GET ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/front.crollbar.css
200 OK 1.7 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/front.crollbar.css
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (7898), with no line terminators
Hash 3ab465cc8630739a550d9a01e89da345
a5da49bcc9493ab18acef886d73fb2519c944477
71f34b962b76fe3e1a18f5576687ad13bbbdd932f4b3bfb2609cd3d20856c5a4
GET /wp-content/themes/dooplay/assets/css/front.crollbar.css HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=9183
etag: W/"23df-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 216831107
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1647935
server: cloudflare
cf-ray: 833b0a50682f7131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/front.icons.css
200 OK 1.8 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/front.icons.css
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (5783), with no line terminators
Hash c1dca44b5e78547bfc06865272af1986
5775eae10158058eb7b03fdb852e6800a1d78b10
eb2b31b56400b568b2a766d3f20f289f49adb02ecf4fb27a4b7399ae7180b7ca
GET /wp-content/themes/dooplay/assets/css/front.icons.css HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=7099
etag: W/"1bbb-5b611d3488dc0"
last-modified: Thu, 10 Dec 2020 01:09:19 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 191170845
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1542276
server: cloudflare
cf-ray: 833b0a50682d7131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET gorgetmobiles.com/faTgqko0Zpbt/70993
200 OK 26 B URL GET HTTP/1.1 gorgetmobiles.com/faTgqko0Zpbt/70993
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectgorgetmobiles.com
Fingerprint50:65:18:D8:7F:1F:70:3D:4C:C6:D3:5C:A1:BA:C8:8E:52:8B:58:4B
ValidityTue, 28 Nov 2023 23:16:04 GMT - Mon, 26 Feb 2024 23:16:03 GMT
File type ASCII text, with no line terminators
Hash 4fc71bf68a1d477bd1523733e34d1e90
15119105cffbe108b6cf290146ab02c9aa8517ba
74c1971a5c7f3f1cfb81b7a0a8717cee5a45841844104566e00bbfca271943ce
GET /faTgqko0Zpbt/70993 HTTP/1.1
Host: gorgetmobiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 11 Dec 2023 04:38:49 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://ww3.animeonline.ninja
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2BWXVBJ%2BEAHqFVQXz0Za%2FgIyntH6wL7aZU0NtLTPRtMvlNJgiCqLpFuGYp4k9R414NvJGs5fKhfmRNUz8JRkPfvvTtc8MFa3Gll86LfiKf4LDMwvnOrwmOIxlyWnbSKipwt6u%2F5mzsZhKkvRNGFUjnXUwF8t7ZbSFXxUiMmAn5STsa7NcuxId1iDmr96zNnkOGyC5VXF4jf9NG7cvyiIizsswC3Fwm4Qfr5k6rLEQ6OqEI4SsOUngarftGrmg5e3sB7KS6f%2F97HG%2BcIVO0aklIrX8n9wNBjE5s; expires=Tue, 12-Dec-2023 04:38:49 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Tue, 12-Dec-2023 04:38:49 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
271 B URL ww3.animeonline.ninja/wp-content/themes/dooplay-child%20barra%20v2/style.css
IP
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (631), with no line terminators
Hash d4e3ecf4bf87621d72f6f5fa9a549c78
740fb4222ea469fa76b3b62770d77d4143556f87
86cf3f2087094dd245d0c739df3bc71696427f0aff54b60a3c5bd89f407c3a2f
GET /wp-content/themes/dooplay-child%20barra%20v2/style.css HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=1215
etag: W/"4bf-5e27828527a00"
last-modified: Tue, 28 Jun 2022 01:43:04 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 130216265
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1196411
server: cloudflare
cf-ray: 833b0a50c8467131-OSL
content-encoding: br
X-Firefox-Spdy: h2
2.9 kB IP
File type ASCII text, with very long lines (7592)
Hash 07fe35141cda0f20af8dc2923c6ca92d
2c2ae90cb0367d28374e4b4075b9ba029fc83327
b2c48824e00f3c619dffc3464284244b64b11a3c0313ab3242dbd422e07ccb2d
GET /widget.min.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 2949
date: Mon, 11 Dec 2023 03:57:48 GMT
last-modified: Mon, 04 Dec 2023 21:20:53 GMT
content-encoding: br
cache-control: public, max-age=3600, stale-while-revalidate=864000
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
etag: "656e42b5-b85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uGNivpduqDYeS_bkYtnnYM1qbU1K8k5F-whn18D20Pg6oyWbvHj3Bg==
age: 2462
X-Firefox-Spdy: h2
5.4 kB URL ww3.animeonline.ninja/wp-includes/js/jquery/jquery-migrate.min.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (13326)
Hash 5cfa2b481de6e87c2190a0e3538515d8
0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68
9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: text/javascript; charset=utf-8
last-modified: Thu, 13 Apr 2023 09:28:11 GMT
etag: W/"3470-5f93457d8e0c0"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
vary: Accept-Encoding
x-varnish: 789063277
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cf-cache-status: HIT
server: cloudflare
cf-ray: 833b0a5279107131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:57:09 GMT
expires: Fri, 06 Dec 2024 15:57:09 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 304901
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
16 kB URL fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:57:34 GMT
expires: Fri, 06 Dec 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 344476
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0
- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:36:53 GMT
expires: Thu, 05 Dec 2024 21:36:53 GMT
cache-control: public, max-age=31536000
age: 370917
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-ES0BC9NXD9
200 OK 86 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-ES0BC9NXD9
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT
File type ASCII text, with very long lines (3034)
Hash 6c3c5ead8e8c4075b8e1fc124050090c
557a7addb647046aab8959ee4b759dc8480afacb
2c1cbd76212aee2f9165065f46d5cb1ee8bc29c25b836167b75589d0bc954ae6
GET /gtag/js?id=G-ES0BC9NXD9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 11 Dec 2023 04:38:50 GMT
expires: Mon, 11 Dec 2023 04:38:50 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86191
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:46:25 GMT
expires: Fri, 06 Dec 2024 15:46:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 305545
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET ww3.animeonline.ninja/wp-content/uploads/2019/09/cropped-avatar2-1-300x300.jpg
200 OK 15 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/uploads/2019/09/cropped-avatar2-1-300x300.jpg
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3
- data
Hash da1dc0d7c3b4f30a945fed6ff0062228
2cb09a95d334f7e984cff9b22b452a1eca0d92b9
467a13b124564e14a6dd9a8db90ea78ad89e4b4f1c2d8b4495faf8a85f2ab458
GET /wp-content/uploads/2019/09/cropped-avatar2-1-300x300.jpg HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: image/jpeg
content-length: 14884
last-modified: Wed, 20 May 2020 10:59:38 GMT
etag: "3a24-5a6124acb1a80"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
x-varnish: 186041338
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1112173
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a5509f17131-OSL
X-Firefox-Spdy: h2
GET ww3.animeonline.ninja/wp-content/uploads/2019/09/cropped-avatar2-1-150x150.jpg
200 OK 6.2 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/uploads/2019/09/cropped-avatar2-1-150x150.jpg
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3
- data
Hash 315f7c13cbb68dd4122c5f8ef40e4193
456d944dc97172a844e2aff1d296d48084d3f1d9
72da16cc30a9a3a69bb5bb109eea463a980db759a71eeee35c215585de3facaa
GET /wp-content/uploads/2019/09/cropped-avatar2-1-150x150.jpg HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: image/jpeg
content-length: 6160
last-modified: Wed, 20 May 2020 10:59:38 GMT
etag: "1810-5a6124acb1a80"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
x-varnish: 96277347
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1196411
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a5509f37131-OSL
X-Firefox-Spdy: h2
850 B URL static.tumblr.com/ftv85bp/MIXmud4tx/search-icon.png
IP
File type PNG image data, 18 x 19, 8-bit/color RGBA, non-interlaced
- data
Hash eb6e4dd954c97644c6f29c59d72a9181
a20de89922265981ab67952330a755ef82e1b99a
20f3ea6786d16edfa8d6c3020aa3fc3cb7651612014df44a10d1108cddcfbcdb
GET /ftv85bp/MIXmud4tx/search-icon.png HTTP/1.1
Host: static.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: image/png
content-length: 850
last-modified: Tue, 08 Oct 2013 18:32:22 GMT
etag: "eb6e4dd954c97644c6f29c59d72a9181"
vary: Accept-Encoding
age: 18
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 1
strict-transport-security: max-age=31536000; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
OPTIONS scl6gc5l.site/api/data/analytics_ads
204 No Content 0 B URL OPTIONS HTTP/1.1 scl6gc5l.site/api/data/analytics_ads
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGlobalSign nv-sa
Subjectwww.scl6gc5l.site
FingerprintC4:63:2C:B2:9F:48:F2:11:12:9F:DB:A3:7E:39:90:6E:99:72:24:85
ValidityTue, 21 Nov 2023 19:15:40 GMT - Sun, 22 Dec 2024 19:15:39 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/analytics_ads HTTP/1.1
Host: scl6gc5l.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ww3.animeonline.ninja/
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 11 Dec 2023 04:38:50 GMT
Connection: keep-alive
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: *
POST syndication.exdynsrv.com/v1/api.php
200 OK 774 B URL POST HTTP/1.1 syndication.exdynsrv.com/v1/api.php
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectexdynsrv.com
Fingerprint8D:40:F0:75:CC:6E:55:85:E3:CD:04:C6:BF:F5:9F:81:74:ED:C3:24
ValidityThu, 05 Oct 2023 15:23:51 GMT - Wed, 03 Jan 2024 15:23:50 GMT
File type JSON data
- exported SGML document, ASCII text, with very long lines (1064), with no line terminators
Hash 6b6c20f8a890843b97814743c57ae9c3
12f57915d5be0a98a8f187ad4c66ef8222e5b426
260d9bcf75102e70b69eed581311d2fced94d2d7b56bd89feca37396f057a7ef
POST /v1/api.php HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 338
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 11 Dec 2023 04:38:50 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://ww3.animeonline.ninja
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226576925ab7b661.18310737844858330%22%3B%7D; expires=Wed, 10-Dec-2025 04:38:50 GMT; Max-Age=63072000; path=/; domain=exdynsrv.com; secure; SameSite=None
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
OPTIONS scl6gc5l.site/api/data/analytics_ads
204 No Content 358 B URL OPTIONS HTTP/1.1 scl6gc5l.site/api/data/analytics_ads
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGlobalSign nv-sa
Subjectwww.scl6gc5l.site
FingerprintC4:63:2C:B2:9F:48:F2:11:12:9F:DB:A3:7E:39:90:6E:99:72:24:85
ValidityTue, 21 Nov 2023 19:15:40 GMT - Sun, 22 Dec 2024 19:15:39 GMT
File type JSON data
- , ASCII text, with very long lines (358), with no line terminators
Hash fdb49411ebc98358599484d693b58198
2a16f3ae2e781b68c4d9003bd0e7b031238cf064
e6fe6c1ffe3219617385b94d8693aa608190ac1c175aac85164de62cb484f559
POST /api/data/analytics_ads HTTP/1.1
Host: scl6gc5l.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 158
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 11 Dec 2023 04:38:50 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
GET whoursie.com/tag.min.js
200 OK 26 kB IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectwhoursie.com
FingerprintE6:9B:BD:04:21:08:48:F2:96:91:7A:0D:C0:C3:20:3E:0F:43:04:22
ValidityThu, 30 Nov 2023 05:09:17 GMT - Wed, 28 Feb 2024 05:09:16 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash bb657d1047756d414ca6f954c6d8bb09
7f0be8ba49b51f627cf197b1a312684b9e37a3cc
d832287476725c8d9631f8a146e42631811e0db07ec426eabf8b02292803521e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tag.min.js HTTP/1.1
Host: whoursie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: text/javascript; charset=utf-8
content-length: 25676
content-encoding: br
x-trace-id: 01366c8fa01f855a947a76751f20f8dd
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Sun, 10 Dec 2023 21:42:26 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
1.5 kB URL ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530682&screen=1280x1024&tags=
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (579)
Hash 708fd01f47a5cea1fdd61962ea61c47b
c563a49e8f4ba57d2dbb6b10da2b5cb0f7da4877
828764280ee671deca8b65aebdb6cf107c86c49bd778be4ab49e956da872539c
GET /ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530682&screen=1280x1024&tags= HTTP/1.1
Host: ads.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: text/html; charset=utf-8
content-length: 1479
cache-control: no-cache
X-Firefox-Spdy: h2
1.5 kB URL ads.adxadserv.com/ad?spotid=60e4b63761d6e272165ed9c5&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530686&screen=1280x1024&tags=
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (580)
Hash 8b1de27f50497ce6cb915a360ba643da
440ffcbce9bca49b660fb6f396f8f9e15b732e86
f32912fad2676231800022e6115ac752b44dd15f8111d1458ff5de4a5be39615
GET /ad?spotid=60e4b63761d6e272165ed9c5&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530686&screen=1280x1024&tags= HTTP/1.1
Host: ads.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/html; charset=utf-8
content-length: 1519
cache-control: no-cache
X-Firefox-Spdy: h2
GET ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530694&screen=1280x1024&tags=
200 OK 1.5 kB URL GET HTTP/2 ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530694&screen=1280x1024&tags=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectads.adxadserv.com
Fingerprint70:CD:DE:2A:A2:EF:09:F0:B6:28:0D:89:0D:62:5D:45:FA:43:AF:0D
ValidityFri, 13 Oct 2023 20:21:22 GMT - Thu, 11 Jan 2024 20:21:21 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (581)
Hash a80e4f4ff5c819094cdc5d7ba447e0e5
100fafd6ee3e1d8a8bff71c21a3e21ad911a07b3
a57ab163a8433b947e5763dec8bcc0b4d01bf2bb94d19782869619f1739e29a5
GET /ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530694&screen=1280x1024&tags= HTTP/1.1
Host: ads.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/html; charset=utf-8
content-length: 1520
cache-control: no-cache
X-Firefox-Spdy: h2
GET ads.adxadserv.com/ad?spotid=60e4b64461d6e27e372dcee6&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530689&screen=1280x1024&tags=
200 OK 1.5 kB URL GET HTTP/2 ads.adxadserv.com/ad?spotid=60e4b64461d6e27e372dcee6&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530689&screen=1280x1024&tags=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectads.adxadserv.com
Fingerprint70:CD:DE:2A:A2:EF:09:F0:B6:28:0D:89:0D:62:5D:45:FA:43:AF:0D
ValidityFri, 13 Oct 2023 20:21:22 GMT - Thu, 11 Jan 2024 20:21:21 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (580)
Hash ed1ff193226c91eef34e3ae3caf9ee52
673d95e20131a0c4f7af7b031e33d16e15481f34
0a4c252a584e0b91fa4245a2ec93ad46fdfca80fb0cd296400c38981b671368e
GET /ad?spotid=60e4b64461d6e27e372dcee6&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530689&screen=1280x1024&tags= HTTP/1.1
Host: ads.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/html; charset=utf-8
content-length: 1519
cache-control: no-cache
X-Firefox-Spdy: h2
1.3 kB URL core.arc.io/broker.html?a633436
IP
ASN #34989 ServeTheWorld AS
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, Unicode text, UTF-8 text, with very long lines (920)
Hash 729ed8cf68dc2bb3af0b9e88942c5e94
a9afee9cae5086ada59fa9067fdac32b755764b2
fba7b9242113390e99277bd207daba9b5b1bf029ae5a5867472cf0d8c589b05d
GET /broker.html?a633436 HTTP/1.1
Host: core.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 786568
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
etag: W/"64331d06-612"
expires: Wed, 03 Jan 2024 21:57:54 GMT
last-modified: Sun, 09 Apr 2023 20:16:06 GMT
strict-transport-security: max-age=15724800; includeSubDomains
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:57:54
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0a09b0f5cee207b68382023b5e93365f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/oAfY4zbEfpdBvvqq3TTp5w1ek4T.jpg
200 OK 6.4 kB URL GET HTTP/2 image.tmdb.org/t/p/w300/oAfY4zbEfpdBvvqq3TTp5w1ek4T.jpg
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash a35218c52c68e5beac47f94d4a6f3b84
0fa81abab00c6897a83a5cc6e404860836ea95ec
2a24ec5d5a6ba18ca98a8897abd7467faef8c6417dafa9d6348f4ba95479e377
GET /t/p/w300/oAfY4zbEfpdBvvqq3TTp5w1ek4T.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: image/jpeg
content-length: 6389
server: BunnyCDN-DE1-723
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: public, max-age=31919000
etag: a35218c52c68e5beac47f94d4a6f3b84
last-modified: Thu, 07 Dec 2023 10:18:31 GMT
perma-cache: MISS
imagery: degrade=75, sample=2x2, difference=1.191
cache-tag: oAfY4zbEfpdBvvqq3TTp5w1ek4T
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/07/2023 11:42:56
cdn-edgestorageid: 1079
cdn-status: 200
cdn-requestid: 6da721adab25e684c937273848f31916
cdn-cache: HIT
X-Firefox-Spdy: h2
GET syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01PW04DMQy8ChfYyK883G/4BamoB9jNZqVFkCJAtEg+PEmEKuJ8TJzxzJiAeEKaEO6ID5wOHkzRKTghh17s8elogvZdPua6vxX3dX43VCYkC6yi3hJEkGjCkZIm8xiNAwL1Lx+8gIC1ywatyLNIRw6AfJRGsYfT0U7P962n6NnQyBjgSi0KDn9raibtAdeuEfImSWKGElrCXBahgBTXrInnlddOtMuF3Uh8rq97La7u9WUeEYY5qg4juNXUpxiFqQVsB2y058+fms3+EfuiCqEhfxPos/aHLG9tNyhKui0YN5kDLhzXAolXkZB/AeUlgW50AQAA
200 OK 20 B URL GET HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01PW04DMQy8ChfYyK883G/4BamoB9jNZqVFkCJAtEg+PEmEKuJ8TJzxzJiAeEKaEO6ID5wOHkzRKTghh17s8elogvZdPua6vxX3dX43VCYkC6yi3hJEkGjCkZIm8xiNAwL1Lx+8gIC1ywatyLNIRw6AfJRGsYfT0U7P962n6NnQyBjgSi0KDn9raibtAdeuEfImSWKGElrCXBahgBTXrInnlddOtMuF3Uh8rq97La7u9WUeEYY5qg4juNXUpxiFqQVsB2y058+fms3+EfuiCqEhfxPos/aHLG9tNyhKui0YN5kDLhzXAolXkZB/AeUlgW50AQAA
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectexdynsrv.com
Fingerprint8D:40:F0:75:CC:6E:55:85:E3:CD:04:C6:BF:F5:9F:81:74:ED:C3:24
ValidityThu, 05 Oct 2023 15:23:51 GMT - Wed, 03 Jan 2024 15:23:50 GMT
File type gzip compressed data, max speed, from Unix
- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01PW04DMQy8ChfYyK883G/4BamoB9jNZqVFkCJAtEg+PEmEKuJ8TJzxzJiAeEKaEO6ID5wOHkzRKTghh17s8elogvZdPua6vxX3dX43VCYkC6yi3hJEkGjCkZIm8xiNAwL1Lx+8gIC1ywatyLNIRw6AfJRGsYfT0U7P962n6NnQyBjgSi0KDn9raibtAdeuEfImSWKGElrCXBahgBTXrInnlddOtMuF3Uh8rq97La7u9WUeEYY5qg4juNXUpxiFqQVsB2y058+fms3+EfuiCqEhfxPos/aHLG9tNyhKui0YN5kDLhzXAolXkZB/AeUlgW50AQAA HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226576925ab7b661.18310737844858330%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 11 Dec 2023 04:38:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://ww3.animeonline.ninja
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22517.0199%22%7D; expires=Wed, 10 Dec 2025 04:38:51 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
8.5 kB URL image.tmdb.org/t/p/w300/30kuWcgXImAyx34GdsbINMuyduN.jpg
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash e25965c1a75fa0a8a3fa806340f3645a
fa1b681b8d20341515405331933e8ae6f728599d
0c88ce328e8765dae770187a586fcc3844cdc8e0350ad8ff097093b33cf55a54
GET /t/p/w300/30kuWcgXImAyx34GdsbINMuyduN.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: image/jpeg
content-length: 8527
server: BunnyCDN-DE1-723
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: public, max-age=31919000
etag: e25965c1a75fa0a8a3fa806340f3645a
last-modified: Sat, 09 Dec 2023 08:07:13 GMT
perma-cache: MISS
imagery: degrade=75, sample=2x2, difference=1.136
cache-tag: 30kuWcgXImAyx34GdsbINMuyduN
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/09/2023 09:28:33
cdn-edgestorageid: 874
cdn-status: 200
cdn-requestid: e723e4cadcd1c2b3a31d868346c2147c
cdn-cache: HIT
X-Firefox-Spdy: h2
10 kB URL image.tmdb.org/t/p/w300/4XN9wvQbnE6VjvjjafzBZjV6vn0.jpg
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash 1b8f07df1cf9a1a866108147655cc08c
0f4427ed309d5bc7188531cad7800c3537afff30
31424d6aa40934e3213026589ca598e2828c96375e22b3015acbc66d4ddf15d4
GET /t/p/w300/4XN9wvQbnE6VjvjjafzBZjV6vn0.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: image/jpeg
content-length: 10296
server: BunnyCDN-DE1-723
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "65758953-2838"
last-modified: Sun, 10 Dec 2023 09:48:03 GMT
cdn-storageserver: NY-268
cdn-requestpullsuccess: True
cdn-fileserver: 695
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/10/2023 12:41:42
cdn-edgestorageid: 1079
cdn-status: 200
cdn-requestid: 8daf86737d719a1ecf5ad3d8667e171c
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
14 kB URL ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/front.owl.css
IP
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (2346), with no line terminators
Hash 8b1af7d65db44fcab7fab55d8b63a845
eb86a25e6f7d0d33bc3f1b3c98a4c20955d10f2b
dd42dfb932de28a46124baa110eb4dc1770cd716b2a26c4e3ddfdfb2ed844aa9
GET /wp-content/themes/dooplay/assets/css/front.owl.css HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=3016
etag: W/"bc8-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 194453665
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1542276
server: cloudflare
cf-ray: 833b0a5058277131-OSL
content-encoding: br
X-Firefox-Spdy: h2
6.7 kB URL image.tmdb.org/t/p/w300/27dkhYcFla89hgkMGaIAL2qMUG2.jpg
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash b8b4da00ac64fa2e0b15ab6a65198a39
0918b78b731ef139a87c4ecfa90267ba398fe540
ed6579efbefe8f71c2705a2e9532aa448f1f4450f556fa8b0f8796d7c82df57e
GET /t/p/w300/27dkhYcFla89hgkMGaIAL2qMUG2.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: image/jpeg
content-length: 6699
server: BunnyCDN-DE1-723
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "65758954-1a2b"
last-modified: Sun, 10 Dec 2023 09:48:04 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 704
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/10/2023 12:56:42
cdn-edgestorageid: 756
cdn-status: 200
cdn-requestid: 94bdb1f950cd52148632b10fdccf613c
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
8.8 kB URL image.tmdb.org/t/p/w300/poxThlj1Zi0869W4xm7hfbknkho.jpg
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash 63a1f7a70b256c24ee5f068e4ded277e
4a28a89172373b4ba4e264623feee1f08efb951d
4b417c2a037169c8c767e75da9d709209a4ae0fccdc1dbc9b3f4a52448b97715
GET /t/p/w300/poxThlj1Zi0869W4xm7hfbknkho.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: image/jpeg
content-length: 8827
server: BunnyCDN-DE1-723
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6290b5fd-227b"
last-modified: Fri, 27 May 2022 11:29:01 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 354
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/09/2023 22:36:24
cdn-edgestorageid: 1055
cdn-status: 200
cdn-requestid: fdeb09faab0f7b65c86c64102025355f
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
11 kB URL image.tmdb.org/t/p/w300/4EupdOarC2qR4As9F3GKuOGlU2W.jpg
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash ca4788b3965a30a1761b94289ae8e384
f4b1fab3ddb177660ade72b34fa8b0f2d9261656
82cf7cf88f2c460d7bdeec3f1470f9f85d74663166f8286c5e365ddec5518b8b
GET /t/p/w300/4EupdOarC2qR4As9F3GKuOGlU2W.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: image/jpeg
content-length: 11155
server: BunnyCDN-DE1-723
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6575df05-2b93"
last-modified: Sun, 10 Dec 2023 15:53:41 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 704
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/10/2023 16:25:39
cdn-edgestorageid: 722
cdn-status: 200
cdn-requestid: 9908732186f289489b8192b76822c0db
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/zNPw1CAtLs2ypyJhLiFQxZZK6de.jpg
200 OK 12 kB URL GET HTTP/2 image.tmdb.org/t/p/w300/zNPw1CAtLs2ypyJhLiFQxZZK6de.jpg
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash 55cba32d0d67df1e40294183a9db74e6
48b4cf27b0aebd39ccc14280f891b632eeb9bf98
44abcd5f101fa30382f9d950860d4d735cda91efe8a386da33cefdbfca470809
GET /t/p/w300/zNPw1CAtLs2ypyJhLiFQxZZK6de.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: image/jpeg
content-length: 12482
server: BunnyCDN-DE1-723
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: public, max-age=31919000
etag: 55cba32d0d67df1e40294183a9db74e6
last-modified: Thu, 07 Dec 2023 08:36:55 GMT
perma-cache: MISS
imagery: degrade=77, sample=2x2, difference=1.16
cache-tag: zNPw1CAtLs2ypyJhLiFQxZZK6de
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/07/2023 09:57:25
cdn-edgestorageid: 1078
cdn-status: 200
cdn-requestid: 921c5bedd88101763398ae9888ad1b42
cdn-cache: HIT
X-Firefox-Spdy: h2
10 kB URL image.tmdb.org/t/p/w300/zudIBME8WHd8K4xp3DTcVAHdwQq.jpg
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash b7bd5069b9022582c2137e1efbc29e04
bfa7d1cb07dde60a0ad8e8f3da6078fc7fa5dbf4
abaf7c62e4887dadc1b7071fe1be8904b38786da2b919221f0491b586ec5b13e
GET /t/p/w300/zudIBME8WHd8K4xp3DTcVAHdwQq.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: image/jpeg
content-length: 10398
server: BunnyCDN-DE1-723
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: public, max-age=31919000
etag: b7bd5069b9022582c2137e1efbc29e04
last-modified: Sat, 18 Nov 2023 09:03:53 GMT
perma-cache: MISS
imagery: degrade=79, sample=2x2, difference=1.104
cache-tag: zudIBME8WHd8K4xp3DTcVAHdwQq
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/18/2023 11:42:46
cdn-edgestorageid: 874
cdn-status: 200
cdn-requestid: b22c27a4bf9b2f7f7be49251ed362124
cdn-cache: HIT
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/hW5cdlZEVHW0SRW0Lgf4UNBIPZz.jpg
200 OK 15 kB URL GET HTTP/2 image.tmdb.org/t/p/w300/hW5cdlZEVHW0SRW0Lgf4UNBIPZz.jpg
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash a0ce3ea699da089491f03503ea425db2
753d549d210086fc0ab5d00dde2c9dc88e15008e
172acdc90b75aa253ae552513d51f4cc7929664186ca2192b412f26d3d5149ea
GET /t/p/w300/hW5cdlZEVHW0SRW0Lgf4UNBIPZz.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: image/jpeg
content-length: 15092
server: BunnyCDN-DE1-723
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6296d150-3af4"
last-modified: Wed, 01 Jun 2022 02:39:12 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 353
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/09/2023 20:32:26
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: e7a29040fe1ddd1e019e803e9d250101
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET static.arc.io/broker/js/broker.9e6bf337.js
200 OK 30 kB URL GET HTTP/2 static.arc.io/broker/js/broker.9e6bf337.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?a633436
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (24359)
Hash 0f4be176d7381439a060ff326b994fd2
a2157b6419a02054e10fd69cad0df08ee46c85a8
15dd17bc017fd6b5c5874bf0c0f127131b09f9f8a4a5f596aa846269f4bad7c9
GET /broker/js/broker.9e6bf337.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"0f4be176d7381439a060ff326b994fd2"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: MdYC/fgm5vp0bxrSAhuwjbuHWu4Y35WwaG5fDD00zX/bYsfNAiIsVuiQGXM11aZqKKqNac9K1FM=
x-amz-request-id: QRX3S5ERTYB3DPA2
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:11:06
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0f44bb8330a5b4f7b1f32c726ab48332
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
65 B URL my.rtmark.net/gid.js?userId=65a8bf2c64d143c8a5f9799b92ed03d9
IP
Hash f142b9dbe20dcb7ab79560d9e2f6f1d9
11f64ec958ebab312b0ae1b6ea8ff08541cfd65a
a7f5da7d084ecd72d407aefbc5f6a8b64d9ef5e1c9b2ca4c850158c7347fa25d
GET /gid.js?userId=65a8bf2c64d143c8a5f9799b92ed03d9 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://ww3.animeonline.ninja
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=65a8bf2c64d143c8a5f9799b92ed03d9; expires=Tue, 10 Dec 2024 04:38:51 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
1.2 kB URL r.trackwilltrk.com/s1/75c0e507-8b96-41c4-9015-f760805d7d15?externalId=a1a5346d-e7ff-4891-b9b7-e49f90e0635e&cv1=a1a5346d-e7ff-4891-b9b7-e49f90e0635e&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=6481cc5d61d6e264924bf753&cv5=6481cc5d61d6e264924bf752&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b63761d6e272165ed9c5&cv10=exim_adxad_stub3_300x250
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document, ASCII text, with very long lines (449)
Hash 5cce5a628cab0b7263fb91ac14cc807d
f71bea74c9dbb2bf30caf74e430744652cfee18b
d8c6b6831fbfb1d670dd5e45ec0467fe1da6a0ea4390b480324384ae2ffa2b0f
GET /s1/75c0e507-8b96-41c4-9015-f760805d7d15?externalId=a1a5346d-e7ff-4891-b9b7-e49f90e0635e&cv1=a1a5346d-e7ff-4891-b9b7-e49f90e0635e&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=6481cc5d61d6e264924bf753&cv5=6481cc5d61d6e264924bf752&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b63761d6e272165ed9c5&cv10=exim_adxad_stub3_300x250 HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Mon, 11 Dec 2023 04:38:51 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: uid=C8KCSFn-pj; Path=/; Domain=trackwilltrk.com; Expires=Tue, 12 Dec 2023 04:38:51 GMT; HttpOnly
X-Request-Id: e752ea41-f94e-4dbd-a9ec-9010ad7518d8
Content-Encoding: gzip
GET r.trackwilltrk.com/s1/75c0e507-8b96-41c4-9015-f760805d7d15?externalId=64573e7a-f9d5-4c12-9666-1f684b7da1a5&cv1=64573e7a-f9d5-4c12-9666-1f684b7da1a5&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=6481cc5d61d6e264924bf753&cv5=6481cc5d61d6e264924bf752&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64461d6e27e372dcee6&cv10=exim_adxad_stub3_300x250
200 OK 1.2 kB URL GET HTTP/1.1 r.trackwilltrk.com/s1/75c0e507-8b96-41c4-9015-f760805d7d15?externalId=64573e7a-f9d5-4c12-9666-1f684b7da1a5&cv1=64573e7a-f9d5-4c12-9666-1f684b7da1a5&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=6481cc5d61d6e264924bf753&cv5=6481cc5d61d6e264924bf752&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64461d6e27e372dcee6&cv10=exim_adxad_stub3_300x250
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64461d6e27e372dcee6&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530689&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectr.trackwilltrk.com
Fingerprint7C:C7:38:E4:D4:9A:D8:A7:4E:3B:33:43:DA:B9:1E:86:98:DA:B1:71
ValidityTue, 14 Nov 2023 07:21:50 GMT - Mon, 12 Feb 2024 07:21:49 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document, ASCII text, with very long lines (449)
Hash 8a6d9e9aae70b09de980b2caef7aa9d2
f0c0ed66a3488129f0e550dab2aacf248d2512f5
99018f8ccdcf696042303ba079b7e956abd2a66b22dae01c695216f5aac82a50
GET /s1/75c0e507-8b96-41c4-9015-f760805d7d15?externalId=64573e7a-f9d5-4c12-9666-1f684b7da1a5&cv1=64573e7a-f9d5-4c12-9666-1f684b7da1a5&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=6481cc5d61d6e264924bf753&cv5=6481cc5d61d6e264924bf752&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64461d6e27e372dcee6&cv10=exim_adxad_stub3_300x250 HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Mon, 11 Dec 2023 04:38:51 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: uid=R5KCS3czpH; Path=/; Domain=trackwilltrk.com; Expires=Tue, 12 Dec 2023 04:38:51 GMT; HttpOnly
X-Request-Id: d3e56058-84d2-4263-9c74-8f4067dbd627
Content-Encoding: gzip
GET r.trackwilltrk.com/s1/e766d629-8aa2-4f64-800f-7458117d07a9?externalId=82fa6118-d31a-45c1-9b1c-66ab45f8d530&cv1=82fa6118-d31a-45c1-9b1c-66ab45f8d530&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d833161d6e27cf559bde1&cv5=623d831361d6e2739a0c4ca4&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64b61d6e272e90b980b&cv10=exim_adxad_stub1_300x250_
200 OK 1.2 kB URL GET HTTP/1.1 r.trackwilltrk.com/s1/e766d629-8aa2-4f64-800f-7458117d07a9?externalId=82fa6118-d31a-45c1-9b1c-66ab45f8d530&cv1=82fa6118-d31a-45c1-9b1c-66ab45f8d530&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d833161d6e27cf559bde1&cv5=623d831361d6e2739a0c4ca4&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64b61d6e272e90b980b&cv10=exim_adxad_stub1_300x250_
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530694&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectr.trackwilltrk.com
Fingerprint7C:C7:38:E4:D4:9A:D8:A7:4E:3B:33:43:DA:B9:1E:86:98:DA:B1:71
ValidityTue, 14 Nov 2023 07:21:50 GMT - Mon, 12 Feb 2024 07:21:49 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document, ASCII text, with very long lines (450)
Hash 25db862fb08df6feccfed8056059149f
7c52c074b0af087e07bab1b2fa32d9e65bb5b42c
667b49d19a87c70f37e25c88f6024e42b445f0fcf2f9572dbb8fdf99cecb2f5b
GET /s1/e766d629-8aa2-4f64-800f-7458117d07a9?externalId=82fa6118-d31a-45c1-9b1c-66ab45f8d530&cv1=82fa6118-d31a-45c1-9b1c-66ab45f8d530&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d833161d6e27cf559bde1&cv5=623d831361d6e2739a0c4ca4&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64b61d6e272e90b980b&cv10=exim_adxad_stub1_300x250_ HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Mon, 11 Dec 2023 04:38:51 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: uid=BNdkS3nzp; Path=/; Domain=trackwilltrk.com; Expires=Tue, 12 Dec 2023 04:38:51 GMT; HttpOnly
X-Request-Id: 205d3489-7d21-4cdb-98ac-628ad04e7e53
Content-Encoding: gzip
GET my.rtmark.net/img.gif?f=sync&lr=1&partner=3c31714cb43d8cad76b686191340e198fbf9abb01c60cc8f2696befec37406ed
200 OK 43 B URL GET HTTP/2 my.rtmark.net/img.gif?f=sync&lr=1&partner=3c31714cb43d8cad76b686191340e198fbf9abb01c60cc8f2696befec37406ed
IP
Requested by https://iliketomakingpics.com/iframe/5dcda983a80c7?iframe&ag_custom_domain=veranime.top
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type GIF image data, version 89a, 1 x 1
- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&lr=1&partner=3c31714cb43d8cad76b686191340e198fbf9abb01c60cc8f2696befec37406ed HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ID=65a8bf2c64d143c8a5f9799b92ed03d9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=65a8bf2c64d143c8a5f9799b92ed03d9; expires=Tue, 10 Dec 2024 04:38:51 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
1.3 kB URL r.trackwilltrk.com/s1/a07e547b-49b9-41f3-9d4b-f6343c4a8d0b?externalId=6ec6d26b-2b01-4265-970a-6b9bd969570f&cv1=6ec6d26b-2b01-4265-970a-6b9bd969570f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d89ca61d6e210ac324fb9&cv5=623d896b61d6e210ac324fb7&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b65361d6e27e372dcee7&cv10=exim_adxad_stub2_300x100_
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document, ASCII text, with very long lines (698)
Hash e0fb2fe1e62976f04638e6cbeeb8d66e
be90f50a5a8edf14d2f2e103c8262079340b3031
82ec63a7e024bad205ebc8157922fa628940bcfec4c24aeea4accdd9a55ee3f0
GET /s1/a07e547b-49b9-41f3-9d4b-f6343c4a8d0b?externalId=6ec6d26b-2b01-4265-970a-6b9bd969570f&cv1=6ec6d26b-2b01-4265-970a-6b9bd969570f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d89ca61d6e210ac324fb9&cv5=623d896b61d6e210ac324fb7&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b65361d6e27e372dcee7&cv10=exim_adxad_stub2_300x100_ HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:51 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: uid=F7dCS3c-pH; Path=/; Domain=trackwilltrk.com; Expires=Tue, 12 Dec 2023 04:38:51 GMT; HttpOnly
X-Request-Id: 1236b29b-3536-4041-b043-f6eff05726bf
Content-Encoding: gzip
GET static.arc.io/broker/js/lazy-iwc.9b430e25.js
200 OK 39 kB URL GET HTTP/2 static.arc.io/broker/js/lazy-iwc.9b430e25.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?a633436
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (14147)
Hash 1343454a1c763177d59f06c307b3a5a2
82626af192e064ca2eb37deb3cf49c5d306c1a0a
170fc28046efe0a2310c72af9f6d88c39458c227d4b9d7f77738f78cf1c3a11f
GET /broker/js/lazy-iwc.9b430e25.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"1343454a1c763177d59f06c307b3a5a2"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: rXkwkqK97INlSkHpQ6QDwTfuTqosVQyBpKfg8xaDj9g4yBNkCkp8YruTwRZZBPbuDrA6z0y4JqQ=
x-amz-request-id: X5X7C61SQQ58CJB6
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/27/2023 01:09:45
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 8b77bfd1444a3395d1e030cd5c0fcb06
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
21 kB URL browser.sentry-cdn.com/6.2.2/bundle.min.js
IP
File type ASCII text, with very long lines (65448)
Hash 1112a55739f24ef7add32867ae13bc72
62b95d703a81e23f0c37e504c2dca4a341cb467f
e593e95cfe0f3335088d5643951e90c8b4b3a4dfbe773614bb0070d544edb02e
GET /6.2.2/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 08 May 2024 12:32:02 GMT
last-modified: Thu, 11 Mar 2021 09:25:54 GMT
etag: "a948fc086ec14683f3f2270913c7f702"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Mon, 11 Dec 2023 04:38:51 GMT
age: 18634008
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20633
X-Firefox-Spdy: h2
631 B URL cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
IP
File type ASCII text, with very long lines (1796)
Hash 877f174ba71fcbb4bd316accf30ab613
0efbe27a5658c93f3e2ae08b57204ba7fe5e3900
a12ac29d1617bc71b7d520627ea3f63ccd6e8deed2254c97d274f03b6449579e
GET /ajax/libs/normalize/8.0.0/normalize.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/css; charset=utf-8
content-length: 631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f2b-732"
last-modified: Mon, 04 May 2020 16:13:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1037622
expires: Sat, 30 Nov 2024 04:38:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1vb8gNvCKahvUk%2FYOUCPzixzOVIBQ0bWAEuMBVxrHYWloT7ehUZD67Cm%2BCGI5FYcZmbKnAJP5PwA3qUg9uzUC4Ql5mruHOd6KgCF7VclTOZGJxLRspBEjnXSzCi9u7BR1tlpbo2l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 833b0a5e2fa85688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET whoursie.com/5/5951045/?oo=1&aab=1
200 OK 1.7 kB URL GET HTTP/2 whoursie.com/5/5951045/?oo=1&aab=1
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectwhoursie.com
FingerprintE6:9B:BD:04:21:08:48:F2:96:91:7A:0D:C0:C3:20:3E:0F:43:04:22
ValidityThu, 30 Nov 2023 05:09:17 GMT - Wed, 28 Feb 2024 05:09:16 GMT
File type gzip compressed data, max speed, from Unix
- data
Hash 5288ad5886e9e045ffa3843c573c6934
d7c127023586ca4a0d452277c8e8affd34c50f54
9cdb0fd48c98a304d79fe2edf972cea888cdf6c86e227154831f8c6a1e842af7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /5/5951045/?oo=1&aab=1 HTTP/1.1
Host: whoursie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: application/json
x-trace-id: 7e091756ce3a11dbc6281fc1737bd60b
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://ww3.animeonline.ninja
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=65a8bf2c64d143c8a5f9799b92ed03d9; expires=Tue, 10 Dec 2024 04:38:50 GMT; path=/; secure; SameSite=None
oaidts=1702269530; expires=Tue, 10 Dec 2024 04:38:50 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
2.0 kB URL saidochesto.top/embed.php?id=37803
IP
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 51a25824eafd8cce267c1e0b95ba062f
67ea2cc8049b875c030dfb9449c97b152bc13d62
249a659237f69fb045df5237aadab995632a67f758ee44d887ae310454f1a768
GET /embed.php?id=37803 HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CWfefbBHaiooZ0LM9ha67JNy%2ByJXIcduSmDjYiPIamj70tgefiS1u2ZyfabqDHXuLh8OLp9Rx8ruvJ%2F9w0XCqy3J1W4muoJ3uP3pNvxnl1epuyfRNYibllM5gWDi%2FVLppck%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833b0a5bd9ba712f-OSL
content-encoding: br
X-Firefox-Spdy: h2
35 kB URL fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0
- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 23:21:57 GMT
expires: Fri, 06 Dec 2024 23:21:57 GMT
cache-control: public, max-age=31536000
age: 278215
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
90 kB URL smartpicrotation.com/bnr/4/60b/3cc040/60b3cc040482da2c5a77d685889b6aae.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2023:08:23 18:51:14], baseline, precision 8, 300x250, components 3
- data
Hash 855803091797c040304e07c3f2aa7893
4615bcda296f905ddd6cd657cbe3ea5a901eb521
226c0ba82a2b989908458e46ee349e3307d0e69b939053a6c6743e08d0a37fba
GET /bnr/4/60b/3cc040/60b3cc040482da2c5a77d685889b6aae.jpg HTTP/1.1
Host: smartpicrotation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iliketomakingpics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/plain; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=31536000
x-cache-status: EXPIRED
last-modified: Tue, 21 Nov 2023 08:02:32 GMT
cf-cache-status: HIT
age: 1216798
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vJot1aYfENAAj%2BWYlFU2C9pphC%2FwPJwwPBfNwABqOo12uTkp7n9TAjnUPK2ifPtJP1cHrRjbGPbd3D8MuQ2CA80gIQX37i0s%2FV0CrmbGbn7i3ZQ8nAMb506UtZstUU4vhJB6vfONSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833b0a5dec74b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
35 kB URL twistconcept.com/index.min.js?pk=c73209e3a548f31485d4d93c096d1d6c%22
IP
File type ASCII text, with very long lines (652)
Hash 2058d53d084116ff3d36c8a630556710
8bcd226cf5ddb64be846ad645360638e82269097
6af3e3bd3016f5762e3dc3dbd8fc7bbf00f4ec9349bee71a23bbe5547dcffd1e
GET /index.min.js?pk=c73209e3a548f31485d4d93c096d1d6c%22 HTTP/1.1
Host: twistconcept.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iliketomakingpics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: application/javascript
last-modified: Thu, 23 Nov 2023 13:06:26 GMT
etag: W/"655f4e52-28d"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5660
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x%2FvTcZIhXzSTjcaCVdlsvjGbKAIQA3SQTLv0jLT%2BdPyVf5pxXrHc0wBm0ggMbs2a0pnZvNxJ6Jm5ld6LZbkfZZCIPQim5DdN2lIBrV5XrkgMc5ufldbaX%2Fia58qUwcwEM3aZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a5e1f875695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
35 kB URL fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0
- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 23:21:57 GMT
expires: Fri, 06 Dec 2024 23:21:57 GMT
cache-control: public, max-age=31536000
age: 278215
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST syndication.exdynsrv.com/v1/api.php
200 OK 3.0 kB URL POST HTTP/1.1 syndication.exdynsrv.com/v1/api.php
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectexdynsrv.com
Fingerprint8D:40:F0:75:CC:6E:55:85:E3:CD:04:C6:BF:F5:9F:81:74:ED:C3:24
ValidityThu, 05 Oct 2023 15:23:51 GMT - Wed, 03 Jan 2024 15:23:50 GMT
File type JSON data
- , ASCII text, with very long lines (6254), with no line terminators
Hash 7ae766785bc354c8e1f0739640820032
358b1769a785304a4037e47905c7752dc4767c5c
69ed2539bc2e8b91cf4dc8a4d5581fa8f1bc398f408aa113c90ee55c8cb4d959
POST /v1/api.php HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 313
Origin: https://a.exdynsrv.com
DNT: 1
Connection: keep-alive
Referer: https://a.exdynsrv.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226576925ab7b661.18310737844858330%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22517.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 11 Dec 2023 04:38:52 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.exdynsrv.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
2.9 kB IP
File type ASCII text, with very long lines (7592)
Hash 07fe35141cda0f20af8dc2923c6ca92d
2c2ae90cb0367d28374e4b4075b9ba029fc83327
b2c48824e00f3c619dffc3464284244b64b11a3c0313ab3242dbd422e07ccb2d
GET /widget.min.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2949
date: Mon, 11 Dec 2023 03:57:48 GMT
last-modified: Mon, 04 Dec 2023 21:20:53 GMT
content-encoding: br
cache-control: public, max-age=3600, stale-while-revalidate=864000
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
etag: "656e42b5-b85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tzGNKfulbRUwASGl3tOFgLqaJq4T9Ygb4C2yMJkGIjuZ5ABk2vtjbw==
age: 2464
X-Firefox-Spdy: h2
GET saidochesto.top/static/lang/SUB.png
200 OK 7.3 kB URL GET HTTP/3 saidochesto.top/static/lang/SUB.png
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
FingerprintA3:70:4B:B6:41:6C:F0:D8:C9:C3:2C:A9:A6:48:9B:D1:E4:77:EE:31
ValidityMon, 11 Dec 2023 00:33:16 GMT - Sun, 10 Mar 2024 00:33:15 GMT
File type PNG image data, 112 x 112, 8-bit/color RGBA, non-interlaced
- data
Hash f9dfcd9466bd34c3aca15973774cb48a
68f9a56211fc26c6177479eef5b9d3249a9b3020
80d3784153d1a2ed0437eaf123c1b97c9b05eef2be760f99d14fbd12bba5a55f
GET /static/lang/SUB.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/png
content-length: 7310
cache-control: public, max-age=604800
expires: Sun, 17 Dec 2023 09:19:17 GMT
last-modified: Sat, 21 Nov 2020 19:34:54 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 69575
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MObHS4UAXAStaqnaSqvC10%2BqXeZMlwjl0HXSw1HrsX7JiSSF8R9OOMz5L0QiBjk6Z53db1jkLU7kbniPNtAz52GVhnI5rM79eT7QD2ZbKoCFx%2BKH60V%2FeH64BOgs2f3WWXQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a5ffbcdb524-OSL
6.1 kB URL saidochesto.top/static/server/streamwish.top.png
IP
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
- data
Hash 93e2fe4a45f86a91814c4f1d95ed9454
5117aecef429eefc8ddabb80cd30e9d7393b768c
f3a396aa806ea63beb22b49900a93b9db9b0ec542bb995c15e270282c60c6839
GET /static/server/streamwish.top.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/png
content-length: 6126
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 10:15:56 GMT
last-modified: Wed, 16 Aug 2023 15:09:15 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 411776
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Jjzze9aYT%2BoGpOjlB%2BM5zuebKYxxyaXWERG2a1mrXevdmyMFAJGuzPabh2TTp9H6f7txLjmj%2BC%2FEBOgVBNKJZ3AappiMnhICsSa%2FEQNPUytuTUWj6Hr%2FrhWkV53IMhSxYo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a5ffbceb524-OSL
96 kB URL ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
IP
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, Unicode text, UTF-8 text, with very long lines (41204), with CR, LF line terminators
Hash 35084441bde59a94d90e92aebc7db2e2
038a6beac30dce67202e9e4450128b04f9c7773a
94b532cb3824ea372686f6349fd5d29c155128cad8d64a69a7419f00211d18b3
GET /episodio/shangri-la-frontier-cap-11/ HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/html; charset=UTF-8
link: <https://ww3.animeonline.ninja/wp-json/>; rel="https://api.w.org/", <https://ww3.animeonline.ninja/?p=190200>; rel=shortlink
x-wp-cf-super-cache: cache
x-wp-cf-super-cache-active: 1
x-wp-cf-super-cache-cache-control: s-maxage=31536000, max-age=60
x-wp-cf-super-cache-cookies-bypass: swfpc-feature-not-enabled
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
vary: Accept-Encoding
x-varnish: 305435378
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
last-modified: Mon, 11 Dec 2023 03:09:49 GMT
cf-cache-status: HIT
server: cloudflare
cf-ray: 833b0a4e2fa07131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET static.arc.io/widget/js/brokers.js?cfaaa772
200 OK 9.4 kB URL GET HTTP/2 static.arc.io/widget/js/brokers.js?cfaaa772
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (21470)
Hash e1f31a1f2266b21d5986026408c6b7ae
16583ba6436fb94cf4d05cb8ec6cb5d601d83926
58936974bff4521fdc89cd5eb181ec9187a06458235ddab4a1c36486bf3150a8
GET /widget/js/brokers.js?cfaaa772 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"e1f31a1f2266b21d5986026408c6b7ae"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: 6I1+nX728/K2CMcrIwuct2vJxb8s64G7tmAh1volqACmT6JPBsIl7bGUESxACPt9cUFsu6xM7Ws=
x-amz-request-id: T9MBZ2F1DD7SM1N9
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:25:28
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a8f0eb6bee22611ee0afcdb58cd26005
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET saidochesto.top/static/server/streamtape.com.png
200 OK 38 kB URL GET HTTP/3 saidochesto.top/static/server/streamtape.com.png
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
FingerprintA3:70:4B:B6:41:6C:F0:D8:C9:C3:2C:A9:A6:48:9B:D1:E4:77:EE:31
ValidityMon, 11 Dec 2023 00:33:16 GMT - Sun, 10 Mar 2024 00:33:15 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
- data
Hash fe92f0dbbabe8e0a6c5e3ccf7aab5ff1
ed17c78d9ac2750e035c60309907862686fb52ed
a6c2e0dd9ef8c954a6074eb0ab726f7d19c70047c20e8bfd86b70d3d08f5f298
GET /static/server/streamtape.com.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/png
content-length: 38100
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 06:47:02 GMT
last-modified: Sat, 21 Nov 2020 20:01:31 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 424310
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BPWiAbvWQ694IIA8hr4LYJXeZmHVuvuGNxyo6LmcQWR4Jn%2FEDNfTEGmBCxOtFdyMPoUlJzIVBLILLNwe03HqTT5eecxw6bvL6%2B0cfCOCPdKyi4HysJdKSotgEO2oy6MO1U4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a5ffbd2b524-OSL
GET saidochesto.top/static/server/luluvdo.com.png
200 OK 9.1 kB URL GET HTTP/3 saidochesto.top/static/server/luluvdo.com.png
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
FingerprintA3:70:4B:B6:41:6C:F0:D8:C9:C3:2C:A9:A6:48:9B:D1:E4:77:EE:31
ValidityMon, 11 Dec 2023 00:33:16 GMT - Sun, 10 Mar 2024 00:33:15 GMT
File type PNG image data, 141 x 138, 8-bit/color RGBA, non-interlaced
- data
Hash 095fb4a9e090176b693f920308759609
9e4e6462096b089aedf650197dd5362bf3413107
662ad4bc13add743aae1146319fed4b5bdb44deae4b1f29387552a7f75900945
GET /static/server/luluvdo.com.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/png
content-length: 9112
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 10:15:57 GMT
last-modified: Tue, 06 Jun 2023 12:02:07 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 411775
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RNQt3Z%2BZJx04cb2m2rSzHNWEWg3fzneKZATWWh4iKL9s%2BBbin2e2S%2Bs5IlESMJZxE62lsqcyzmyc6Gv6%2B%2BJX2kbb8v5qiekvoz9mqj7ZBkCJ%2BjRSQvJcCW43LbTha3rfNKU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a600bd3b524-OSL
GET saidochesto.top/static/server/hexupload.net.png
200 OK 23 kB URL GET HTTP/3 saidochesto.top/static/server/hexupload.net.png
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
FingerprintA3:70:4B:B6:41:6C:F0:D8:C9:C3:2C:A9:A6:48:9B:D1:E4:77:EE:31
ValidityMon, 11 Dec 2023 00:33:16 GMT - Sun, 10 Mar 2024 00:33:15 GMT
File type PNG image data, 900 x 900, 4-bit colormap, non-interlaced
- data
Hash 00a6720fbf93caa267f4b9b37da8e1c6
7ccbd2038140612f1d5821fbf468f706b323c8af
f7974608775d6892b5f2ddbfe2091b405f7d3f56addb8581be14de319f99b2c9
GET /static/server/hexupload.net.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/png
content-length: 22566
cache-control: public, max-age=604800
expires: Sun, 17 Dec 2023 07:17:52 GMT
last-modified: Tue, 06 Jun 2023 12:02:54 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 76860
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aatPr10JlIVcDdBp7%2FopdT2%2F643am0LQPwumP%2BmyIJIfgffpkSsXewVfGR4ZTY5cjfCofHhj6fT%2FjBD29p3UTchiRVtcdDjFcYNjz%2FHIRtsKo2Uv3mkKNwfN3YCfVzKtoNg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a600bd5b524-OSL
171 kB URL saidochesto.top/static/server/netuplayer.top.png
IP
File type MS Windows icon resource - 9 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel
- data
Size 171 kB (170814 bytes)
Hash f6d1dd607340688f7ab29d4f9703a795
7d23ace3d7b86201580263b686f61afb36cfec1c
064a0c2bd00fc93e0104044644ecb16bc591504a3ef45241b031104ad051cff3
GET /static/server/netuplayer.top.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/png
content-length: 170814
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 09:41:42 GMT
last-modified: Tue, 06 Jun 2023 11:59:44 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 586630
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3B8sgCOJHRqMv10n83V7zsOgjs%2FwxO7%2B%2FoUnVmw86%2BeKlMYVsX0ZXV4ArUBpM7MTqCz5JDrfb9aVrGkOWYxzTJWQ5zbB2mfEUn02VWe%2F4kzkIXDPyjuuTby9BAOwsdroSd8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a600bd6b524-OSL
2.0 kB URL saidochesto.top/static/server/krakenfiles.com.png
IP
File type PNG image data, 220 x 95, 8-bit colormap, non-interlaced
- data
Hash efc16bb0d8535c2ca438dd56c595aa25
4297b0fe56422f9d40c0ef875c7c67b2bc6b0f0c
e5dd4572c16488f6f86d510505ccefc7d4901a5531c9d85376838bc2f0b40073
GET /static/server/krakenfiles.com.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/png
content-length: 2007
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 18:32:41 GMT
last-modified: Tue, 06 Jun 2023 12:06:19 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 554771
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xcri%2FhtQO3C4kgL72ptsRfO%2Bfax%2FdA4C62ojkNrtdcklD8R6LKEzFb6124jkHKsOvbOn63ej4OqbW4Y2ElxfoMAP0fqChPib8noGwNU83zA9v36k4DYxkl23oeCx0w3GCTw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a603bf0b524-OSL
GET saidochesto.top/static/server/www.mp4upload.com.png
200 OK 72 kB URL GET HTTP/3 saidochesto.top/static/server/www.mp4upload.com.png
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
FingerprintA3:70:4B:B6:41:6C:F0:D8:C9:C3:2C:A9:A6:48:9B:D1:E4:77:EE:31
ValidityMon, 11 Dec 2023 00:33:16 GMT - Sun, 10 Mar 2024 00:33:15 GMT
File type PNG image data, 1200 x 237, 8-bit/color RGBA, non-interlaced
- data
Hash 54ab52e8f296cdd34d4b234389b145c9
f5f64bfd7a4d77cecede868f620ecc6ffb3d7603
bcb5b6f6994ed5eca51861b568b2fa33261d54f23ca1416f28d566a03c0d6c37
GET /static/server/www.mp4upload.com.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/png
content-length: 71628
cache-control: public, max-age=604800
expires: Sat, 16 Dec 2023 11:48:06 GMT
last-modified: Wed, 16 Aug 2023 15:16:58 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 147046
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r5Z7EfOM%2FiMAYCefb6oyvyjxZ8MbsafmtEuvRjfiQiFAaYCJtEO8wtQZyBa3yb3XxJ75fNVzG5ZsiKgR%2BuTohrbOklRswEfirJ%2FW7pCGAo9y9hF4NwY96I7maRQp9E8xi4k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a603beeb524-OSL
32 kB URL saidochesto.top/static/server/uqload.io.png
IP
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
- data
Hash a1e4a21c0434ccaf5220e23fdc9aa418
3f08bf5f52a2d1c432dd5502e05526203986e446
18cda48e81f7d497665f0198ee7a175425e049779bd89de2b189e831fe842c4d
GET /static/server/uqload.io.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/png
content-length: 32038
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 10:15:57 GMT
last-modified: Wed, 16 Aug 2023 15:17:34 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 411775
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qf5QSWztobCErw8r%2FwFNs6VDRl%2B%2FOHzdczw1ecJ%2BnAVn1YISLDNrVxBuGJFyuHSAsHYVjz1agwKaLyIx0qCjMQ9YNVbgwBNIbP6TZvJxgYAXkZgnogyZBo70sbTW5qFLp7k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a603befb524-OSL
GET adxadserv.com/ascripts/pxl.js
200 OK 24 kB URL GET HTTP/1.1 adxadserv.com/ascripts/pxl.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530682&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
File type Unicode text, UTF-8 text, with very long lines (36114)
Hash 8348b78d100940ba1808a8e9b93f2e94
c2aa612dc3256c9f235dcfc6e330d0ecaf957768
9c983adf86ebc949957bdf55d524dfa278a79bea8d13f2efa9512c6dd37b86f5
GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 25 Sep 2020 09:55:25 GMT
ETag: W/"5f6dbe8d-12fee"
Expires: Mon, 11 Dec 2023 07:59:27 GMT
Cache-Control: max-age=86400, public
X-77-NZT: EwwBw7WsGQH3fSIBAAwBuUwKAQGTgVEBAAgB1GY4EQFB
X-77-NZT-Ray: f5ba46230e3f976c5c9276657a1a030a
X-77-Cache: HIT
Content-Encoding: gzip
X-Accel-Date: 1702195167
X-77-Age: 160766
X-Cache-LB: EXPIRED, HIT
X-Age-LB: 86401, 74365
X-77-POP: amsterdamNL
GET adxadserv.com/ascripts/pxl.js
200 OK 24 kB URL GET HTTP/1.1 adxadserv.com/ascripts/pxl.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530682&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
File type Unicode text, UTF-8 text, with very long lines (36114)
Hash 8348b78d100940ba1808a8e9b93f2e94
c2aa612dc3256c9f235dcfc6e330d0ecaf957768
9c983adf86ebc949957bdf55d524dfa278a79bea8d13f2efa9512c6dd37b86f5
GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 25 Sep 2020 09:55:25 GMT
ETag: W/"5f6dbe8d-12fee"
Expires: Mon, 11 Dec 2023 07:59:27 GMT
Cache-Control: max-age=86400, public
X-77-NZT: EwwBw7WsGQH3fSIBAAwBuUwKAQGTgVEBAAgB1GY4EQFB
X-77-NZT-Ray: f5ba4623f7349d6c5c927665bec2520a
X-77-Cache: HIT
Content-Encoding: gzip
X-Accel-Date: 1702195167
X-77-Age: 160766
X-Cache-LB: EXPIRED, HIT
X-Age-LB: 86401, 74365
X-77-POP: amsterdamNL
GET ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/isrepeater.js
200 OK 28 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/isrepeater.js
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (10378), with no line terminators
Hash 0bccff8f02880baafd48961d53038ea2
72a437314e1253f95ae4a2f85a9442549b6a7392
03707775d9c6e9b395e13f048e19d552c2117c0a9e9df9cead454250349b6d4d
GET /wp-content/themes/dooplay/assets/js/lib/isrepeater.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=10380
etag: W/"288c-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 214812503
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1647935
server: cloudflare
cf-ray: 833b0a5248ff7131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET adxadserv.com/ascripts/pxl.js
200 OK 24 kB URL GET HTTP/1.1 adxadserv.com/ascripts/pxl.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530682&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
File type Unicode text, UTF-8 text, with very long lines (36114)
Hash 8348b78d100940ba1808a8e9b93f2e94
c2aa612dc3256c9f235dcfc6e330d0ecaf957768
9c983adf86ebc949957bdf55d524dfa278a79bea8d13f2efa9512c6dd37b86f5
GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 25 Sep 2020 09:55:25 GMT
ETag: W/"5f6dbe8d-12fee"
Expires: Mon, 11 Dec 2023 07:59:27 GMT
Cache-Control: max-age=86400, public
X-77-NZT: EwwBw7WsGQH3fSIBAAwBuUwKAQGTgVEBAAgB1GY4EQFB
X-77-NZT-Ray: f5ba4623533ecc6c5c927665b974600c
X-77-Cache: HIT
Content-Encoding: gzip
X-Accel-Date: 1702195167
X-77-Age: 160766
X-Cache-LB: EXPIRED, HIT
X-Age-LB: 86401, 74365
X-77-POP: amsterdamNL
GET static.arc.io/widget/js/core.js?a633436
200 OK 106 kB URL GET HTTP/2 static.arc.io/widget/js/core.js?a633436
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
Size 106 kB (106370 bytes)
Hash ba2f4ad6daf959334bb5c8a10a100974
a6f4bbd15a345a9ddd95cc898999c7e492aa0f03
f82dcfb9cb5d6ca8fe5c0524893874d9bf0b1594f7aee17a42b4531cb5c8caf9
GET /widget/js/core.js?a633436 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"ba2f4ad6daf959334bb5c8a10a100974"
last-modified: Mon, 04 Dec 2023 21:21:10 GMT
x-amz-id-2: cg3CfINp0UChhyUcJc2ji+6ZQG8ldo3iIRs2DUjzzEwerBjqsvBjM+kTMO2SL920aPxcuCWgSu0=
x-amz-request-id: SF0W6H45MEZVAN9S
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:57:55
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: ecc750b0e2c6bf6c9c130385e4d966ce
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
100 kB IP
File type PNG image data, 481 x 498, 8-bit/color RGBA, non-interlaced
- data
Hash 1af727872da19be78a6474d06cf10953
ddb8d39778ee9cfe0d35ebf5e22b391aaedb17e1
3cf183aa5703144f2ee2ce7765615c1cdc4abe573212daa1d480755b6269e7d6
GET /QXIUovW.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
last-modified: Fri, 08 Sep 2023 13:41:33 GMT
etag: "1af727872da19be78a6474d06cf10953"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: IAD12-P2
x-amz-cf-id: 3Ma72tyXmhxK9oQnkiRH9ot60rYLf_tu3ui2CDzadaT_lg54w7e5KQ==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 11 Dec 2023 04:38:52 GMT
age: 2899804
x-served-by: cache-iad-kiad7000115-IAD, cache-bma1635-BMA
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 13105, 1
x-timer: S1702269532.260304,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 99941
X-Firefox-Spdy: h2
726 B URL t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fukouda.top&size=16
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fukouda.top&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Mon, 11 Dec 2023 04:38:52 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash 96552eabde11de2bf102b6f30726382e
8585db2448c4a8ede1369391bae9fe27cb3e32e9
2526b3a0ea085f5725995c79d90ee3490ebdd198836f628be6edfeabdf005a3d
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Mon, 11 Dec 2023 04:38:52 GMT
Last-Modified: Mon, 11 Dec 2023 02:53:03 GMT
Server: ECAcc (ska/F7A7)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8c-J4S1hMjVRdL27bg7Dfk4sZ-vr6RcpCt87muYXOVYO081clHdutA==
Age: 6350
GET syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2P3WrDMAyFX2UvUKNfS+n1rjfY2AMkqcMKazq6UjrQw0/OoD7YyEI6+kRAvEPaITwR79n3SjFgGaAIFVSJl9e3EIxbu4zr8dQ+23odj+f167i2cj1/hxPTUMPQK0oM5pQO4koIEogQaiIKHo46GCuEQHBAipRFelQAAMktDOLj/Xm7mKLIpwOEpWfGcIeoanUgHSebasWCzgjG5pJDnTlta0NCVmyT+WRjo9lUF1vmKQtZu0+Mpd0Pv+vP5Vbm8ykTzpLgqHVA70ScyJ0AHtr1PkZhSuo8EFv6uFzGU4t41P3vFLbNoe7Qg74KivRPWNW6zIcZoeacyhs3JGj1gyzz+AcsxcGplQEAAA==
200 OK 20 B URL GET HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2P3WrDMAyFX2UvUKNfS+n1rjfY2AMkqcMKazq6UjrQw0/OoD7YyEI6+kRAvEPaITwR79n3SjFgGaAIFVSJl9e3EIxbu4zr8dQ+23odj+f167i2cj1/hxPTUMPQK0oM5pQO4koIEogQaiIKHo46GCuEQHBAipRFelQAAMktDOLj/Xm7mKLIpwOEpWfGcIeoanUgHSebasWCzgjG5pJDnTlta0NCVmyT+WRjo9lUF1vmKQtZu0+Mpd0Pv+vP5Vbm8ykTzpLgqHVA70ScyJ0AHtr1PkZhSuo8EFv6uFzGU4t41P3vFLbNoe7Qg74KivRPWNW6zIcZoeacyhs3JGj1gyzz+AcsxcGplQEAAA==
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
Certificate IssuerLet's Encrypt
Subjectexdynsrv.com
Fingerprint8D:40:F0:75:CC:6E:55:85:E3:CD:04:C6:BF:F5:9F:81:74:ED:C3:24
ValidityThu, 05 Oct 2023 15:23:51 GMT - Wed, 03 Jan 2024 15:23:50 GMT
File type gzip compressed data, max speed, from Unix
- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz2P3WrDMAyFX2UvUKNfS+n1rjfY2AMkqcMKazq6UjrQw0/OoD7YyEI6+kRAvEPaITwR79n3SjFgGaAIFVSJl9e3EIxbu4zr8dQ+23odj+f167i2cj1/hxPTUMPQK0oM5pQO4koIEogQaiIKHo46GCuEQHBAipRFelQAAMktDOLj/Xm7mKLIpwOEpWfGcIeoanUgHSebasWCzgjG5pJDnTlta0NCVmyT+WRjo9lUF1vmKQtZu0+Mpd0Pv+vP5Vbm8ykTzpLgqHVA70ScyJ0AHtr1PkZhSuo8EFv6uFzGU4t41P3vFLbNoe7Qg74KivRPWNW6zIcZoeacyhs3JGj1gyzz+AcsxcGplQEAAA== HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.exdynsrv.com
DNT: 1
Connection: keep-alive
Referer: https://a.exdynsrv.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226576925ab7b661.18310737844858330%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22517.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 11 Dec 2023 04:38:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.exdynsrv.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%226576925ab7b661.18310737844858330%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%7C517.019701%22%7D; expires=Wed, 10 Dec 2025 04:38:52 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
0 B URL go.bbrdbr.com/i?campaignId=100cps2asgirl&creativeId=100cps2asgirl&tag=girls/asian&sourceId=100cps2asgirl&targetDomain=&buttonColor=&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&liveBadgeColor=&showButton=1&showModelName=1&showTitle=0&showLiveBadge=1&isXhDesign=0&actionButtonPlacement=bottom&thumbSizeKey=small&hideButtonOnSmallSpots=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75&autoplay=all&autoplayForce=1&memberId={clickid}&showModal=signup&landing=WidgetV4Universal
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /i?campaignId=100cps2asgirl&creativeId=100cps2asgirl&tag=girls/asian&sourceId=100cps2asgirl&targetDomain=&buttonColor=&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&liveBadgeColor=&showButton=1&showModelName=1&showTitle=0&showLiveBadge=1&isXhDesign=0&actionButtonPlacement=bottom&thumbSizeKey=small&hideButtonOnSmallSpots=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75&autoplay=all&autoplayForce=1&memberId={clickid}&showModal=signup&landing=WidgetV4Universal HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Mon, 11 Dec 2023 04:38:52 GMT
content-length: 0
location: https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtqGxuZp8RQcjVh53YwpshphecqD6; SameSite=None; Secure; path=/; expires=Tue, 12-Dec-23 04:38:52 GMT; HttpOnly
server: cloudflare
cf-ray: 833b0a60ddeb56ba-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
5.0 kB URL s3t3d2y8.afcdn.net/library/823296/b0a400fc08622489d4d08f507a303ee3fd830eea.webp
IP
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash 93105debbd02c2fed00c72e302850233
b0a400fc08622489d4d08f507a303ee3fd830eea
240d5f6bba90655a796c75cd4c5ccb544aebc03cd05c64fc8afc0a42cd85272d
GET /library/823296/b0a400fc08622489d4d08f507a303ee3fd830eea.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.exdynsrv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/webp
content-length: 5026
last-modified: Mon, 24 Apr 2023 08:37:02 GMT
etag: "64463fae-13a2"
expires: Tue, 23 Apr 2024 08:45:43 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3IkIwAQ
x-77-nzt-ray: af58563057c2216c5c927665d47a541b
x-accel-expires: @1713865658
x-accel-date: 1682329658
x-cache-lb: HIT
x-age-lb: 19939874
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 19939874
accept-ranges: bytes
X-Firefox-Spdy: h2
32 kB IP
File type JPEG image data, baseline, precision 8, 1000x563, components 3
- data
Hash abbf87c237c2353272e6931ea1878f21
9ae661ffe952fcf8828e83d02416445e90a1cfec
66dcc3eb3d84134d9e4ca73a1b55cfdcc1ecc841c5d53be42e395dd7844bb864
GET /dYwz7TJ.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Aug 2023 01:55:44 GMT
etag: "abbf87c237c2353272e6931ea1878f21"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: UVTm1XhXvS9Yy8CE2u7b6aD0alas3Fq8YHex9LHHqishx9IqrLiMsg==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 11 Dec 2023 04:38:52 GMT
age: 4715094
x-served-by: cache-iad-kiad7000042-IAD, cache-bma1635-BMA
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 16433, 1
x-timer: S1702269533.621878,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 32503
X-Firefox-Spdy: h2
0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Y3sJjJJ.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
retry-after: 0
location: https://i.imgur.com/removed.png
accept-ranges: bytes
date: Mon, 11 Dec 2023 04:38:52 GMT
age: 246
x-served-by: cache-iad-kiad7000143-IAD, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 0, 1
x-timer: S1702269533.633960,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
content-length: 0
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
200 OK 51 kB URL GET HTTP/3 fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 51404, version 1.0
- data
Hash b904fcdf1c4c6059fadd6893a7bc7619
f41d1674f02616f03ef77d4e84b3ad8ba28a36fc
517edd119c5b2719e6ac4b30bf1fd864a6395179a41d273c0afc0696e7495d8e
GET /s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:22:05 GMT
expires: Fri, 06 Dec 2024 05:22:05 GMT
cache-control: public, max-age=31536000
age: 343007
last-modified: Wed, 18 Oct 2023 17:52:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
0 B URL proftrafficcounter.com/px.gif?akey=c73209e3a548f31485d4d93c096d1d6c
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px.gif?akey=c73209e3a548f31485d4d93c096d1d6c HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iliketomakingpics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/gif
content-length: 0
location: https://experttrafficmonitor.com/dbs?uuid=621bbf09-a131-46fe-904c-39578cb37457&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjozLCJhY3VzIjoxLCJhY2kiOnsiNDIxIjoxNzAyMjY5NTMyfSwiYWNjbCI6eyIyMCwzIjoxNzAyMjY5NTMyfX0.tDKzTMGab1v9r7GMVTcCsIp8djwNlsY1bSQ9R_7mK20
server: nginx/1.21.6
set-cookie: uid_id2=621bbf09-a131-46fe-904c-39578cb37457:3:1; expires=Thu, 08 Dec 2033 04:38:52 GMT; secure; SameSite=None
ak=421,1702269532; expires=Sun, 10 Mar 2024 04:38:52 GMT; secure; SameSite=None
acl=20,3,1702269532; expires=Sun, 10 Mar 2024 04:38:52 GMT; secure; SameSite=None
expires: Mon, 11 Dec 2023 04:38:52 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2
0 B URL adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b63761d6e272165ed9c5%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fshangri-la-frontier-cap-11%252F%2526dt%253D1702269530686%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702269531540&t_i=1702269532071&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=ae7c3119-5e40-46d9-8425-9ecaa52e2d01&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=2e9b84a3-97df-11ee-b2ea-52ca5d2668e1&spid=60e4b63761d6e272165ed9c5&fpid_sa=1702269532071&fpid=&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.749
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b63761d6e272165ed9c5%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fshangri-la-frontier-cap-11%252F%2526dt%253D1702269530686%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702269531540&t_i=1702269532071&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=ae7c3119-5e40-46d9-8425-9ecaa52e2d01&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=2e9b84a3-97df-11ee-b2ea-52ca5d2668e1&spid=60e4b63761d6e272165ed9c5&fpid_sa=1702269532071&fpid=&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.749 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:52 GMT
Content-Length: 0
Connection: keep-alive
GET i.imgur.com/removed.png
200 OK 503 B IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type PNG image data, 161 x 81, 1-bit colormap, non-interlaced
- data
Hash d835884373f4d6c8f24742ceabe74946
20002faf28adfd94ca98cf6ced46f14334b53684
9b5936f4006146e4e1e9025b474c02863c0b5614132ad40db4b925a10e8bfbb9
GET /removed.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saidochesto.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 May 2014 05:44:36 GMT
etag: "d835884373f4d6c8f24742ceabe74946"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 11 Dec 2023 04:38:52 GMT
age: 23401546
x-served-by: cache-bwi5162-BWI, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 597269
x-timer: S1702269533.850807,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 503
X-Firefox-Spdy: h2
0 B URL adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b64461d6e27e372dcee6%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fshangri-la-frontier-cap-11%252F%2526dt%253D1702269530689%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702269531501&t_i=1702269532070&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=5d26ca88-05d7-4fec-b994-5104803196c3&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=2e9c69a9-97df-11ee-91ec-e25a5bb9767f&spid=60e4b64461d6e27e372dcee6&fpid_sa=1702269532071&fpid=&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=0.946
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b64461d6e27e372dcee6%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fshangri-la-frontier-cap-11%252F%2526dt%253D1702269530689%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702269531501&t_i=1702269532070&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=5d26ca88-05d7-4fec-b994-5104803196c3&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=2e9c69a9-97df-11ee-91ec-e25a5bb9767f&spid=60e4b64461d6e27e372dcee6&fpid_sa=1702269532071&fpid=&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=0.946 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:52 GMT
Content-Length: 0
Connection: keep-alive
GET creative.bbrdbr.com/widgets/v4/Universal/main.af7ca474e642b518be23.js
200 OK 81 kB URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/main.af7ca474e642b518be23.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (32011), with LF, NEL line terminators
Hash c125e5d95f227b20668dcf21f8db60fa
bcdb1f728964d37c007515eba7a549164fd1951e
11d537b5f1c8f66d68b36f57f526f55f1e916d67a35c1944b8d559adc7723f8a
GET /widgets/v4/Universal/main.af7ca474e642b518be23.js HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-44c9f"
expires: Mon, 11 Dec 2023 04:38:52 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 6
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a649d75b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
21 kB URL browser.sentry-cdn.com/6.2.2/bundle.min.js
IP
File type ASCII text, with very long lines (65448)
Hash 1112a55739f24ef7add32867ae13bc72
62b95d703a81e23f0c37e504c2dca4a341cb467f
e593e95cfe0f3335088d5643951e90c8b4b3a4dfbe773614bb0070d544edb02e
GET /6.2.2/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 08 May 2024 12:32:02 GMT
last-modified: Thu, 11 Mar 2021 09:25:54 GMT
etag: "a948fc086ec14683f3f2270913c7f702"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Mon, 11 Dec 2023 04:38:52 GMT
age: 18634009
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20633
X-Firefox-Spdy: h2
GET video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: Uy+BI0f9xi3njNOl7P4PsULkPp0g6ssxBGHnYb4mQe+eet3x2+C470ZEAYzLvRraWhXf8LMEGWU=
x-amz-request-id: WWWZDEMQD0DJ51HX
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.bbrdbr.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 6622
expires: Mon, 11 Dec 2023 08:38:52 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a651f845696-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET saidochesto.top/static/iframe.css?v=1.0.0
200 OK 2.8 kB URL GET HTTP/3 saidochesto.top/static/iframe.css?v=1.0.0
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
FingerprintA3:70:4B:B6:41:6C:F0:D8:C9:C3:2C:A9:A6:48:9B:D1:E4:77:EE:31
ValidityMon, 11 Dec 2023 00:33:16 GMT - Sun, 10 Mar 2024 00:33:15 GMT
Hash 48e988098068bacb4370a2d9dffc9eb8
cf22fc2eb3d295f8a6d6d28428547a73768524f5
ed296b9ad625076b236ec553c7c3eb894b94dca335f07b77c0d6b899b530743d
GET /static/iframe.css?v=1.0.0 HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 09:33:51 GMT
last-modified: Mon, 18 Sep 2023 12:36:42 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 587101
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MQgjQRB1AGSvkLlAswPC4mZUiwRfP3nCb7b%2Br6N6gGSQHf3HzTE6S6VTDes1rRgE7pHPyTbYUG5MG5wfQ5INKj2csk2wxouLmR1nMo43sB2Ddnii8QDNA7EmjubHFfWwfxc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833b0a5ffbccb524-OSL
content-encoding: br
GET video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: Uy+BI0f9xi3njNOl7P4PsULkPp0g6ssxBGHnYb4mQe+eet3x2+C470ZEAYzLvRraWhXf8LMEGWU=
x-amz-request-id: WWWZDEMQD0DJ51HX
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.bbrdbr.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 6622
expires: Mon, 11 Dec 2023 08:38:52 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a653f8b5696-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
21 kB URL browser.sentry-cdn.com/6.2.2/bundle.min.js
IP
File type ASCII text, with very long lines (65448)
Hash 1112a55739f24ef7add32867ae13bc72
62b95d703a81e23f0c37e504c2dca4a341cb467f
e593e95cfe0f3335088d5643951e90c8b4b3a4dfbe773614bb0070d544edb02e
GET /6.2.2/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 08 May 2024 12:32:02 GMT
last-modified: Thu, 11 Mar 2021 09:25:54 GMT
etag: "a948fc086ec14683f3f2270913c7f702"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Mon, 11 Dec 2023 04:38:52 GMT
age: 18634009
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20633
X-Firefox-Spdy: h2
GET creative.bbrdbr.com/widgets/v4/Universal/main.af7ca474e642b518be23.js
200 OK 80 kB URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/main.af7ca474e642b518be23.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (32011), with LF, NEL line terminators
Hash c125e5d95f227b20668dcf21f8db60fa
bcdb1f728964d37c007515eba7a549164fd1951e
11d537b5f1c8f66d68b36f57f526f55f1e916d67a35c1944b8d559adc7723f8a
GET /widgets/v4/Universal/main.af7ca474e642b518be23.js HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-44c9f"
expires: Mon, 11 Dec 2023 04:38:52 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 6
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a642d52b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b64b61d6e272e90b980b%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fshangri-la-frontier-cap-11%252F%2526dt%253D1702269530694%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702269531495&t_i=1702269532069&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=862ceeba-8700-4e6d-94eb-9aa0dad4ea4e&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=2e9c38cd-97df-11ee-a373-e2e38133f3a0&spid=60e4b64b61d6e272e90b980b&fpid_sa=1702269532071&fpid=&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.032
200 OK 0 B URL GET HTTP/1.1 adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b64b61d6e272e90b980b%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fshangri-la-frontier-cap-11%252F%2526dt%253D1702269530694%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702269531495&t_i=1702269532069&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=862ceeba-8700-4e6d-94eb-9aa0dad4ea4e&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=2e9c38cd-97df-11ee-a373-e2e38133f3a0&spid=60e4b64b61d6e272e90b980b&fpid_sa=1702269532071&fpid=&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.032
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530694&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b64b61d6e272e90b980b%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fshangri-la-frontier-cap-11%252F%2526dt%253D1702269530694%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702269531495&t_i=1702269532069&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=862ceeba-8700-4e6d-94eb-9aa0dad4ea4e&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=2e9c38cd-97df-11ee-a373-e2e38133f3a0&spid=60e4b64b61d6e272e90b980b&fpid_sa=1702269532071&fpid=&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.032 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:53 GMT
Content-Length: 0
Connection: keep-alive
GET video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: Uy+BI0f9xi3njNOl7P4PsULkPp0g6ssxBGHnYb4mQe+eet3x2+C470ZEAYzLvRraWhXf8LMEGWU=
x-amz-request-id: WWWZDEMQD0DJ51HX
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.bbrdbr.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 6623
expires: Mon, 11 Dec 2023 08:38:53 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a66affa5696-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: Uy+BI0f9xi3njNOl7P4PsULkPp0g6ssxBGHnYb4mQe+eet3x2+C470ZEAYzLvRraWhXf8LMEGWU=
x-amz-request-id: WWWZDEMQD0DJ51HX
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.bbrdbr.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 6623
expires: Mon, 11 Dec 2023 08:38:53 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a66cae65697-OSL
alt-svc: h3=":443"; ma=86400
POST warden.arc.io/mailbox/nodes/XiLtm1t5oVjxzdmMnZX8yT
204 No Content 0 B URL POST HTTP/2 warden.arc.io/mailbox/nodes/XiLtm1t5oVjxzdmMnZX8yT
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectarc.io
Fingerprint65:9E:E7:9A:61:A1:B0:0A:38:E4:48:15:D0:45:68:D3:30:5D:12:CA
ValidityWed, 04 Oct 2023 00:54:55 GMT - Tue, 02 Jan 2024 00:54:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mailbox/nodes/XiLtm1t5oVjxzdmMnZX8yT HTTP/1.1
Host: warden.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 285
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Mon, 11 Dec 2023 04:38:53 GMT
access-control-allow-origin: *
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
645 B URL go.bbrdbr.com/api/models?tag=girls%2Fasian&forceClient=1&stripcashR=0&limit=1&usePreroll&webp=1
IP
File type JSON data
- , ASCII text, with very long lines (1749), with no line terminators
Hash 7a7a645c2e6f1cf5e42250bf6920dba5
514b681fd958db4e0dcaab56403dc1ff7558326c
89fc02507b101f770aa841df21e63fe7fc4c4a80c94cb5dcd74f889601aca5f3
GET /api/models?tag=girls%2Fasian&forceClient=1&stripcashR=0&limit=1&usePreroll&webp=1 HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Cookie: __cflb=02DiuDFRFiBZBvMSLtqGxuZp8RQcjVh53YwpshphecqD6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/json
access-control-allow-origin: https://creative.bbrdbr.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Mon, 11 Dec 2023 04:37:46 GMT
cf-cache-status: HIT
age: 7
server: cloudflare
cf-ray: 833b0a66fe2eb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET static.arc.io/widget/js/lazy-iwc.js?8aedfc26
200 OK 20 kB URL GET HTTP/2 static.arc.io/widget/js/lazy-iwc.js?8aedfc26
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (14151)
Hash 79f87bf000461a78e70050f0b33e54bd
c9d31fe64b37cfee9161518de01368a25101d159
a10e7cded87daa4318d9448308e6e87e15e1da89d2d7f585da84ef0420f20690
GET /widget/js/lazy-iwc.js?8aedfc26 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"79f87bf000461a78e70050f0b33e54bd"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: hBsAYRm24bgq4d91tJ87F8wFS/X38hCD2jvFX9BxczgoUTq9oXwS1kToV6F1CTXFXthoIQMROTg=
x-amz-request-id: A3DB95P7VY2THP6Q
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:42:09
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 8031bf32c9191cb093bed5a2f1951a7a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET go.bbrdbr.com/app/domain-checker/get-check
204 No Content 209 B URL GET HTTP/3 go.bbrdbr.com/app/domain-checker/get-check
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Hash ba86f6c03abf0b3de4679499c6c2bb46
d47be053b334a17afb4a381cb6e3b0eee9b5ff55
348c87d31156ca1c722612b2222a12b7b617a48696a1a55e0cf7fd2f440bcd33
GET /app/domain-checker/get-check HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/json
access-control-allow-origin: https://creative.bbrdbr.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtqFVfs5Aboo4dwjqnpuKtqDHsn9J; SameSite=None; Secure; path=/; expires=Tue, 12-Dec-23 04:38:53 GMT; HttpOnly
server: cloudflare
cf-ray: 833b0a675e74b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET img.strpst.com/thumbs/1702269450/79037252_webp
200 OK 15 kB URL GET HTTP/3 img.strpst.com/thumbs/1702269450/79037252_webp
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash 844761d3b46a4551b0e7ae9fe6c64032
9970b1623eef232a805b0b8caa98207fc346f746
d7e6152194c112bd645fa6ab2561658a13f0b4a1585e0989ad8f410f44f752de
GET /thumbs/1702269450/79037252_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: image/webp
content-length: 14904
etag: "844761d3b46a4551b0e7ae9fe6c64032"
last-modified: Mon, 11 Dec 2023 04:36:27 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 82
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a67e929b51e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET go.bbrdbr.com/abc.gif?sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fr.trackwilltrk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A854%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A634%2C%22duration%22%3A28%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A635%2C%22duration%22%3A38%2C%22transferSize%22%3A80913%7D%5D&mh=-156247932
200 OK 103 B URL GET HTTP/3 go.bbrdbr.com/abc.gif?sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fr.trackwilltrk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A854%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A634%2C%22duration%22%3A28%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A635%2C%22duration%22%3A38%2C%22transferSize%22%3A80913%7D%5D&mh=-156247932
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fr.trackwilltrk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A854%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A634%2C%22duration%22%3A28%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A635%2C%22duration%22%3A38%2C%22transferSize%22%3A80913%7D%5D&mh=-156247932 HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Cookie: __cflb=02DiuDFRFiBZBvMSLtqGxuZp8RQcjVh53YwpshphecqD6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 833b0a678e81b524-OSL
alt-svc: h3=":443"; ma=86400
GET img.strpst.com/thumbs/1702269450/79037252_webp
200 OK 15 kB URL GET HTTP/3 img.strpst.com/thumbs/1702269450/79037252_webp
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash 844761d3b46a4551b0e7ae9fe6c64032
9970b1623eef232a805b0b8caa98207fc346f746
d7e6152194c112bd645fa6ab2561658a13f0b4a1585e0989ad8f410f44f752de
GET /thumbs/1702269450/79037252_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: image/webp
content-length: 14904
etag: "844761d3b46a4551b0e7ae9fe6c64032"
last-modified: Mon, 11 Dec 2023 04:36:27 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 82
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6859a8067b-OSL
alt-svc: h3=":443"; ma=86400
103 B URL go.bbrdbr.com/abc.gif?sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fr.trackwilltrk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A883%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A678%2C%22duration%22%3A54%2C%22transferSize%22%3A80913%7D%5D&mh=182485078
IP
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fr.trackwilltrk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A883%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A678%2C%22duration%22%3A54%2C%22transferSize%22%3A80913%7D%5D&mh=182485078 HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Cookie: __cflb=02DiuDFRFiBZBvMSLtqGxuZp8RQcjVh53YwpshphecqD6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 833b0a685ea9b524-OSL
alt-svc: h3=":443"; ma=86400
8.0 kB URL img.strpst.com/thumbs/1702269480/87763328_webp
IP
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash 0b32728d625cd3cba73fcb70a56a5ffa
028122e32ce12111f5373804d57479667d871bdf
011a659f00d44954c0902cafb3c21b99e1557d5da537faf8970b54cd75b65d93
GET /thumbs/1702269480/87763328_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: image/webp
content-length: 8020
etag: "0b32728d625cd3cba73fcb70a56a5ffa"
last-modified: Mon, 11 Dec 2023 04:36:48 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 38
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6889af067b-OSL
alt-svc: h3=":443"; ma=86400
GET go.bbrdbr.com/config?url=https%3A%2F%2Fcreative.bbrdbr.com%2Fwidgets%2Fv4%2FUniversal%3Ftag%3Dgirls%2Fasian%26thumbsMargin%3D0%26gridRows%3D1%26gridColumns%3D1%26sourceId%3D300asrsasgirlwlcop%26creativeId%3D300asrsasgirlwlcop%26responsive%3D0%26hideButton%3D1%26hideTitle%3D1%26userId%3D2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d%26autoplay%3Dall%26autoplayForce%3D1%26showModal%3Dsignup%26memberId%3D%7Bclickid%7D
200 OK 18 kB URL GET HTTP/3 go.bbrdbr.com/config?url=https%3A%2F%2Fcreative.bbrdbr.com%2Fwidgets%2Fv4%2FUniversal%3Ftag%3Dgirls%2Fasian%26thumbsMargin%3D0%26gridRows%3D1%26gridColumns%3D1%26sourceId%3D300asrsasgirlwlcop%26creativeId%3D300asrsasgirlwlcop%26responsive%3D0%26hideButton%3D1%26hideTitle%3D1%26userId%3D2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d%26autoplay%3Dall%26autoplayForce%3D1%26showModal%3Dsignup%26memberId%3D%7Bclickid%7D
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Hash dba78e9246f273c35d1915201a88effe
c048600205576322a77818f7cf85df243ad118c8
7277699f7213aca216ea61fa5c2e58021eb9bfe4839367964e94ff7abd4bddb1
GET /config?url=https%3A%2F%2Fcreative.bbrdbr.com%2Fwidgets%2Fv4%2FUniversal%3Ftag%3Dgirls%2Fasian%26thumbsMargin%3D0%26gridRows%3D1%26gridColumns%3D1%26sourceId%3D300asrsasgirlwlcop%26creativeId%3D300asrsasgirlwlcop%26responsive%3D0%26hideButton%3D1%26hideTitle%3D1%26userId%3D2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d%26autoplay%3Dall%26autoplayForce%3D1%26showModal%3Dsignup%26memberId%3D%7Bclickid%7D HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/json
access-control-allow-origin: https://creative.bbrdbr.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Mon, 11 Dec 2023 04:30:33 GMT
cf-cache-status: HIT
age: 127
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a65bdc7b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
15 B IP
ASN #39572 DataWeb Global Group B.V.
File type JSON data
- , ASCII text, with no line terminators
Hash 7fb97eb7c8636552ad068f6d56b5ea34
b69679936779fb02503bc0fe1374a737cc762ecb
e78008828abaa93c4462e326ef384dcda1443352a0f24bdeedada6a6fdbfd1d5
GET /checkUrl HTTP/1.1
Host: cambaddies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://creative.bbrdbr.com
alt-svc: h3=":443"; ma=2592000
content-type: application/json
date: Mon, 11 Dec 2023 04:38:53 GMT
content-length: 15
X-Firefox-Spdy: h2
GET xhamsterlive.com/checkUrl
200 OK 15 B URL GET HTTP/2 xhamsterlive.com/checkUrl
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint96:3A:C0:13:A0:41:D1:27:EA:68:12:D3:99:23:71:C5:8E:E5:C9:44
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash 7fb97eb7c8636552ad068f6d56b5ea34
b69679936779fb02503bc0fe1374a737cc762ecb
e78008828abaa93c4462e326ef384dcda1443352a0f24bdeedada6a6fdbfd1d5
GET /checkUrl HTTP/1.1
Host: xhamsterlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/json
content-length: 15
access-control-allow-origin: https://creative.bbrdbr.com
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuFLvK1H1SdXppSyXBgPXEGqatHkuFXWfpfnqhjSF6; SameSite=None; Secure; path=/; expires=Tue, 12-Dec-23 03:38:53 GMT; HttpOnly
_cfuvid=H9DX42xRa.ntiwUVXvxzzTukYQzfwvgrrXZesGvynx0-1702269533606-0-604800000; path=/; domain=.xhamsterlive.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 833b0a68db84b51b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST warden.arc.io/mailbox/nodes/HLCALzthnrLdZRriaEvtfJ
204 No Content 0 B URL POST HTTP/2 warden.arc.io/mailbox/nodes/HLCALzthnrLdZRriaEvtfJ
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerLet's Encrypt
Subjectarc.io
Fingerprint65:9E:E7:9A:61:A1:B0:0A:38:E4:48:15:D0:45:68:D3:30:5D:12:CA
ValidityWed, 04 Oct 2023 00:54:55 GMT - Tue, 02 Jan 2024 00:54:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mailbox/nodes/HLCALzthnrLdZRriaEvtfJ HTTP/1.1
Host: warden.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saidochesto.top/
Content-Type: text/plain;charset=UTF-8
Content-Length: 285
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Mon, 11 Dec 2023 04:38:53 GMT
access-control-allow-origin: *
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
0 B URL go.bbrdbr.com/app/domain-checker/check-result
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /app/domain-checker/check-result HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 173
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Mon, 11 Dec 2023 04:38:53 GMT
access-control-allow-origin: https://creative.bbrdbr.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtrs3cR5HVWEzYfyqJCPSGVianEJY; SameSite=None; Secure; path=/; expires=Tue, 12-Dec-23 04:38:53 GMT; HttpOnly
server: cloudflare
cf-ray: 833b0a697ef1b524-OSL
alt-svc: h3=":443"; ma=86400
GET go.bbrdbr.com/app/domain-checker/get-check
204 No Content 584 B URL GET HTTP/3 go.bbrdbr.com/app/domain-checker/get-check
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Hash 8231aaec7f9d580535b37f28d740d5c1
dc1a6e404ae2e91bd84265974b296f92bf174298
708e1745a53b0d9ca1f58c6a3fb4509926b25d80df1829c9ef951243ad314a3f
GET /app/domain-checker/get-check HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/json
access-control-allow-origin: https://creative.bbrdbr.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtqFVfs5Aboo4dwjqnpuKtqDHsn9J; SameSite=None; Secure; path=/; expires=Tue, 12-Dec-23 04:38:53 GMT; HttpOnly
server: cloudflare
cf-ray: 833b0a687eb1b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
54 kB URL unpkg.com/@filecoin-saturn/js-client@0.3.6/dist/strn.min.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 642065e6dc58e2bb3352b575183d8403
ddfb49678366d4667814208a0ac9df40bdde04bf
47188c636e6866be38cebf3cfef049989421632938886d4100883817a132818d
GET /@filecoin-saturn/js-client@0.3.6/dist/strn.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"39649-3ftJZ4Nm1GZ4FCCKCsnfQL3eBL8"
via: 1.1 fly.io
fly-request-id: 01HGVDD4NHKNRMRDSFRDAYGNNQ-arn
cf-cache-status: HIT
age: 542452
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 833b0a689d1156c7-OSL
content-encoding: br
X-Firefox-Spdy: h2
14 B URL edge-hls.doppiocdn.org/checkUrl
IP
File type JSON data
- , ASCII text, with no line terminators
Hash 5adb849d1e5031fa27c14f861f6700da
a5b1658db04aa9183a780d00838f638c7936446a
c45272c1b33373d94fb6786698d5145ba0cb558fc7494d91cbbb380b4fc561a8
GET /checkUrl HTTP/1.1
Host: edge-hls.doppiocdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/json
content-length: 14
server: nginx
cache-control: public, max-age=30, s-maxage=30
access-control-allow-origin: *
age: 6
accept-ranges: bytes
X-Firefox-Spdy: h2
0 B URL go.bbrdbr.com/app/domain-checker/check-result
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /app/domain-checker/check-result HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 174
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Mon, 11 Dec 2023 04:38:53 GMT
access-control-allow-origin: https://creative.bbrdbr.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtr56RYDQPp7N2PDUgobveJjiCybi; SameSite=None; Secure; path=/; expires=Tue, 12-Dec-23 04:38:53 GMT; HttpOnly
server: cloudflare
cf-ray: 833b0a6aff41b524-OSL
alt-svc: h3=":443"; ma=86400
GET creative.bbrdbr.com/widgets/v4/Universal/hls.4cfa5b780bfed20a8b26.js
200 OK 1.3 kB URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/hls.4cfa5b780bfed20a8b26.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 22f22b49cc901aa95826401f7ce0930c
6471abdd35ab6d511b67d73ad1375f1ee0f255de
0fae8b03858a764bad3e9af19bfc924ead5b9e25c760432c19e91cba3dff1cf3
GET /widgets/v4/Universal/hls.4cfa5b780bfed20a8b26.js HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Cookie: __cflb=0H28upDCGznfDm9XVE9SipefN9YVHPpcAc9VMGdAhnk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-3d"
expires: Mon, 11 Dec 2023 04:38:50 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 6
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a697ef3b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_init_6aKE8yc6u4UY7cyk.mp4
200 OK 1.2 kB URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_init_6aKE8yc6u4UY7cyk.mp4
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type ISO Media, MP4 Base Media v5
- data
Hash c88ea22e566a5fe8b7429e1554d4870f
7b406c6af960035b1bd40f30bb140dfa9653409c
f5aeda6883991e46d812c1ffc23796c3dd3dbd2e05791ec83f26b31a36182536
GET /hls/79037252/79037252_480p_init_6aKE8yc6u4UY7cyk.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: video/mp4
content-length: 1217
last-modified: Mon, 11 Dec 2023 02:28:47 GMT
etag: "657673df-4c1"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 34
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6b8c3556b7-OSL
alt-svc: h3=":443"; ma=86400
1.6 kB URL edge-hls.doppiocdn.com/hls/79037252/master/79037252_480p.m3u8
IP
Hash f8e7713a908284bc0837b6c647a5b4e6
4522cd753eaeb6561273ddef59b5ef5be5340a49
ed60e1018c0fc658232fef79c144264f5428e3fabe35b56cdc63baf4a7f6db51
GET /hls/79037252/master/79037252_480p.m3u8 HTTP/1.1
Host: edge-hls.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Mon, 11 Dec 2023 04:38:50 GMT
x-proxy-cache: EXPIRED
cache-control: public, max-age=3, s-maxage=3
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 3
server: cloudflare
cf-ray: 833b0a6a4de55690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
308 kB URL b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3898_yv4S4EHyOXayjmTU_1702269523.mp4
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 308 kB (307926 bytes)
Hash bfa17307f04804a38f103baa2e19ec83
69fe59525453ee1d7b416c903e0df8fa7e103fdf
3d8edb6e92ad4a0d4b9a0fde919cda9456e50fef9acd88d02c2a43807ae5dcf7
GET /hls/79037252/79037252_480p_3898_yv4S4EHyOXayjmTU_1702269523.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: video/mp4
content-length: 307926
last-modified: Mon, 11 Dec 2023 04:38:45 GMT
etag: "65769255-4b2d6"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 6
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6b9c3856b7-OSL
alt-svc: h3=":443"; ma=86400
308 kB URL b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3898_yv4S4EHyOXayjmTU_1702269523.mp4
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 308 kB (307926 bytes)
Hash bfa17307f04804a38f103baa2e19ec83
69fe59525453ee1d7b416c903e0df8fa7e103fdf
3d8edb6e92ad4a0d4b9a0fde919cda9456e50fef9acd88d02c2a43807ae5dcf7
GET /hls/79037252/79037252_480p_3898_yv4S4EHyOXayjmTU_1702269523.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: video/mp4
content-length: 307926
last-modified: Mon, 11 Dec 2023 04:38:45 GMT
etag: "65769255-4b2d6"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 6
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6bcc4e56b7-OSL
alt-svc: h3=":443"; ma=86400
308 kB URL b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3898_yv4S4EHyOXayjmTU_1702269523.mp4
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 308 kB (307926 bytes)
Hash bfa17307f04804a38f103baa2e19ec83
69fe59525453ee1d7b416c903e0df8fa7e103fdf
3d8edb6e92ad4a0d4b9a0fde919cda9456e50fef9acd88d02c2a43807ae5dcf7
GET /hls/79037252/79037252_480p_3898_yv4S4EHyOXayjmTU_1702269523.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: video/mp4
content-length: 307926
last-modified: Mon, 11 Dec 2023 04:38:45 GMT
etag: "65769255-4b2d6"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 6
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6bcc4f56b7-OSL
alt-svc: h3=":443"; ma=86400
GET b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4
200 OK 301 kB URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 301 kB (301362 bytes)
Hash 5fc80dba263d919c2db37823862ba455
958f749e40a57b1273224b94d9ffd9d1e351159f
9869b4d86effe3d37194f9a0e645b6e39130b25569c359289b4bbc8b14b9e4bf
GET /hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: video/mp4
content-length: 301362
last-modified: Mon, 11 Dec 2023 04:38:47 GMT
etag: "65769257-49932"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 4
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6ccc8d56b7-OSL
alt-svc: h3=":443"; ma=86400
GET b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4
200 OK 301 kB URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 301 kB (301362 bytes)
Hash 5fc80dba263d919c2db37823862ba455
958f749e40a57b1273224b94d9ffd9d1e351159f
9869b4d86effe3d37194f9a0e645b6e39130b25569c359289b4bbc8b14b9e4bf
GET /hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: video/mp4
content-length: 301362
last-modified: Mon, 11 Dec 2023 04:38:47 GMT
etag: "65769257-49932"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 4
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6cfc9456b7-OSL
alt-svc: h3=":443"; ma=86400
GET b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4
200 OK 301 kB URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 301 kB (301362 bytes)
Hash 5fc80dba263d919c2db37823862ba455
958f749e40a57b1273224b94d9ffd9d1e351159f
9869b4d86effe3d37194f9a0e645b6e39130b25569c359289b4bbc8b14b9e4bf
GET /hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: video/mp4
content-length: 301362
last-modified: Mon, 11 Dec 2023 04:38:47 GMT
etag: "65769257-49932"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 4
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6cfc9656b7-OSL
alt-svc: h3=":443"; ma=86400
GET static.arc.io/widget/css/widget.css?a633436
200 OK 12 kB URL GET HTTP/2 static.arc.io/widget/css/widget.css?a633436
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (13320)
Hash eb95abaae75c6e836cc828de9914914a
659fd120d298ef17696446b12cd486d09057f92f
c39db19c580489da04174d4ff0136d7e4f169c358d59f3824ce7078813b0f5f0
GET /widget/css/widget.css?a633436 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET, HEAD
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"eb95abaae75c6e836cc828de9914914a"
last-modified: Mon, 04 Dec 2023 21:21:10 GMT
x-amz-id-2: iDAZnc/8mIHtTNIPiSHzzopP8AWbVCDY7gbnjyYlM00qr2JxSwIlAPP6E7mmJR+Vb9TlUUSAHVg=
x-amz-request-id: AHN3Z92CX31Q9SJC
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:57:56
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1a4a0f18431ba64f9b9da472340f2050
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4
200 OK 301 kB URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 301 kB (301362 bytes)
Hash 5fc80dba263d919c2db37823862ba455
958f749e40a57b1273224b94d9ffd9d1e351159f
9869b4d86effe3d37194f9a0e645b6e39130b25569c359289b4bbc8b14b9e4bf
GET /hls/79037252/79037252_480p_3899_fB2YKnU9tSvO4AEk_1702269525.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: video/mp4
content-length: 301362
last-modified: Mon, 11 Dec 2023 04:38:47 GMT
etag: "65769257-49932"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 4
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6ddcd356b7-OSL
alt-svc: h3=":443"; ma=86400
GET b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3900_LlKpboIVy1NGrRWl_1702269527.mp4
200 OK 319 kB URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/79037252/79037252_480p_3900_LlKpboIVy1NGrRWl_1702269527.mp4
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 319 kB (318977 bytes)
Hash 7828f1d61c18b52e29f16ed6888e2024
271c012d5ae34f41ee7a2bea5fabdffc13956505
c63c3283b5f8f5301f57776ec948a8daee8dabc043ead2209557f939321ff977
GET /hls/79037252/79037252_480p_3900_LlKpboIVy1NGrRWl_1702269527.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: video/mp4
content-length: 318977
last-modified: Mon, 11 Dec 2023 04:38:49 GMT
etag: "65769259-4de01"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 2
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6e5cf356b7-OSL
alt-svc: h3=":443"; ma=86400
1.2 kB URL b-hls-09.doppiocdn.com/hls/87763328/87763328_480p_init_D7PlsrGTNlNsZJ9q.mp4
IP
File type ISO Media, MP4 Base Media v5
- data
Hash 98d2e04da508ad29d3a9bcd8c3853d76
b946d289e1dd9a3da41363ee6269cc9ebee966e3
f18560a67880487cc1d4ebefda6cdf0faaba470a9dcd8e03d76d284aaaccd36a
GET /hls/87763328/87763328_480p_init_D7PlsrGTNlNsZJ9q.mp4 HTTP/1.1
Host: b-hls-09.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: video/mp4
content-length: 1217
last-modified: Mon, 11 Dec 2023 04:13:05 GMT
etag: "65768c51-4c1"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 59
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6f1d2156b7-OSL
alt-svc: h3=":443"; ma=86400
369 kB URL static.arc.io/widget/js/widget-sc-client.js?197dbd2e
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (3151)
Size 369 kB (369169 bytes)
Hash 00fc1f9530439ec3d2415f9420e814d7
a8c010900e6ae4e49cbd26ffcd0de6f16ab67258
3465ab3f72d4c3ddc2943112cabd7d5bf5faec502ce18319571234957329a1b0
GET /widget/js/widget-sc-client.js?197dbd2e HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"00fc1f9530439ec3d2415f9420e814d7"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: DV3XNbmokfaLyFzHSWMHySmQ/Z+xyiURqNhPGbHTNGsdCdkBumcJ6DTmoMAYJGlOovwsc45CAno=
x-amz-request-id: A0ZYJA68RFE5W55N
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:32
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: e75b71b9c3a5f6f7a4c56c4c3e25848f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET b-hls-09.doppiocdn.com/hls/87763328/87763328_480p_770_5eJ1jAPjbDVNw8qw_1702269527.mp4
200 OK 314 kB URL GET HTTP/3 b-hls-09.doppiocdn.com/hls/87763328/87763328_480p_770_5eJ1jAPjbDVNw8qw_1702269527.mp4
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 314 kB (314079 bytes)
Hash fe7ce17331e39d1fe448ad52cef284f2
312568e237ba1ed3ada8b50f64928561155e3218
26cab375728333178211c2adef22d6923bc4f5f3acb47070a32be15060447a84
GET /hls/87763328/87763328_480p_770_5eJ1jAPjbDVNw8qw_1702269527.mp4 HTTP/1.1
Host: b-hls-09.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: video/mp4
content-length: 314079
last-modified: Mon, 11 Dec 2023 04:38:49 GMT
etag: "65769259-4cadf"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6fbd3e56b7-OSL
alt-svc: h3=":443"; ma=86400
GET su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c
200 OK 370 B URL GET HTTP/1.1 su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerAmazon
Subject*.lambda-url.us-west-2.on.aws
Fingerprint55:BD:28:32:33:D1:C0:F5:60:B5:F9:0C:89:78:17:E5:A4:73:4A:A7
ValidityWed, 25 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with very long lines (370), with no line terminators
Hash 59a2d0bce8fcdf06b1283700479bfdc1
38b60e103942d0ac327933fa2a4eb9f8d1b9221c
26b9fff815df786e703574db3d7dfca672bbded8b7530e4e7671e301aefc5db4
GET /?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c HTTP/1.1
Host: su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 11 Dec 2023 04:38:54 GMT
Content-Type: application/json
Content-Length: 370
Connection: keep-alive
x-amzn-RequestId: 568c8578-9ab8-45ea-9021-946978997f11
Access-Control-Allow-Origin: https://ww3.animeonline.ninja
Vary: Origin
cache-control: no-cache, no-store, must-revalidate
X-Amzn-Trace-Id: root=1-6576925e-520574a0613f0266408f484f;sampled=0;lineage=b81009d1:0
Access-Control-Allow-Credentials: true
GET static.arc.io/widget/js/vendors~widget-sc-client.js?35fccb86
200 OK 20 kB URL GET HTTP/2 static.arc.io/widget/js/vendors~widget-sc-client.js?35fccb86
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (34291)
Hash 1bfa017c8b068bd2857ce731fa38ab1d
583885e7d50ef1e7ee5499c98263e43c70c5b6bb
31501078b411835882c834ed620bebe77a2b8ff3664514358cda957fba8c247d
GET /widget/js/vendors~widget-sc-client.js?35fccb86 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"1bfa017c8b068bd2857ce731fa38ab1d"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: NynoFA7d6ekyTzFhRlqIPmQNoN7y0aqYhQEGXmWRYTlZqJcUJf+ZSzosKObgrIBitLt4gzRqis8=
x-amz-request-id: A0ZMGPMCDV8DAE40
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:32
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 710ddd87d2b1c5a484f43fb3954492de
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET b-hls-16.doppiocdn.com/hls/79037252/79037252_480p.m3u8
200 OK 685 B URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/79037252/79037252_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Hash 990c67883b9adfc1cea0e7a141598eef
f2a6fc0b33b48a71626402f0833a0356496eb6ac
b48b8ecdf0d9ed78d95818be59994f1d76a6e2efdaa27658251f63ddc6333084
GET /hls/79037252/79037252_480p.m3u8 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:55 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Mon, 11 Dec 2023 04:38:52 GMT
x-proxy-cache: EXPIRED
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 833b0a779ef556b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
1.3 kB URL l1s.saturn.ms/ipfs/QmUpy19gb24M4BX11ZA35qgx1YqgETX9hiEmW46hxBcRjx/solchicks-1265.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiJmMTcwZjkyZi0zNWQ2LTRmNTctYWUzYS03ZDZmMWNiODQ5ZjMiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjI2OTUzNiwiZXhwIjoxNzAyMjczMTM2fQ.W3pz-uzPdshFLaAl6-G4iB3sbITsReGnVs1vuIQ28EkoK_nbepLQeMa5A9D0U3BB-ZH28BaLgc98OFDa-Eg39Q
IP
Hash 01c36a8872cb449395874c2fe29a8fd1
2335bd74e5d460ced21dc832db5c7471a615931c
8f55ff22f26a15f41a2d2ee2a95cec8d980cc62aab88516de8220e206e4ba615
GET /ipfs/QmUpy19gb24M4BX11ZA35qgx1YqgETX9hiEmW46hxBcRjx/solchicks-1265.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiJmMTcwZjkyZi0zNWQ2LTRmNTctYWUzYS03ZDZmMWNiODQ5ZjMiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjI2OTUzNiwiZXhwIjoxNzAyMjczMTM2fQ.W3pz-uzPdshFLaAl6-G4iB3sbITsReGnVs1vuIQ28EkoK_nbepLQeMa5A9D0U3BB-ZH28BaLgc98OFDa-Eg39Q HTTP/1.1
Host: l1s.saturn.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:56 GMT
content-type: application/vnd.ipld.car;version=1;order=dfs;dups=y
content-length: 1264
cache-control: public, max-age=29030400, immutable
x-lassie-version: lassie/v0.19.2-f7b051a
server-timing: started-finding-candidates;dur=0.073919;candidates-found=30313546;candidates-filtered=30330039,retrieval-Bitswap;first-byte-received=105715537;dur=30.477094, shim; dur=248.68513199999998, shim_lassie; dur=248.50589399999998, shim_lassie_headers; dur=248.099033, shim_lassie_body; dur=0.28593199999999996, nginx;dur=0, nginx_uct;dur=, nginx_uht;dur=, nginx_urt;dur=
etag: "QmUpy19gb24M4BX11ZA35qgx1YqgETX9hiEmW46hxBcRjx.car.dvpjptiaj6vak"
x-ipfs-path: /ipfs/QmUpy19gb24M4BX11ZA35qgx1YqgETX9hiEmW46hxBcRjx/solchicks-1265.json
x-content-type-options: nosniff
content-disposition: attachment; filename="QmUpy19gb24M4BX11ZA35qgx1YqgETX9hiEmW46hxBcRjx_solchicks-1265.json.car"
saturn-node-id: 4ef24ec1-f668-465d-b7be-61c135b0bf62
saturn-node-version: 1095_62e6d14
saturn-transfer-id: 05f35b1f56df6576a56d352fa831e243
saturn-cache-status: HIT
timing-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Traceparent
access-control-expose-headers: *
accept-ranges: none
X-Firefox-Spdy: h2
GET su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c
200 OK 370 B URL GET HTTP/1.1 su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerAmazon
Subject*.lambda-url.us-west-2.on.aws
Fingerprint55:BD:28:32:33:D1:C0:F5:60:B5:F9:0C:89:78:17:E5:A4:73:4A:A7
ValidityWed, 25 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with very long lines (370), with no line terminators
Hash f8aee21979c33703c2444152aec68fcc
60439b8e78276b21076ae45520eac93988a36417
457af05d90719bc1e6e98c2dc429c37aa12e6db268d7d0a9ba4bd45ad27741a2
GET /?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c HTTP/1.1
Host: su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saidochesto.top/
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 11 Dec 2023 04:38:56 GMT
Content-Type: application/json
Content-Length: 370
Connection: keep-alive
x-amzn-RequestId: 9909d4b9-ade3-4c02-a021-5a9917b46a24
Access-Control-Allow-Origin: https://saidochesto.top
Vary: Origin
cache-control: no-cache, no-store, must-revalidate
X-Amzn-Trace-Id: root=1-65769260-03a67ab00da06a7e23930868;sampled=0;lineage=b81009d1:0
Access-Control-Allow-Credentials: true
POST adxadserv.com/px/heartbeat/v1?pv_uid=ae7c3119-5e40-46d9-8425-9ecaa52e2d01&t_op=5.75&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
200 OK 0 B URL POST HTTP/1.1 adxadserv.com/px/heartbeat/v1?pv_uid=ae7c3119-5e40-46d9-8425-9ecaa52e2d01&t_op=5.75&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b63761d6e272165ed9c5&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530686&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=ae7c3119-5e40-46d9-8425-9ecaa52e2d01&t_op=5.75&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:57 GMT
Content-Length: 0
Connection: keep-alive
GET b-hls-16.doppiocdn.com/hls/79037252/79037252_480p.m3u8
200 OK 315 B URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/79037252/79037252_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Hash 990c67883b9adfc1cea0e7a141598eef
f2a6fc0b33b48a71626402f0833a0356496eb6ac
b48b8ecdf0d9ed78d95818be59994f1d76a6e2efdaa27658251f63ddc6333084
GET /hls/79037252/79037252_480p.m3u8 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:55 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Mon, 11 Dec 2023 04:38:52 GMT
x-proxy-cache: EXPIRED
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 833b0a776eea56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET b-hls-16.doppiocdn.com/hls/79037252/79037252_480p.m3u8
200 OK 632 B URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/79037252/79037252_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Hash 681a721097a5b7154edb5a1bfa3833fb
38c69439fe1cab45b6186ca005c69f0aaf3eccb1
ddc17400d10002b8f4e21cfcff60a8303a9ae58c71e79c9aabe3ab8e7817f572
GET /hls/79037252/79037252_480p.m3u8 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:57 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Mon, 11 Dec 2023 04:38:54 GMT
x-proxy-cache: HIT
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 833b0a83ea8256b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST adxadserv.com/px/heartbeat/v1?pv_uid=862ceeba-8700-4e6d-94eb-9aa0dad4ea4e&t_op=6.033&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
200 OK 0 B URL POST HTTP/1.1 adxadserv.com/px/heartbeat/v1?pv_uid=862ceeba-8700-4e6d-94eb-9aa0dad4ea4e&t_op=6.033&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530694&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=862ceeba-8700-4e6d-94eb-9aa0dad4ea4e&t_op=6.033&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:58 GMT
Content-Length: 0
Connection: keep-alive
POST twb3qukm2i654i3tnvx36char40aymqq.lambda-url.us-west-2.on.aws/
201 Created 0 B URL POST HTTP/1.1 twb3qukm2i654i3tnvx36char40aymqq.lambda-url.us-west-2.on.aws/
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerAmazon
Subject*.lambda-url.us-west-2.on.aws
Fingerprint55:BD:28:32:33:D1:C0:F5:60:B5:F9:0C:89:78:17:E5:A4:73:4A:A7
ValidityWed, 25 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: twb3qukm2i654i3tnvx36char40aymqq.lambda-url.us-west-2.on.aws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1590
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 201 Created
Date: Mon, 11 Dec 2023 04:39:00 GMT
Content-Type: application/json
Content-Length: 0
Connection: keep-alive
x-amzn-RequestId: 3c914ac6-9fa5-4e3a-89c4-b57384d2df50
Access-Control-Allow-Origin: https://ww3.animeonline.ninja
Vary: Origin
X-Amzn-Trace-Id: root=1-65769264-6eabd38139867ad357218c4f;sampled=0;lineage=93f9df3c:0
Access-Control-Allow-Credentials: true
GET b-hls-09.doppiocdn.com/hls/87763328/87763328_480p.m3u8
200 OK 631 B URL GET HTTP/3 b-hls-09.doppiocdn.com/hls/87763328/87763328_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Hash ffd33458671fe538498760ee37e1aed5
b53786f5be66c4a5897fd3ef0311c1dd4082f417
ede53a74c02ae78def78f6dc48667cea1fa0e0a03abfbda2ac59758828d19f1c
GET /hls/87763328/87763328_480p.m3u8 HTTP/1.1
Host: b-hls-09.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:56 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Mon, 11 Dec 2023 04:38:55 GMT
x-proxy-cache: EXPIRED
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 833b0a7b480156b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET b-hls-09.doppiocdn.com/hls/87763328/87763328_480p.m3u8
200 OK 312 B URL GET HTTP/3 b-hls-09.doppiocdn.com/hls/87763328/87763328_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Hash cb0150d56778a156bd51e77afe8a4b97
8fba4ba1d046716b4353f73903f4b104eb8efe46
6a51d68780721a8ac253e606cc4a113350ee13084d1112a0f13ff1a318f49269
GET /hls/87763328/87763328_480p.m3u8 HTTP/1.1
Host: b-hls-09.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:39:12 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Mon, 11 Dec 2023 04:39:11 GMT
x-proxy-cache: HIT
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 833b0adf5b1456b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET b-hls-09.doppiocdn.com/hls/87763328/87763328_480p.m3u8
200 OK 629 B URL GET HTTP/3 b-hls-09.doppiocdn.com/hls/87763328/87763328_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Hash 6b6916d71916245966e6bed3aa1cb0f0
7d33110ff577b69adf2310c9519ef74b3715d2c6
1a35918fc483c321931335ac940d0fa7fce7aa194467366385e7fc861359f876
GET /hls/87763328/87763328_480p.m3u8 HTTP/1.1
Host: b-hls-09.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:39:00 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Mon, 11 Dec 2023 04:38:59 GMT
x-proxy-cache: EXPIRED
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 833b0a944eaf56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
0 B URL adxadserv.com/px/heartbeat/v1?pv_uid=a69d915f-cb90-4beb-aa25-e67abb59d9f2&t_op=21.016&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=a69d915f-cb90-4beb-aa25-e67abb59d9f2&t_op=21.016&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:39:12 GMT
Content-Length: 0
Connection: keep-alive
0 B URL adxadserv.com/px/heartbeat/v1?pv_uid=862ceeba-8700-4e6d-94eb-9aa0dad4ea4e&t_op=21.06&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=862ceeba-8700-4e6d-94eb-9aa0dad4ea4e&t_op=21.06&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:39:13 GMT
Content-Length: 0
Connection: keep-alive
GET b-hls-16.doppiocdn.com/hls/79037252/79037252_480p.m3u8
200 OK 316 B URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/79037252/79037252_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Hash c7e241a55d2c00d658283cb78a2f9436
bc0c979918140a7a3cdfdaad649af2cdbeac77f9
9c2e553ad3dece950bec3963c7dd8217d88d0066834be2effffe94f502e98912
GET /hls/79037252/79037252_480p.m3u8 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:39:16 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Mon, 11 Dec 2023 04:39:14 GMT
x-proxy-cache: EXPIRED
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 833b0af5a96056b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
0 B URL warden.arc.io/mailbox/propertySession
IP
Certificate IssuerLet's Encrypt
Subjectarc.io
Fingerprint65:9E:E7:9A:61:A1:B0:0A:38:E4:48:15:D0:45:68:D3:30:5D:12:CA
ValidityWed, 04 Oct 2023 00:54:55 GMT - Tue, 02 Jan 2024 00:54:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mailbox/propertySession HTTP/1.1
Host: warden.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 179
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 11 Dec 2023 04:39:18 GMT
access-control-allow-origin: *
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET saidochesto.top/static/server/streamvid.net.png
200 OK 20 kB URL GET HTTP/3 saidochesto.top/static/server/streamvid.net.png
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
FingerprintA3:70:4B:B6:41:6C:F0:D8:C9:C3:2C:A9:A6:48:9B:D1:E4:77:EE:31
ValidityMon, 11 Dec 2023 00:33:16 GMT - Sun, 10 Mar 2024 00:33:15 GMT
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced
- data
Hash fc1bcb729ee6af4f9c1a7c9247fea179
bb4ed152f561ada7690bd814b0cccff95f291c79
a8d1f1debafccdf201ae6da4bbe7227b54c7c368d6c60865894a29d68e71577b
GET /static/server/streamvid.net.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: image/png
content-length: 19678
cache-control: public, max-age=604800
expires: Thu, 14 Dec 2023 12:21:05 GMT
last-modified: Sat, 21 Nov 2020 20:11:27 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 317867
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HGpqSBs0CxA2q7StjnNT%2FW2fLoJEQr4Co9pr33uJZddUjbe%2FhfzLUVZRNxgzceB6ilL0kQKf1yZL7h4SxfHzVcXRSEypB8Cy8FvqANklYNETgMvFqiJvqk2ho8GCD%2B9EVJ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a5ffbcfb524-OSL
GET creative.bbrdbr.com/widgets/v4/Universal/lang/en.json
200 OK 172 B URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/lang/en.json
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 402f4a06b5dcf96d25dd4ff1f840784b
edebb253af01ef1882f424ee6278368485898d62
bd570b38d9d687c593545a7b250570605c601381f3d3d5263346b295e12a55ba
GET /widgets/v4/Universal/lang/en.json HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
DNT: 1
Connection: keep-alive
Cookie: __cflb=0H28upDCGznfDm9XVE9SipefN9YVHPpcAc9VMGdAhnk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/json
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
etag: W/"656f0246-ac"
expires: Mon, 11 Dec 2023 04:38:57 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 0
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a66ce11b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/colors.dark.css
200 OK 39 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/colors.dark.css
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (39419), with no line terminators
Hash 305bb69b887f12c00d46dcfcb028aa4c
de6b45b3b57e8f616410f1ce3e30489b291ed1d9
763e0de4ca16b7ad07e5f8a2b072e9e89ef2fc700d94fd3895f0dd5154bad7f5
GET /wp-content/themes/dooplay/assets/css/colors.dark.css HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=50084
etag: W/"c3a4-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 660084357
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1542276
server: cloudflare
cf-ray: 833b0a50b8407131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/min/front.ajax.js
200 OK 13 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/min/front.ajax.js
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (13253), with no line terminators
Hash 94601fc5f96fd1e3b97017f205afdafc
a81121b8c5db178d88e053315adf9362656b80e9
575f58479d9bd0cb826024c5ef918ed1a6fdfda6a83202903a0f393b04c05b8d
GET /wp-content/themes/dooplay/assets/js/min/front.ajax.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=13256
etag: W/"33c8-5ed9d145f6dc0"
last-modified: Wed, 16 Nov 2022 21:23:11 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 692125782
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1366981
server: cloudflare
cf-ray: 833b0a5248fe7131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET static.adxadserv.com/js/adb.js
200 OK 1.3 kB URL GET HTTP/2 static.adxadserv.com/js/adb.js
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subject1585977359.rsc.cdn77.org
Fingerprint11:4C:DC:15:D3:66:0C:E4:77:6D:B8:F8:DE:49:6F:09:2A:C9:1F:CB
ValidityWed, 22 Nov 2023 23:05:55 GMT - Tue, 20 Feb 2024 23:05:54 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1365), with no line terminators
Hash 2ea8d2bc9be2b596f2df95f25d68ef61
cae60cdb0e4e7176ed676de49a48a5145b684c22
6437eb006f05e8d3b3227e3dc259912ab006774caa42584364c4ca2618cf3441
GET /js/adb.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 05 Sep 2023 14:53:26 GMT
etag: W/"64f740e6-510"
server: CDN77-Turbo
x-77-nzt: EQwBiscRpwH3IVUCAA
x-77-nzt-ray: 17ea3f34257778f05a927665cf5ba621
x-accel-expires: @1702834895
x-accel-date: 1702116665
x-cache-lb: HIT
x-age-lb: 152865
x-77-pop: warsawPL
x-77-cache: HIT
x-77-age: 152865
content-encoding: gzip
X-Firefox-Spdy: h2
GET go.bbrdbr.com/abc.gif?sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fr.trackwilltrk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A852%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A640%2C%22duration%22%3A31%2C%22transferSize%22%3A80913%7D%5D&mh=-211290726
200 OK 0 B URL GET HTTP/3 go.bbrdbr.com/abc.gif?sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fr.trackwilltrk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A852%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A640%2C%22duration%22%3A31%2C%22transferSize%22%3A80913%7D%5D&mh=-211290726
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /abc.gif?sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fr.trackwilltrk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A852%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A640%2C%22duration%22%3A31%2C%22transferSize%22%3A80913%7D%5D&mh=-211290726 HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Cookie: __cflb=02DiuDFRFiBZBvMSLtqGxuZp8RQcjVh53YwpshphecqD6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 833b0a67ce8eb524-OSL
alt-svc: h3=":443"; ma=86400
GET adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b65361d6e27e372dcee7%2526type%253D300x100%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fshangri-la-frontier-cap-11%252F%2526dt%253D1702269530682%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x100&t_s=1702269531235&t_i=1702269532057&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=a69d915f-cb90-4beb-aa25-e67abb59d9f2&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=2e8ad720-97df-11ee-b2ea-52ca5d2668e1&spid=60e4b65361d6e27e372dcee7&fpid_sa=1702269532071&fpid=&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.002
200 OK 0 B URL GET HTTP/1.1 adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b65361d6e27e372dcee7%2526type%253D300x100%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fshangri-la-frontier-cap-11%252F%2526dt%253D1702269530682%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x100&t_s=1702269531235&t_i=1702269532057&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=a69d915f-cb90-4beb-aa25-e67abb59d9f2&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=2e8ad720-97df-11ee-b2ea-52ca5d2668e1&spid=60e4b65361d6e27e372dcee7&fpid_sa=1702269532071&fpid=&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.002
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530682&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b65361d6e27e372dcee7%2526type%253D300x100%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fshangri-la-frontier-cap-11%252F%2526dt%253D1702269530682%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x100&t_s=1702269531235&t_i=1702269532057&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=a69d915f-cb90-4beb-aa25-e67abb59d9f2&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=2e8ad720-97df-11ee-b2ea-52ca5d2668e1&spid=60e4b65361d6e27e372dcee7&fpid_sa=1702269532071&fpid=&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.002 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:52 GMT
Content-Length: 0
Connection: keep-alive
POST adxadserv.com/px/heartbeat/v1?pv_uid=a69d915f-cb90-4beb-aa25-e67abb59d9f2&t_op=6.013&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
200 OK 0 B URL POST HTTP/1.1 adxadserv.com/px/heartbeat/v1?pv_uid=a69d915f-cb90-4beb-aa25-e67abb59d9f2&t_op=6.013&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530682&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=a69d915f-cb90-4beb-aa25-e67abb59d9f2&t_op=6.013&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:58 GMT
Content-Length: 0
Connection: keep-alive
GET ww3.animeonline.ninja/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 12 kB URL GET HTTP/2 ww3.animeonline.ninja/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (12331)
Hash 88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 15:04:24 GMT
etag: W/"6569f5f8-302c"
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a50c8487131-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 13 Dec 2023 04:38:49 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
GET static.adxadserv.com/js/adb.js
200 OK 1.3 kB URL GET HTTP/2 static.adxadserv.com/js/adb.js
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subject1585977359.rsc.cdn77.org
Fingerprint11:4C:DC:15:D3:66:0C:E4:77:6D:B8:F8:DE:49:6F:09:2A:C9:1F:CB
ValidityWed, 22 Nov 2023 23:05:55 GMT - Tue, 20 Feb 2024 23:05:54 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1365), with no line terminators
Hash 2ea8d2bc9be2b596f2df95f25d68ef61
cae60cdb0e4e7176ed676de49a48a5145b684c22
6437eb006f05e8d3b3227e3dc259912ab006774caa42584364c4ca2618cf3441
GET /js/adb.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 05 Sep 2023 14:53:26 GMT
etag: W/"64f740e6-510"
server: CDN77-Turbo
x-77-nzt: EQwBiscRpwH3IVUCAA
x-77-nzt-ray: 17ea3f34257778f05a927665a2229921
x-accel-expires: @1702834895
x-accel-date: 1702116665
x-cache-lb: HIT
x-age-lb: 152865
x-77-pop: warsawPL
x-77-cache: HIT
x-77-age: 152865
content-encoding: gzip
X-Firefox-Spdy: h2
GET cids.arc.io/top-cids
200 OK 6.4 kB IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectcids.arc.io
FingerprintC4:44:71:7D:EB:22:87:3F:E0:A0:9F:87:B5:F5:45:88:5E:CE:CD:B0
ValidityWed, 01 Nov 2023 03:09:17 GMT - Tue, 30 Jan 2024 03:09:16 GMT
File type troff or preprocessor input, ASCII text, with very long lines (6567), with no line terminators
Hash ad63d371033227fa647ece66bb1833de
cf2acc3345e725cd6322d2f4ed7cabf6fac71c22
96bb168a19507139ed59482fee546678769172aed9732bd7cf2e9bc3e350379f
GET /top-cids HTTP/1.1
Host: cids.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:57 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 1392871
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=3600
etag: W/"18df-DQBpc0tXxfGljE9burLdqID/hEE"
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/11/2023 04:21:20
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a70986fb231c7992956b39b681810f63
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
POST adxadserv.com/px/heartbeat/v1?pv_uid=5d26ca88-05d7-4fec-b994-5104803196c3&t_op=5.948&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
200 OK 0 B URL POST HTTP/1.1 adxadserv.com/px/heartbeat/v1?pv_uid=5d26ca88-05d7-4fec-b994-5104803196c3&t_op=5.948&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64461d6e27e372dcee6&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530689&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=5d26ca88-05d7-4fec-b994-5104803196c3&t_op=5.948&p_nn=adxad-rtb&fpid_sa=1702269532071&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702269532071&sid_sa=1702269532071&feid=cc1c8c0eec54f33675345a3c182dbe47&sid=84bde7445b113ceb243f4ceebb73317f&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 11 Dec 2023 04:38:57 GMT
Content-Length: 0
Connection: keep-alive
GET fonts.googleapis.com/css?family=Roboto+Condensed:300,400,700
200 OK 7.0 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto+Condensed:300,400,700
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
File type ASCII text, with very long lines (7149), with no line terminators
Hash a7bab95a9975ed64efe87f0f9c29e24a
f8e7575dc137b18c486b769dda42fd8d758878d6
91c6899743b2074e79f7fc861233254b11f7639626b1982eb5a5347bf9b5e7a2
GET /css?family=Roboto+Condensed:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 11 Dec 2023 04:38:52 GMT
date: Mon, 11 Dec 2023 04:38:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET ww3.animeonline.ninja/wp-includes/css/classic-themes.min.css
200 OK 291 B URL GET HTTP/2 ww3.animeonline.ninja/wp-includes/css/classic-themes.min.css
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with no line terminators
Hash 2485a0fab337da61deb41cc4aa994c1b
af1a1d4c6b7c287dc881dd4f46b6b547ac5a5353
7e0bdafc01d81aed845a69d0a32120145155f75aca4c603d8952de7ecc5c6410
GET /wp-includes/css/classic-themes.min.css HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 13 Apr 2023 09:28:11 GMT
etag: W/"123-5f93457d8e0c0"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
x-varnish: 112271653
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a5058247131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET banneradsday.com/banner300nxe6xydtgy45.js
200 OK 4.1 kB URL GET HTTP/2 banneradsday.com/banner300nxe6xydtgy45.js
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGlobalSign nv-sa
Subjectwww.banneradsday.com
Fingerprint64:D2:4F:B0:7F:50:0C:A1:68:6C:40:78:6F:4F:C0:05:B7:2D:89:CF
ValidityTue, 16 May 2023 05:24:22 GMT - Sun, 16 Jun 2024 05:24:21 GMT
File type ASCII text, with very long lines (4102), with no line terminators
Hash 3815630c45eb28f34d47fbf9c01c2493
aac533b143b0c76da02fe858143ac4fd53b2e010
5b3c375394690e7dd0123190b6c250094dc065b8bc41a649bf32365fe37fd376
GET /banner300nxe6xydtgy45.js HTTP/1.1
Host: banneradsday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 20:14:41 GMT
vary: Accept-Encoding
etag: W/"637e7f31-1006"
expires: Thu, 25 Jan 2024 04:38:50 GMT
cache-control: max-age=3888000
content-encoding: gzip
X-Firefox-Spdy: h2
GET static.arc.io/widget/js/chunk-2d0cf2b3.js?d98d2542
200 OK 3.1 MB URL GET HTTP/2 static.arc.io/widget/js/chunk-2d0cf2b3.js?d98d2542
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
Size 3.1 MB (3059686 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/js/chunk-2d0cf2b3.js?d98d2542 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"3e9a577ca6bcba5cdf18d0dafd192870"
last-modified: Fri, 03 Nov 2023 02:19:08 GMT
x-amz-id-2: Mlq6k178BOYGlEgMJiTzu6xvVIY00jU7/a/F2MHsabQEkmtlzZQBNV1WkvdVZiobPSnZMvk52G8=
x-amz-request-id: KEQ0B2Y56WK8QZNJ
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/27/2023 00:53:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2f28c00d584de6ff824bcb35da5ee4e2
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/owlcarousel.js
200 OK 24 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/owlcarousel.js
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (12985)
Hash e20ca9bbf3596b9e173e2cfd8d78dbdc
5b4864511215a3dec6ab647b204ba216e02b58b8
54e9c6e5d30ad2b1002cd5b8f049302f9db5df342508b83d76e4355041f33630
GET /wp-content/themes/dooplay/assets/js/lib/owlcarousel.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=23938
etag: W/"5d82-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 219515886
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1284592
server: cloudflare
cf-ray: 833b0a5259027131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET s2.googleusercontent.com/s2/favicons?domain=fukouda.top
301 Moved Permanently 726 B URL GET HTTP/2 s2.googleusercontent.com/s2/favicons?domain=fukouda.top
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/favicons?domain=fukouda.top HTTP/1.1
Host: s2.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fukouda.top&size=16
x-content-type-options: nosniff
server: sffe
content-length: 331
x-xss-protection: 0
date: Mon, 11 Dec 2023 04:36:08 GMT
expires: Mon, 11 Dec 2023 05:06:08 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 163
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.googleapis.com/css?family=Ubuntu&display=swap
200 OK 1.9 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Ubuntu&display=swap
IP
Requested by https://ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530682&screen=1280x1024&tags=
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
File type ASCII text, with very long lines (1920), with no line terminators
Hash bac8c0acfd05e532050648a2118aa2dd
c3a585733918dae1a7ab58f740622055560c0770
154dd3054e01133ab38a433b6b9c06a1c01bde95f19f1a9c28c94d9e938f003c
GET /css?family=Ubuntu&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.adxadserv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 11 Dec 2023 04:38:51 GMT
date: Mon, 11 Dec 2023 04:38:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET static.arc.io/widget/js/chunk-0565ec8a.js?1d44d7b5
200 OK 74 kB URL GET HTTP/2 static.arc.io/widget/js/chunk-0565ec8a.js?1d44d7b5
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (61647)
Hash c4f44a6c2579efba11bb942f7a8d5add
e7288de9daacb52cac37ed9bee457602ee1a8472
45f23f777cde44982c376f8ce63913e8d847df4404a5b135c97afacfe06e297a
GET /widget/js/chunk-0565ec8a.js?1d44d7b5 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:54 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"c4f44a6c2579efba11bb942f7a8d5add"
last-modified: Mon, 04 Dec 2023 21:21:10 GMT
x-amz-id-2: NW9GfqOEEU/Wqk8RUU9k5Ebj5XOZ3qHobt/O6P0TcNxL6J8vvauPh0GrAnPW7fS3T5Qy9uAyZ4k=
x-amz-request-id: 3EAYZBPNH2HNHHH3
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:58:01
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2e354cf4ee9aa73b1db0c2082b8db01e
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET l1s.saturn.ms/ipfs/QmbwNtoNP7FNotvuyVmc4QUDhWMKr1zuLqGzzzQCAuu3gw/image%20%2822%29.png?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiIwYzE2ZDU4Ni1kOGFlLTRlYjAtOWM5NS04YmVmNDBiYjQ2OWIiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjI2OTUzNiwiZXhwIjoxNzAyMjczMTM2fQ.9NXZPRtIIu_N7U-SU7c8l95n8rc_STC8meOhGtlU1F1dFLtny5Fc93V0Nr7YExlmxj6e4YFLTH8JuiRrizFPQg
200 OK 7.1 kB URL GET HTTP/2 l1s.saturn.ms/ipfs/QmbwNtoNP7FNotvuyVmc4QUDhWMKr1zuLqGzzzQCAuu3gw/image%20%2822%29.png?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiIwYzE2ZDU4Ni1kOGFlLTRlYjAtOWM5NS04YmVmNDBiYjQ2OWIiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjI2OTUzNiwiZXhwIjoxNzAyMjczMTM2fQ.9NXZPRtIIu_N7U-SU7c8l95n8rc_STC8meOhGtlU1F1dFLtny5Fc93V0Nr7YExlmxj6e4YFLTH8JuiRrizFPQg
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerZeroSSL
Subjectl1s.saturn.ms
Fingerprint24:EE:22:A8:9F:B6:53:BA:64:81:A6:FD:DE:00:D9:7A:5A:EB:5D:64
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT
Hash 66192b8bc9611fe84be0519edc7e60fd
0b18b85360db14f6183d1e4e4eb3463708f9926e
6e878572d367c2926162bd626c952a532a4b17a477577526734e4066bc196e1d
GET /ipfs/QmbwNtoNP7FNotvuyVmc4QUDhWMKr1zuLqGzzzQCAuu3gw/image%20%2822%29.png?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiIwYzE2ZDU4Ni1kOGFlLTRlYjAtOWM5NS04YmVmNDBiYjQ2OWIiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjI2OTUzNiwiZXhwIjoxNzAyMjczMTM2fQ.9NXZPRtIIu_N7U-SU7c8l95n8rc_STC8meOhGtlU1F1dFLtny5Fc93V0Nr7YExlmxj6e4YFLTH8JuiRrizFPQg HTTP/1.1
Host: l1s.saturn.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saidochesto.top/
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 11 Dec 2023 04:38:57 GMT
content-type: application/vnd.ipld.car;version=1;order=dfs;dups=y
cache-control: public, max-age=29030400, immutable
x-lassie-version: lassie/v0.19.2-f7b051a
server-timing: started-finding-candidates;dur=0.086583;candidates-found=10081679;candidates-filtered=10122258,retrieval-Bitswap;dur=10.283045;first-byte-received=208264559, shim; dur=452.237598, shim_lassie; dur=451.99572, shim_lassie_headers; dur=451.714594, shim_lassie_body; dur=0.513116, nginx;dur=0, nginx_uct;dur=, nginx_uht;dur=, nginx_urt;dur=
etag: "QmbwNtoNP7FNotvuyVmc4QUDhWMKr1zuLqGzzzQCAuu3gw.car.5gtikpv6ar1mn"
x-ipfs-path: /ipfs/QmbwNtoNP7FNotvuyVmc4QUDhWMKr1zuLqGzzzQCAuu3gw/image%20%2822%29.png
x-content-type-options: nosniff
content-disposition: attachment; filename="QmbwNtoNP7FNotvuyVmc4QUDhWMKr1zuLqGzzzQCAuu3gw_image (22).png.car"
saturn-node-id: 4ef24ec1-f668-465d-b7be-61c135b0bf62
saturn-node-version: 1095_62e6d14
saturn-transfer-id: 2afae7026a4228bcd9f8b8d1696d4a81
saturn-cache-status: HIT
timing-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Traceparent
access-control-expose-headers: *
accept-ranges: none
X-Firefox-Spdy: h2
GET creative.bbrdbr.com/widgets/v4/Universal/vendors~hls.13f01a3a9d7e36c14415.js
200 OK 178 kB URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/vendors~hls.13f01a3a9d7e36c14415.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (45140)
Size 178 kB (177865 bytes)
Hash 4a1e862a348e6713dfcce18e9cda2f42
47bed78ef29844bec68da443a6b0add48936b61b
b3b83266dde6fa2870ddc1cc812233d8baa03727cd4d65733ed5ee7a4fbb4490
GET /widgets/v4/Universal/vendors~hls.13f01a3a9d7e36c14415.js HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Cookie: __cflb=0H28upDCGznfDm9XVE9SipefN9YVHPpcAc9VMGdAhnk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-2b6c9"
expires: Mon, 11 Dec 2023 04:38:47 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 6
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a69ff0bb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET creative.bbrdbr.com/widgets/v4/Universal/vendors~hls.13f01a3a9d7e36c14415.js
200 OK 178 kB URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/vendors~hls.13f01a3a9d7e36c14415.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (45140)
Size 178 kB (177865 bytes)
Hash 4a1e862a348e6713dfcce18e9cda2f42
47bed78ef29844bec68da443a6b0add48936b61b
b3b83266dde6fa2870ddc1cc812233d8baa03727cd4d65733ed5ee7a4fbb4490
GET /widgets/v4/Universal/vendors~hls.13f01a3a9d7e36c14415.js HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Cookie: __cflb=0H28upDCGznfDm9XVE9SipefN9YVHPpcAc9VMGdAhnk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-2b6c9"
expires: Mon, 11 Dec 2023 04:38:47 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 6
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6aff3db524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700&ver=2.4.1
200 OK 8.5 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700&ver=2.4.1
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
File type ASCII text, with very long lines (8716), with no line terminators
Hash 1303310bf811cbabe52e473a56247b05
76a5d89fcefb4e769642a6636f439f3f03833429
ccc9d8c0b923b1470e8ddb0309ed98c9419fd7abb32ead3c0dcebbc30ea84778
GET /css?family=Roboto%3A300%2C400%2C500%2C700&ver=2.4.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 11 Dec 2023 04:38:49 GMT
date: Mon, 11 Dec 2023 04:38:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET static.adxadserv.com/js/adb.js
200 OK 1.3 kB URL GET HTTP/2 static.adxadserv.com/js/adb.js
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subject1585977359.rsc.cdn77.org
Fingerprint11:4C:DC:15:D3:66:0C:E4:77:6D:B8:F8:DE:49:6F:09:2A:C9:1F:CB
ValidityWed, 22 Nov 2023 23:05:55 GMT - Tue, 20 Feb 2024 23:05:54 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1365), with no line terminators
Hash 2ea8d2bc9be2b596f2df95f25d68ef61
cae60cdb0e4e7176ed676de49a48a5145b684c22
6437eb006f05e8d3b3227e3dc259912ab006774caa42584364c4ca2618cf3441
GET /js/adb.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 05 Sep 2023 14:53:26 GMT
etag: W/"64f740e6-510"
server: CDN77-Turbo
x-77-nzt: EQwBiscRpwH3IVUCAA
x-77-nzt-ray: 17ea3f34257778f05a9276652ce5040c
x-accel-expires: @1702834895
x-accel-date: 1702116665
x-cache-lb: HIT
x-age-lb: 152865
x-77-pop: warsawPL
x-77-cache: HIT
x-77-age: 152865
content-encoding: gzip
X-Firefox-Spdy: h2
GET ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/mcsbscrollbar.js
200 OK 39 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/mcsbscrollbar.js
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (38606), with no line terminators
Hash dfd05556f6dd25a901f07243fc0921a5
cb64d0445d44671f73488ec3a4dd5c2bf81f14af
43a8aeb106db48020a09288416fec675fca2fd7fceda275a26bc7adca98832bf
GET /wp-content/themes/dooplay/assets/js/lib/mcsbscrollbar.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=38615
etag: W/"96d7-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 543994490
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1455369
server: cloudflare
cf-ray: 833b0a5259037131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET static.arc.io/widget/js/widget-ui.js?1dbb019f
200 OK 42 kB URL GET HTTP/2 static.arc.io/widget/js/widget-ui.js?1dbb019f
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/js/widget-ui.js?1dbb019f HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"59c913fd17c39f9d200673df12b25d15"
last-modified: Mon, 04 Dec 2023 21:21:10 GMT
x-amz-id-2: knZBpMyF+bBY3iHuf/yvs+PubFtf+HsDirMTowHDPGnOCtDdiozD5djKlCa4E7bbpiEEWz425/E=
x-amz-request-id: AHN7QZFYX4WRR2XS
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:57:56
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7ec8ccd949a96def9161f5909ad78800
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
200 OK 96 kB URL GET HTTP/2 static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (63194)
Hash de8ab4879bd77ebe629c721339d42f65
fdb117223b56b52fc13256fa0288723785631d2a
7a4a51ab0b9301083e145526762d065e622a0ec8cfb5a866cd6b20c87087ff08
GET /widget/js/vendors~widget-ui.js?c9b0de53 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"de8ab4879bd77ebe629c721339d42f65"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: riK/3ctSFIGOyIA3dzAveZ99ExDSDOKZx7ERd98X89Jx0EEGCu94uhCobwfZVX7uNl7IEjI3+jA=
x-amz-request-id: BDV2A2K6BGQDME16
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:20
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 394e07f4f2b3756b13167fe77176cc79
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET experttrafficmonitor.com/dbs?uuid=621bbf09-a131-46fe-904c-39578cb37457&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjozLCJhY3VzIjoxLCJhY2kiOnsiNDIxIjoxNzAyMjY5NTMyfSwiYWNjbCI6eyIyMCwzIjoxNzAyMjY5NTMyfX0.tDKzTMGab1v9r7GMVTcCsIp8djwNlsY1bSQ9R_7mK20
200 OK 0 B URL GET HTTP/2 experttrafficmonitor.com/dbs?uuid=621bbf09-a131-46fe-904c-39578cb37457&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjozLCJhY3VzIjoxLCJhY2kiOnsiNDIxIjoxNzAyMjY5NTMyfSwiYWNjbCI6eyIyMCwzIjoxNzAyMjY5NTMyfX0.tDKzTMGab1v9r7GMVTcCsIp8djwNlsY1bSQ9R_7mK20
IP
Requested by https://iliketomakingpics.com/iframe/5dcda983a80c7?iframe&ag_custom_domain=veranime.top
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dbs?uuid=621bbf09-a131-46fe-904c-39578cb37457&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjozLCJhY3VzIjoxLCJhY2kiOnsiNDIxIjoxNzAyMjY5NTMyfSwiYWNjbCI6eyIyMCwzIjoxNzAyMjY5NTMyfX0.tDKzTMGab1v9r7GMVTcCsIp8djwNlsY1bSQ9R_7mK20 HTTP/1.1
Host: experttrafficmonitor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iliketomakingpics.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: image/gif
content-length: 7
server: nginx/1.21.6
set-cookie: uid_id2=621bbf09-a131-46fe-904c-39578cb37457:3:1; expires=Thu, 08 Dec 2033 04:38:53 GMT; secure; SameSite=None
ak=421,1702269532; expires=Sun, 10 Mar 2024 04:38:53 GMT; secure; SameSite=None
acl=20,3,1702269532; expires=Sun, 10 Mar 2024 04:38:53 GMT; secure; SameSite=None
expires: Mon, 11 Dec 2023 04:38:53 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2
GET ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/starstruck.js
200 OK 1.3 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/starstruck.js
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (1375), with no line terminators
Hash 46ff4fa42bd55103a506dd15024fb395
4a7ad708a5a0605706ff19a6717b15e4c65a4b76
ff8fb69f56bed05370f7502799050096cc6fb02c6a9cb6465467d95f6458800c
GET /wp-content/themes/dooplay/assets/js/lib/starstruck.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=1311
etag: W/"51f-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 238823394
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1630887
server: cloudflare
cf-ray: 833b0a5248fa7131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
200 OK 96 kB URL GET HTTP/2 static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (63194)
Hash de8ab4879bd77ebe629c721339d42f65
fdb117223b56b52fc13256fa0288723785631d2a
7a4a51ab0b9301083e145526762d065e622a0ec8cfb5a866cd6b20c87087ff08
GET /widget/js/vendors~widget-ui.js?c9b0de53 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"de8ab4879bd77ebe629c721339d42f65"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: riK/3ctSFIGOyIA3dzAveZ99ExDSDOKZx7ERd98X89Jx0EEGCu94uhCobwfZVX7uNl7IEjI3+jA=
x-amz-request-id: BDV2A2K6BGQDME16
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:20
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: b7ecec43c3e5219789be4da3ad92e2ff
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET static.arc.io/broker/js/lazy-modules.a169b1ec.js
200 OK 47 kB URL GET HTTP/2 static.arc.io/broker/js/lazy-modules.a169b1ec.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?a633436
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (25027)
Hash d03c11be3537746519138d1fe06bd033
c915eed8fafdd69b7c2d6f28c5cb0d3f031888f7
2d69a91e3b105d9ced4a5c0244a9dc3905f8eb061e72cb5518db5ef6d0d0635d
GET /broker/js/lazy-modules.a169b1ec.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"d03c11be3537746519138d1fe06bd033"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: N9CT1u01vg8Gz+YWCkqhdKV9DidnehcEK0xCHVm3J3d4OngXjpcLCLHWEA+lKp6LaMLGd5IfFC0=
x-amz-request-id: Y0KJ8WRY6JAWFSSK
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:15:10
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: eebb3e8457f2fdf25dd7e1491b8a4fdb
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET static.adxadserv.com/css/wm.css
200 OK 1.8 kB URL GET HTTP/2 static.adxadserv.com/css/wm.css
IP
ASN #60068 Datacamp Limited
Requested by https://ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/&dt=1702269530682&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subject1585977359.rsc.cdn77.org
Fingerprint11:4C:DC:15:D3:66:0C:E4:77:6D:B8:F8:DE:49:6F:09:2A:C9:1F:CB
ValidityWed, 22 Nov 2023 23:05:55 GMT - Tue, 20 Feb 2024 23:05:54 GMT
File type ASCII text, with very long lines (1915), with no line terminators
Hash d4346927d6aac350b4c21eb2146d3851
81e08f3ed0fd1356c393506b4cca25fb02fe12ec
6cdd250d29106d2dd229d4c9021b3368bce3eabbac49c3153b608036ca82f5b2
GET /css/wm.css HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 03 Aug 2020 09:41:06 GMT
etag: W/"5f27dbb2-711"
server: CDN77-Turbo
x-77-nzt: EQwBiscRpwH3eAcFAA
x-77-nzt-ray: 17ea3f34257778f05b92766541f3f91f
x-accel-expires: @1702976668
x-accel-date: 1701939939
x-cache-lb: HIT
x-age-lb: 329592
x-77-pop: warsawPL
x-77-cache: HIT
x-77-age: 329592
content-encoding: gzip
X-Firefox-Spdy: h2
GET a.exdynsrv.com/iframe.js?idzone=4852104&size=300x250
200 OK 2.3 kB URL GET HTTP/2 a.exdynsrv.com/iframe.js?idzone=4852104&size=300x250
IP
ASN #60068 Datacamp Limited
Requested by https://a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
Certificate IssuerLet's Encrypt
Subject1852405956.rsc.cdn77.org
Fingerprint70:E7:66:FF:72:DA:77:1C:94:EB:B3:1E:35:41:9B:99:60:39:0D:EF
ValidityMon, 23 Oct 2023 10:06:24 GMT - Sun, 21 Jan 2024 10:06:23 GMT
File type ASCII text, with very long lines (2415), with no line terminators
Hash 5c1ac95a889abdb49ace726570e2a3fb
d2605ef58ec888ae0058c03731bfea314d3959a9
30657a3f7eb328e1196d8faea1f600aec454a48a4ab93d7941c0d291780f40b2
GET /iframe.js?idzone=4852104&size=300x250 HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226576925ab7b661.18310737844858330%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22517.0199%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"0e5fb0a603ea55405ee65fee2a2"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Tue, 05 Dec 2023 18:52:06 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJFAG2lyoAAAwBuUwKAQH3pQ8AAAwB1GY4CQH3vgAAAA
x-77-nzt-ray: af5856306bcc95535b9276651291ab31
x-accel-expires: @1702277855
x-accel-date: 1702258628
x-77-cache: HIT
x-77-age: 15098
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, REVALIDATED
x-age-lb: 4005, 10903
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
GET socket.arc.io/socketcluster/?nodeId=HLCALzthnrLdZRriaEvtfJ
0 B URL GET socket.arc.io/socketcluster/?nodeId=HLCALzthnrLdZRriaEvtfJ
IP
Requested by https://saidochesto.top/embed.php?id=37803
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socketcluster/?nodeId=HLCALzthnrLdZRriaEvtfJ HTTP/1.1
Host: socket.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://saidochesto.top
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QZ3+wPJf+fHudh7qgJlwvg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
GET creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
200 OK 811 B URL GET HTTP/2 creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
IP
Requested by https://r.trackwilltrk.com/s1/75c0e507-8b96-41c4-9015-f760805d7d15?externalId=64573e7a-f9d5-4c12-9666-1f684b7da1a5&cv1=64573e7a-f9d5-4c12-9666-1f684b7da1a5&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=6481cc5d61d6e264924bf753&cv5=6481cc5d61d6e264924bf752&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64461d6e27e372dcee6&cv10=exim_adxad_stub3_300x250
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (872), with no line terminators
Hash 1508368ec567cd06853cdc259448ba42
70e10e55e4dd745b14b67bbae46608a7914ba08e
41d36e18fd13233271ebc47fd2ddbb53792aa280cbce63af0b02d23c13d851ab
GET /widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid} HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: text/html
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
expires: Mon, 11 Dec 2023 04:38:49 GMT
cache-control: max-age=10
strict-transport-security: max-age=15768000
pragma: public
report-to: { "endpoints":[{ "url": "https://go.stripchat.com/report" }], "group": "default", "max_age": 1048576 }
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 6
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a60ddec56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
200 OK 811 B URL GET HTTP/2 creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
IP
Requested by https://r.trackwilltrk.com/s1/75c0e507-8b96-41c4-9015-f760805d7d15?externalId=a1a5346d-e7ff-4891-b9b7-e49f90e0635e&cv1=a1a5346d-e7ff-4891-b9b7-e49f90e0635e&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=6481cc5d61d6e264924bf753&cv5=6481cc5d61d6e264924bf752&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b63761d6e272165ed9c5&cv10=exim_adxad_stub3_300x250
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (872), with no line terminators
Hash 1508368ec567cd06853cdc259448ba42
70e10e55e4dd745b14b67bbae46608a7914ba08e
41d36e18fd13233271ebc47fd2ddbb53792aa280cbce63af0b02d23c13d851ab
GET /widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid} HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: text/html
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
expires: Mon, 11 Dec 2023 04:38:49 GMT
cache-control: max-age=10
strict-transport-security: max-age=15768000
pragma: public
report-to: { "endpoints":[{ "url": "https://go.stripchat.com/report" }], "group": "default", "max_age": 1048576 }
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 6
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a60bde856ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
200 OK 811 B URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
IP
Requested by https://r.trackwilltrk.com/s1/a07e547b-49b9-41f3-9d4b-f6343c4a8d0b?externalId=6ec6d26b-2b01-4265-970a-6b9bd969570f&cv1=6ec6d26b-2b01-4265-970a-6b9bd969570f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d89ca61d6e210ac324fb9&cv5=623d896b61d6e210ac324fb7&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b65361d6e27e372dcee7&cv10=exim_adxad_stub2_300x100_
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (872), with no line terminators
Hash 1508368ec567cd06853cdc259448ba42
70e10e55e4dd745b14b67bbae46608a7914ba08e
41d36e18fd13233271ebc47fd2ddbb53792aa280cbce63af0b02d23c13d851ab
GET /widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75 HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://r.trackwilltrk.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: text/html
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
expires: Mon, 11 Dec 2023 04:38:50 GMT
cache-control: max-age=10
strict-transport-security: max-age=15768000
pragma: public
report-to: { "endpoints":[{ "url": "https://go.stripchat.com/report" }], "group": "default", "max_age": 1048576 }
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 10
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a63bd27b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET socket.arc.io/socketcluster/?nodeId=XiLtm1t5oVjxzdmMnZX8yT
0 B URL GET socket.arc.io/socketcluster/?nodeId=XiLtm1t5oVjxzdmMnZX8yT
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socketcluster/?nodeId=XiLtm1t5oVjxzdmMnZX8yT HTTP/1.1
Host: socket.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://ww3.animeonline.ninja
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TFVhK2QPCEjB2FlOZDyLPQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
GET creative.bbrdbr.com/widgets/v4/Universal/lang/en.json
200 OK 172 B URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/lang/en.json
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 402f4a06b5dcf96d25dd4ff1f840784b
edebb253af01ef1882f424ee6278368485898d62
bd570b38d9d687c593545a7b250570605c601381f3d3d5263346b295e12a55ba
GET /widgets/v4/Universal/lang/en.json HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/json
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
etag: W/"656f0246-ac"
expires: Mon, 11 Dec 2023 04:38:57 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
set-cookie: __cflb=0H28upDCGznfDm9XVE9SipefN9YVHPpcAc9VMGdAhnk; SameSite=None; Secure; path=/; expires=Tue, 12-Dec-23 04:38:53 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a65bdc6b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET go.bbrdbr.com/api/models?tag=girls%2Fasian&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1
200 OK 3.3 kB URL GET HTTP/3 go.bbrdbr.com/api/models?tag=girls%2Fasian&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (3541), with no line terminators
Hash 35a140c0cdd8b9dc4db5eb0501f04fd5
b561fa22d4d321081020e5ba8c8176e9d55371c3
424994292966d6fe115df12b475f0474fac7b000bbc8bddee69775c253243f5a
GET /api/models?tag=girls%2Fasian&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1 HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Cookie: __cflb=02DiuDFRFiBZBvMSLtqGxuZp8RQcjVh53YwpshphecqD6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/json
access-control-allow-origin: https://creative.bbrdbr.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Mon, 11 Dec 2023 04:33:34 GMT
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 833b0a677e7eb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET a.exdynsrv.com/build-iframe-js-url.js?idzone=4852104
200 OK 761 B URL GET HTTP/2 a.exdynsrv.com/build-iframe-js-url.js?idzone=4852104
IP
ASN #60068 Datacamp Limited
Requested by https://a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
Certificate IssuerLet's Encrypt
Subject1852405956.rsc.cdn77.org
Fingerprint70:E7:66:FF:72:DA:77:1C:94:EB:B3:1E:35:41:9B:99:60:39:0D:EF
ValidityMon, 23 Oct 2023 10:06:24 GMT - Sun, 21 Jan 2024 10:06:23 GMT
File type ASCII text, with very long lines (786), with no line terminators
Hash b8d4c28e3669d403776af79f305f5d21
e760079de12e6fa9d7bdd39c84f2c70eab0d0532
3a78d4efc371543a336c02003aad4e4db52ad9801422bfe92891e0061b3f3e5e
GET /build-iframe-js-url.js?idzone=4852104 HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226576925ab7b661.18310737844858330%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22517.0199%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1b61bb217f07cc39c41a6250fc0"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Tue, 05 Dec 2023 18:55:16 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJFAG2lyoAAAwBuUwKCQH3pA8AAAgBJRPCKAGB
x-77-nzt-ray: af5856306bcc95535b927665ac824421
x-accel-expires: @1702277865
x-77-cache: HIT
content-encoding: gzip
x-accel-date: 1702258628
x-77-age: 14907
server: CDN77-Turbo
x-cache-lb: HIT, REVALIDATED
x-age-lb: 4004, 10903
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
GET tkr.arc.io/announce
0 B IP
Requested by https://saidochesto.top/embed.php?id=37803
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /announce HTTP/1.1
Host: tkr.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://saidochesto.top
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vqtn5Yfqej8+MsH7LvIY9A==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
GET static.arc.io/broker/js/chunk-vendors.5e1d8045.js
200 OK 50 kB URL GET HTTP/2 static.arc.io/broker/js/chunk-vendors.5e1d8045.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?a633436
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /broker/js/chunk-vendors.5e1d8045.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"c78a505ea0c6b4622562567efbbeb847"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: UCogdse4COEr8OBIY1Uc2chIBc0c21N0ifyc3Svvpnv+nnf9GB6EF4owVk8ZIGjBjM9sUrtO4v4=
x-amz-request-id: QRX6PAFFJ6E0XJWF
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:11:06
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 3ba33398176e492ae730927f43571328
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET go.bbrdbr.com/config?url=https%3A%2F%2Fcreative.bbrdbr.com%2Fwidgets%2Fv4%2FUniversal%2F%3FactionButtonPlacement%3Dbottom%26autoplay%3Dall%26autoplayForce%3D1%26buttonColor%3D%26campaignId%3D100cps2asgirl%26creativeId%3D100cps2asgirl%26domain%3Dstripchat%26hideButtonOnSmallSpots%3D1%26hideModelNameOnSmallSpots%3D1%26hideTitleOnSmallSpots%3D1%26isXhDesign%3D0%26liveBadgeColor%3D%26memberId%3D%257Bclickid%257D%26showButton%3D1%26showLiveBadge%3D1%26showModal%3Dsignup%26showModelName%3D1%26showTitle%3D0%26sound%3Doff%26sourceId%3D100cps2asgirl%26tag%3Dgirls%252Fasian%26targetDomain%3D%26thumbSizeKey%3Dsmall%26trackOff%3D1%26userId%3Debe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
200 OK 6.8 kB URL GET HTTP/3 go.bbrdbr.com/config?url=https%3A%2F%2Fcreative.bbrdbr.com%2Fwidgets%2Fv4%2FUniversal%2F%3FactionButtonPlacement%3Dbottom%26autoplay%3Dall%26autoplayForce%3D1%26buttonColor%3D%26campaignId%3D100cps2asgirl%26creativeId%3D100cps2asgirl%26domain%3Dstripchat%26hideButtonOnSmallSpots%3D1%26hideModelNameOnSmallSpots%3D1%26hideTitleOnSmallSpots%3D1%26isXhDesign%3D0%26liveBadgeColor%3D%26memberId%3D%257Bclickid%257D%26showButton%3D1%26showLiveBadge%3D1%26showModal%3Dsignup%26showModelName%3D1%26showTitle%3D0%26sound%3Doff%26sourceId%3D100cps2asgirl%26tag%3Dgirls%252Fasian%26targetDomain%3D%26thumbSizeKey%3Dsmall%26trackOff%3D1%26userId%3Debe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (8886), with no line terminators
Hash f77da2564175dfcf23f274cb649d3b13
7e15255a5970bc8f92d4ae75fb834d56154486ab
7d56f171f79dc770a23315e025ea80e954eaf2ed42ba835771be097319ad805f
GET /config?url=https%3A%2F%2Fcreative.bbrdbr.com%2Fwidgets%2Fv4%2FUniversal%2F%3FactionButtonPlacement%3Dbottom%26autoplay%3Dall%26autoplayForce%3D1%26buttonColor%3D%26campaignId%3D100cps2asgirl%26creativeId%3D100cps2asgirl%26domain%3Dstripchat%26hideButtonOnSmallSpots%3D1%26hideModelNameOnSmallSpots%3D1%26hideTitleOnSmallSpots%3D1%26isXhDesign%3D0%26liveBadgeColor%3D%26memberId%3D%257Bclickid%257D%26showButton%3D1%26showLiveBadge%3D1%26showModal%3Dsignup%26showModelName%3D1%26showTitle%3D0%26sound%3Doff%26sourceId%3D100cps2asgirl%26tag%3Dgirls%252Fasian%26targetDomain%3D%26thumbSizeKey%3Dsmall%26trackOff%3D1%26userId%3Debe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75 HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: application/json
access-control-allow-origin: https://creative.bbrdbr.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Mon, 11 Dec 2023 04:32:29 GMT
cf-cache-status: HIT
age: 111
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a66ce12b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET ww3.animeonline.ninja/wp-json/dooplayer/v1/post/190200?type=tv&source=1
200 OK 77 B URL GET HTTP/2 ww3.animeonline.ninja/wp-json/dooplayer/v1/post/190200?type=tv&source=1
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 6e65adf2484d83eaed5cdfd2cc74cb64
278e75d56ea1f60ea24acdcd2d4ea20a6dadc0a2
5c8049a5874c69d735fb270e2b931a9ba867934458013548a04c1ce847f44fff
GET /wp-json/dooplayer/v1/post/190200?type=tv&source=1 HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: _ga_ES0BC9NXD9=GS1.1.1702269530.1.0.1702269530.0.0.0; _ga=GA1.1.1331344061.1702269531
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:51 GMT
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://ww3.animeonline.ninja/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff, nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
vary: Accept-Encoding
x-varnish: 305108541
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
last-modified: Mon, 11 Dec 2023 03:22:06 GMT
cf-cache-status: HIT
server: cloudflare
cf-ray: 833b0a58daf27131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET static.arc.io/widget/js/widget-ui.js?1dbb019f
200 OK 42 kB URL GET HTTP/2 static.arc.io/widget/js/widget-ui.js?1dbb019f
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/js/widget-ui.js?1dbb019f HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"59c913fd17c39f9d200673df12b25d15"
last-modified: Mon, 04 Dec 2023 21:21:10 GMT
x-amz-id-2: knZBpMyF+bBY3iHuf/yvs+PubFtf+HsDirMTowHDPGnOCtDdiozD5djKlCa4E7bbpiEEWz425/E=
x-amz-request-id: AHN7QZFYX4WRR2XS
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:57:56
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d82967d04261e9220e4067bfc99c5f99
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
GET saidochesto.top/static/iframen.js?v=1.0.3
200 OK 6.5 kB URL GET HTTP/3 saidochesto.top/static/iframen.js?v=1.0.3
IP
Requested by https://saidochesto.top/embed.php?id=37803
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
FingerprintA3:70:4B:B6:41:6C:F0:D8:C9:C3:2C:A9:A6:48:9B:D1:E4:77:EE:31
ValidityMon, 11 Dec 2023 00:33:16 GMT - Sun, 10 Mar 2024 00:33:15 GMT
File type Unicode text, UTF-8 text, with very long lines (6984), with no line terminators
Hash e08c4668e423fe23c0c7a093832080a1
311282633af0c83724d3da7de8095d2dd844a3b6
9d7ee0f7b634cb014f811280fd79f65e502e76e03e3ff5f62ff3daca2aa40f85
GET /static/iframen.js?v=1.0.3 HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=37803
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 07:57:32 GMT
last-modified: Mon, 02 Oct 2023 17:50:47 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 420080
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BMUzDAwDW5ShL34lOjL%2FZ6QSmvj8IrdEFESA8IsA0OK7RF69QOFpwk%2FH2qnmrrjXSoIx%2FLxemO9%2BnvzOrhzT731It7rCMqec8W4TsudIe6xzul2TWUDvjouhJeLGemuxXn8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833b0a603bf1b524-OSL
content-encoding: br
GET creative.bbrdbr.com/widgets/v4/Universal/main.af7ca474e642b518be23.css
200 OK 13 kB URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/main.af7ca474e642b518be23.css
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (13396), with no line terminators
Hash d55b785d72863fbb8425a36b7d675ec2
546cda15b6fb2a67ce1f102dc82eefb6f749f9c3
a4d09f6a50b6d96e7f22ab12f406dcf44be0d815105018cc5c7f1105fbf597f7
GET /widgets/v4/Universal/main.af7ca474e642b518be23.css HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:52 GMT
content-type: text/css
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-3454"
expires: Mon, 11 Dec 2023 04:38:47 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 6
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a649d74b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET ww3.animeonline.ninja/wp-includes/js/comment-reply.min.js
200 OK 3.0 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-includes/js/comment-reply.min.js
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (3056), with no line terminators
Hash dc7f90d513295c29acc441fe114a2cab
ca9e5069d9afc4aa13ab2e152313dfb476e842ef
f87915c58d8c25473c726646b58d2fe0ba9a136987571e6c810aba3c67b4f74c
GET /wp-includes/js/comment-reply.min.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sun, 19 Mar 2023 15:38:14 GMT
etag: W/"ba5-5f74299376580"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
vary: Accept-Encoding
x-varnish: 791354975
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cf-cache-status: HIT
server: cloudflare
cf-ray: 833b0a5238f47131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/min/front.livesearch.js
200 OK 4.8 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/min/front.livesearch.js
IP
Requested by https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type HTML document, ASCII text, with very long lines (5060), with no line terminators
Hash 8dedff28d4273cf5cde0aee5164698e2
fb6a4d18749690441c4becde6df43bad7aa43a16
47406d68bdfbd352cda76cf715984ecedf12b29c6f6782e3778c67f42e52a5f9
GET /wp-content/themes/dooplay/assets/js/min/front.livesearch.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/shangri-la-frontier-cap-11/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:38:49 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=4761
etag: W/"1299-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 207459988
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1542276
server: cloudflare
cf-ray: 833b0a5238f67131-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET img.strpst.com/thumbs/1702269480/79037252_webp
200 OK 15 kB URL GET HTTP/3 img.strpst.com/thumbs/1702269480/79037252_webp
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash 71b0146397a8c8c7acb78ebeeca42772
abecc208dc91c558155b2bdcd3d6f276be7e9cba
a3cdd05ddc07d4aba8e22beb891d5e58077da8eb8e974db24ade110ba80fe5d0
GET /thumbs/1702269480/79037252_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:38:53 GMT
content-type: image/webp
content-length: 14754
etag: "71b0146397a8c8c7acb78ebeeca42772"
last-modified: Mon, 11 Dec 2023 04:37:26 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 51
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 833b0a6889ae067b-OSL
alt-svc: h3=":443"; ma=86400
104.21.57.117
185.98.53.29
185.76.9.23
194.242.11.186
18.184.210.76
142.250.74.97
37.140.192.137
139.45.195.8
138.199.17.168
45.131.145.131
0.0.0.0