r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11789
Expires: Tue, 29 Nov 2022 04:35:00 GMT
Date: Tue, 29 Nov 2022 01:18:31 GMT
Connection: keep-alive
www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
301 Moved Permanently 169 B URL HTTP/1.1 www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 84855c13836b389d5ec7cfd4c9266173
1cf3056ff23c4176fd7ca9816a000ed461d6d323
502083c916ae481cdd413b8d93315300653df5fb3dcc5770c01991de19977eae
GET /tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh HTTP/1.1
Host: www.tumpik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 01:18:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sF4z7QfClEc5GJgS2BHzvNlz%2BtlaUe9utXiyVHiJNBmQuak4tmm7JL6WcFEVLpXrNDrb3GtQGrzwu8C9BJnfZaPtYJ6xqVM2KqByn1LLBLfnjnof2I%2FTDiJQ2mHhyDNz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 771782845a2c1bfe-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
200 OK 471 B IP
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1988
Cache-Control: max-age=121558
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:31 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:04:29 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 01:17:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 41
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14079
Expires: Tue, 29 Nov 2022 05:13:10 GMT
Date: Tue, 29 Nov 2022 01:18:31 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 89b6a4b41a888ce71ce916850c343fa4
216d1eaaa7eebec77dcfd8ee549b51f373af82a2
0385fb17ef59a9803d00455353c5f90b8848a0588775b71a3de0dcfc5343f37a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "0385FB17EF59A9803D00455353C5F90B8848A0588775B71A3DE0DCFC5343F37A"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19967
Expires: Tue, 29 Nov 2022 06:51:18 GMT
Date: Tue, 29 Nov 2022 01:18:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DzoroHa9kbDXyB7EpF7jFREHTLtAsvZCbpE8BwyTQUpS7SyA2EiFkTj4yu2fyt+aDWgUmovVQdI=
x-amz-request-id: SEBMYFWCDJ4G5SJM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 00:42:18 GMT
age: 2173
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:18:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 01:11:12 GMT
cache-control: public,max-age=3600
age: 439
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
File type ASCII text, with very long lines (65447)
Hash d900ca08873ee57d40616d39a44cc0aa
7ab3ac8b1504b7b914a6e94c979b8390bb492f6a
1eea479cc0abe04a0846f41031207f9511f12ffef017a6109d4efb6f5523465b
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1498436
expires: Sun, 19 Nov 2023 01:18:31 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7%2FFuC%2BciJ82KxqWE9SE4y0FYE5qolhNc8oFiNINpGKv%2BJd61CS82ugfUTVKsLDJxX2TmB0X3HZofeMEVL4d%2FJOJOiSL77urSOGVK3%2Btx%2BqkzTonfnPGIDZLJRb9p%2F%2FvNNjOSkpbQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77178289c931b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 7157ec46c97a5ca307654f8916d836ac
45f1d312f26e72f6ed031ca6feb3f7575ae4c8fd
985390d7ff6151a365055f9632ddc041efb9f7c39544912cd66c5314a9643c2b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "985390D7FF6151A365055F9632DDC041EFB9F7C39544912CD66C5314A9643C2B"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10623
Expires: Tue, 29 Nov 2022 04:15:35 GMT
Date: Tue, 29 Nov 2022 01:18:32 GMT
Connection: keep-alive
www.tumpik.com/static/css/styles.css
200 OK 6.5 kB URL HTTP/2 www.tumpik.com/static/css/styles.css
IP
Hash d8caf7a5fd91b5aa2efc5a986328d19f
dcdb74d481e8351eef6849d3c0ee8cd2e066e819
1d1786b875ff26faa3a71d9f6c6f431a84cd50d80e590b175acf5142bab8b7a5
GET /static/css/styles.css HTTP/1.1
Host: www.tumpik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:31 GMT
content-type: text/css
last-modified: Sat, 12 Nov 2022 20:34:33 GMT
etag: W/"63700359-7a7a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2379
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gWT%2FdV4eaCIOcux6wxtwaQqV4MchUf8eJKCIFzVfgx4IibWg1O4ro8adUNCxmUNI9qpclzW%2BtTvxpDGrsukUQe%2BLiaSk9sbiCTUPIXtJmbB6Mdd4gn5Gega9d8UwEOvX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7717828988b9b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.tumpik.com/static/js/tag.js?v=1667307905984
200 OK 1.1 kB URL HTTP/2 www.tumpik.com/static/js/tag.js?v=1667307905984
IP
Hash 5e3c7d341cccd9ca979eb6b5449b016b
6be6840e2e6bf43bc3f118e0f4bde1ad1f0a1af6
8f698dc13377c8c187dfd11938d1ff4b1e64efd1c2c10fc0a874ed9b4c992909
GET /static/js/tag.js?v=1667307905984 HTTP/1.1
Host: www.tumpik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:31 GMT
content-type: application/javascript
last-modified: Sat, 12 Nov 2022 20:26:31 GMT
etag: W/"63700177-576"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1444
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Mr0ypgq1qCpAAiMzGRicHXLTtj6GpG9fWwZrz6PWZIB%2FD6hTGRnr4ql2WGHIh2QWUN0cmBAbtX8aCw9F5VF2s7sZ5rfFZQ5ycIQtILY1lZqJQidVePzdJEAj5N4h%2Biw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7717828998c5b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.tumpik.com/static/js/sticky-sidebar.js?v=1667307905984
200 OK 1.0 kB URL HTTP/2 www.tumpik.com/static/js/sticky-sidebar.js?v=1667307905984
IP
Hash 28cbe64aaab84fb0a48f65ce9fd33b5c
60e1d6df707ed8ec68a6f082c6808d9fa58ec06b
fdd406b7835afe9eff7b92a5c3b04f4ea830b210629c3103bc946af4f9d18186
GET /static/js/sticky-sidebar.js?v=1667307905984 HTTP/1.1
Host: www.tumpik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:31 GMT
content-type: application/javascript
last-modified: Sat, 12 Nov 2022 20:26:20 GMT
etag: W/"6370016c-7e4"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6109
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5ALr3pwaZwo59xPtNTxevVCK6nS9%2Fz5Dm1I5DYEgLBGZ2Dn8iqElSXg1SWT%2BIOlPUpFpUr%2BjXwTw43YhaidUfppa3Of7%2FY8uo2a803SxwFz%2FeZOEQYPhBhwSFn6xyE99"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7717828998c3b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-240688585-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-240688585-1
IP
File type ASCII text, with very long lines (1921)
Hash 43707d6d60202f54a081019ba4a47cda
4d702b04b12b2ed4115a1d2f5a0f37da322b4f3a
180fbe11b9bd94b298216e1541fa6303554a209f03cb991ee391162faf473ac4
GET /gtag/js?id=UA-240688585-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 01:18:32 GMT
expires: Tue, 29 Nov 2022 01:18:32 GMT
cache-control: private, max-age=900
last-modified: Tue, 29 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43667
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
IP
Hash 5652264981dbdddffde9a5482312de25
1f83166c897b9e051bd24855cdf6bd8a356a7949
009a5115bbe686d0b7e40295391fa563a6e8f1d2735a6202242bc1b0dd4d24dc
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 01:18:32 GMT
date: Tue, 29 Nov 2022 01:18:32 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bannersme.com/vidjs?tid=971555
200 OK 0 B URL HTTP/2 bannersme.com/vidjs?tid=971555
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vidjs?tid=971555 HTTP/1.1
Host: bannersme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:32 GMT
content-type: application/json
content-length: 0
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: csu=60acf9d8-3d06-400f-9638-aa10afce39e3
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bfWs3S%2FT0BIBqyU1TgW5GtECtte7CgwMgbget6%2BcsW2J9%2BOBAVRoGdDWgQN7QWTBcZiZvqdgmgsiVfHvyXdZ0f4G6%2BmTXXq%2BPVX%2FK5DjOpiEbBVrlPafHDY%2BpzunoAbU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7717828a199cb4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 7157ec46c97a5ca307654f8916d836ac
45f1d312f26e72f6ed031ca6feb3f7575ae4c8fd
985390d7ff6151a365055f9632ddc041efb9f7c39544912cd66c5314a9643c2b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "985390D7FF6151A365055F9632DDC041EFB9F7C39544912CD66C5314A9643C2B"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10623
Expires: Tue, 29 Nov 2022 04:15:35 GMT
Date: Tue, 29 Nov 2022 01:18:32 GMT
Connection: keep-alive
video-serve.com/vidjs?tid=947040
200 OK 694 B URL HTTP/2 video-serve.com/vidjs?tid=947040
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (490)
Hash cf004cfebde19bb59a62f6479b361aca
c046a28af3e5f5b448c6d60d77498f383242052b
46e6b674430424d84450e962bd26f0b7e67a81851b8f2195fd048d2c07987ac0
GET /vidjs?tid=947040 HTTP/1.1
Host: video-serve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 694
date: Tue, 29 Nov 2022 01:18:32 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: csu=fd133e4b-f918-4ddb-a238-6acb23fdf6be
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 02ce2cf572d1ad5c9df8f275e39c9116.cloudfront.net (CloudFront)
x-amz-cf-pop: TLV50-C2
x-amz-cf-id: IAGgpewrt-gxn1SwLdDny72f8Ot8ITK_b_l6UA0G87h_z-0WB_3C0Q==
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Srw+AxcG3rw6yDY+XG3RQA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: r7VXuaP8JDgH/etQ0RulGpAEngY=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bf5af231b03a9f75405ca454a676de89
7cc3c874906dd4dfa6d0dd8eb6fd0e1734d6da5c
77bf2d3afa89742f5878ff4c8ec5d563d7124ad2b11fc2f5925f70a03108556c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77BF2D3AFA89742F5878FF4C8EC5D563D7124AD2B11FC2F5925F70A03108556C"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3944
Expires: Tue, 29 Nov 2022 02:24:16 GMT
Date: Tue, 29 Nov 2022 01:18:32 GMT
Connection: keep-alive
s7.addthis.com/js/300/addthis_widget.js
200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP
File type ASCII text, with very long lines (54602)
Size 116 kB (116388 bytes)
Hash fef08c9f8bacc1b0eed3950dbe7d0f87
e9a3b98cad1e2d58eab1e2cbaa51cb979dc45075
55b3d5b3acd46444cc1844a676c75ba25209ce371065791cd4fbdc9da60aea34
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116388
date: Tue, 29 Nov 2022 01:18:32 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
64.media.tumblr.com/dbf2de8a7f82ef858af5d80c0fb002a4/tumblr_inline_pc4xi3czy31rqmm8t_500.pnj
200 OK 40 kB URL HTTP/2 64.media.tumblr.com/dbf2de8a7f82ef858af5d80c0fb002a4/tumblr_inline_pc4xi3czy31rqmm8t_500.pnj
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x374, components 3\012- data
Hash af092830f4790d2bcebe1f4bc3201c9c
4c3f1a4b5f3795c2fd891552dcff214bc9575fdb
e6b8e6ff1dad8ea0bfdd1f556030e59a1fd0b77cc07f5d4e4bebe76856175ad9
GET /dbf2de8a7f82ef858af5d80c0fb002a4/tumblr_inline_pc4xi3czy31rqmm8t_500.pnj HTTP/1.1
Host: 64.media.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:18:32 GMT
content-type: image/jpeg
content-length: 39704
etag: "dbf2de8a7f82ef858af5d80c0fb002a4-1503417600-97598d7"
last-modified: Fri, 11 Dec 2020 08:44:59 GMT
content-disposition: inline; filename="tumblr_inline_pc4xi3czy31rqmm8t_500.jpg"
x-frames: 1
timing-allow-origin: *
cache-control: max-age=315360000
x-nc: MISS arn 6
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
strict-transport-security: max-age=31536000; preload
server-timing: dc;desc=arn, cache;desc=MISS;dur=27.0
X-Firefox-Spdy: h2
api.tumblr.com/v2/blog/anothermentio.tumblr.com/avatar/128
302 Found 204 B URL HTTP/2 api.tumblr.com/v2/blog/anothermentio.tumblr.com/avatar/128
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 76f4b08bf1a1466b2cbf21d40b6f5962
a055dece9f13c214cb6ddacf2e8dd648e0f33062
21c87d6627f4e93f3f2e21f6ca18dddbb66a2536aad0526c9c7e73418bfca797
GET /v2/blog/anothermentio.tumblr.com/avatar/128 HTTP/1.1
Host: api.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 29 Nov 2022 01:18:32 GMT
content-type: application/json
content-length: 204
location: https://64.media.tumblr.com/aac597c8c9de25175aa45a3d2c3ab4aa/3de1d0d60fe77524-f2/s128x128u_c1/cab444997333b2538bbc581f54674aa12c3dab7f.png
x-rid: 4ce2eb111a560b2dad815f44473ca99f
p3p: CP="Tumblr's privacy policy is available here: https://www.tumblr.com/policy/en/privacy"
x-cache-avatar: true
x-ua-compatible: IE=Edge,chrome=1
strict-transport-security: max-age=31536000; preload
X-Firefox-Spdy: h2
api.tumblr.com/v2/blog/namiko026.tumblr.com/avatar/128
302 Found 121 B URL HTTP/2 api.tumblr.com/v2/blog/namiko026.tumblr.com/avatar/128
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 1f9c3be6bc6900e818fb3a047fa60bf1
5eebb262bef554fad380c0a085a9ce0681a915ea
7dc4814973968ea34b3109d9dadf15c710db910546938f46f476f812fed6244c
GET /v2/blog/namiko026.tumblr.com/avatar/128 HTTP/1.1
Host: api.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 29 Nov 2022 01:18:32 GMT
content-type: application/json
content-length: 121
location: https://64.media.tumblr.com/avatar_c9d89c1d532e_128.png
x-rid: ad730d19fcded39d7f24eaec474f867c
p3p: CP="Tumblr's privacy policy is available here: https://www.tumblr.com/policy/en/privacy"
x-cache-avatar: true
x-ua-compatible: IE=Edge,chrome=1
strict-transport-security: max-age=31536000; preload
X-Firefox-Spdy: h2
d18g6t7whf8ejf.cloudfront.net/?hwtgd=852974
200 OK 50 kB URL HTTP/2 d18g6t7whf8ejf.cloudfront.net/?hwtgd=852974
IP
File type Unicode text, UTF-8 text, with very long lines (15952)
Hash 712932f176ee9c6359319ddae0cb5fb5
b3bebb1ffa248a666082b7c44c7fe0b929e08e1f
fcaf76a9bd0a907e1c7f89af262671e02503dece7dee30e5000dfacd08eff2bc
GET /?hwtgd=852974 HTTP/1.1
Host: d18g6t7whf8ejf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 50235
date: Tue, 29 Nov 2022 01:18:32 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: b1PyNWaW5sk3vOZXh8MehT8LDSGidJA3T7hlwaBSvDs1uG0O0nTN5w==
X-Firefox-Spdy: h2
www.tumpik.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1669680000
200 OK 24 kB URL HTTP/2 www.tumpik.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1669680000
IP
File type ASCII text, with very long lines (35797), with no line terminators
Hash ff71f05b8895e63f2f3f68d6f1552516
7b5f684fae53428b6ae02a91b7c97a694ef8f34e
59ff688974b46baff35bc9778194775654aaf401bca323296a3296bd12a9758d
GET /cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1669680000 HTTP/1.1
Host: www.tumpik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:32 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
x-control-type-options: nosniff
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d3W5HOjNv%2FkN1Qh75RyaynRTIl81UQbmEbAbAUgel7HZgMfZ5BJrVA%2FK9qLnwiq5QsSVfbz3oAXOBzQD5eQC%2FXiQKPQ0lUXE6aVrjDBiUYgWOnhyCH4qe9HmCZuAJWKs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7717828c4a10b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
z.moatads.com/addthismoatframe568911941483/moatframe.js
200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=56456
date: Tue, 29 Nov 2022 01:18:32 GMT
X-Firefox-Spdy: h2
64.media.tumblr.com/avatar_c9d89c1d532e_128.png
200 OK 18 kB URL HTTP/2 64.media.tumblr.com/avatar_c9d89c1d532e_128.png
IP
File type PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced\012- data
Hash de735a9207d56903473d721a33a15fe3
894685524cd6cb9d3f97f90ee984895a3a52eaff
e3ad3724e9cc009d1d0c04d8ab07f902e9c09c9142e7a8b28b90835b94380075
GET /avatar_c9d89c1d532e_128.png HTTP/1.1
Host: 64.media.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tumpik.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:18:32 GMT
content-type: image/png
content-length: 17478
etag: "ae97d7866605fac7b95cef18f37d7532-1498089600-97598d7"
last-modified: Mon, 14 Dec 2020 09:14:06 GMT
content-disposition: inline; filename="avatar_c9d89c1d532e_128.png"
x-frames: 1
timing-allow-origin: *
cache-control: max-age=31536000
x-nc: MISS arn 7
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
strict-transport-security: max-age=31536000; preload
server-timing: dc;desc=arn, cache;desc=MISS;dur=30.0
X-Firefox-Spdy: h2
dmmzkfd82wayn.cloudfront.net/?kzmmd=921528
200 OK 54 kB URL HTTP/2 dmmzkfd82wayn.cloudfront.net/?kzmmd=921528
IP
File type Unicode text, UTF-8 text, with very long lines (15945)
Hash 41e149e6321a7cdadd4ec3652482b1c9
b632f8051fa407b14f1b9451cf60db7a966c62f5
f330e3973fa8f1bcc7b1f1c5814bca38813a58c277865409ba3d28239bb5a6e0
GET /?kzmmd=921528 HTTP/1.1
Host: dmmzkfd82wayn.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 54187
date: Tue, 29 Nov 2022 01:18:32 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: C8q69jnffc4nry8H3hoDVdbzY5jfwUTEl3b5ENVf8NNBG-lknR_apg==
X-Firefox-Spdy: h2
www.tumpik.com/static/js/navbar.js?v=1667307905984
200 OK 558 B URL HTTP/2 www.tumpik.com/static/js/navbar.js?v=1667307905984
IP
Hash d82d0b58d754cc9a452f0ec3a48440e0
2e7ac6359919ddbe11d686194be8619842bd66d9
669d8e5580931f5a4090803b35ec91730985a33295228044853c063c705c3cd8
GET /static/js/navbar.js?v=1667307905984 HTTP/1.1
Host: www.tumpik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:31 GMT
content-type: application/javascript
last-modified: Sat, 12 Nov 2022 20:26:30 GMT
etag: W/"63700176-1d5"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6109
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zBn9gi%2BjVs8dyxorsEvDQEfhghIvvgaZUzr2j8PviWvDy7H3ZFSx%2Fd8rpHqqdswIZitPtf8hc6X1IsJdDH9ubF6G7zNMKSueDxF0SlicJZyYoSJsOSI1Tbe%2BCRfJJx6Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7717828998c2b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash d9d73fb0b657f649886aad2c5166d018
6c92119e15b4125fcab1601e698c643e34a74934
15ae3bdb79fd7421b25c5ab66809135e694cdbd5e47b942678b6cbb9e9427c29
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "15AE3BDB79FD7421B25C5AB66809135E694CDBD5E47B942678B6CBB9E9427C29"
Last-Modified: Mon, 28 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5319
Expires: Tue, 29 Nov 2022 02:47:11 GMT
Date: Tue, 29 Nov 2022 01:18:32 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ef87866afce9638317915c50fa6ad8aa
ffa35790b96639c53017d0047a8e5d7e90d1441f
dd7a736801f33e5568b10582dcbbcb59e8575ecb0c43e0dc6f98a40a13361008
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=167820
Date: Tue, 29 Nov 2022 01:18:32 GMT
Etag: "638536b9-1d7"
Expires: Wed, 30 Nov 2022 23:55:32 GMT
Last-Modified: Mon, 28 Nov 2022 22:31:21 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LHOiYpqbT2sMuXtXLF3uzG3WG1137atVDbZp0taillndXDCA7HDR6Q==
Age: 5051
api.tumblr.com/v2/blog/makeshiftradio.tumblr.com/avatar/128
302 Found 121 B URL HTTP/2 api.tumblr.com/v2/blog/makeshiftradio.tumblr.com/avatar/128
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 6faebc0f188aa0ae1b8b4fb69fd8ca31
77961ffce175b29e30c2824ae93f08d559b243fb
af6f7d5af47eb796eaf05525088c703a2823e71aeb44bc47f5c57d9267d4f6c9
GET /v2/blog/makeshiftradio.tumblr.com/avatar/128 HTTP/1.1
Host: api.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 29 Nov 2022 01:18:32 GMT
content-type: application/json
content-length: 121
location: https://64.media.tumblr.com/avatar_db89de5c14ff_128.png
x-rid: 0900d77f1ad6ea3de3e17af8fb05b90a
p3p: CP="Tumblr's privacy policy is available here: https://www.tumblr.com/policy/en/privacy"
x-cache-avatar: true
x-ua-compatible: IE=Edge,chrome=1
strict-transport-security: max-age=31536000; preload
X-Firefox-Spdy: h2
mbledeparatea.com/dHlwZkwVGxMLcxVEEkA5BhVNQ34yXEIgKEVBF1A4Qw4YAHQRExZILxgWBQIqBhYeEmIaHARDfjI9Iws0QSMeMzw1ARMnHx5NNi4aADcWV3k1LCUgPzYeHywLDgkiKDY5OjokJxA7NC87NUhINQgNTCI1GTUjOxEFES5BKzo1EQAEHjMOPi4dJjAWDSM6PxgJJCEoBy8JJ0E7Iw0TKDwNIzk7QAEiNQ49NgsnID4+CiUDFlYGPihAAnomOEQ2Cw1NNCIkIigVIDssPBwkeCw8GDEbRwk6NSUmKBUgOzs9CBJ0Iz8IMAJGQBU1HkE9Fg0gPzM2JHgsOF0VHSExGxIfMiMxPAoMKCFWKEI6CBEKPBAmLB8NOzgDIEUzJg0eQiEmHhkmKgcgDwM0JCweJhomIgJDITUeBSYuBzweMhpWDD8bFwBbAiEOHhMoFj4KCQ
200 OK 1.2 kB URL HTTP/2 mbledeparatea.com/dHlwZkwVGxMLcxVEEkA5BhVNQ34yXEIgKEVBF1A4Qw4YAHQRExZILxgWBQIqBhYeEmIaHARDfjI9Iws0QSMeMzw1ARMnHx5NNi4aADcWV3k1LCUgPzYeHywLDgkiKDY5OjokJxA7NC87NUhINQgNTCI1GTUjOxEFES5BKzo1EQAEHjMOPi4dJjAWDSM6PxgJJCEoBy8JJ0E7Iw0TKDwNIzk7QAEiNQ49NgsnID4+CiUDFlYGPihAAnomOEQ2Cw1NNCIkIigVIDssPBwkeCw8GDEbRwk6NSUmKBUgOzs9CBJ0Iz8IMAJGQBU1HkE9Fg0gPzM2JHgsOF0VHSExGxIfMiMxPAoMKCFWKEI6CBEKPBAmLB8NOzgDIEUzJg0eQiEmHhkmKgcgDwM0JCweJhomIgJDITUeBSYuBzweMhpWDD8bFwBbAiEOHhMoFj4KCQ
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3036), with no line terminators
Hash 928dc3fdcbe78ac57220b97dcc810a26
f1666d82a2a38803a79790ce83c489653ad57d5d
71a9af0e4e4d7daa40347324988395bca4e39109b119d32f0c70f05f8ef1689e
GET /dHlwZkwVGxMLcxVEEkA5BhVNQ34yXEIgKEVBF1A4Qw4YAHQRExZILxgWBQIqBhYeEmIaHARDfjI9Iws0QSMeMzw1ARMnHx5NNi4aADcWV3k1LCUgPzYeHywLDgkiKDY5OjokJxA7NC87NUhINQgNTCI1GTUjOxEFES5BKzo1EQAEHjMOPi4dJjAWDSM6PxgJJCEoBy8JJ0E7Iw0TKDwNIzk7QAEiNQ49NgsnID4+CiUDFlYGPihAAnomOEQ2Cw1NNCIkIigVIDssPBwkeCw8GDEbRwk6NSUmKBUgOzs9CBJ0Iz8IMAJGQBU1HkE9Fg0gPzM2JHgsOF0VHSExGxIfMiMxPAoMKCFWKEI6CBEKPBAmLB8NOzgDIEUzJg0eQiEmHhkmKgcgDwM0JCweJhomIgJDITUeBSYuBzweMhpWDD8bFwBbAiEOHhMoFj4KCQ HTTP/1.1
Host: mbledeparatea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1188
date: Tue, 29 Nov 2022 01:18:32 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hrYXTMYte5BPhvI0zOQn2XtsXcJaddM4ckRPZ0ozu5VbzDjJ0YA42Q==
X-Firefox-Spdy: h2
edcritessuspi.com/N1dLNjMYaChFDlQRI0JlYQECVGUGJBFzZUMPHHxUZgAjUGkFEm1CWlNqcwMBDmB/EENeM3YFAREkP1dHQiR2BAMHYG1fXVE4dgQVQWp7GAsZZngYAxEidgcVQycqUQ4GcTtCR1tqegAFDmFzAgQGZnIOBQ
204 No Content 0 B URL HTTP/2 edcritessuspi.com/N1dLNjMYaChFDlQRI0JlYQECVGUGJBFzZUMPHHxUZgAjUGkFEm1CWlNqcwMBDmB/EENeM3YFAREkP1dHQiR2BAMHYG1fXVE4dgQVQWp7GAsZZngYAxEidgcVQycqUQ4GcTtCR1tqegAFDmFzAgQGZnIOBQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /N1dLNjMYaChFDlQRI0JlYQECVGUGJBFzZUMPHHxUZgAjUGkFEm1CWlNqcwMBDmB/EENeM3YFAREkP1dHQiR2BAMHYG1fXVE4dgQVQWp7GAsZZngYAxEidgcVQycqUQ4GcTtCR1tqegAFDmFzAgQGZnIOBQ HTTP/1.1
Host: edcritessuspi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 01:18:32 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=22iGmwFVDNuh9lgXceHQBXTByGNHwCiSBZEo2BSi5R8Fpp%2Fp%2B6OB8j7EkHw4WP0WLOCwHkrzjq8BM26U6X0wxItCbV0pke4lwEZQuId4RspAwqwyOE5VojCcJ7QCYdfpdq%2BixA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7717828ebb6eb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
edcritessuspi.com/UzBwSVB8DxM6bQB1PXs0OGIHLTcJYBQRYWFyGw8oNmg9DAIbcVY9OTcNSHxiagdEbyA6VE16YnVDBCgkJkNNeHY6XhYmbXVGTXl+ax5Ben5jFgV0YXVEACg3bgFWOSQnXE14ZmUJRnFkZAFBcGhh
204 No Content 0 B URL HTTP/2 edcritessuspi.com/UzBwSVB8DxM6bQB1PXs0OGIHLTcJYBQRYWFyGw8oNmg9DAIbcVY9OTcNSHxiagdEbyA6VE16YnVDBCgkJkNNeHY6XhYmbXVGTXl+ax5Ben5jFgV0YXVEACg3bgFWOSQnXE14ZmUJRnFkZAFBcGhh
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /UzBwSVB8DxM6bQB1PXs0OGIHLTcJYBQRYWFyGw8oNmg9DAIbcVY9OTcNSHxiagdEbyA6VE16YnVDBCgkJkNNeHY6XhYmbXVGTXl+ax5Ben5jFgV0YXVEACg3bgFWOSQnXE14ZmUJRnFkZAFBcGhh HTTP/1.1
Host: edcritessuspi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 01:18:32 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rj5Xc%2B1K%2BIIqnHR%2Bjni%2FlHtcZu6oRnluV3AlQMjmCSm%2BtXOB8ZTIJK33UfZhpuQ3ThKKa%2F93X8LFMRlneAEQyjMv%2FQrun96NkyrXcsXbbqyB68bQ%2F988ks1bKh1%2BLnkvfHW55w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7717828ebb6cb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
edcritessuspi.com/RjdEUFNpCCcjbghaDSowEGYCBzQIcx0RNx51ER46AlsFFAIRYmIkOiIKfWJicwV8diMvU3lhdTVDJSQmNQp1djooUSttdTAKdX5gchl3YX13ETFtYmBDNDE0ewZiICcyW3lhZXAOcmhncQZ2YGB1
204 No Content 0 B URL HTTP/2 edcritessuspi.com/RjdEUFNpCCcjbghaDSowEGYCBzQIcx0RNx51ER46AlsFFAIRYmIkOiIKfWJicwV8diMvU3lhdTVDJSQmNQp1djooUSttdTAKdX5gchl3YX13ETFtYmBDNDE0ewZiICcyW3lhZXAOcmhncQZ2YGB1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /RjdEUFNpCCcjbghaDSowEGYCBzQIcx0RNx51ER46AlsFFAIRYmIkOiIKfWJicwV8diMvU3lhdTVDJSQmNQp1djooUSttdTAKdX5gchl3YX13ETFtYmBDNDE0ewZiICcyW3lhZXAOcmhncQZ2YGB1 HTTP/1.1
Host: edcritessuspi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 01:18:32 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6EohnddCWaftnnhNQ89%2BQfjDDHP8mJTVxTv4zB3ciU50v3TVd78UShJgob7%2BYQGupkkxQcQp2WnIL3DY0tsYFByww0BdG0M%2B5zSfqpKWPoRo0Wp5xKZoNsfzwpS1VHpVhuj62w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7717828ecb79b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash d9d73fb0b657f649886aad2c5166d018
6c92119e15b4125fcab1601e698c643e34a74934
15ae3bdb79fd7421b25c5ab66809135e694cdbd5e47b942678b6cbb9e9427c29
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "15AE3BDB79FD7421B25C5AB66809135E694CDBD5E47B942678B6CBB9E9427C29"
Last-Modified: Mon, 28 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5319
Expires: Tue, 29 Nov 2022 02:47:11 GMT
Date: Tue, 29 Nov 2022 01:18:32 GMT
Connection: keep-alive
www.tumpik.com/static/js/visit-blog.js?v=1667307905984
200 OK 1.3 kB URL HTTP/2 www.tumpik.com/static/js/visit-blog.js?v=1667307905984
IP
Hash 84c879ccad333cff223a4f6298855a70
c80206c89dcb8821be8aedba525b1661e3ec1a38
ace7bab0c1f1faf72e18fba82c9b1fc428dc0200f3d1feb6b48bc8c81af24021
GET /static/js/visit-blog.js?v=1667307905984 HTTP/1.1
Host: www.tumpik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:31 GMT
content-type: application/javascript
last-modified: Sat, 12 Nov 2022 20:26:08 GMT
etag: W/"63700160-cf"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1444
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2jfebVjONfjB1oiHVBhcxHksyqZxebtKET%2BW4p9gD4DcVCdFR7LRszcTNt4yPjzVZE0kx%2Bq62y%2FnRPHiVYLgt%2FOyyk8IMMS5kP31vN%2BmADRv7Cq2go804jvPfo7aopGa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7717828998c8b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
eargentssep.one/utx?tid=846710&top=www.tumpik.com&cb=Xw2cnhRhWj8k
204 No Content 0 B URL HTTP/2 eargentssep.one/utx?tid=846710&top=www.tumpik.com&cb=Xw2cnhRhWj8k
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?tid=846710&top=www.tumpik.com&cb=Xw2cnhRhWj8k HTTP/1.1
Host: eargentssep.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 01:18:32 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://www.tumpik.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Tue, 29 Nov 2022 01:19:32 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0uTkDHURzU_dh5xhO3WzDPdvSS-kokG5hbHfL3jDV8hsCPzmHF9yJw==
X-Firefox-Spdy: h2
api.tumblr.com/v2/blog/jovialnightmarefest.tumblr.com/avatar/128
302 Found 204 B URL HTTP/2 api.tumblr.com/v2/blog/jovialnightmarefest.tumblr.com/avatar/128
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash fe4faf3377066f344a92025c82999028
c202f66ec6e297b1cc47a8e3f2d815a8caebf2af
baad060e522e29f9c66668f57611d478ac267970fe8c347345fe6c36b247db3f
GET /v2/blog/jovialnightmarefest.tumblr.com/avatar/128 HTTP/1.1
Host: api.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 29 Nov 2022 01:18:32 GMT
content-type: application/json
content-length: 204
location: https://64.media.tumblr.com/0cd373cf33c79dd3362b493f1918e4ba/2662a26923572823-f2/s128x128u_c1/96cb4cbc77dc463f0aec7db50d03fe419521e21d.jpg
x-rid: 5aac457258e150d623c1587d2b747e06
p3p: CP="Tumblr's privacy policy is available here: https://www.tumblr.com/policy/en/privacy"
x-cache-avatar: true
x-ua-compatible: IE=Edge,chrome=1
strict-transport-security: max-age=31536000; preload
X-Firefox-Spdy: h2
api.tumblr.com/v2/blog/daddysplaygrounds-posts.tumblr.com/avatar/128
302 Found 134 B URL HTTP/2 api.tumblr.com/v2/blog/daddysplaygrounds-posts.tumblr.com/avatar/128
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 84104f4517ebd7875501e16877abc1a2
18d7ffe1a8e32dbee4d70bcf8b66bdb316f709d0
6e3a73f2e2efedca11107056906283c0f133c22bd0439cee22d3d242728b17fc
GET /v2/blog/daddysplaygrounds-posts.tumblr.com/avatar/128 HTTP/1.1
Host: api.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 29 Nov 2022 01:18:32 GMT
content-type: application/json
content-length: 134
location: https://assets.tumblr.com/images/default_avatar/pyramid_open_128.png
x-rid: 2fab01168799fe4d49fd48c9fb8f383b
p3p: CP="Tumblr's privacy policy is available here: https://www.tumblr.com/policy/en/privacy"
x-cache-avatar: true
x-ua-compatible: IE=Edge,chrome=1
strict-transport-security: max-age=31536000; preload
X-Firefox-Spdy: h2
assets.tumblr.com/images/default_avatar/pyramid_open_128.png
200 OK 3.6 kB URL HTTP/2 assets.tumblr.com/images/default_avatar/pyramid_open_128.png
IP
File type PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced\012- data
Hash a1b649d7db5a3c3e44eac9a2958b5bb3
52bb69217cc07bbea97a418ce63b7f6b3a606f45
f7fb4cb62bfeebf320250f76a600e7a43f16b079d9b9c867506815a5486c9253
GET /images/default_avatar/pyramid_open_128.png HTTP/1.1
Host: assets.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tumpik.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:18:33 GMT
content-type: image/png
content-length: 3643
last-modified: Thu, 07 May 2020 05:05:25 GMT
etag: "5eb39715-e3b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, immutable
strict-transport-security: max-age=31536000; preload
timing-allow-origin: *
x-nc: HIT arn 2
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash af25abbc1f9776cf78b07837dbea38a0
1883049bac2e92f8b3107f6435f00b83d8f4c117
663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2712
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:33 GMT
Last-Modified: Tue, 29 Nov 2022 00:33:21 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
d18g6t7whf8ejf.cloudfront.net/DSmx5ZnUpAxcASj4FHVtNf15AUUFsBgoJGzpRNzMCJBkdBDIwA18SDy5RSUAZKwIeW1MvAhpbRGwNHQRIfkoNFhohUQwIES8KEAgQLkoMB0gnAwMPGSYNXFQzf0JJQ0d6RA4PGy4DDhVQeFwXElB4XEhWW3pJSiRQeFwODxt8WFxVN29eSR5DfklKJFB4XA-sQUHktSFZAZFxQQ0d6CxwFHiVJSyBHel1JVkR6XVxURSwFCwMTJRRcVDN7XExIRWwZRFc
200 OK 335 B URL HTTP/2 d18g6t7whf8ejf.cloudfront.net/DSmx5ZnUpAxcASj4FHVtNf15AUUFsBgoJGzpRNzMCJBkdBDIwA18SDy5RSUAZKwIeW1MvAhpbRGwNHQRIfkoNFhohUQwIES8KEAgQLkoMB0gnAwMPGSYNXFQzf0JJQ0d6RA4PGy4DDhVQeFwXElB4XEhWW3pJSiRQeFwODxt8WFxVN29eSR5DfklKJFB4XA-sQUHktSFZAZFxQQ0d6CxwFHiVJSyBHel1JVkR6XVxURSwFCwMTJRRcVDN7XExIRWwZRFc
IP
File type ASCII text, with very long lines (434), with no line terminators
Hash 906bf7833d6402bca9abd86d3f9c87fb
f15c5fef1ed943a8d2b62f8c540a04066c73f0fb
416bab3b77e1f556c8d22540feb51046e3575ee2b58dbbc2341ca838b26f12c2
GET /DSmx5ZnUpAxcASj4FHVtNf15AUUFsBgoJGzpRNzMCJBkdBDIwA18SDy5RSUAZKwIeW1MvAhpbRGwNHQRIfkoNFhohUQwIES8KEAgQLkoMB0gnAwMPGSYNXFQzf0JJQ0d6RA4PGy4DDhVQeFwXElB4XEhWW3pJSiRQeFwODxt8WFxVN29eSR5DfklKJFB4XA-sQUHktSFZAZFxQQ0d6CxwFHiVJSyBHel1JVkR6XVxURSwFCwMTJRRcVDN7XExIRWwZRFc HTTP/1.1
Host: d18g6t7whf8ejf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mbledeparatea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 335
date: Tue, 29 Nov 2022 01:18:33 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bO4Sw6cUJdHrPhPmKG3OSVGVH5h9gpAd52mAfNaIEBowyLAR6ZJHlg==
X-Firefox-Spdy: h2
64.media.tumblr.com/0cd373cf33c79dd3362b493f1918e4ba/2662a26923572823-f2/s128x128u_c1/96cb4cbc77dc463f0aec7db50d03fe419521e21d.jpg
200 OK 10 kB URL HTTP/2 64.media.tumblr.com/0cd373cf33c79dd3362b493f1918e4ba/2662a26923572823-f2/s128x128u_c1/96cb4cbc77dc463f0aec7db50d03fe419521e21d.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, orientation=upper-left], progressive, precision 8, 128x128, components 3\012- data
Hash b8291f31d29298e9792a53b6135573c8
c6d78e7ace9a192458f44bc7716b56054204b950
d7d7d0119b896076eeaed7c98bd42dfe550853abf303f3b0fad4f8be9aed18ec
GET /0cd373cf33c79dd3362b493f1918e4ba/2662a26923572823-f2/s128x128u_c1/96cb4cbc77dc463f0aec7db50d03fe419521e21d.jpg HTTP/1.1
Host: 64.media.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tumpik.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:18:33 GMT
content-type: image/jpeg
content-length: 9972
last-modified: Thu, 01 Apr 2021 14:40:52 GMT
etag: "8a8bb79e8b0c452a789b9b2add8080a7-1498089600-97598d7"
content-disposition: inline; filename="tumblr_0cd373cf33c79dd3362b493f1918e4ba_96cb4cbc_128.jpg"
x-frames: 1
timing-allow-origin: *
cache-control: max-age=315360000
x-nc: MISS arn 1
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
strict-transport-security: max-age=31536000; preload
server-timing: dc;desc=arn, cache;desc=MISS;dur=26.0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 178ffcc14403da7f777a91a61e3933bc
5a756f4357d8ec45e61fa5b4917853bd2380b835
0f783e0ae738f16b52f1ede3b0b6a128bd4ac752c98c71fc307211a8abf933ec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 178ffcc14403da7f777a91a61e3933bc
5a756f4357d8ec45e61fa5b4917853bd2380b835
0f783e0ae738f16b52f1ede3b0b6a128bd4ac752c98c71fc307211a8abf933ec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
302 Found 398 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (382)
Hash 8296ba9f8f4a9babbb171f708d816d31
f4fdeafb852c929b852f846a0e778e6dbfea7c57
d8faab6c5ef67ce95a3e3ce419d90db5b928c26d263a7c96b34ffedf04bc434a
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 29 Nov 2022 01:18:33 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S-469472269%3A1669684713083909&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=ARgdvAsvPWASrlKpz_x-bpFASJ-NH3Je1NHvsTeICBjbbhDRIYAQHqaGP9YmPQMn5VdG15QpDP9j
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-zwsSsv8ehTXorS7T_b9DhA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 398
server: GSE
set-cookie: __Host-GAPS=1:r7WvXaRnX8FapCLNH1zdvOy8CWl9Sg:xVpfzqr5A0Olz7wa;Path=/;Expires=Thu, 28-Nov-2024 01:18:33 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash e6da09bfac8d5c44728536880dad2574
3a8ba2233419dec6b2270dcd8248ff66a3685e40
f81b5cd287ace93ef5c9b4d80b9ab9c89e57c4a3a164757bf315356aa8f48edd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F81B5CD287ACE93EF5C9B4D80B9AB9C89E57C4A3A164757BF315356AA8F48EDD"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3212
Expires: Tue, 29 Nov 2022 02:12:05 GMT
Date: Tue, 29 Nov 2022 01:18:33 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash e6da09bfac8d5c44728536880dad2574
3a8ba2233419dec6b2270dcd8248ff66a3685e40
f81b5cd287ace93ef5c9b4d80b9ab9c89e57c4a3a164757bf315356aa8f48edd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F81B5CD287ACE93EF5C9B4D80B9AB9C89E57C4A3A164757BF315356AA8F48EDD"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3212
Expires: Tue, 29 Nov 2022 02:12:05 GMT
Date: Tue, 29 Nov 2022 01:18:33 GMT
Connection: keep-alive
dmmzkfd82wayn.cloudfront.net/yN1duOWpUOABfVUM+CgRTBWZbC1IRPR1WBEdqB3g4WWdfVVx/EUhNEFNqXh8GVjkJBExSOQ0EWxE2CltXA3EaSQVcagpcBU8iFkkHViBITAsKOgFDA1s7DxxYcWJACU8FZ0ZOA1kzAU4ZEmVeVx4SZV4IWhlnSwooEmVeTgNZYVocWXVyXAkSAWNLCigSZV-5LHBJkLwhaAnleEE8FZwlcCVw4SwssBWdfCVoGZ18cWAcxB0sPUTgWHFhxZl4MRAdxGwRb
200 OK 660 B URL HTTP/2 dmmzkfd82wayn.cloudfront.net/yN1duOWpUOABfVUM+CgRTBWZbC1IRPR1WBEdqB3g4WWdfVVx/EUhNEFNqXh8GVjkJBExSOQ0EWxE2CltXA3EaSQVcagpcBU8iFkkHViBITAsKOgFDA1s7DxxYcWJACU8FZ0ZOA1kzAU4ZEmVeVx4SZV4IWhlnSwooEmVeTgNZYVocWXVyXAkSAWNLCigSZV-5LHBJkLwhaAnleEE8FZwlcCVw4SwssBWdfCVoGZ18cWAcxB0sPUTgWHFhxZl4MRAdxGwRb
IP
File type ASCII text, with very long lines (950), with no line terminators
Hash b2958cdbbee44492386a7abc0d43157f
65f4f177534bb2200cc7d971bed3e1994ab82ac7
40690ebdf793873ab17e837cda73a417e67344c556d5da9b992c322879918cba
GET /yN1duOWpUOABfVUM+CgRTBWZbC1IRPR1WBEdqB3g4WWdfVVx/EUhNEFNqXh8GVjkJBExSOQ0EWxE2CltXA3EaSQVcagpcBU8iFkkHViBITAsKOgFDA1s7DxxYcWJACU8FZ0ZOA1kzAU4ZEmVeVx4SZV4IWhlnSwooEmVeTgNZYVocWXVyXAkSAWNLCigSZV-5LHBJkLwhaAnleEE8FZwlcCVw4SwssBWdfCVoGZ18cWAcxB0sPUTgWHFhxZl4MRAdxGwRb HTTP/1.1
Host: dmmzkfd82wayn.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mbledeparatea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 660
date: Tue, 29 Nov 2022 01:18:33 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1B55ExybWvavRL8tA9y7sJvxpV6vt3TBBhWZXxS_veCpkwu-GdXggA==
X-Firefox-Spdy: h2
mbledeparatea.com/utx?cb=w97ogmhedjrw&top=www.tumpik.com&tid=921528
204 No Content 0 B URL HTTP/2 mbledeparatea.com/utx?cb=w97ogmhedjrw&top=www.tumpik.com&tid=921528
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=w97ogmhedjrw&top=www.tumpik.com&tid=921528 HTTP/1.1
Host: mbledeparatea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 01:18:33 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://www.tumpik.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Tue, 29 Nov 2022 01:19:33 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W34paPCHL2pRmYNsuGnqtXkMe1mBYBV9qPYdlNygFvwajdbMevrTDQ==
X-Firefox-Spdy: h2
mbledeparatea.com/utx?cb=3LLmdAmvvwLZ&top=www.tumpik.com&tid=852974
204 No Content 0 B URL HTTP/2 mbledeparatea.com/utx?cb=3LLmdAmvvwLZ&top=www.tumpik.com&tid=852974
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=3LLmdAmvvwLZ&top=www.tumpik.com&tid=852974 HTTP/1.1
Host: mbledeparatea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 01:18:33 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://www.tumpik.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Tue, 29 Nov 2022 01:19:33 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wZ_QX3DexUyeO3WRhGevuzRDuSUtL51VtjlP2n68DO3I3XHgHi82rQ==
X-Firefox-Spdy: h2
64.media.tumblr.com/avatar_db89de5c14ff_128.png
200 OK 2.7 kB URL HTTP/2 64.media.tumblr.com/avatar_db89de5c14ff_128.png
IP
File type PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced\012- data
Hash cbc085dac4a94d7dcc614c0ce63f725b
30983cacd5edddbbdd31031f9bf2a567bcf31a00
9dba788eb9bcffb545078f6076d22745e8f22001299f47e3119d0b7ad40682c7
GET /avatar_db89de5c14ff_128.png HTTP/1.1
Host: 64.media.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tumpik.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:18:33 GMT
content-type: image/png
content-length: 2715
etag: "b12b1ebafb4296ad300939488158f7be-1498089600-97598d7"
last-modified: Tue, 15 Dec 2020 13:32:29 GMT
content-disposition: inline; filename="avatar_db89de5c14ff_128.png"
x-frames: 1
timing-allow-origin: *
cache-control: max-age=31536000
x-nc: MISS arn 4
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
strict-transport-security: max-age=31536000; preload
server-timing: dc;desc=arn, cache;desc=MISS;dur=121.0
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
302 Found 391 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (378)
Hash 783759193128e087280637b89072a918
5aaf80c1a47c4bd4abf332b6758716bfc45f9421
a0db70cb697fff4a7c2c3c4fad89d5135ce47250856c77a22f595ea8a8d12379
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 29 Nov 2022 01:18:33 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S1577310549%3A1669684713132241&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=ARgdvAvFmGm64XV-FDoF1gIYbU7on8dRRoyxRgobrixketw00xzvoyiP4qBQbLhANzaK9nvZc9s8
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-Ds785kSG0Av8VJEWDYvp1g' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 391
server: GSE
set-cookie: __Host-GAPS=1:iNy-88D5iNiPpbOj87k8SHwoXDaz0g:SIJsxRvqgbmwAPgs;Path=/;Expires=Thu, 28-Nov-2024 01:18:33 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ksehinkitw.hair/
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: ksehinkitw.hair
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 384
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash af25abbc1f9776cf78b07837dbea38a0
1883049bac2e92f8b3107f6435f00b83d8f4c117
663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2712
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:33 GMT
Last-Modified: Tue, 29 Nov 2022 00:33:21 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
accounts.google.com/v3/signin/identifier?dsh=S1577310549%3A1669684713132241&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=ARgdvAvFmGm64XV-FDoF1gIYbU7on8dRRoyxRgobrixketw00xzvoyiP4qBQbLhANzaK9nvZc9s8
403 Forbidden 1.2 kB URL HTTP/2 accounts.google.com/v3/signin/identifier?dsh=S1577310549%3A1669684713132241&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=ARgdvAvFmGm64XV-FDoF1gIYbU7on8dRRoyxRgobrixketw00xzvoyiP4qBQbLhANzaK9nvZc9s8
IP
Hash d2bec92d4301f69fcb2ca20999dd4807
52f4d7e2fa1436239a93d3f110b2ff0980c9f765
0a87db4c8a3adbf6b07e8c2ff06ce61ce22d0f02081b497b975e7a56a0a504ac
GET /v3/signin/identifier?dsh=S1577310549%3A1669684713132241&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=ARgdvAvFmGm64XV-FDoF1gIYbU7on8dRRoyxRgobrixketw00xzvoyiP4qBQbLhANzaK9nvZc9s8 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tumpik.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 29 Nov 2022 01:18:33 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-siQDVNVb9O3Clhj04F_gdg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
cross-origin-opener-policy-report-only: same-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 29 Nov 2022 01:18:33 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/ra-6103d59079bcdcec/_ate.track.config_resp
200 OK 504 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-6103d59079bcdcec/_ate.track.config_resp
IP
File type ASCII text, with very long lines (1391), with no line terminators
Hash b357db3ffeb0f6668909949158460a71
e5edffd1d3b88423546422e091e0a5d5fca713ce
c0891f337175da08d2b22a891af4021840c0bccd9e54461c976a9d682898526f
GET /live/boost/ra-6103d59079bcdcec/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 504
etag: 706338575--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=6, s-maxage=86400
date: Tue, 29 Nov 2022 01:18:33 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 9a77dff666eebb6cf4bbc4c67c7b563b
9e98d7824a7b4e34665c2690d6f52caddad1fe4b
6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Tue, 29 Nov 2022 01:18:33 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=63855de719c65efb&bkl=0&bl=1&pdt=822&sid=63855de719c65efb&pub=ra-6103d59079bcdcec&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=www.tumpik.com&fp=tag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1669684712479&jsl=1&uvs=63855de72b50bcef000&skipb=1&callback=addthis.cbs.jsonp__99610304873709550
200 OK 89 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=63855de719c65efb&bkl=0&bl=1&pdt=822&sid=63855de719c65efb&pub=ra-6103d59079bcdcec&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=www.tumpik.com&fp=tag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1669684712479&jsl=1&uvs=63855de72b50bcef000&skipb=1&callback=addthis.cbs.jsonp__99610304873709550
IP
File type ASCII text, with no line terminators
Hash 4f6bf5770f665d6d53fa348f5fd918b6
1d2701ffd9b65df5c786095481b797bd001128f1
9a460f8730a3b1e20a9e34c9b7157d62c93353f436bfb8230226d16a29e96c5c
GET /live/red_lojson/300lo.json?si=63855de719c65efb&bkl=0&bl=1&pdt=822&sid=63855de719c65efb&pub=ra-6103d59079bcdcec&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=www.tumpik.com&fp=tag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1669684712479&jsl=1&uvs=63855de72b50bcef000&skipb=1&callback=addthis.cbs.jsonp__99610304873709550 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Tue, 29 Nov 2022 01:18:33 GMT
X-Firefox-Spdy: h2
cd.connatix.com/connatix.player.js?cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
302 Found 0 B URL HTTP/2 cd.connatix.com/connatix.player.js?cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /connatix.player.js?cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398 HTTP/1.1
Host: cd.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://cds.connatix.com/p/203226/connatix.player.dc.js?cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
accept-ranges: bytes
access-control-max-age: 86400
date: Tue, 29 Nov 2022 01:18:33 GMT
content-length: 0
X-Firefox-Spdy: h2
ksehinkitw.hair/cUt4b1oKaQsYBQQ5FE1gUyMMGyoCcVdALQY8VhsvHDsRBHQSJBVAKQZlEhx4XWkLAjxTcUlDeAImDk1gU39WXHhdaQwOPS4iHE1gU3NMWW1Ae1pDeAI%2BGjAzFXlaVXgSc0gMPkkqHkJiRntAQm5FeUhCYkZ6G0JjQHNPXmNBfkpZO0NpBQ
502 Bad Gateway 0 B URL HTTP/2 ksehinkitw.hair/cUt4b1oKaQsYBQQ5FE1gUyMMGyoCcVdALQY8VhsvHDsRBHQSJBVAKQZlEhx4XWkLAjxTcUlDeAImDk1gU39WXHhdaQwOPS4iHE1gU3NMWW1Ae1pDeAI%2BGjAzFXlaVXgSc0gMPkkqHkJiRntAQm5FeUhCYkZ6G0JjQHNPXmNBfkpZO0NpBQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cUt4b1oKaQsYBQQ5FE1gUyMMGyoCcVdALQY8VhsvHDsRBHQSJBVAKQZlEhx4XWkLAjxTcUlDeAImDk1gU39WXHhdaQwOPS4iHE1gU3NMWW1Ae1pDeAI%2BGjAzFXlaVXgSc0gMPkkqHkJiRntAQm5FeUhCYkZ6G0JjQHNPXmNBfkpZO0NpBQ HTTP/1.1
Host: ksehinkitw.hair
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 502 Bad Gateway
set-cookie: db17bde9097834ee80490357c394b4dc=1; Max-Age=604800
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With,content-type
X-Firefox-Spdy: h2
capi.connatix.com/tr/si?token=4774eef9-309c-40d8-8dc1-bf70e43e9987&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
200 OK 62 B URL HTTP/2 capi.connatix.com/tr/si?token=4774eef9-309c-40d8-8dc1-bf70e43e9987&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
IP
Hash 58b0405bb888a375ae0a52918518284a
b6c97bf62bb17ac2f36a1be258e506f0fc3b301f
45122edf6e940413ecdeec5686821498a5a5ecaed720ddd7cecc9f7990a621bf
GET /tr/si?token=4774eef9-309c-40d8-8dc1-bf70e43e9987&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398 HTTP/1.1
Host: capi.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
content-encoding: gzip
content-type: application/json
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:33 GMT
vary: Accept-Encoding
access-control-max-age: 86400
content-length: 62
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10423
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 01:18:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10423
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 01:18:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10423
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 01:18:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10423
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 01:18:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:40:08 GMT
age: 63505
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e7d3e11e78242383e452adb9299016
035a1b4a2a7889787532ec2637d5c21e06daf672
990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iSUNjVxAMdZYo5z7KyOT7WN5VWxPElRWiVO3u2E3AonLWkr8bT9Img==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 02:07:31 GMT
age: 83462
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae2e2986caa15a90b615147f229b51ec
c6dfd277cdbd057472e6df6ad1a200f50684d442
ec3799922c38ee6394601744ff4b2c405ee44c4718a2b90c104134657f8b480b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9015
x-amzn-requestid: eb4599b5-e88a-47cd-8d1b-5839c4f7593e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnbGLToAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852962-67476fac77c8d1ee36f89ecc;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 09Pb9RMyAoRWXYfw5mxwtpl6fnHwlxDJryR4c-F3rurGKUgo-HYUOg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:42:03 GMT
age: 12990
etag: "c6dfd277cdbd057472e6df6ad1a200f50684d442"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c808183085a429c53515508678fc7ab2
6567069d9f5199205ba1ca7a937fcb0a52f95d06
c7ca95730cbc97d7c243e05b23520166faefcd2dfe90f36f70fad1f7e4537e4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9162
x-amzn-requestid: f7fb3b99-6f1c-4ab3-9547-a337d54e8c9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVjI8E9poAMFaQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63854bd2-0679b83d1aa3b7c71aa6bf1c;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 00:01:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RAAJeCuVxs-hpp4wMmcBEmqPf71bUMueBvhwLaYTixj9IiIGNp0ZIQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 00:28:27 GMT
age: 3006
etag: "6567069d9f5199205ba1ca7a937fcb0a52f95d06"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9cd333c474420e235831d96ed881167e
5008d7344dd85ae61a598c17e7baf427def3e25d
2178a96e120661e43d8e8ed0df1fcf500caf4c58db9e1bedaf0706af0a80b286
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3944
x-amzn-requestid: 8a6732c1-72da-4a73-ba51-8533c6a01a9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNmfFgeIAMFjLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385295c-0c807d93277bfb7f6b13c2ee;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:20 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XC26NJ0PkNhOsuvMPTd5TlY-oDOGfGoNxzzMANQRlyBWt1XZW_gUfA==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:42:03 GMT
age: 12990
etag: "5008d7344dd85ae61a598c17e7baf427def3e25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cds.connatix.com/p/203226/connatix.player.dc.js?cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
200 OK 224 kB URL HTTP/2 cds.connatix.com/p/203226/connatix.player.dc.js?cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 224 kB (223535 bytes)
Hash 1fb90a94f5cd726008c9c970402a3503
092ac124e2f0a62c86768251e6c1739323cb5380
4842bcbd585149dbcc5cf2f129fa3b6abc2f3aea80d07979a39fe62f97b45a08
GET /p/203226/connatix.player.dc.js?cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398 HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 21:02:21 GMT
etag: "8075a5894626e61d2ae59a72dc971b93"
content-type: application/javascript
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:33 GMT
age: 14716
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 223535
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UmhWm03jrsV8dFagrzIA0E-8eL8dykoO5kw3cYOBd172dCGqNdAX-Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 03:31:58 GMT
age: 78395
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api-public.addthis.com/url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
200 OK 2 B URL HTTP/2 api-public.addthis.com/url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
content-length: 2
cache-control: no-transform, max-age=0, s-maxage=14400
surrogate-key: sFbt=https://www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
last-modified: Tue, 29 Nov 2022 01:00:00 GMT
access-control-allow-origin: https://www.tumpik.com
access-control-allow-credentials: true
strict-transport-security: max-age=15724800; includeSubDomains
date: Tue, 29 Nov 2022 01:18:33 GMT
X-Firefox-Spdy: h2
api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&callback=_ate.cbs.rcb_abjc0
200 OK 53 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&callback=_ate.cbs.rcb_abjc0
IP
File type ASCII text, with no line terminators
Hash af5b6c385444e87abebc0122119591c4
8854616ae96d765c4b12102c22103abd4ada75dd
b7a8af2bbeadd9f3493a2e35eef897a4f1f9df51f27fc94cdb00f1135e5ab062
GET /url/shares.json?url=http%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&callback=_ate.cbs.rcb_abjc0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
last-modified: Tue, 29 Nov 2022 01:18:33 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 53
date: Tue, 29 Nov 2022 01:18:33 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
api-public.addthis.com/url/shares.json?url=https%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&callback=_ate.cbs.rcb_jhh90
200 OK 53 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=https%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&callback=_ate.cbs.rcb_jhh90
IP
File type ASCII text, with no line terminators
Hash 2c2c38f9388d2b7e3634ff3a2dc90675
6af051f5c916a125c0712327fd9234855f166f28
da93b9de8062330773c9e1c6e46800bff40e49619ac14c18b63c62be46c3807b
GET /url/shares.json?url=https%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&callback=_ate.cbs.rcb_jhh90 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
last-modified: Tue, 29 Nov 2022 01:18:33 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 53
date: Tue, 29 Nov 2022 01:18:33 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
mbledeparatea.com/floater?cs=aUJ5R0VRd0l%2BdFx3SXBwWHJLdXE&abt=0&red=1&sm=83&k=explore%20tumblr%20posts%20blogs%20tumpik&v=0.8.13.0&sts=0&prn=0&emb=0&tid=852974&rxy=1280_1024&u=674012102463322&agec=1669684713&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&mbkb=191.20458891013382&ref=https%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&aa=td1_oi1_&_LoOJ=1669684712586&crc=1
200 OK 1.8 kB URL HTTP/2 mbledeparatea.com/floater?cs=aUJ5R0VRd0l%2BdFx3SXBwWHJLdXE&abt=0&red=1&sm=83&k=explore%20tumblr%20posts%20blogs%20tumpik&v=0.8.13.0&sts=0&prn=0&emb=0&tid=852974&rxy=1280_1024&u=674012102463322&agec=1669684713&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&mbkb=191.20458891013382&ref=https%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&aa=td1_oi1_&_LoOJ=1669684712586&crc=1
IP
File type ASCII text, with very long lines (3019), with no line terminators
Hash 03078eab4dfd0603d2e6c8e71b42dd40
0bb407748eff8799e353bf6726840cd9e818295d
f1170e86c8b88b6a9c1c9aad35b0b1eee2a0458ccc9a65f93292dc4b818cc792
GET /floater?cs=aUJ5R0VRd0l%2BdFx3SXBwWHJLdXE&abt=0&red=1&sm=83&k=explore%20tumblr%20posts%20blogs%20tumpik&v=0.8.13.0&sts=0&prn=0&emb=0&tid=852974&rxy=1280_1024&u=674012102463322&agec=1669684713&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&mbkb=191.20458891013382&ref=https%3A%2F%2Fwww.tumpik.com%2Ftag%2Fhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&aa=td1_oi1_&_LoOJ=1669684712586&crc=1 HTTP/1.1
Host: mbledeparatea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 1842
date: Tue, 29 Nov 2022 01:18:33 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://www.tumpik.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: csu=83922fe2-0270-448e-9797-8c882e8bb7ab
csu=674012102463322
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2knzXpk6eNk-fhDV35XND5K-3xVkQbsTBwk4tUc9iU5ciZ_cQdr8hQ==
X-Firefox-Spdy: h2
cds.connatix.com/p/203226/player.css
200 OK 9.3 kB URL HTTP/2 cds.connatix.com/p/203226/player.css
IP
File type ASCII text, with very long lines (61422), with no line terminators
Hash 7fd4ace6e73ef725826b0bf4122d4128
b075096780167d3c6e4549652c13d716497e68f3
77a9813bf3f81a028c7b28dc606f4899712dbabe1f32b0b7ecc5f1623e1e0395
GET /p/203226/player.css HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 21:02:22 GMT
etag: "fcaf2adfdb23bf2a38b7974460b8b31a"
content-type: text/css
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:33 GMT
age: 14718
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 9319
X-Firefox-Spdy: h2
ksehinkitw.hair/
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: ksehinkitw.hair
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tumpik.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.tumpik.com
Content-Length: 357
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 0
access-control-allow-origin: *
X-Firefox-Spdy: h2
ksehinkitw.hair/
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: ksehinkitw.hair
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tumpik.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.tumpik.com
Content-Length: 352
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 0
access-control-allow-origin: *
X-Firefox-Spdy: h2
capi.connatix.com/core/pls?v=203226&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
200 OK 2.0 kB URL HTTP/2 capi.connatix.com/core/pls?v=203226&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
IP
File type RLE image data, 14135 x 25908, lower left corner: 2562, lower right corner: 13348, clear first, alpha channel, 102 color channels, 57 bits per pixel, 45 color map channels\012- data
Hash fc94d3d90e02c066fac01ec1d5e97ab5
50c17c4e2152088b578f3cffec839934530e4858
ded3fba7cf8034f25901a5b0499f1fd6c12330a82b92bede7306f5b99ce9d424
POST /core/pls?v=203226&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398 HTTP/1.1
Host: capi.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 172
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.tumpik.com
content-encoding: gzip
content-type: application/x-protobuf
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:33 GMT
vary: Accept-Encoding
access-control-max-age: 86400
content-length: 2001
X-Firefox-Spdy: h2
vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/2_media.bin
200 OK 255 B URL HTTP/2 vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/2_media.bin
IP
Hash dc2ebf68a2c09f594a57900e06ba38a3
b021d84ec70291c1587cb31781a80fb6bfe8be99
43e71cfcb2dc6fc7cc6d50a010123579bc8e5c62bebbba1044b4963663f8330f
GET /pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/2_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 08:30:00 GMT
etag: "490381953e0c6146f233a37d5367ead8"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:34 GMT
age: 37711
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 255
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securepubads.g.doubleclick.net/tag/js/gpt.js
200 OK 27 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP
File type ASCII text, with very long lines (40310)
Hash 4ebbed2e7687edcd84d258ef7dd1aaf2
f2573046861bca6b89f490f83955c9270177da43
7fb78852e75a85dc60b4d1149666e4daa650740772ee2e3f1c323976f15ba664
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27211
date: Tue, 29 Nov 2022 01:18:34 GMT
expires: Tue, 29 Nov 2022 01:18:34 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1406 / 344 of 1000 / last-modified: 1669676784"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
imasdk.googleapis.com/js/sdkloader/ima3.js
200 OK 127 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP
File type ASCII text, with very long lines (2791)
Size 127 kB (126568 bytes)
Hash d298ebea71faa19cd8237ddf8c37d550
628f6436cdc4db74ecda4fad134b4499f41ad4cb
f02e9221a17b677d0aa0b76876bd82931f57bf5dd1ff9aa24a1ab945838b0e64
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 126568
date: Tue, 29 Nov 2022 01:18:34 GMT
expires: Tue, 29 Nov 2022 01:18:34 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cds.connatix.com/p/203226/elements.ui.230714baa8dd68650fa6.js
200 OK 14 kB URL HTTP/2 cds.connatix.com/p/203226/elements.ui.230714baa8dd68650fa6.js
IP
File type ASCII text, with very long lines (58245), with no line terminators
Hash 0b67c84c73981ab931c6ff8778f86363
11c8349fc07e9e28126efd1dfe654bc441e8b84b
3896ff5078e067876044316053ec3b1c326732d83301038a86059ab632ec840d
GET /p/203226/elements.ui.230714baa8dd68650fa6.js HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 21:02:22 GMT
etag: "a79fb90040940e955fd355e7ce9962c0"
content-type: application/javascript
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:34 GMT
age: 14718
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 13799
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.tumpik.com
200 OK 60 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.tumpik.com
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash a3d5f12464d3b645b70270fa2ce040c6
55e00e0a0685645be36ca4ca2bff4981fa31dbfa
14919887c7f1ec394110a0d4fefbaa1e644651027b2bba7d546ae2f791ab2216
GET /pagead/ppub_config?ippd=www.tumpik.com HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Tue, 29 Nov 2022 01:18:34 GMT
expires: Tue, 29 Nov 2022 01:18:34 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 60
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 29-Nov-2022 01:33:34 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cds.connatix.com/p/203226/hls.0f8c90570c11654c76fa.js
200 OK 48 kB URL HTTP/2 cds.connatix.com/p/203226/hls.0f8c90570c11654c76fa.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8368c310e2125255422f3f428f261cda
f975066a5cd67a5a0670ac87a77f9b384ee4f934
659a20b52b937acd050ccc46f61d825f961683112d613a8127f3d0d7b683383b
GET /p/203226/hls.0f8c90570c11654c76fa.js HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 21:02:22 GMT
etag: "285bfa9de6e3ac6a81341fc81ae04028"
content-type: application/javascript
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:34 GMT
age: 14717
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 48383
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 452666
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash cb53d7dacdc2d486f022af51c789ef21
9b06051990a76fb6c877d98f16c81c7086dd07f1
1dae2d32950e04d53f448f90162b04b651c4a2d9ec5df8ce359035890b6352e3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89170
Date: Tue, 29 Nov 2022 01:18:34 GMT
Etag: "63840854-1d7"
Expires: Wed, 30 Nov 2022 02:04:44 GMT
Last-Modified: Mon, 28 Nov 2022 01:01:08 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0Q_7p3lfgyfzh76YNdOTBha7FRpw-a09XqRHcJT1kOjNl5GzKjJOTA==
Age: 3817
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
200 OK 13 kB URL HTTP/2 pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
IP
File type ASCII text, with very long lines (1493)
Hash 0dece4b354fc41d0430994be26247a47
1063c9471665bb53cc9a4e89c4cf0f1e9f695f8d
71a1c1d814cc6c713b3513212be779f944e9b4002e1fb89ac36e438a1a04e4a0
GET /omsdk/releases/live/omweb-v1.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/omsdk-team-release-policy
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="omsdk-team-release-policy"
report-to: {"group":"omsdk-team-release-policy","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/omsdk-team-release-policy"}]}
content-length: 13109
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 01:07:57 GMT
expires: Tue, 29 Nov 2022 02:07:57 GMT
cache-control: public, max-age=3600
age: 637
last-modified: Mon, 31 Oct 2022 17:24:37 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b3b2c7f77d21f4f3c942fb3357e9fa83
d82fbb7c5ecaed601c4c6c927150531d6bb4e793
4a9731627b28cc01d199f0362ad58487eb7391f26d348c0454ec96f32004f78e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b3b2c7f77d21f4f3c942fb3357e9fa83
d82fbb7c5ecaed601c4c6c927150531d6bb4e793
4a9731627b28cc01d199f0362ad58487eb7391f26d348c0454ec96f32004f78e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
capi-tier-2-us-east-2.connatix.com/tr/sr?v=203226&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
200 OK 20 B URL HTTP/1.1 capi-tier-2-us-east-2.connatix.com/tr/sr?v=203226&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
IP
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/sr?v=203226&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398 HTTP/1.1
Host: capi-tier-2-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 349
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.tumpik.com
content-encoding: gzip
content-type: application/x-protobuf
date: Tue, 29 Nov 2022 01:18:34 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
s0.2mdn.net/instream/video/client.js
200 OK 17 kB URL HTTP/2 s0.2mdn.net/instream/video/client.js
IP
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Tue, 29 Nov 2022 01:18:34 GMT
expires: Tue, 29 Nov 2022 01:18:34 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b3b2c7f77d21f4f3c942fb3357e9fa83
d82fbb7c5ecaed601c4c6c927150531d6bb4e793
4a9731627b28cc01d199f0362ad58487eb7391f26d348c0454ec96f32004f78e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 455085
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/playlist.m3u8
200 OK 164 B URL HTTP/2 vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/playlist.m3u8
IP
Hash 37fb5423ddcf955b143ff22caebb83a4
4c749402ad6a6f7a49cccbe4177511d0e02489e2
4cbdc1e29c2e154b414c5c63beb27f2f68e2f9100f0cf01f272637c04b2589b4
GET /pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/playlist.m3u8 HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 08:29:59 GMT
etag: "8a966507b13615ecdc1330a4bc9dcfe1"
content-type: application/x-mpegURL
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:34 GMT
age: 47785
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 164
X-Firefox-Spdy: h2
vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.m3u8
200 OK 264 B URL HTTP/2 vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.m3u8
IP
Hash 804ade5e0d710ffb18cb7c1e1879a679
2003990125a13a9dfef71217821d3a6a871ce624
5cef7c0f05ff9dd61f2848f52aac2494e0fe47bafc58f2d9146a31e7c28ef39f
GET /pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.m3u8 HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 08:29:59 GMT
etag: "21f35b321141bc329bf945429119014c"
content-type: application/x-mpegURL
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:34 GMT
age: 47785
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 264
X-Firefox-Spdy: h2
img.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/1_th.jpg?crop=534:300,smart&width=534&height=300&format=jpeg&quality=60&fit=crop
200 OK 486 B URL HTTP/2 img.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/1_th.jpg?crop=534:300,smart&width=534&height=300&format=jpeg&quality=60&fit=crop
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 534x300, components 3\012- data
Hash 348d4328d113ff9249a4dc04b908f8fc
9030d98808248d12e1d7ba199adb431770aada56
3745475c8531d75a606f8528dcf771045498379f40cc4169aa9debb134eb11a6
GET /pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/1_th.jpg?crop=534:300,smart&width=534&height=300&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "88krSWZ4C1y+XzEwP6kc1bpsJ3azE+2wxc0hPRtNZzo"
fastly-io-info: ifsz=21905 idim=2560x1440 ifmt=jpeg ofsz=2037 odim=534x300 ofmt=jpeg
fastly-stats: io=1
fastly-transform-stats: tus=80283 cr=10.75
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:34 GMT
age: 47850
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 486
X-Firefox-Spdy: h2
vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.mp4
200 OK 0 B URL HTTP/2 vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.mp4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.mp4 HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: range
Referer: https://www.tumpik.com/
Origin: https://www.tumpik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
retry-after: 0
access-control-allow-methods: *
access-control-allow-headers: range
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:34 GMT
access-control-max-age: 86400
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
access-control-allow-origin: *
content-length: 0
X-Firefox-Spdy: h2
vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.mp4
206 Partial Content 1.4 kB URL HTTP/2 vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.mp4
IP
File type ISO Media, MP4 Base Media v5 \012- data
Hash 6e0e75a34b00cec51cb2c3bd640ea4cf
c3268ddf57643e82ebb9e0d215912e171acb8520
07f1a06f5f157565cc9a1354ce1aed4cb1c5b4f360741990574a2c93c8caf4b0
GET /pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.mp4 HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Range: bytes=0-1361
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
last-modified: Mon, 07 Feb 2022 08:29:59 GMT
etag: "242fa3ae4722574fb0595ef7a27416aa"
content-type: video/mp4
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:34 GMT
age: 47785
access-control-max-age: 86400
access-control-allow-origin: *
content-range: bytes 0-1361/5048073
content-length: 1362
X-Firefox-Spdy: h2
vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.mp4
206 Partial Content 618 kB URL HTTP/2 vid.connatix.com/pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.mp4
IP
Size 618 kB (618192 bytes)
Hash 8c5ccc006c1b5bf4f2d08eafb66769a9
54de1140ca06b68d830a66ebdad67a816b0f11f2
cc85d2adce49b7e01badbe4e72979e6b2023a011dfae9b3423e263f1677ce3c5
GET /pid-4774eef9-309c-40d8-8dc1-bf70e43e9987/60764267-557e-410f-85cb-f102d92ee134/717038fa-686b-4660-9f31-5196e26540ae/0.mp4 HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Range: bytes=1362-619553
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
last-modified: Mon, 07 Feb 2022 08:29:59 GMT
etag: "242fa3ae4722574fb0595ef7a27416aa"
content-type: video/mp4
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Tue, 29 Nov 2022 01:18:35 GMT
age: 47785
access-control-max-age: 86400
access-control-allow-origin: *
content-range: bytes 1362-619553/5048073
content-length: 618192
X-Firefox-Spdy: h2
capi-tier-2-us-east-2.connatix.com/rtb/g?v=203226&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
200 OK 356 B URL HTTP/1.1 capi-tier-2-us-east-2.connatix.com/rtb/g?v=203226&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398
IP
Hash 50560f25ed42136730fb455089389826
597cd8cb41ff36586f831831570edee7acb49a33
e437e556b4cd86e3ed7389c10c67888780f7cd362f312b3c128813d46e4c09c6
POST /rtb/g?v=203226&cid=ee7ea835-cb32-4f74-a0c0-d0ea2b1e3398 HTTP/1.1
Host: capi-tier-2-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 652
Origin: https://www.tumpik.com
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.tumpik.com
content-encoding: gzip
content-type: application/x-protobuf
date: Tue, 29 Nov 2022 01:18:34 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 356
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 66ff997eedfdadb35b0038c149e93d5f
ade3f7d003336860e7f46fd2b1d1265da7c8a747
54fdfe2323eb82a5ab72f5d9d532815f0614a42b63973e1ff3e358bdc1af67b9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "54FDFE2323EB82A5AB72F5D9D532815F0614A42B63973E1FF3E358BDC1AF67B9"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3042
Expires: Tue, 29 Nov 2022 02:09:17 GMT
Date: Tue, 29 Nov 2022 01:18:35 GMT
Connection: keep-alive
xml.serve-servee.com/thumbnail?i=NGjMXHYYbl4_1&imgt=icon
302 Found 0 B URL HTTP/2 xml.serve-servee.com/thumbnail?i=NGjMXHYYbl4_1&imgt=icon
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /thumbnail?i=NGjMXHYYbl4_1&imgt=icon HTTP/1.1
Host: xml.serve-servee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 29 Nov 2022 01:18:36 GMT
content-length: 0
location: https://static.serve-servee.com/n337/ad/192x192_duwWEKdQ4PMk0stZ69y8.png
cache-control: no-store
age: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UTJcdI%2BSbERTBGKQrpDoW%2FrCoR76kQBUAgLsaO%2BWJcwbTYmhcHx1Pn5UaqVMjvXd76rxLkYHZ3CXgY2Nerrzascle6RwFqybyXF5CSmlt1I%2BwiBHR4TNlHw27B5Gg4hbdMOCw5wlqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771782a27e9472d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.serve-servee.com/n337/ad/192x192_duwWEKdQ4PMk0stZ69y8.png
200 OK 1.1 kB URL HTTP/2 static.serve-servee.com/n337/ad/192x192_duwWEKdQ4PMk0stZ69y8.png
IP
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash 4fa2beaeca8f598401f3ec6300cb860b
45634806ea1fa936c0e600b8b22f835600529b36
ef897a0bab353d84bf69ae3570347dea36236575a7b1bbd5992b8f256f856577
GET /n337/ad/192x192_duwWEKdQ4PMk0stZ69y8.png HTTP/1.1
Host: static.serve-servee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:36 GMT
content-type: image/png
content-length: 1112
last-modified: Fri, 24 Apr 2020 13:59:43 GMT
accept-ranges: bytes
etag: "5ea2f0cf-458"
cache-control: max-age=86400
x-hw: 1669684716.cds246.lo4.h2,1669684716.cds216.lo4.c
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qug8h%2FMGdjpM13eGUPUm%2BitgxK8cCHyJASSHJTR03c59tsKtlSaWQbboJkVSH8YAegOSXle%2BL6fkPY6TL077rFPi9goPXWy2Q4ogMk08raM8mDFJLCkTBO1TaExqhmXSf5iVWWAtxa6fKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771782a33ee772d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 66ff997eedfdadb35b0038c149e93d5f
ade3f7d003336860e7f46fd2b1d1265da7c8a747
54fdfe2323eb82a5ab72f5d9d532815f0614a42b63973e1ff3e358bdc1af67b9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "54FDFE2323EB82A5AB72F5D9D532815F0614A42B63973E1FF3E358BDC1AF67B9"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3041
Expires: Tue, 29 Nov 2022 02:09:17 GMT
Date: Tue, 29 Nov 2022 01:18:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 415b1b1d5a29fc17b4114bb3df1d1c22
600859401c885cc2cdd1f199cccc198eb41d6a04
abfbf4ecf2423736a29686859f6a8f2b77204b48f3f60d208f6d491e80611e7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7549
x-amzn-requestid: bb37235a-8c7d-47fe-abb6-6cc633560165
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP-7lHmsoAMF9lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638311e3-1f2a4abc40119f3e026dc393;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:29:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -aUqAfyrtMO0hkr2J2lm5SNNFdtaJj-F2dpBULvXjfOV205Ksm0iHw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:42:03 GMT
age: 12997
etag: "600859401c885cc2cdd1f199cccc198eb41d6a04"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
200 OK 0 B IP
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tumpik.com/
Origin: https://www.tumpik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:33 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://www.tumpik.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 1731
last-modified: Tue, 29 Nov 2022 00:49:42 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r93H0GekEs0aEnfYlRLnTWDSfuAjSQYdgXJyOT3AlyUT%2FLjlsdpFIPPSE84w%2FVSPIfRRbtNKTYjH14uWnUV0rdwKhPxWCum%2Frz%2Bdlb4NduFFW%2FMHLi2c%2Fa9hcy70ntun"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771782911839067e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pogothere.xyz/
200 OK 0 B IP
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tumpik.com/
Origin: https://www.tumpik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:33 GMT
content-type: text/plain
set-cookie: csu=674012102463322@1@1669684713; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://www.tumpik.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U%2BeoQZlGCkjo5JgYADaLj6Ecx3GTl99lH2b9iuTjtPuwpjyVGNeJ2O7L4Pki5Zs%2ByRUvGB7%2Fu1%2FrySVNRgVynbXebbfHHs1ll3O%2F90VHJmHQGgRrNAD3lmLsoN0Opva0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771782911840067e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.tumpik.com/static/img/favicon.ico
200 OK 0 B URL HTTP/2 www.tumpik.com/static/img/favicon.ico
IP
GET /static/img/favicon.ico HTTP/1.1
Host: www.tumpik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:32 GMT
content-type: image/x-icon
last-modified: Sat, 12 Nov 2022 20:26:20 GMT
etag: W/"6370016c-10be"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1444
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NmJNwFD7g5%2B1bSE5OXy0%2FsSurgka5DSxVzVmDyEv9zWuWDhpsPNMPv6Ch%2BkdbLZXSBvJSHoRBxkjKwZ2VSiu4LQLO%2BcMQn7%2Ffv4bk%2FfajFrKVvM18LxBAYueTZzPNMxU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7717828cca39b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?dsh=S-469472269%3A1669684713083909&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=ARgdvAsvPWASrlKpz_x-bpFASJ-NH3Je1NHvsTeICBjbbhDRIYAQHqaGP9YmPQMn5VdG15QpDP9j
403 Forbidden 0 B URL HTTP/2 accounts.google.com/v3/signin/identifier?dsh=S-469472269%3A1669684713083909&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=ARgdvAsvPWASrlKpz_x-bpFASJ-NH3Je1NHvsTeICBjbbhDRIYAQHqaGP9YmPQMn5VdG15QpDP9j
IP
GET /v3/signin/identifier?dsh=S-469472269%3A1669684713083909&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=ARgdvAsvPWASrlKpz_x-bpFASJ-NH3Je1NHvsTeICBjbbhDRIYAQHqaGP9YmPQMn5VdG15QpDP9j HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tumpik.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 29 Nov 2022 01:18:33 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-RuzI7OdzHCG5LUMGN-TkCg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.tumpik.com/static/js/notes.js?v=1667307905984
200 OK 0 B URL HTTP/2 www.tumpik.com/static/js/notes.js?v=1667307905984
IP
GET /static/js/notes.js?v=1667307905984 HTTP/1.1
Host: www.tumpik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:31 GMT
content-type: application/javascript
last-modified: Sat, 12 Nov 2022 20:26:08 GMT
etag: W/"63700160-220"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2378
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qx6DxEAuEo2r4viR2ewfHB8E7%2Bot3l3iPrim6J58ozSZ%2FkqqTlWSLgE%2F4kpGIBGkiHj6QryhSrHLYMKac%2FkJ2czLBNdh08FCZyx9Ub8OmU%2BZCIpHSOWkCobuKYFVSSec"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7717828998c7b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
ksehinkitw.hair/dkhJY3QtanFXQkF5eUFYVGplQRdOeCoHTBcuZFtDRnBkV0BEeGRbQ0crZFpFTn94WkRDen8CRlRka1tBR34rVUcTZSwHFkZlfVASQmUoVBYTZXFXF0YufwdGQn0qW1ZaajoUVlpqIhARHiEnCB0CP2cLFR86a09WR3hnVlZaLigPBxNkLwIYBS1lBRUaOyw%2B
200 OK 0 B URL HTTP/2 ksehinkitw.hair/dkhJY3QtanFXQkF5eUFYVGplQRdOeCoHTBcuZFtDRnBkV0BEeGRbQ0crZFpFTn94WkRDen8CRlRka1tBR34rVUcTZSwHFkZlfVASQmUoVBYTZXFXF0YufwdGQn0qW1ZaajoUVlpqIhARHiEnCB0CP2cLFR86a09WR3hnVlZaLigPBxNkLwIYBS1lBRUaOyw%2B
IP
GET /dkhJY3QtanFXQkF5eUFYVGplQRdOeCoHTBcuZFtDRnBkV0BEeGRbQ0crZFpFTn94WkRDen8CRlRka1tBR34rVUcTZSwHFkZlfVASQmUoVBYTZXFXF0YufwdGQn0qW1ZaajoUVlpqIhARHiEnCB0CP2cLFR86a09WR3hnVlZaLigPBxNkLwIYBS1lBRUaOyw%2B HTTP/1.1
Host: ksehinkitw.hair
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: cd4ec1bd51f85b8f2e78141040d51692=1; Max-Age=604800
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With,content-type
cache-control: public, max-age=86400
etag: W/"8445-ThtSC+SGvcgm/zeEmusH48ZUiGA"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.tumpik.com/sw.js
200 OK 0 B IP
Analyzer Verdict Alert fortinet Malware
GET /sw.js HTTP/1.1
Host: www.tumpik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:31 GMT
content-type: application/javascript
last-modified: Sat, 12 Nov 2022 20:26:14 GMT
etag: W/"63700166-1927c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2378
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8OAViQ5Y8x9z9mS8bj9FbxXFwTvJgGuSnPnD4OBYyPi6hdw2d6KYCctAe7%2B191qS6jqt0EKaSa7ZUmD80%2B0unADIGpDZgw%2BxvcMA%2BCjPaBKtcyhu23B6qT5%2BHE2631wD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77178289a8d6b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
200 OK 0 B URL HTTP/2 www.tumpik.com/tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh
IP
GET /tag/hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh HTTP/1.1
Host: www.tumpik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:31 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=643U1xfD5NPO9qY7X5f2koqFsYaKdrbtLHiwvPsrE5aae9i1pljoMIuwVigSyu0MGZupe8dvTldXYD0G584DByjI2xfWSzbi1kpn1Eu2oMfqSZgU%2FDm6GR%2BZtcFfgyO7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771782869eefb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
200 OK 0 B URL HTTP/2 www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
IP
GET /login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tumpik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
vary: Sec-Fetch-Site, Sec-Fetch-Mode, Accept-Encoding
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: Mst40UEEgCPhV86tP0r9uQY2OKVeMw9wbPu3BjfjHEMnc2yji/OosUtTbpIoo2UyiVxcH2onaPl+Cc+9c0Np5A==
date: Tue, 29 Nov 2022 01:18:33 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
200 OK 0 B IP
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tumpik.com/
Origin: https://www.tumpik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 29 Nov 2022 01:18:33 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://www.tumpik.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 1731
last-modified: Tue, 29 Nov 2022 00:49:42 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VwaDNa%2FmjsUtb9fYllLTNYq9o1R9ODXWCeWow%2BKpydw%2FfuR0L1GfQLVQf3mTJP1%2Fbeqod7ej4w5A5o%2F0oQol9E6V0GX7SSK9fs0OLCz8PVqwK3eeAvkByBlLLyWDlj%2B9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77178291183c067e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
104.26.0.178
23.38.200.123
151.101.86.137
104.17.25.14
93.184.220.29