r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11865
Expires: Thu, 09 Feb 2023 01:40:44 GMT
Date: Wed, 08 Feb 2023 22:22:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10760
Expires: Thu, 09 Feb 2023 01:22:19 GMT
Date: Wed, 08 Feb 2023 22:22:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 21:34:13 GMT
content-type: application/json
age: 2926
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5680
Expires: Wed, 08 Feb 2023 23:57:39 GMT
Date: Wed, 08 Feb 2023 22:22:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yHirCzDNevTsxCw9MuBSCqG0p9uqtF0TwywwakYqsOpkpXgTZqa8ktmkmgDFuEq4mNLfXZBV5rY=
x-amz-request-id: 2KDPBNEGR57EJ1TJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 21:46:07 GMT
age: 2212
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:22:59 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
vqdm.fanbox.cc/
210.140.92.193301 Moved Permanently 162 B IP 210.140.92.193:0
ASN #4694 IDC Frontier Inc.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: vqdm.fanbox.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 08 Feb 2023 22:23:00 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://vqdm.fanbox.cc/
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 21:51:20 GMT
age: 1900
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11163
Expires: Thu, 09 Feb 2023 01:29:03 GMT
Date: Wed, 08 Feb 2023 22:23:00 GMT
Connection: keep-alive
push.services.mozilla.com/
54.187.71.119101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.71.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: K+T6m9zhgbeMtiQeGTkvKA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YK5PQowFD5WQ+WgkAMMm6HVuCbc=
vqdm.fanbox.cc/
210.140.92.193200 OK 1.8 kB IP 210.140.92.193:0
ASN #4694 IDC Frontier Inc.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1919)
Hash e1e12cbfb8109f90f76d60178e6ec155
0ecdd9f3a3b2ae77ab8352a0c82c537b9220a7e0
a1d75633b9ea6549bcd100d93b5b4d16b024c759857fbca97f5196aff46661cc
GET / HTTP/1.1
Host: vqdm.fanbox.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:01 GMT
content-type: text/html; charset=UTF-8
content-length: 1819
x-host-time: 145
content-security-policy: frame-ancestors 'self' https://*.fanbox.cc
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: FANBOXSESSID=q6sfgq5er8b7vo6bo94kr3ge1hp9rvie; expires=Wed, 08-Feb-2023 23:23:01 GMT; Max-Age=3600; path=/; domain=.fanbox.cc; secure; HttpOnly
p_ab_id=8; expires=Mon, 07-Feb-2028 22:23:01 GMT; Max-Age=157680000; path=/; domain=.fanbox.cc; secure
p_ab_id_2=8; expires=Mon, 07-Feb-2028 22:23:01 GMT; Max-Age=157680000; path=/; domain=.fanbox.cc; secure
p_ab_d_id=1304064342; expires=Mon, 07-Feb-2028 22:23:01 GMT; Max-Age=157680000; path=/; domain=.fanbox.cc; secure
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2166
Expires: Wed, 08 Feb 2023 22:59:08 GMT
Date: Wed, 08 Feb 2023 22:23:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2166
Expires: Wed, 08 Feb 2023 22:59:08 GMT
Date: Wed, 08 Feb 2023 22:23:02 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b327816bc2c6fd7291c75c693685d54
771070be61d0724b1c90ca86ea34c804bd7e501a
d45188239cacc7b228bc75ccc95afb48914aaa434c418cd5b786533e8b9cb983
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6838
x-amzn-requestid: 54fc5ae9-d37a-46cf-97e0-d05de1417cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7QEsCoAMFY1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-40de6212468fcd0e78a93708;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KUNhk8O0jpb6OyjCo5RGruuV5633xiM-PBeb6c0BaJI8uFQ7Aflj2g==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:53:58 GMT
age: 1744
etag: "771070be61d0724b1c90ca86ea34c804bd7e501a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2166
Expires: Wed, 08 Feb 2023 22:59:08 GMT
Date: Wed, 08 Feb 2023 22:23:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb0e725719ac378134b01b6473a6581
a8a1780c88e8ae219048bed28ecfbd8019d9af35
187d4e83edc0af857334f84bd6853234193d4654d06c43367f39b4e125defe08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6679
x-amzn-requestid: 97c19ad5-c127-4dc1-b529-1eca84645316
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f59MzHgloAMFwow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a8b8-79d6b8d31b69153d4929b7b7;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:14:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x_tr-xummuF51PvAM4y3DgvLWuJOwxgquKO8baQfcoN6ta5M3ll7ug==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 06:25:01 GMT
age: 57481
etag: "a8a1780c88e8ae219048bed28ecfbd8019d9af35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f31c82179856e39ee5fc43d7f0b685
5b37f807a19ffc80c0b9334e6d24d5bb717496ce
c099c91c6f2125a8a89ee6e9dc0e37e2c2c9914adadb2c8b77795063baa62037
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6805
x-amzn-requestid: 9f067f0c-2991-41ae-8dd0-5719a5438abc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PHwEn4IAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c564-730d01807c13643373d64897;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: eSU1CSydRTodwnN5DNTXbYD3d3kYFCHiCvPRq5DZTTDSTH2L-GV_1g==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 22:19:19 GMT
age: 223
etag: "5b37f807a19ffc80c0b9334e6d24d5bb717496ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed10868ea9554510e43f77dfb8c43877
df0d86c2c53bdec7b8935912e42dc7f82f87aa61
751e95e7dd20802cc4e0b6f208bf5559b0b73efd3ca22a9abafd86cf83ab6420
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12401
x-amzn-requestid: 7bfa8a84-c348-4f55-8e8e-befcdd24f026
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjPG-eIAMFccA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47a-06eedb3c7396825f77360755;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lXTMw2s8GxQtwjucvNYZeHL-i8ECHbdGThUV5_vn2mKEhArswcO3VA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:43:09 GMT
age: 2393
etag: "df0d86c2c53bdec7b8935912e42dc7f82f87aa61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8a3fa4f1ec82d501942f9db3de2cb7d
b91c2aea7f2fb26131c8929b254c5596a1bb25ff
9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkbHfDIAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: iIQAy6CQSvnvQ79UJ6ifJbs-0kEqUYe8OyCqPb2HSKxoDoLykOyaLg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:43:28 GMT
age: 2374
etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa6c416b3a87ded887c9dcf7c51e5dd0
45f4ef9e68591c00669043abe96959bead8f17ae
9e10394b387916e40c44d4e02fbc1ea72214d870df189ce16d24015de00682bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11205
x-amzn-requestid: abdf9c40-a2b7-49ae-bea1-ff5abfcea781
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvszZFOZoAMFkNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc8e7b-6e508da05ff6f33e691de130;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 04:33:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hLrbI5Acy2RBlg7VqGE2b83zuqgt-bx0kD0nlH8uYaJ8tii2FqMLfw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 14:35:48 GMT
age: 28034
etag: "45f4ef9e68591c00669043abe96959bead8f17ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-1830249-145
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-1830249-145
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 43d35b3b6b408691dfb3c4b844784d24
9f073bbf002c737c30f60775b6cf63b7ad072dd6
8319a1761be90068e1d68690960ba7c29c87a2fb2e73eaab338d4555584e69e1
GET /gtag/js?id=UA-1830249-145 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 Feb 2023 22:23:02 GMT
expires: Wed, 08 Feb 2023 22:23:02 GMT
cache-control: private, max-age=900
last-modified: Wed, 08 Feb 2023 22:05:14 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44085
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-PBWZ82P
142.250.74.168200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PBWZ82P
IP 142.250.74.168:0
File type ASCII text, with very long lines (11521)
Hash 6f4b61be58a820982056e21677d033b1
959948d89fcb56841c0513bf5fe4432b265895c4
f8293d0c9754753e680945b6ce0cfe936bf5a644a6dea26cc48b8d21a8a6fead
GET /gtm.js?id=GTM-PBWZ82P HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 Feb 2023 22:23:02 GMT
expires: Wed, 08 Feb 2023 22:23:02 GMT
cache-control: private, max-age=900
last-modified: Wed, 08 Feb 2023 22:05:14 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78075
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash e4c6ed068f8de87134d95d905956311f
a24058b6c1dea3f6ad6e432b9d7f62b362b62325
337d81f51816819e83ecec56032caa5c410b311e014673b9dad2edbb347be6df
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 22:23:02 GMT
Last-Modified: Wed, 08 Feb 2023 21:51:52 GMT
Server: ECS (dcb/7ECA)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: __b_h7_oz5NQmfbjdrUnavyS8_344vLOoQH6MNvlWV8YgBVrc8w7PA==
Age: 1870
s.pximg.net/www/js/fanbox/fanbox.5bd0246d2d7aec9c9238.css
210.140.92.144200 OK 810 B URL HTTP/2 s.pximg.net/www/js/fanbox/fanbox.5bd0246d2d7aec9c9238.css
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
File type ASCII text, with very long lines (1843)
Hash bc2186caa0c87f73f12d7cefc69faa60
e861704f4b5592d719aae19867a6331ef442842f
643fbd8e92a2764fb147a8f0a9401213f6be8982cc85ceae23545964eda95488
GET /www/js/fanbox/fanbox.5bd0246d2d7aec9c9238.css HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vqdm.fanbox.cc
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:02 GMT
content-type: text/css
content-length: 810
vary: Accept-Encoding
last-modified: Fri, 13 Jan 2023 05:13:15 GMT
content-encoding: gzip
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
expires: Tue, 14 Feb 2023 03:22:12 GMT
cache-control: max-age=2592000
X-Firefox-Spdy: h2
s.pximg.net/www/fanbox/check_is_browser.js
210.140.92.144200 OK 77 B URL HTTP/2 s.pximg.net/www/fanbox/check_is_browser.js
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
Hash 20bb1bb14de079cf641dd4b620aacd51
2de89adad5054f67e165421d38ad45f3c7ddbae6
394f51bf73f496377e5f938f509201659985cd8bc6c56ea08fe29b2511857932
GET /www/fanbox/check_is_browser.js HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:03 GMT
content-type: application/javascript
content-length: 77
last-modified: Thu, 27 Oct 2022 13:00:00 GMT
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
expires: Tue, 28 Feb 2023 02:36:57 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
s.pximg.net/www/js/fanbox/runtime.b42480125d282cbf8303.js
210.140.92.144200 OK 5.5 kB URL HTTP/2 s.pximg.net/www/js/fanbox/runtime.b42480125d282cbf8303.js
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
File type ASCII text, with very long lines (9516), with no line terminators
Hash 2eb313100c9534ed43037eb97cd25522
624aa664b8efae701de42c9dfa1feabc2ddcb7b9
675c54ce193212c2c525902e07d9bddfe0f3dab00a398988c5ebab41801f6ee7
GET /www/js/fanbox/runtime.b42480125d282cbf8303.js HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vqdm.fanbox.cc
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:03 GMT
content-type: application/javascript
content-length: 5508
vary: Accept-Encoding
last-modified: Mon, 06 Feb 2023 10:07:03 GMT
content-encoding: gzip
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
expires: Wed, 08 Mar 2023 10:08:24 GMT
cache-control: max-age=2592000
X-Firefox-Spdy: h2
www.fanbox.cc/proxy_storage
210.140.92.193200 OK 364 B URL HTTP/2 www.fanbox.cc/proxy_storage
IP 210.140.92.193:0
ASN #4694 IDC Frontier Inc.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (302)
Hash a24e42391da511b0c5f21875d4e4399c
fed5e2e7999eab6e36185f28e64ecd7da73a1091
e4ebda78c4fe68bed0f49123d80448c4c5fb29ad70b923a8e75219d62dc097fe
GET /proxy_storage HTTP/1.1
Host: www.fanbox.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Cookie: FANBOXSESSID=q6sfgq5er8b7vo6bo94kr3ge1hp9rvie; p_ab_id=8; p_ab_id_2=8; p_ab_d_id=1304064342; _gcl_au=1.1.428728621.1675895039
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:03 GMT
content-type: text/html; charset=UTF-8
content-length: 364
x-host-time: 145
content-security-policy: frame-ancestors 'self' https://*.fanbox.cc
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
s.pximg.net/www/js/fanbox/fanbox.230e2529ef5c2a264ac2.js
210.140.92.144200 OK 1.0 MB URL HTTP/2 s.pximg.net/www/js/fanbox/fanbox.230e2529ef5c2a264ac2.js
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.0 MB (1011937 bytes)
Hash e69199524ade70bfa2a7e09a5a138dcc
2e97d9ffda51136f4d4bf54cc4eaf76cc9f7ec20
8bcd402beca7d9878f94b00b9f2c841e7c164f5c4e6e360192d8c8badd461fcb
GET /www/js/fanbox/fanbox.230e2529ef5c2a264ac2.js HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vqdm.fanbox.cc
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:03 GMT
content-type: application/javascript
content-length: 1011937
vary: Accept-Encoding
last-modified: Wed, 08 Feb 2023 01:32:46 GMT
content-encoding: gzip
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
expires: Fri, 10 Mar 2023 01:35:47 GMT
cache-control: max-age=2592000
X-Firefox-Spdy: h2
s.pximg.net/www/js/fanbox/proxyStorage.14bd117bcb37f32efe60.js
210.140.92.144200 OK 1.5 kB URL HTTP/2 s.pximg.net/www/js/fanbox/proxyStorage.14bd117bcb37f32efe60.js
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
File type ASCII text, with very long lines (4121), with no line terminators
Hash 727726f3c065d547f2e0e74b855187c6
61bdf5d283c83018fa21c10c6257912c0be28a26
931c99459ebc6903b7af275e846fbb5ee7e2e1bcad307f363012049cf2892c9a
GET /www/js/fanbox/proxyStorage.14bd117bcb37f32efe60.js HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fanbox.cc
Connection: keep-alive
Referer: https://www.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:04 GMT
content-type: application/javascript
content-length: 1461
vary: Accept-Encoding
last-modified: Thu, 12 Jan 2023 04:32:07 GMT
content-encoding: gzip
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
expires: Sat, 11 Feb 2023 04:34:13 GMT
cache-control: max-age=2592000
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 28 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash 8aa708f5eebf10bd82e942dabf1623a5
326a6d469222302a80ecf29039e7837d8870ee47
fcfdc2930fdd7f4b3c7f0c1308ce2e89fcc5082ae6a0a1e16ecf0f7e417f1368
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 200
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Wed, 08 Feb 2023 22:23:05 GMT
Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F6FD)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 27630
www.google-analytics.com/analytics.js
142.250.74.78200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 08 Feb 2023 21:45:20 GMT
expires: Wed, 08 Feb 2023 23:45:20 GMT
cache-control: public, max-age=7200
age: 2265
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Wed, 08 Feb 2023 22:23:05 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1639-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 84889b914548f7820766f27a40699cfa
bc674cdb5819759b5ecd5aabfde47f56127f5d89
e2a69fe4edd028d00a8a744b62ef51dada2aff144da0cd9813efc887a11f70a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/647763926/?random=1675895039897&cv=11&fst=1675895039897&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&auid=428728621.1675895039&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.211.2200 OK 881 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/647763926/?random=1675895039897&cv=11&fst=1675895039897&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&auid=428728621.1675895039&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.211.2:0
File type ASCII text, with very long lines (1847), with no line terminators
Hash ef8548486f35c04543d4d837d5ee8fe9
f273ff30d3c6a6b4a8503e15d5f55f2391d0c069
cb71361d9b4750cf98cc608a13d31a6d350ab5af44d62f3b713777ab4d445a54
GET /pagead/viewthroughconversion/647763926/?random=1675895039897&cv=11&fst=1675895039897&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&auid=428728621.1675895039&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 22:23:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 881
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 08-Feb-2023 22:38:05 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fvqdm.fanbox.cc
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fvqdm.fanbox.cc
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166)
Size 105 kB (105435 bytes)
Hash 58f06e7d628e7e207cad8e48c9cc76be
9042f057d52be00c9535ce93b0ce4c03707e0c41
ea6c34f2e7acfea93ba722fe283f2704392dc518c9a0d1eeca0ba03a0b63d789
GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fvqdm.fanbox.cc HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1298390
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 08 Feb 2023 22:23:05 GMT
Etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105435
www.google.com/pagead/1p-conversion/647763926/?random=1675895038583&cv=11&fst=1675895038583&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=428728621.1675895039&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
216.58.211.4302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/647763926/?random=1675895038583&cv=11&fst=1675895038583&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=428728621.1675895039&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 216.58.211.4:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/647763926/?random=1675895038583&cv=11&fst=1675895038583&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=428728621.1675895039&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 22:23:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/647763926/?random=1675895038583&cv=11&fst=1675895038583&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=428728621.1675895039&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=302278184&t=event&ni=0&_s=1&dl=https%3A%2F%2Fvqdm.fanbox.cc%2F&ul=en-us&de=UTF-8&dt=vqdm%EF%BD%9CpixivFANBOX&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=renewal_creator&ea=view&el=https%3A%2F%2Fvqdm.fanbox.cc%2F&_u=YEDAAUABAAAAACAAI~&jid=1070911343&gjid=425860609&cid=1344199100.1675895042&tid=UA-1830249-145&_gid=860999414.1675895042&_r=1&_slc=1>m=45He3260n81PBWZ82P&z=477364588
142.250.74.78200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=302278184&t=event&ni=0&_s=1&dl=https%3A%2F%2Fvqdm.fanbox.cc%2F&ul=en-us&de=UTF-8&dt=vqdm%EF%BD%9CpixivFANBOX&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=renewal_creator&ea=view&el=https%3A%2F%2Fvqdm.fanbox.cc%2F&_u=YEDAAUABAAAAACAAI~&jid=1070911343&gjid=425860609&cid=1344199100.1675895042&tid=UA-1830249-145&_gid=860999414.1675895042&_r=1&_slc=1>m=45He3260n81PBWZ82P&z=477364588
IP 142.250.74.78:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=302278184&t=event&ni=0&_s=1&dl=https%3A%2F%2Fvqdm.fanbox.cc%2F&ul=en-us&de=UTF-8&dt=vqdm%EF%BD%9CpixivFANBOX&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=renewal_creator&ea=view&el=https%3A%2F%2Fvqdm.fanbox.cc%2F&_u=YEDAAUABAAAAACAAI~&jid=1070911343&gjid=425860609&cid=1344199100.1675895042&tid=UA-1830249-145&_gid=860999414.1675895042&_r=1&_slc=1>m=45He3260n81PBWZ82P&z=477364588 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://vqdm.fanbox.cc
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://vqdm.fanbox.cc
date: Wed, 08 Feb 2023 22:23:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/647763926/?random=1675895038583&cv=11&fst=1675895038583&fmt=3&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=428728621.1675895039&gcp=1&ct_cookie_present=1
216.58.211.2200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/647763926/?random=1675895038583&cv=11&fst=1675895038583&fmt=3&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=428728621.1675895039&gcp=1&ct_cookie_present=1
IP 216.58.211.2:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/647763926/?random=1675895038583&cv=11&fst=1675895038583&fmt=3&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=428728621.1675895039&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 22:23:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 08-Feb-2023 22:38:05 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 44fc0cb48c26edb9ce36736707b9182a
62de7faa3e8171c0d38a2e03a604d2545a3ede7f
9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.pximg.net/common/images/fanbox/apple-touch-icon.png
210.140.92.144200 OK 5.3 kB URL HTTP/2 s.pximg.net/common/images/fanbox/apple-touch-icon.png
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash 31633168007b2cf4ee1ec01a58465909
d543102c4909cdfa1b9dcfa7d8072ad2acb79c00
5f682b9d59cb8f4abdee11cd0203cf8aeeb05cd89b0bcb488bea0a3c413f8fb7
GET /common/images/fanbox/apple-touch-icon.png HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:05 GMT
content-type: image/png
content-length: 5331
last-modified: Thu, 27 Oct 2022 12:59:55 GMT
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
expires: Mon, 20 Feb 2023 04:54:49 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 95f22cea28b365d065146cada7997b79
f4c88642b87a9eef941557c8f26b5164d53b1ded
6b05e7263cc7464c01fcd999ba3a3ba8af2578330a00ef0371a64689be836054
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3521
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:05 GMT
Last-Modified: Wed, 08 Feb 2023 21:24:24 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 41fa56e7b4965b20ca4626ff5c1281e0
822166137843a5ced855905f312aa72b531cf9f8
54e910576b41dd6e0837aa9dd3c86910ddfa82e4077075c028a5e8b759b5bece
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4359
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:06 GMT
Last-Modified: Wed, 08 Feb 2023 21:10:27 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
t.co/i/adsct?bci=3&eci=2&event_id=da1b1b88-fe25-4fdf-9cfb-441c5b7c880c&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=41e6f650-4b52-482e-88f7-336e769b857e&tw_document_href=https%3A%2F%2Fvqdm.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29
104.244.42.197200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=da1b1b88-fe25-4fdf-9cfb-441c5b7c880c&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=41e6f650-4b52-482e-88f7-336e769b857e&tw_document_href=https%3A%2F%2Fvqdm.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29
IP 104.244.42.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=da1b1b88-fe25-4fdf-9cfb-441c5b7c880c&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=41e6f650-4b52-482e-88f7-336e769b857e&tw_document_href=https%3A%2F%2Fvqdm.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 22:23:05 GMT
perf: 7626143928
server: tsa_f
set-cookie: muc_ads=0fe4cbe2-5240-40e4-9961-e2f792030e8f; Max-Age=63072000; Expires=Fri, 07 Feb 2025 22:23:06 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: ab40647c0f920745
strict-transport-security: max-age=0
x-response-time: 104
x-connection-hash: 68598db8c9c755c8e66afae2828af688b213c9e3e302ee0c0114afcab63ccc03
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.pximg.net/www/js/fanbox/268.7cef55d5dc8deef37837.js
210.140.92.144200 OK 21 kB URL HTTP/2 s.pximg.net/www/js/fanbox/268.7cef55d5dc8deef37837.js
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
File type Unicode text, UTF-8 text, with very long lines (60774), with no line terminators
Hash 68007f633ba7ae5dc3964e63f949b4b1
ec9628cdc3a35b50b3c2b869bf66ee62ccea864c
dab6197dd2d8ccff759de1986ec2ac0e908d9377428e7d4bf93e44bd9a63a089
GET /www/js/fanbox/268.7cef55d5dc8deef37837.js HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vqdm.fanbox.cc
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:05 GMT
content-type: application/javascript
content-length: 21042
vary: Accept-Encoding
last-modified: Wed, 25 Jan 2023 03:07:44 GMT
content-encoding: gzip
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
expires: Fri, 24 Feb 2023 04:05:46 GMT
cache-control: max-age=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/647763926/?random=1675895039897&cv=11&fst=1675893600000&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=826370214&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/647763926/?random=1675895039897&cv=11&fst=1675893600000&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=826370214&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/647763926/?random=1675895039897&cv=11&fst=1675893600000&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=826370214&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 22:23:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=ccc3c6c290d851f7f17dd16a664a0c0984171292
104.244.42.72200 OK 326 B URL HTTP/2 syndication.twitter.com/settings?session_id=ccc3c6c290d851f7f17dd16a664a0c0984171292
IP 104.244.42.72:0
File type JSON data\012- , ASCII text, with very long lines (919), with no line terminators
Hash 11f6a2d6bb52340b52d53f9cf72973e8
ea0c3e5d850a2659b3344d84957b691a6f7942b8
a0b2545f4adeaf91f7a23b95f43c682557bdfd1e59d2cf394d10a01f97c886ff
GET /settings?session_id=ccc3c6c290d851f7f17dd16a664a0c0984171292 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 22:23:05 GMT
perf: 7626143928
vary: Origin
server: tsa_f
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Wed, 08 Feb 2023 22:23:06 GMT
content-length: 326
content-encoding: gzip
x-transaction-id: 0288634a6e0af92d
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 105
x-connection-hash: 25bbb8c27b44cc607a0f5d080ba3d0ad0963b15dfafb3c955fa0e9814fd316ff
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/647763926/?random=1675895038583&cv=11&fst=1675895038583&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=428728621.1675895039&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
142.250.74.67200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/647763926/?random=1675895038583&cv=11&fst=1675895038583&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=428728621.1675895039&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP 142.250.74.67:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/647763926/?random=1675895038583&cv=11&fst=1675895038583&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=Rno-CI20qM4BENav8LQC&hn=www.google.com&frm=0&url=https%3A%2F%2Fvqdm.fanbox.cc%2F&tiba=vqdm%EF%BD%9CpixivFANBOX&value=0&bttype=purchase&auid=428728621.1675895039&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vqdm.fanbox.cc/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 22:23:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-1830249-145&cid=1344199100.1675895042&jid=1070911343&gjid=425860609&_gid=860999414.1675895042&_u=YEDAAUAAAAAAACAAI~&z=801632090
64.233.162.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-1830249-145&cid=1344199100.1675895042&jid=1070911343&gjid=425860609&_gid=860999414.1675895042&_u=YEDAAUAAAAAAACAAI~&z=801632090
IP 64.233.162.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-1830249-145&cid=1344199100.1675895042&jid=1070911343&gjid=425860609&_gid=860999414.1675895042&_u=YEDAAUAAAAAAACAAI~&z=801632090 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://vqdm.fanbox.cc
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://vqdm.fanbox.cc
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 08 Feb 2023 22:23:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 697f282d6c04c590f2e61b17e4399b2d
f05454ed45cc26d8d0e255d0ec9b89ba2a648ad3
1101372271b8b5f67e26e5d152cd097c98f6c5476389817d5f40166b7cd73909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4966
Cache-Control: max-age=102994
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:06 GMT
Etag: "63e2fcb7-1d7"
Expires: Fri, 10 Feb 2023 02:59:40 GMT
Last-Modified: Wed, 08 Feb 2023 01:36:55 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
s.pximg.net/common/images/fanbox/favicon.ico
210.140.92.144200 OK 15 kB URL HTTP/2 s.pximg.net/common/images/fanbox/favicon.ico
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 339de3a9888134e04782a73a260c12df
b2292d74f3f2cf42357a27976ddb3ac7eae9ea1a
9a48eeff66ada0f1cc093fb6e938a7567df571a03f4ac9fb21ee844db452b4e9
GET /common/images/fanbox/favicon.ico HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:05 GMT
content-type: image/x-icon
content-length: 15086
last-modified: Thu, 27 Oct 2022 12:59:55 GMT
x-content-type-options: nosniff
expires: Tue, 28 Feb 2023 02:37:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 22:23:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=da1b1b88-fe25-4fdf-9cfb-441c5b7c880c&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=41e6f650-4b52-482e-88f7-336e769b857e&tw_document_href=https%3A%2F%2Fvqdm.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29
104.244.42.3200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=da1b1b88-fe25-4fdf-9cfb-441c5b7c880c&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=41e6f650-4b52-482e-88f7-336e769b857e&tw_document_href=https%3A%2F%2Fvqdm.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29
IP 104.244.42.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=da1b1b88-fe25-4fdf-9cfb-441c5b7c880c&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=41e6f650-4b52-482e-88f7-336e769b857e&tw_document_href=https%3A%2F%2Fvqdm.fanbox.cc%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3lx2&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 22:23:06 GMT
perf: 7626143928
server: tsa_f
set-cookie: personalization_id="v1_fJtpGZhVJ3Ov7P1AijE7GA=="; Max-Age=63072000; Expires=Fri, 07 Feb 2025 22:23:06 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: fdd6ce0cbbfb265c
strict-transport-security: max-age=631138519
x-response-time: 105
x-connection-hash: 2b3f1279e716dccaa8607d496d5c5c0651c0c4b571a9d92761b54bd18255c2a6
X-Firefox-Spdy: h2
s.pximg.net/www/js/fanbox/8068a01f50b06fc3cde7c98141bfa428.svg
210.140.92.144200 OK 920 B URL HTTP/2 s.pximg.net/www/js/fanbox/8068a01f50b06fc3cde7c98141bfa428.svg
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1871), with no line terminators
Hash bebb5fe78eb6eda6cdb3cc77ed7abfa8
1adec204d442b70beb227be5594a37e0731c95ce
7b30df696f1149965b366143a79fdc89027f83119258298cc7fa7f1f9e5b9423
GET /www/js/fanbox/8068a01f50b06fc3cde7c98141bfa428.svg HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:06 GMT
content-type: image/svg+xml
content-length: 920
vary: Accept-Encoding
last-modified: Fri, 20 Jan 2023 07:04:59 GMT
content-encoding: gzip
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
expires: Mon, 20 Feb 2023 04:56:45 GMT
cache-control: max-age=2592000
X-Firefox-Spdy: h2
s.pximg.net/www/js/fanbox/67832a214aece5a8ecd4840472621dd1.svg
210.140.92.144200 OK 546 B URL HTTP/2 s.pximg.net/www/js/fanbox/67832a214aece5a8ecd4840472621dd1.svg
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (546), with no line terminators
Hash 90248bc2cb8989a3d875f5a49128c1d8
3d9407ca34834755a2c42a7981f32ea5afdba64c
616133357c2a0b6b51b97a89b44cc014dd451c773eb2681e42504fb658f2470d
GET /www/js/fanbox/67832a214aece5a8ecd4840472621dd1.svg HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:06 GMT
content-type: image/svg+xml
content-length: 546
last-modified: Thu, 27 Oct 2022 13:00:03 GMT
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
expires: Mon, 20 Feb 2023 04:56:45 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
s.pximg.net/www/js/fanbox/796dbd534e204ca1bb71db31cef97e03.svg
210.140.92.144200 OK 273 B URL HTTP/2 s.pximg.net/www/js/fanbox/796dbd534e204ca1bb71db31cef97e03.svg
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 9c794c9dfa73306e305247a031bbf169
a692d8384c81216d51791914739bab4cab8b3963
c4993ab2bc0264a59d93383e88f7377373e3625409c9c7aab55abd9dc4e5e1b6
GET /www/js/fanbox/796dbd534e204ca1bb71db31cef97e03.svg HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:06 GMT
content-type: image/svg+xml
content-length: 273
last-modified: Thu, 27 Oct 2022 13:00:03 GMT
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
expires: Mon, 20 Feb 2023 04:56:45 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
api.fanbox.cc/tag.getFeatured?creatorId=vqdm
210.140.92.193200 OK 11 B URL HTTP/2 api.fanbox.cc/tag.getFeatured?creatorId=vqdm
IP 210.140.92.193:0
ASN #4694 IDC Frontier Inc.
File type JSON data\012- , ASCII text, with no line terminators
Hash 9d21473ecc9cc8dd523caa9176152377
47c67f321682d15c66862638edf1867d9ebd4253
ca26c5077e36ec2e5c48973e9f5c7f8cc06064587780560a8e56046a9a76d566
GET /tag.getFeatured?creatorId=vqdm HTTP/1.1
Host: api.fanbox.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vqdm.fanbox.cc
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Cookie: FANBOXSESSID=q6sfgq5er8b7vo6bo94kr3ge1hp9rvie; p_ab_id=8; p_ab_id_2=8; p_ab_d_id=1304064342; _gcl_au=1.1.428728621.1675895039; _ga=GA1.2.1344199100.1675895042; _gid=GA1.2.860999414.1675895042; _gat_UA-1830249-145=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:06 GMT
content-type: application/json; charset=utf-8
content-length: 11
x-host-time: 147
content-security-policy: frame-ancestors 'self' https://*.fanbox.cc
vary: Origin
access-control-allow-origin: https://vqdm.fanbox.cc
access-control-allow-headers: Content-Type, X-CSRF-Token
access-control-allow-credentials: true
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
api.fanbox.cc/plan.listCreator?creatorId=vqdm
210.140.92.193200 OK 623 B URL HTTP/2 api.fanbox.cc/plan.listCreator?creatorId=vqdm
IP 210.140.92.193:0
ASN #4694 IDC Frontier Inc.
File type JSON data\012- , ASCII text, with very long lines (2435), with no line terminators
Hash b1d1172ff1f51fc71c6258c3b04ebe04
f853bd17932004705729cdc22b1d9bbfdc39a9a9
1a1c50e6cad61a466a0a62ea99db5a7f9fd3d5d79cfd8e7d361ec42d13f3a727
GET /plan.listCreator?creatorId=vqdm HTTP/1.1
Host: api.fanbox.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vqdm.fanbox.cc
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Cookie: FANBOXSESSID=q6sfgq5er8b7vo6bo94kr3ge1hp9rvie; p_ab_id=8; p_ab_id_2=8; p_ab_d_id=1304064342; _gcl_au=1.1.428728621.1675895039; _ga=GA1.2.1344199100.1675895042; _gid=GA1.2.860999414.1675895042; _gat_UA-1830249-145=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:06 GMT
content-type: application/json; charset=utf-8
content-length: 623
x-host-time: 145
content-security-policy: frame-ancestors 'self' https://*.fanbox.cc
vary: Origin,Accept-Encoding
access-control-allow-origin: https://vqdm.fanbox.cc
access-control-allow-headers: Content-Type, X-CSRF-Token
access-control-allow-credentials: true
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
api.fanbox.cc/creator.get?creatorId=vqdm
210.140.92.193200 OK 633 B URL HTTP/2 api.fanbox.cc/creator.get?creatorId=vqdm
IP 210.140.92.193:0
ASN #4694 IDC Frontier Inc.
File type JSON data\012- , ASCII text, with very long lines (2812), with no line terminators
Hash 68c7d8793afd349511d74e2ee316b76a
f6b496ab486e27352993d2bd5a705ee9b3339dae
80a7dac25dc3978219ebb1f1f379f8509e832e1adc066221272e05ca7919abff
GET /creator.get?creatorId=vqdm HTTP/1.1
Host: api.fanbox.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vqdm.fanbox.cc
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Cookie: FANBOXSESSID=q6sfgq5er8b7vo6bo94kr3ge1hp9rvie; p_ab_id=8; p_ab_id_2=8; p_ab_d_id=1304064342; _gcl_au=1.1.428728621.1675895039; _ga=GA1.2.1344199100.1675895042; _gid=GA1.2.860999414.1675895042; _gat_UA-1830249-145=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:06 GMT
content-type: application/json; charset=utf-8
content-length: 633
x-host-time: 143
content-security-policy: frame-ancestors 'self' https://*.fanbox.cc
vary: Origin,Accept-Encoding
access-control-allow-origin: https://vqdm.fanbox.cc
access-control-allow-headers: Content-Type, X-CSRF-Token
access-control-allow-credentials: true
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
s.pximg.net/www/js/fanbox/d02bfe15a260a7815a7d3ad9588dbba2.svg
210.140.92.144200 OK 204 B URL HTTP/2 s.pximg.net/www/js/fanbox/d02bfe15a260a7815a7d3ad9588dbba2.svg
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 9d621af3d7102c1a9f7166a582e69f6c
730512ed1046bf394ab8468262e6122186151b8d
cb361bb5ef0600617dbccefed4363ec6a58728798722228cb96c844ab6cef57e
GET /www/js/fanbox/d02bfe15a260a7815a7d3ad9588dbba2.svg HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:07 GMT
content-type: image/svg+xml
content-length: 204
last-modified: Thu, 27 Oct 2022 13:00:03 GMT
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
expires: Mon, 20 Feb 2023 04:56:51 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
api.fanbox.cc/post.listCreator?creatorId=vqdm&limit=5
210.140.92.193200 OK 1.2 kB URL HTTP/2 api.fanbox.cc/post.listCreator?creatorId=vqdm&limit=5
IP 210.140.92.193:0
ASN #4694 IDC Frontier Inc.
File type JSON data\012- , ASCII text, with very long lines (4844), with no line terminators
Hash fee7097895ee84d29064595910247220
193e3e5a2ac96e31cd5d2d8c6dd445b292cc154d
bfef01c2dfffd22553f887fbde06484ef69519b5fd261e8486a7ddc9590607f7
GET /post.listCreator?creatorId=vqdm&limit=5 HTTP/1.1
Host: api.fanbox.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vqdm.fanbox.cc
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Cookie: FANBOXSESSID=q6sfgq5er8b7vo6bo94kr3ge1hp9rvie; p_ab_id=8; p_ab_id_2=8; p_ab_d_id=1304064342; _gcl_au=1.1.428728621.1675895039; _ga=GA1.2.1344199100.1675895042; _gid=GA1.2.860999414.1675895042; _gat_UA-1830249-145=1; _gat_gtag_UA_1830249_145=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:07 GMT
content-type: application/json; charset=utf-8
content-length: 1197
x-host-time: 132
content-security-policy: frame-ancestors 'self' https://*.fanbox.cc
vary: Origin,Accept-Encoding
access-control-allow-origin: https://vqdm.fanbox.cc
access-control-allow-headers: Content-Type, X-CSRF-Token
access-control-allow-credentials: true
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
cdn.iframe.ly/embed.js
54.230.111.67200 OK 0 B IP 54.230.111.67:0
GET /embed.js HTTP/1.1
Host: cdn.iframe.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 08 Feb 2023 14:56:43 GMT
last-modified: Fri, 03 Feb 2023 14:45:36 GMT
etag: W/"63dd1e10-5ef3"
access-control-allow-origin: *
cache-control: public, max-age=86400
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ywtKcfYmesWvL5FZxKHjv_AeeBFdQp_LXb6ewNDOpbjcZrXF2dW7vQ==
age: 26779
X-Firefox-Spdy: h2
s.pximg.net/www/js/fanbox/509a489db064dd678770b65c11c9860e.gif
210.140.92.144200 OK 0 B URL HTTP/2 s.pximg.net/www/js/fanbox/509a489db064dd678770b65c11c9860e.gif
IP 210.140.92.144:0
ASN #4694 IDC Frontier Inc.
GET /www/js/fanbox/509a489db064dd678770b65c11c9860e.gif HTTP/1.1
Host: s.pximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vqdm.fanbox.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 22:23:07 GMT
content-type: image/gif
content-length: 273166
last-modified: Thu, 27 Oct 2022 13:00:03 GMT
x-content-type-options: nosniff
expires: Mon, 20 Feb 2023 04:55:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: Accept, Cache-Control, If-None-Match, If-Modified-Since, Origin, Range, X-Requested-With, X-Renderer
accept-ranges: bytes
X-Firefox-Spdy: h2