:3E:FE:B8:78:39:8C:76:79:8E
ValidityWed, 24 Apr 2024 11:02:07 GMT - Tue, 23 Jul 2024 11:02:06 GMT
File type TrueType Font data, 17 tables, 1st "FFTM", 40 names, Macintosh
Size 642 kB (642156 bytes)
Hash 072a79d376f0a5e40562e538e3e8f383
17ff561d277b3122ab93bca89fad1fa26db44ce8
c5a5905988a91d018626c0e194ba6a01eb4047c4b08f7e893dd1d663fe02dd35
GET /LPAkira/HelveticaNeue.ttf HTTP/1.1
Host: creative.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/LPAkira/main.ad495d60566a9b9b7557.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=10
content-type: application/octet-stream
strict-transport-security: max-age=15768000
date: Tue, 07 May 2024 18:46:18 GMT
etag: "662f55d7-9cc6c"
content-length: 642156
last-modified: Mon, 29 Apr 2024 08:09:59 GMT
access-control-allow-origin: *
report-to: { "url": "https://go.camterest.com/report", "max_age": 1048576 }
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
expires: Tue, 07 May 2024 18:46:28 GMT
accept-ranges: bytes
GET creative.camterest.com/widgets/AgeVerification/lang/en.json
200 OK 3.8 kB URL GET HTTP/3 creative.camterest.com/widgets/AgeVerification/lang/en.json
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectcreative.camterest.com
FingerprintB1:2A:B6:DB:A6:43:94:D8:C1:3B:9A:3E:FE:B8:78:39:8C:76:79:8E
ValidityWed, 24 Apr 2024 11:02:07 GMT - Tue, 23 Jul 2024 11:02:06 GMT
Hash 9ffcdd312529a9b28e65156dd0014fdb
4133e29495bac1f320ecec0a17f9b9bb8d4f09bb
142fe2a082dfe43f2eab11533885dba53ecbad12813475b89aa518424bfc062f
GET /widgets/AgeVerification/lang/en.json HTTP/1.1
Host: creative.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
strict-transport-security: max-age=15768000
cache-control: max-age=10
content-length: 3846
etag: "662f563b-f06"
expires: Tue, 07 May 2024 18:46:28 GMT
report-to: { "url": "https://go.camterest.com/report", "max_age": 1048576 }
date: Tue, 07 May 2024 18:46:18 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
content-type: application/json
last-modified: Mon, 29 Apr 2024 08:11:39 GMT
GET creative.camterest.com/widgets/SingleSignUpForm/lang/en.json
200 OK 1.4 kB URL GET HTTP/3 creative.camterest.com/widgets/SingleSignUpForm/lang/en.json
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectcreative.camterest.com
FingerprintB1:2A:B6:DB:A6:43:94:D8:C1:3B:9A:3E:FE:B8:78:39:8C:76:79:8E
ValidityWed, 24 Apr 2024 11:02:07 GMT - Tue, 23 Jul 2024 11:02:06 GMT
Hash 78916fd022ef3d6cfc487aad20af0933
a0eabb4b5345b41089ff3cf8590182b78dd18895
db678a8de7997df751377c84c4bd9e151a6ab2d25ab7fc57ca1f6b27c5d8e929
GET /widgets/SingleSignUpForm/lang/en.json HTTP/1.1
Host: creative.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
strict-transport-security: max-age=15768000
report-to: { "url": "https://go.camterest.com/report", "max_age": 1048576 }
date: Tue, 07 May 2024 18:46:18 GMT
etag: "662f567d-554"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
expires: Tue, 07 May 2024 18:46:28 GMT
content-type: application/json
content-length: 1364
cache-control: max-age=10
accept-ranges: bytes
pragma: public
last-modified: Mon, 29 Apr 2024 08:12:45 GMT
GET video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.camterest.com/
Origin: https://creative.camterest.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:46:18 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: r/sZd/5tTbZ8Lz/kkSvk4JceCGfSiZZwgQ829hNXiyteIQfC4NSNjFH4r/KJrXwQJe8IB36RDtztnNkNG9pvMw==
x-amz-request-id: YDMKT41GK9B59548
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.camterest.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 1911
expires: Tue, 07 May 2024 22:46:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 88035f401965b52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET creative.camterest.com/LPAkira/main.ad495d60566a9b9b7557.js
200 OK 132 kB URL GET HTTP/3 creative.camterest.com/LPAkira/main.ad495d60566a9b9b7557.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectcreative.camterest.com
FingerprintB1:2A:B6:DB:A6:43:94:D8:C1:3B:9A:3E:FE:B8:78:39:8C:76:79:8E
ValidityWed, 24 Apr 2024 11:02:07 GMT - Tue, 23 Jul 2024 11:02:06 GMT
File type gzip compressed data, from Unix
Size 132 kB (132508 bytes)
Hash 6391066553e4888b4d1557478af739d9
6629e135259f70756c9ce5d7333b72a5101beded
37a6f580b4fe009561fd00d39c065e58c14286d1738d69110cea876651015df7
GET /LPAkira/main.ad495d60566a9b9b7557.js HTTP/1.1
Host: creative.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
pragma: public
last-modified: Mon, 29 Apr 2024 08:14:47 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=10
expires: Tue, 07 May 2024 18:46:28 GMT
content-encoding: gzip
date: Tue, 07 May 2024 18:46:18 GMT
report-to: { "url": "https://go.camterest.com/report", "max_age": 1048576 }
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
vary: Accept-Encoding
etag: W/"662f56f7-6ab3b"
strict-transport-security: max-age=15768000
GET video.xxxviiijmp.com/production/whiteLabels/logo/5/1/a/51a9a56975fa725f6b17724c33f57832.png
200 OK 23 kB URL GET HTTP/2 video.xxxviiijmp.com/production/whiteLabels/logo/5/1/a/51a9a56975fa725f6b17724c33f57832.png
IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerGoogle Trust Services LLC
Subjectxxxviiijmp.com
FingerprintD2:51:BE:D3:D6:8B:13:7C:71:78:B5:A4:40:B0:A3:9D:40:84:8B:1C
ValidityThu, 11 Apr 2024 07:39:43 GMT - Wed, 10 Jul 2024 07:39:42 GMT
File type PNG image data, 1669 x 363, 8-bit/color RGBA, non-interlaced
Hash 62b6646355ac99eec83f55eeadaffff8
2acb50759618496e61021704ff357016b52752b6
e3370a08435b517e7e6e46f4c02187e10dd4526c1d208d5d0fc7af546abb4687
GET /production/whiteLabels/logo/5/1/a/51a9a56975fa725f6b17724c33f57832.png HTTP/1.1
Host: video.xxxviiijmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:46:19 GMT
content-type: image/png
content-length: 23414
x-amz-id-2: K3o4QfwlLuwhV0MnHWEq4jW+i5FbI1R61WBvOMdaNhhaGwcYvoYaoZofSVxLXQPpFGnrYToDeSs=
x-amz-request-id: D5A4W848XA6S47DX
last-modified: Mon, 21 Mar 2022 13:52:06 GMT
etag: "62b6646355ac99eec83f55eeadaffff8"
x-amz-version-id: WiVQuLqYCK8PLcNQlOtWXKZuSJd1UIHN
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 5757
expires: Tue, 07 May 2024 22:46:19 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 88035f41d85656aa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET creative.camterest.com/LPAkira/HelveticaNeue-Medium.ttf
200 OK 256 kB URL GET HTTP/3 creative.camterest.com/LPAkira/HelveticaNeue-Medium.ttf
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectcreative.camterest.com
FingerprintB1:2A:B6:DB:A6:43:94:D8:C1:3B:9A:3E:FE:B8:78:39:8C:76:79:8E
ValidityWed, 24 Apr 2024 11:02:07 GMT - Tue, 23 Jul 2024 11:02:06 GMT
File type TrueType Font data, 18 tables, 1st "FFTM", 40 names, Macintosh
Size 256 kB (256020 bytes)
Hash 5d6f90814caed5e3c4d5e2bf78714fc6
88b761e46449399b29e10fb66dc73e63e59c3e93
70da8ef2f79c1da6a9c25c8935f04b8fcd44d80d7efd9f23feca51596811645e
GET /LPAkira/HelveticaNeue-Medium.ttf HTTP/1.1
Host: creative.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/LPAkira/main.ad495d60566a9b9b7557.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 18:46:19 GMT
content-length: 256020
report-to: { "url": "https://go.camterest.com/report", "max_age": 1048576 }
accept-ranges: bytes
strict-transport-security: max-age=15768000
access-control-allow-origin: *
last-modified: Mon, 29 Apr 2024 08:09:59 GMT
etag: "662f55d7-3e814"
content-type: application/octet-stream
expires: Tue, 07 May 2024 18:46:29 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cache-control: max-age=10
POST go.camterest.com/app/domain-checker/get-check
200 OK 196 B URL POST HTTP/3 go.camterest.com/app/domain-checker/get-check
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectgo.camterest.com
Fingerprint6D:22:79:98:EF:6C:F8:14:AC:D6:1C:33:C5:33:45:18:AF:CB:C2:16
ValidityWed, 24 Apr 2024 06:33:45 GMT - Tue, 23 Jul 2024 06:33:44 GMT
Hash 1d653b2de03b8837735f5cec2358051c
c4b4551f1c40a2274af7257f1c6ec48b7bec4cfc
b6f405755cb400827043419c49b6cd336f2530c0420bd061fe4272bb0e67fd6a
POST /app/domain-checker/get-check HTTP/1.1
Host: go.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.camterest.com/
Origin: https://creative.camterest.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/3 200 OK
strict-transport-security: max-age=15768000
access-control-allow-credentials: true
date: Tue, 07 May 2024 18:46:19 GMT
content-type: application/json
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
access-control-allow-origin: https://creative.camterest.com
content-length: 196
GET creative.camterest.com/LPAkira/HelveticaNeue-Bold.ttf
200 OK 322 kB URL GET HTTP/3 creative.camterest.com/LPAkira/HelveticaNeue-Bold.ttf
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectcreative.camterest.com
FingerprintB1:2A:B6:DB:A6:43:94:D8:C1:3B:9A:3E:FE:B8:78:39:8C:76:79:8E
ValidityWed, 24 Apr 2024 11:02:07 GMT - Tue, 23 Jul 2024 11:02:06 GMT
File type TrueType Font data, 17 tables, 1st "FFTM", 38 names, Macintosh
Size 322 kB (322508 bytes)
Hash f51e47dd78152318d01f10739a7e610e
8772b55ed23b9a9dfd0e6dc848d01db17e30a141
9127e8991d4ad0f0d6306513785b4a86c3b3bd6a24d25d2879e00009f175f294
GET /LPAkira/HelveticaNeue-Bold.ttf HTTP/1.1
Host: creative.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/LPAkira/main.ad495d60566a9b9b7557.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
strict-transport-security: max-age=15768000
last-modified: Mon, 29 Apr 2024 08:09:59 GMT
access-control-allow-origin: *
content-type: application/octet-stream
cache-control: max-age=10
etag: "662f55d7-4ebcc"
content-length: 322508
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
date: Tue, 07 May 2024 18:46:19 GMT
report-to: { "url": "https://go.camterest.com/report", "max_age": 1048576 }
accept-ranges: bytes
expires: Tue, 07 May 2024 18:46:29 GMT
GET stripchat.com/api/external/v3/auth/check
204 No Content 0 B URL GET HTTP/2 stripchat.com/api/external/v3/auth/check
IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerCloudflare, Inc.
Subjectstripchat.com
Fingerprint3C:12:9D:04:0C:06:77:D6:C0:CF:16:86:EF:54:A5:31:EE:4A:CC:2E
ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/external/v3/auth/check HTTP/1.1
Host: stripchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 07 May 2024 18:46:19 GMT
x-api-version: 10.83.18
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
x-backend: lima-backend-yellow-77554dff79-gjxfw
strict-transport-security: max-age=15768000
content-security-policy: default-src 'self' *.stripchat.com data: blob: *.amplitude.com *.google-analytics.com *.googletagmanager.com *.googleapis.com *.gstatic.com *.lovense.club:* *.lovense.com *.lovense-api.com *.stripcdn.com *.stripst.com *.stripst.dev *.strpst.com *.strwst.com *.doppiocdn.com *.doppiocdn.net *.doppiocdn.org *.doppiocdn.media *.doppiocdn.live *.doppiostreams.com *.trafficjunky.net main.exoclick.com tsyndicate.com *.hotjar.com *.hotjar.io fpnpmcdn.net loo3laej.com stripchat.page mc.thedd.online;img-src 'self' * data: blob: android-webview-video-poster:;script-src 'self' *.stripchat.com data: 'unsafe-inline' 'unsafe-eval' blob: *.amplitude.com *.google-analytics.com *.googletagmanager.com *.googleapis.com *.gstatic.com *.hpyrdr.dev *.hytto.com *.lovense.club:* *.lovense.com *.lovense-api.com *.stripst.com *.stripst.dev *.strpst.com *.strwst.com *.trafficjunky.net *.google.com platform.twitter.com main.exoclick.com tsyndicate.com wss://*.sc-apps.com www.googleadservices.com cdnjs.cloudflare.com/ajax/libs/fingerprintjs2/2.1.2/fingerprint2.min.js *.hotjar.com *.crowdin.com cdntechone.com fpnpmcdn.net loo3laej.com stripchat.page mc.thedd.online *.nktrdr.com *.ktkjmp.com *.xhamster.com *.llyjmp.com *.lxzrdr.com *.stripcash.com *.mnaspm.com *.rmhfrtnd.com *.xxxivjmp.com *.xxxvjmp.com *.xxxviijmp.com *.xxxviiijmp.com *.rmshqa.com *.xlivrdr.com *.xlvrdr.com *.xlviirdr.com *.xlviiirdr.com *.zybrdr.com *.bbrdbr.com *.dmsktmld.com *.fxmnba.com *.althz.com;connect-src 'self' *.stripchat.com *.amplitude.com *.doubleclick.net *.flixstorage.com *.google-analytics.com *.googletagmanager.com *.googleapis.com *.hytto.com *.lovense.club:* *.lovense.com *.lovense-api.com *.stripcdn.com *.xhamsterlive.com *.xlivesex.com *.stripst.com *.stripst.dev *.strpst.com *.strwst.com *.doppiocdn.com *.doppiocdn.net *.doppiocdn.org *.doppiocdn.media *.doppiocdn.live *.doppiostreams.com syndication.twitter.com wss://*.stripchat.com wss://*.stripcdn.com wss://*.stripcdn.com:8090 wss://*.stripst.com wss://*.stripst.dev wss://*.strpst.com wss://*.strwst.com wss://*.doppiocdn.com wss://*.doppiocdn.org wss://*.doppiocdn.media wss://*.lovense.com wss://*.lovense-api.com wss://*.sc-apps.com *.crowdin.com crowdin.com datatechone.com stquality.org accounts.google.com fpnpmcdn.net loo3laej.com stripchat.page mc.thedd.online *.nktrdr.com *.ktkjmp.com *.xhamster.com *.llyjmp.com *.lxzrdr.com *.stripcash.com *.mnaspm.com *.rmhfrtnd.com *.xxxivjmp.com *.xxxvjmp.com *.xxxviijmp.com *.xxxviiijmp.com *.rmshqa.com *.xlivrdr.com *.xlvrdr.com *.xlviirdr.com *.xlviiirdr.com *.zybrdr.com *.bbrdbr.com *.dmsktmld.com *.fxmnba.com *.althz.com;media-src 'self' *.stripchat.com data: blob: *.ahcdn.com *.lovense.club:* *.lovense.com *.lovense-api.com *.stripcdn.com *.stripst.com *.stripst.dev *.strpst.com *.strwst.com *.doppiocdn.com *.doppiocdn.net *.doppiocdn.org *.doppiocdn.media *.doppiocdn.live stripchat.page;style-src 'self' *.stripchat.com 'unsafe-inline' *.googleapis.com *.hytto.com *.lovense.club:* *.lovense.com *.lovense-api.com *.stripcdn.com *.stripst.com *.stripst.dev *.strpst.com *.strwst.com *.tagmanager.google.com *.crowdin.com accounts.google.com stripchat.page;frame-src * data:;report-uri /_csp
x-frame-options: deny
cf-cache-status: DYNAMIC
set-cookie: stripchat_com_guestId=8ebc6384791993181d438beb2bbc3ae9a0fa80fc525bb6d9759aa39fd99a; expires=Mon, 05-Aug-2024 18:46:19 GMT; path=/; domain=stripchat.com; sameSite=None; secure; httponly
stripchat_com_firstVisit=2024-05-07T18%3A46%3A19Z; expires=Wed, 07-May-2025 18:46:19 GMT; path=/; domain=stripchat.com; httponly
__cf_bm=1xFNnyCMlJtE7XMS7uUDqjmNpLpKqjvk_OXuNjgDr2k-1715107579-1.0.1.1-gApiWP5vnvzlOrz2ayKWW1ineNqOedyuJNqcG7._HBPU_AJL.sNbCTr.P0r7LDy.wUjTA9h7CKjyW6hQploFzfdaQiv2gvDdDRQBkfHn_t4; path=/; expires=Tue, 07-May-24 19:16:19 GMT; domain=.stripchat.com; HttpOnly; Secure; SameSite=None
__cflb=02DiuFntVtrkFMde1diFXXHXhq5ESci4LyQSMaSqvp55e; SameSite=None; Secure; path=/; expires=Wed, 08-May-24 17:46:19 GMT; HttpOnly
server: cloudflare
cf-ray: 88035f41bf0c0b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET go.camterest.com/abc.gif?action=sbSignupWithModel&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&iterationId=834960&masterSmartpopId=1603&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818&language=en&agev=0&nonNudeContent=0&stripcashR=0&thumbFit=cover&quality=original&thumbType=default&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=5&segment=hls-newAPI&landing=LPAkira&referrer=https%3A%2F%2Fbaskdisk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A0%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A756%2C%22duration%22%3A103%2C%22transferSize%22%3A123371%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A756%2C%22duration%22%3A56%2C%22transferSize%22%3A13060%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A985%2C%22duration%22%3A209%2C%22transferSize%22%3A0%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A1234%2C%22duration%22%3A0%7D%5D&mh=798414208
200 OK 103 B URL GET HTTP/3 go.camterest.com/abc.gif?action=sbSignupWithModel&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&iterationId=834960&masterSmartpopId=1603&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818&language=en&agev=0&nonNudeContent=0&stripcashR=0&thumbFit=cover&quality=original&thumbType=default&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=5&segment=hls-newAPI&landing=LPAkira&referrer=https%3A%2F%2Fbaskdisk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A0%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A756%2C%22duration%22%3A103%2C%22transferSize%22%3A123371%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A756%2C%22duration%22%3A56%2C%22transferSize%22%3A13060%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A985%2C%22duration%22%3A209%2C%22transferSize%22%3A0%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A1234%2C%22duration%22%3A0%7D%5D&mh=798414208
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectgo.camterest.com
Fingerprint6D:22:79:98:EF:6C:F8:14:AC:D6:1C:33:C5:33:45:18:AF:CB:C2:16
ValidityWed, 24 Apr 2024 06:33:45 GMT - Tue, 23 Jul 2024 06:33:44 GMT
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?action=sbSignupWithModel&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&iterationId=834960&masterSmartpopId=1603&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818&language=en&agev=0&nonNudeContent=0&stripcashR=0&thumbFit=cover&quality=original&thumbType=default&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=5&segment=hls-newAPI&landing=LPAkira&referrer=https%3A%2F%2Fbaskdisk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A0%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A756%2C%22duration%22%3A103%2C%22transferSize%22%3A123371%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A756%2C%22duration%22%3A56%2C%22transferSize%22%3A13060%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A985%2C%22duration%22%3A209%2C%22transferSize%22%3A0%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A1234%2C%22duration%22%3A0%7D%5D&mh=798414208 HTTP/1.1
Host: go.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/
Cookie: _var=68087848.32818_MTlkOWI5ZjY=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-credentials: true
date: Tue, 07 May 2024 18:46:19 GMT
content-type: image/gif
content-length: 103
strict-transport-security: max-age=15768000
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
GET img.strpst.com/ai/1715107431/77154776_webp
200 OK 8.4 kB URL GET HTTP/2 img.strpst.com/ai/1715107431/77154776_webp
IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
Fingerprint15:3B:1E:F6:13:E2:CF:39:35:E5:C5:64:DA:91:8D:43:49:24:9E:A8
ValiditySun, 03 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 53f7541995f6ba71d3935ceebdf089f5
08d7bcbab9937ef92a99087863ec529ac1740a4a
74379dcfed17dde8abd490305e7cb139684154bbf4a702fc4fe47f5a3108466f
GET /ai/1715107431/77154776_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:46:19 GMT
content-type: image/webp
content-length: 8370
etag: "53f7541995f6ba71d3935ceebdf089f5"
last-modified: Tue, 07 May 2024 18:43:52 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 106
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 88035f42dec5b529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET img.strpst.com/thumbs/1715107530/71220142_webp
200 OK 28 kB URL GET HTTP/2 img.strpst.com/thumbs/1715107530/71220142_webp
IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
Fingerprint15:3B:1E:F6:13:E2:CF:39:35:E5:C5:64:DA:91:8D:43:49:24:9E:A8
ValiditySun, 03 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
Hash d1dbeb26c11f076c20ec9ce03a2afde0
2977bf7bef9374b56bc9514609bca23e63d197cc
9954528cc277ec8aa0aa30d9f85649f25a7fc0a85d899250cef893ff810faa98
GET /thumbs/1715107530/71220142_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:46:19 GMT
content-type: image/webp
content-length: 28160
etag: "d1dbeb26c11f076c20ec9ce03a2afde0"
last-modified: Tue, 07 May 2024 18:45:10 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 44
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 88035f42eee2b529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET img.strpst.com/thumbs/1715107530/75778232_webp
200 OK 14 kB URL GET HTTP/2 img.strpst.com/thumbs/1715107530/75778232_webp
IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
Fingerprint15:3B:1E:F6:13:E2:CF:39:35:E5:C5:64:DA:91:8D:43:49:24:9E:A8
ValiditySun, 03 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
Hash ed1542782b6104b416e38cfcad0d6f15
435fd8e914eaee86b0744cc03042d8089365af1a
adfbbaedf2964c6bae87ef7d8dd8101f5af0b4470b39c955b9133b19d14571bf
GET /thumbs/1715107530/75778232_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:46:19 GMT
content-type: image/webp
content-length: 14346
etag: "ed1542782b6104b416e38cfcad0d6f15"
last-modified: Tue, 07 May 2024 18:44:37 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 34
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 88035f42eee7b529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET img.strpst.com/thumbs/1715107530/60952913_webp
200 OK 9.3 kB URL GET HTTP/2 img.strpst.com/thumbs/1715107530/60952913_webp
IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
Fingerprint15:3B:1E:F6:13:E2:CF:39:35:E5:C5:64:DA:91:8D:43:49:24:9E:A8
ValiditySun, 03 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 648x360, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 739d0814c18bb6bae18bc3fbab66092b
7273da574f245e2344766ffa3371aacb1ba1ee8b
89c27bb55dfb60cba891852ec736c552ff3063033ebf59c2f356d6fdf8bc789a
GET /thumbs/1715107530/60952913_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:46:19 GMT
content-type: image/webp
content-length: 9292
etag: "739d0814c18bb6bae18bc3fbab66092b"
last-modified: Tue, 07 May 2024 18:45:16 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 34
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 88035f42ded8b529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET img.strpst.com/thumbs/1715107530/150241245_webp
200 OK 15 kB URL GET HTTP/2 img.strpst.com/thumbs/1715107530/150241245_webp
IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
Fingerprint15:3B:1E:F6:13:E2:CF:39:35:E5:C5:64:DA:91:8D:43:49:24:9E:A8
ValiditySun, 03 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 02e7aa7dae5746df73fb0fd75fc57bfd
1fdb028d4493720e7aa08abc5612fd24386eccf2
d6c8e022286612f7a60ce34e2b688d3687aaddbe8a6376e4ce9c0c932ca3c17a
GET /thumbs/1715107530/150241245_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:46:19 GMT
content-type: image/webp
content-length: 15300
etag: "02e7aa7dae5746df73fb0fd75fc57bfd"
last-modified: Tue, 07 May 2024 18:45:07 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 36
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 88035f42ef07b529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST go.camterest.com/event/ml
200 OK 47 B URL POST HTTP/3 go.camterest.com/event/ml
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectgo.camterest.com
Fingerprint6D:22:79:98:EF:6C:F8:14:AC:D6:1C:33:C5:33:45:18:AF:CB:C2:16
ValidityWed, 24 Apr 2024 06:33:45 GMT - Tue, 23 Jul 2024 06:33:44 GMT
Hash 14f1a0c7fcb39c27038ce916df5e2299
ef3ad17a1a794b2e37a768ce5e8d85a2429cc52d
f2385b6a11a95cb775549bbee25b7eb25cbee0c88dfa41d4f640963abc1ea569
POST /event/ml HTTP/1.1
Host: go.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.camterest.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 536
Origin: https://creative.camterest.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://creative.camterest.com
access-control-allow-credentials: true
content-type: application/json
content-length: 47
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
date: Tue, 07 May 2024 18:46:19 GMT
strict-transport-security: max-age=15768000
GET go.camterest.com/api/models?landing=LPAkira&masterSmartpopId=1603&smartpopId=10251&forceClient=1&stripcashR=0&limit=5&usePreroll&webp=1&sortBy=mlRank
200 OK 836 kB URL GET HTTP/3 go.camterest.com/api/models?landing=LPAkira&masterSmartpopId=1603&smartpopId=10251&forceClient=1&stripcashR=0&limit=5&usePreroll&webp=1&sortBy=mlRank
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectgo.camterest.com
Fingerprint6D:22:79:98:EF:6C:F8:14:AC:D6:1C:33:C5:33:45:18:AF:CB:C2:16
ValidityWed, 24 Apr 2024 06:33:45 GMT - Tue, 23 Jul 2024 06:33:44 GMT
File type gzip compressed data, from Unix
Size 836 kB (836072 bytes)
Hash 47f1a5f4da873e008bfa0ac88a75fffa
298d6ea84df872e2df53f718a09128f9dc038b78
2a3f76769865390d54448509b56eb7f77f5dfcf4d436034ebe22603578e3af82
GET /api/models?landing=LPAkira&masterSmartpopId=1603&smartpopId=10251&forceClient=1&stripcashR=0&limit=5&usePreroll&webp=1&sortBy=mlRank HTTP/1.1
Host: go.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.camterest.com/
Origin: https://creative.camterest.com
DNT: 1
Connection: keep-alive
Cookie: _var=68087848.32818_MTlkOWI5ZjY=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 18:46:19 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: gzip
access-control-allow-credentials: true
content-type: application/json
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
access-control-allow-origin: https://creative.camterest.com
POST go.camterest.com/thumbs/view
200 OK 376 B URL POST HTTP/3 go.camterest.com/thumbs/view
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectgo.camterest.com
Fingerprint6D:22:79:98:EF:6C:F8:14:AC:D6:1C:33:C5:33:45:18:AF:CB:C2:16
ValidityWed, 24 Apr 2024 06:33:45 GMT - Tue, 23 Jul 2024 06:33:44 GMT
Hash ef6ffb3cef56c4a0686a14ad87fb96af
868247ff54106534f4a901456c426508714069c1
a845fc0151f9a07618031d881387a89fede7bd190d03104566ee8df149c8f56b
POST /thumbs/view HTTP/1.1
Host: go.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.camterest.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 356
Origin: https://creative.camterest.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 18:46:19 GMT
content-type: application/json
content-length: 376
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
strict-transport-security: max-age=15768000
access-control-allow-origin: https://creative.camterest.com
access-control-allow-credentials: true
GET stripchat.com/checkUrl
200 OK 15 B IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerCloudflare, Inc.
Subjectstripchat.com
Fingerprint3C:12:9D:04:0C:06:77:D6:C0:CF:16:86:EF:54:A5:31:EE:4A:CC:2E
ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hash 7fb97eb7c8636552ad068f6d56b5ea34
b69679936779fb02503bc0fe1374a737cc762ecb
e78008828abaa93c4462e326ef384dcda1443352a0f24bdeedada6a6fdbfd1d5
GET /checkUrl HTTP/1.1
Host: stripchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.camterest.com/
Origin: https://creative.camterest.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 18:46:19 GMT
content-type: application/json
content-length: 15
access-control-allow-origin: https://creative.camterest.com
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=Oj64mv_l97I_QSeGVZDnL7DdJTL_InxmNXH.DhzShMM-1715107579-1.0.1.1-dKcxF.LKNzPaEJq9P70w69zu9nqWZIW406RFGR_SwZg12WwLG0f3tiI1ed5zJdBqCbrWwCxFAOTud8L_oF0.znXqhoDYsI_efNHR_lTof7w; path=/; expires=Tue, 07-May-24 19:16:19 GMT; domain=.stripchat.com; HttpOnly; Secure; SameSite=None
__cflb=02DiuFntVtrkFMde1dhSUakt32wfAb5N9mMyxSgtjLwpG; SameSite=None; Secure; path=/; expires=Wed, 08-May-24 17:46:19 GMT; HttpOnly
server: cloudflare
cf-ray: 88035f445a031c0a-OSL
alt-svc: h3=":443"; ma=86400
GET www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
200 OK 206 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type JavaScript source, ASCII text, with very long lines (631)
Size 206 kB (205803 bytes)
Hash e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.camterest.com
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 13:33:10 GMT
expires: Wed, 07 May 2025 13:33:10 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 18789
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST go.camterest.com/app/domain-checker/check-result
204 No Content 0 B URL POST HTTP/3 go.camterest.com/app/domain-checker/check-result
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectgo.camterest.com
Fingerprint6D:22:79:98:EF:6C:F8:14:AC:D6:1C:33:C5:33:45:18:AF:CB:C2:16
ValidityWed, 24 Apr 2024 06:33:45 GMT - Tue, 23 Jul 2024 06:33:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /app/domain-checker/check-result HTTP/1.1
Host: go.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.camterest.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 242
Origin: https://creative.camterest.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Tue, 07 May 2024 18:46:20 GMT
strict-transport-security: max-age=15768000
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
access-control-allow-origin: https://creative.camterest.com
access-control-allow-credentials: true
GET go.camterest.com/config?url=https%3A%2F%2Fcreative.camterest.com%2FLPAkira%3Faction%3DsbSignupWithModel%26autoplay%3DallInFocus%26autoplayForce%3D1%26campaignId%3D5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8%26campaignType%3Dsmartpop%26creativeId%3D12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c%26domain%3Dstripchat%26iterationId%3D834960%26masterSmartpopId%3D1603%26memberId%3D39cd677a8e5836ead6aeaea635514235%26mlView%3D1%26p1%3Dctf%26ruleId%3D345%26smartpopId%3D10251%26userId%3Db29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0%26variationId%3D32818
200 OK 6.5 kB URL GET HTTP/3 go.camterest.com/config?url=https%3A%2F%2Fcreative.camterest.com%2FLPAkira%3Faction%3DsbSignupWithModel%26autoplay%3DallInFocus%26autoplayForce%3D1%26campaignId%3D5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8%26campaignType%3Dsmartpop%26creativeId%3D12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c%26domain%3Dstripchat%26iterationId%3D834960%26masterSmartpopId%3D1603%26memberId%3D39cd677a8e5836ead6aeaea635514235%26mlView%3D1%26p1%3Dctf%26ruleId%3D345%26smartpopId%3D10251%26userId%3Db29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0%26variationId%3D32818
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectgo.camterest.com
Fingerprint6D:22:79:98:EF:6C:F8:14:AC:D6:1C:33:C5:33:45:18:AF:CB:C2:16
ValidityWed, 24 Apr 2024 06:33:45 GMT - Tue, 23 Jul 2024 06:33:44 GMT
File type ASCII text, with very long lines (8529), with no line terminators
Hash 65ea018e1f8f706c9c8f312a7722856a
bd4df822e06c222c6832585f2fc5d2411d4e551d
0125a34924a3794ea9973c6e75286287678ea3f27880729e7d9e4822691983b4
GET /config?url=https%3A%2F%2Fcreative.camterest.com%2FLPAkira%3Faction%3DsbSignupWithModel%26autoplay%3DallInFocus%26autoplayForce%3D1%26campaignId%3D5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8%26campaignType%3Dsmartpop%26creativeId%3D12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c%26domain%3Dstripchat%26iterationId%3D834960%26masterSmartpopId%3D1603%26memberId%3D39cd677a8e5836ead6aeaea635514235%26mlView%3D1%26p1%3Dctf%26ruleId%3D345%26smartpopId%3D10251%26userId%3Db29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0%26variationId%3D32818 HTTP/1.1
Host: go.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.camterest.com/
Origin: https://creative.camterest.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
access-control-allow-origin: https://creative.camterest.com
date: Tue, 07 May 2024 18:46:18 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
content-type: application/json
content-encoding: gzip
strict-transport-security: max-age=15768000
access-control-allow-credentials: true
vary: Accept-Encoding
GET www.google.com/recaptcha/api.js?render=explicit
200 OK 852 B URL GET HTTP/2 www.google.com/recaptcha/api.js?render=explicit
IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
File type JavaScript source, ASCII text, with very long lines (852), with no line terminators
Hash 5b87fe9817f32cb6b6073b19e560883e
b10dec390b303c27147ff5585d37d4f43f80e072
0ddbe69535c7d98745100dacb5b79d12052d9731fe06a05f8e5b5bbaa60d1023
GET /recaptcha/api.js?render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Tue, 07 May 2024 18:46:19 GMT
date: Tue, 07 May 2024 18:46:19 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET creative.camterest.com/LPAkira/main.ad495d60566a9b9b7557.css
200 OK 72 kB URL GET HTTP/3 creative.camterest.com/LPAkira/main.ad495d60566a9b9b7557.css
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectcreative.camterest.com
FingerprintB1:2A:B6:DB:A6:43:94:D8:C1:3B:9A:3E:FE:B8:78:39:8C:76:79:8E
ValidityWed, 24 Apr 2024 11:02:07 GMT - Tue, 23 Jul 2024 11:02:06 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash de257e4d88da7068b4205afc3479e24b
14582708051ff4ccc115cd55143ab0c2c4d9e8bd
541ba5476e5e2197bace9f89baa8cc843feae4521b2b4ed289b502636b42abcc
GET /LPAkira/main.ad495d60566a9b9b7557.css HTTP/1.1
Host: creative.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
pragma: public
last-modified: Mon, 29 Apr 2024 08:14:47 GMT
expires: Tue, 07 May 2024 18:46:28 GMT
content-encoding: gzip
date: Tue, 07 May 2024 18:46:18 GMT
vary: Accept-Encoding
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
strict-transport-security: max-age=15768000
report-to: { "url": "https://go.camterest.com/report", "max_age": 1048576 }
cache-control: max-age=10
etag: W/"662f56f7-11a16"
content-type: text/css
GET creative.camterest.com/LPAkira/lang/en.json
200 OK 9.0 kB URL GET HTTP/3 creative.camterest.com/LPAkira/lang/en.json
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerLet's Encrypt
Subjectcreative.camterest.com
FingerprintB1:2A:B6:DB:A6:43:94:D8:C1:3B:9A:3E:FE:B8:78:39:8C:76:79:8E
ValidityWed, 24 Apr 2024 11:02:07 GMT - Tue, 23 Jul 2024 11:02:06 GMT
File type Unicode text, UTF-8 text, with very long lines (9388), with no line terminators
Hash f649911dbc4d48c52fa1e3aed5c7ebed
2c9df0cf4d60202833c2e84f0c3f49805de8c464
08d8f88bfa5998bf6dcb25db05d00765461195b565e33edd0ba60f3b52039b86
GET /LPAkira/lang/en.json HTTP/1.1
Host: creative.camterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
strict-transport-security: max-age=15768000
date: Tue, 07 May 2024 18:46:18 GMT
vary: Accept-Encoding
expires: Tue, 07 May 2024 18:46:28 GMT
content-type: application/json
report-to: { "url": "https://go.camterest.com/report", "max_age": 1048576 }
cache-control: max-age=10
pragma: public
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
etag: W/"662f55d7-2352"
last-modified: Mon, 29 Apr 2024 08:09:59 GMT
content-encoding: gzip
GET video.xxxviiijmp.com/production/whiteLabels/icon/a/1/f/a1f422a1fe818f4b418d7c4fb111533c.jpeg
200 OK 835 kB URL GET HTTP/3 video.xxxviiijmp.com/production/whiteLabels/icon/a/1/f/a1f422a1fe818f4b418d7c4fb111533c.jpeg
IP
Requested by https://creative.camterest.com/LPAkira?action=sbSignupWithModel&autoplay=allInFocus&autoplayForce=1&campaignId=5cad3c1caba869d88fad5ee079b8d701edd64c2f2d10934839acb742df41a4f8&campaignType=smartpop&creativeId=12036f42ace491ec5774cf25375046521201474515efad1c518630c6115a420c&domain=stripchat&iterationId=834960&masterSmartpopId=1603&memberId=39cd677a8e5836ead6aeaea635514235&mlView=1&p1=ctf&ruleId=345&smartpopId=10251&userId=b29d5de8081854ddfa64062b762e5cdd52ba5a9ca8232adaa0bb5b33afa805c0&variationId=32818
Certificate IssuerGoogle Trust Services LLC
Subjectxxxviiijmp.com
FingerprintD2:51:BE:D3:D6:8B:13:7C:71:78:B5:A4:40:B0:A3:9D:40:84:8B:1C
ValidityThu, 11 Apr 2024 07:39:43 GMT - Wed, 10 Jul 2024 07:39:42 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [
- TIFF image data, big-endian, direntries=2], baseline, precision 8, 288x288, components 3
Size 835 kB (834729 bytes)
Hash d3fbb3afcf38c4e9a2b156d1362e6fab
86c8b32aa2a802bd3c6696100a99e995efb2c93c
d9342a347433f7b237298144cc31bf8ebe5b98328b27e6ec004f41b1839ffb5d
GET /production/whiteLabels/icon/a/1/f/a1f422a1fe818f4b418d7c4fb111533c.jpeg HTTP/1.1
Host: video.xxxviiijmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.camterest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 18:46:19 GMT
content-type: image/jpeg
content-length: 834729
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-bgj: h2pri
etag: "d3fbb3afcf38c4e9a2b156d1362e6fab"
last-modified: Mon, 21 Mar 2022 12:58:02 GMT
x-amz-id-2: 4N2IidX0AAS9EzoVcNMi9jz6eHfTUNXcYQLfMghVQHURRBuRQAWnO70QQidTe4FZpVzvfu6yva5d2OefJe1Ilg==
x-amz-request-id: SCZNE8Q9MS2X2YS7
x-amz-version-id: sZwAAIq.jocSZEh1X8g2iE5uaQZYzlOr
cf-cache-status: HIT
age: 3746
expires: Tue, 07 May 2024 22:46:19 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 88035f441c14712a-OSL
alt-svc: h3=":443"; ma=86400
172.240.108.68
88.208.20.10
104.18.53.225