f95zone.com/
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: f95zone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 24 Sep 2022 23:58:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 25 Sep 2022 00:58:19 GMT
Location: https://f95zone.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ofoAE0OEw%2B4CKUy3%2BJMcgoeyoIr%2FNntaW9u4iHDqcvCrUngtdyye1tcgscmzdnE4BOt%2BbA91SVD%2FXORkko9MTxBxTddMLB8JA6I6A70o1yEP7vSqwwKsQ5bDNAYCag%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ff77a99ff61c16-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3570
Expires: Sun, 25 Sep 2022 00:57:49 GMT
Date: Sat, 24 Sep 2022 23:58:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 23:14:42 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EZOHec5RyhgTvteLuWsroXcTNUaHMj7kxcGS-Q1k7zPDfzCqEQJyNw==
Age: 2617
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b3e81b5bd7bd8e12288a8159e44ceb3f
977945964ffcbf49ac78f840db9da822c50c82f0
4721814da286852318f7ebf9857bd4bf01f0beea2c9eb7ddb9f290e3fa472232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5927
Expires: Sun, 25 Sep 2022 01:37:06 GMT
Date: Sat, 24 Sep 2022 23:58:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: l7Ty+jiAxqjwGZIBe9bgL+u5/Ng6D48+aPm5L1HhYMncsZPgeC0JLCNGkVg8be+fhM/nk4p2RgQ=
x-amz-request-id: ZWVGB2NZGRR392PD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 24 Sep 2022 23:45:28 GMT
age: 771
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 0a53a8df5950ef21e988839ba7892a3f
d48ee5955ba3b0d91f89f3d6ca88c059e422fbef
fe1663ccc039adb3be3c0cabbaa6b28372670df1225dcfec20cc4f4b96f2684f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3173
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:19 GMT
Last-Modified: Sat, 24 Sep 2022 23:05:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 278 B IP
Hash 0a53a8df5950ef21e988839ba7892a3f
d48ee5955ba3b0d91f89f3d6ca88c059e422fbef
fe1663ccc039adb3be3c0cabbaa6b28372670df1225dcfec20cc4f4b96f2684f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3173
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:19 GMT
Last-Modified: Sat, 24 Sep 2022 23:05:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 23:58:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 24 Sep 2022 23:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sat, 24 Sep 2022 23:55:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ygIYoNjYTTiKh16xPcvmbbXI0rsdXbf72F6AwpRdN6eEjFpmuHeDkg==
Age: 3242
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f14b60137ffcca4494a6dee367828738
66879e2702a875e1decde8ae8a986e55ee43fc6e
f1369887e14500d47ab6db5d303f67a03e4b309690f2975bd71838cced068c06
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F1369887E14500D47AB6DB5D303F67A03E4B309690F2975BD71838CCED068C06"
Last-Modified: Fri, 23 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15315
Expires: Sun, 25 Sep 2022 04:13:34 GMT
Date: Sat, 24 Sep 2022 23:58:19 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash a7809de115ea73f8b61f3d20a9978493
01fc65a2b694d7aadd5204d21801e87b2b55b73e
72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 614
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:20 GMT
Last-Modified: Sat, 24 Sep 2022 23:48:06 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
f95zone.to/
200 OK 26 kB IP
ASN #262254 DDOS-GUARD CORP.
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6101)
Hash 4cf19208f5aafdef3b732e32d86488b5
d5a5ebc28b2a7bb613e3a2ac1b3e66d0f460344c
62f62f7a66043125d263f117cccfc98fff6dbd738f7804a0177ccd9017fadc3a
GET / HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 23:58:19 GMT
content-type: text/html; charset=utf-8
content-length: 26237
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Sat, 24 Sep 2022 23:58:19 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: private, no-cache, max-age=0
content-encoding: gzip
vary: Accept-Encoding
set-cookie: __ddg1_=22yf4BGvT203VyFkkhs3; Domain=.f95zone.to; HttpOnly; Path=/; Expires=Sun, 24-Sep-2023 23:58:19 GMT
xf_csrf=Y1D0-fmwpBsoPSMV; path=/; secure
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 820c391e8502c1a2a2c3107b7c3fb6e5
a87aa0ff1675b187c78c24db9681b90167865d2c
28197b77c58738bf8036931ff7515e3c269bacb3ff22b949c608e02784c961d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28197B77C58738BF8036931FF7515E3C269BACB3FF22B949C608E02784C961D9"
Last-Modified: Sat, 24 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8851
Expires: Sun, 25 Sep 2022 02:25:51 GMT
Date: Sat, 24 Sep 2022 23:58:20 GMT
Connection: keep-alive
f95zone.to/css.php?css=public%3Anormalize.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=26&l=1&d=1659376096&k=4f19b0a5c6ac1a7f12d3c0192cd0c03183933279
200 OK 100 kB URL HTTP/2 f95zone.to/css.php?css=public%3Anormalize.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=26&l=1&d=1659376096&k=4f19b0a5c6ac1a7f12d3c0192cd0c03183933279
IP
ASN #262254 DDOS-GUARD CORP.
File type ASCII text, with very long lines (63364)
Hash cf1b0d566616c6f11967221c5606983e
44da0f0f76f691fe487d21193bb5d1b71d3daf8b
aeadbedd82bf7b4c7cce47e5a6b78c673b91e9663483772aca0e296ab16c1901
GET /css.php?css=public%3Anormalize.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=26&l=1&d=1659376096&k=4f19b0a5c6ac1a7f12d3c0192cd0c03183933279 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 04 Sep 2022 19:24:47 GMT
content-type: text/css; charset=utf-8
content-length: 99849
x-frame-options: SAMEORIGIN
expires: Mon, 04 Sep 2023 19:24:47 GMT
last-modified: Mon, 01 Aug 2022 17:48:16 GMT
cache-control: public, max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=15768000
age: 1744413
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/data/avatars/s/2568/2568136.jpg?1603318421
200 OK 2.6 kB URL HTTP/2 f95zone.to/data/avatars/s/2568/2568136.jpg?1603318421
IP
ASN #262254 DDOS-GUARD CORP.
File type GIF image data, version 89a, 48 x 48\012- data
Hash abcee3c4239a681447486cdc3cd6ec66
11703e49cf724388313a63c4ab46bf3b60071610
5c8f6574ffbc5d6cc4f2465dea84ceccea6657199c7b562bafbdbc08b93d63e4
GET /data/avatars/s/2568/2568136.jpg?1603318421 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 20 Sep 2022 16:32:28 GMT
content-type: image/jpeg
content-length: 2553
last-modified: Wed, 21 Oct 2020 22:13:39 GMT
etag: "5f90b293-9f9"
expires: Wed, 20 Sep 2023 16:32:28 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 372352
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/css.php?css=public%3Aandy_quicksearch.less%2Cpublic%3Anode_list.less%2Cpublic%3Arellect_favicon.less%2Cpublic%3Asiropu_ads_manager_ad.less%2Cpublic%3Auix_extendedFooter.less%2Cpublic%3Auix_socialMedia.less%2Cpublic%3Aextra.less&s=26&l=1&d=1659376096&k=73f86f9851693a4c193e817651a8ec369b65f86f
200 OK 10 kB URL HTTP/2 f95zone.to/css.php?css=public%3Aandy_quicksearch.less%2Cpublic%3Anode_list.less%2Cpublic%3Arellect_favicon.less%2Cpublic%3Asiropu_ads_manager_ad.less%2Cpublic%3Auix_extendedFooter.less%2Cpublic%3Auix_socialMedia.less%2Cpublic%3Aextra.less&s=26&l=1&d=1659376096&k=73f86f9851693a4c193e817651a8ec369b65f86f
IP
ASN #262254 DDOS-GUARD CORP.
File type ASCII text, with very long lines (18936)
Hash 6df87b2b9adff12beea95f2232359127
c5fa7e5b8497ccb228d5249bd9ad392900084cf2
6ca4dce9a8c11a8aa054542da07bce2fb7cbf2bc0072a863e06c582c538468ac
GET /css.php?css=public%3Aandy_quicksearch.less%2Cpublic%3Anode_list.less%2Cpublic%3Arellect_favicon.less%2Cpublic%3Asiropu_ads_manager_ad.less%2Cpublic%3Auix_extendedFooter.less%2Cpublic%3Auix_socialMedia.less%2Cpublic%3Aextra.less&s=26&l=1&d=1659376096&k=73f86f9851693a4c193e817651a8ec369b65f86f HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 04 Sep 2022 21:04:15 GMT
content-type: text/css; charset=utf-8
content-length: 10175
x-frame-options: SAMEORIGIN
expires: Mon, 04 Sep 2023 21:04:15 GMT
last-modified: Mon, 01 Aug 2022 17:48:16 GMT
cache-control: public, max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=15768000
age: 1738445
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/styles/uix_dark/fonts/icons/material-icons/css/materialdesignicons.min.css
200 OK 31 kB URL HTTP/2 f95zone.to/styles/uix_dark/fonts/icons/material-icons/css/materialdesignicons.min.css
IP
ASN #262254 DDOS-GUARD CORP.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5647857d31fc2edff98f39c8ff5f2089
7c54dab396c2d4fb17f51da1d8c0ee3ccccb1d34
712494bed8c8823fe6f6f6dfdd5374e49dca82e7ec9a8de9dc6518a6591e1e2b
GET /styles/uix_dark/fonts/icons/material-icons/css/materialdesignicons.min.css HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 25 Jan 2022 06:04:47 GMT
content-type: text/css
last-modified: Sat, 30 May 2020 13:26:54 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
etag: "5ed25f1e-30ca6"
expires: Wed, 25 Jan 2023 06:04:47 GMT
cache-control: max-age=31536000, max-age=31536000, public
age: 20973213
content-length: 30885
ddg-cache-status: HIT
X-Firefox-Spdy: h2
f95zone.to/data/avatars/s/4335/4335960.jpg?1646049597
200 OK 1.6 kB URL HTTP/2 f95zone.to/data/avatars/s/4335/4335960.jpg?1646049597
IP
ASN #262254 DDOS-GUARD CORP.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 48x48, components 3\012- data
Hash 01d5fba5cce0210649ec1545e6a53d07
806f1a659ff13a44e26d6313ffac0cc867160e99
2e7fb506aa999fcb3bd2c6bba19dd46c6546c16fec09843203d78a6c1ca76a48
GET /data/avatars/s/4335/4335960.jpg?1646049597 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 21 Sep 2022 00:31:29 GMT
content-type: image/jpeg
content-length: 1615
last-modified: Mon, 28 Feb 2022 11:59:57 GMT
etag: "621cb93d-64f"
expires: Thu, 21 Sep 2023 00:31:29 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 343611
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/data/avatars/s/3055/3055707.jpg?1619588059
200 OK 1.4 kB URL HTTP/2 f95zone.to/data/avatars/s/3055/3055707.jpg?1619588059
IP
ASN #262254 DDOS-GUARD CORP.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 48x48, components 3\012- data
Hash 28188ccb0aeb4f54bd0f450330d83b03
6a558841e40024bb41b322d891c458896786a778
d65cf3172baa0df1e9fc5c0a92b06de600f058efe8909d291ae855784ad29dcf
GET /data/avatars/s/3055/3055707.jpg?1619588059 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 03:17:28 GMT
content-type: image/jpeg
content-length: 1382
last-modified: Wed, 28 Apr 2021 05:34:19 GMT
etag: "6088f3db-566"
expires: Sun, 24 Sep 2023 03:17:28 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 74452
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/data/avatars/s/4324/4324853.jpg?1655136871
200 OK 1.9 kB URL HTTP/2 f95zone.to/data/avatars/s/4324/4324853.jpg?1655136871
IP
ASN #262254 DDOS-GUARD CORP.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 48x48, components 3\012- data
Hash 9d447758fdab2649cf41b443a516c43e
d5d018d75d1b5cec7916640dbc307b5269831340
3ac12c7054494d44730ec171e8c758ba89daf985d88fdf95cc2117af79bd348f
GET /data/avatars/s/4324/4324853.jpg?1655136871 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 21:55:08 GMT
content-type: image/jpeg
content-length: 1892
last-modified: Mon, 13 Jun 2022 16:14:31 GMT
etag: "62a76267-764"
expires: Sun, 24 Sep 2023 21:55:08 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 7392
ddg-cache-status: HIT,MISS
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.f95zone.to/assets/SamF95/Latest/vendor/tooltipster/css/tooltipster.bundle.min.css
200 OK 1.1 kB URL HTTP/2 static.f95zone.to/assets/SamF95/Latest/vendor/tooltipster/css/tooltipster.bundle.min.css
IP
ASN #262254 DDOS-GUARD CORP.
File type ASCII text, with very long lines (6495), with no line terminators
Hash 76d1508a502b9b2fbd34e39a69b66103
81dc90d154ea709bdaec7526506fb4b03b5322c1
197612320aac2bd7f1b7207dcba129a38073a6d380a2bfb62affdb8d223d30a7
GET /assets/SamF95/Latest/vendor/tooltipster/css/tooltipster.bundle.min.css HTTP/1.1
Host: static.f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 24 Jan 2022 20:59:22 GMT
content-type: text/css
last-modified: Tue, 13 Nov 2018 21:10:28 GMT
etag: W/"5beb3dc4-195f"
expires: Tue, 24 Jan 2023 20:59:22 GMT
cache-control: max-age=31536000, max-age=31536000, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
age: 21005938
content-length: 1101
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 58b52380a6b5c598d1ad88e8da148137
a56206a0277aea6e8e2f7629793aba713d8edd0c
561a57c27dfa1f8651a89292428576b626e8700b9cd6b8173a0ce121aa8f9f4a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-67186250-3
200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-67186250-3
IP
File type ASCII text, with very long lines (1720)
Hash 702d2099cdca7a1fce466b0c2773d90a
f787fbe2ad16c22c35e02b2dcad4589857db0d28
c8c4121da92c026109ac46f5ba40271092a060f1934559a91bbc377ac03ffd08
GET /gtag/js?id=UA-67186250-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 24 Sep 2022 23:58:20 GMT
expires: Sat, 24 Sep 2022 23:58:20 GMT
cache-control: private, max-age=900
last-modified: Sat, 24 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42253
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.f95zone.to/assets/logo.png
200 OK 100 kB URL HTTP/2 static.f95zone.to/assets/logo.png
IP
ASN #262254 DDOS-GUARD CORP.
File type PNG image data, 4688 x 813, 8-bit/color RGBA, non-interlaced\012- data
Size 100 kB (100313 bytes)
Hash 58b57829a9c6eba7c99b9a9738a16461
5660811d90712fce13c8fe5823341fdc6e77ec7c
1bff7c1b11553f22825566cdadb9ab73ddb214b804f17be1b5a6a8b38bcebfd8
GET /assets/logo.png HTTP/1.1
Host: static.f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 11 Feb 2022 13:57:28 GMT
content-type: image/png
content-length: 100313
last-modified: Tue, 13 Nov 2018 22:42:52 GMT
etag: "5beb536c-187d9"
expires: Sat, 11 Feb 2023 13:57:28 GMT
cache-control: max-age=31536000, max-age=31536000, public
accept-ranges: bytes
age: 19476053
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 58b52380a6b5c598d1ad88e8da148137
a56206a0277aea6e8e2f7629793aba713d8edd0c
561a57c27dfa1f8651a89292428576b626e8700b9cd6b8173a0ce121aa8f9f4a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 16uXuXHFx6yNKUY+cP2now==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 63FdVBOCvVhPMbnPb2iaxk8Ywg0=
static.f95zone.to/assets/favicon-32x32.png
200 OK 1.7 kB URL HTTP/2 static.f95zone.to/assets/favicon-32x32.png
IP
ASN #262254 DDOS-GUARD CORP.
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ab6f5b09842c96b2ca7170779291de5
dccdad175c208b37dd27ca264f894c6ee948a69e
f658dc0b364cdb4f70607207c80a39b0fc6d5a2e4283d53a231f585d634a5584
GET /assets/favicon-32x32.png HTTP/1.1
Host: static.f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 25 Jan 2022 06:27:13 GMT
content-type: image/png
content-length: 1679
last-modified: Tue, 09 May 2017 21:59:40 GMT
strict-transport-security: max-age=15768000
access-control-allow-origin: https://f95zone.to
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
etag: "59123bcc-68f"
expires: Wed, 25 Jan 2023 06:27:13 GMT
cache-control: max-age=31536000, max-age=31536000, public
age: 20971868
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/data/avatars/s/1214/1214526.jpg?1661104037
200 OK 1.6 kB URL HTTP/2 f95zone.to/data/avatars/s/1214/1214526.jpg?1661104037
IP
ASN #262254 DDOS-GUARD CORP.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 48x48, components 3\012- data
Hash 149a1215011e843e083ac3ba8173c176
a085d3434631cecd6c2888937e56f75de3cd6700
b85348742baeb6c7ee82849d40fc30440e345cb2ba351d1ab22ff355cd8abca6
GET /data/avatars/s/1214/1214526.jpg?1661104037 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 21 Aug 2022 17:48:15 GMT
content-type: image/jpeg
content-length: 1590
last-modified: Sun, 21 Aug 2022 17:47:17 GMT
etag: "63026fa5-636"
expires: Mon, 21 Aug 2023 17:48:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 2959805
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/data/avatars/s/93/93691.jpg?1612067559
200 OK 1.9 kB URL HTTP/2 f95zone.to/data/avatars/s/93/93691.jpg?1612067559
IP
ASN #262254 DDOS-GUARD CORP.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 48x48, components 3\012- data
Hash c3626a8672af6b9add4a43d2ca077b18
fc9a1ed0ceaf4fb21e1bcdb50cde8a82d3ac6770
2792942282dd67ade1b4fa22b47c66f05083f8a3b3a9ab772ad3d28046c0e067
GET /data/avatars/s/93/93691.jpg?1612067559 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 25 Jan 2022 06:37:02 GMT
content-type: image/jpeg
content-length: 1893
last-modified: Sun, 31 Jan 2021 04:32:39 GMT
strict-transport-security: max-age=15768000
accept-ranges: bytes
etag: "601632e7-765"
expires: Wed, 25 Jan 2023 06:37:02 GMT
cache-control: max-age=31536000, max-age=31536000, public
age: 20971278
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/data/avatars/s/3431/3431907.jpg?1614550663
200 OK 4.9 kB URL HTTP/2 f95zone.to/data/avatars/s/3431/3431907.jpg?1614550663
IP
ASN #262254 DDOS-GUARD CORP.
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash b1d313dfe2d102c121ec9f8e22364534
c7b6bab652f277fdb7dda68153133204c266656b
9aa3f51f51b75ed24d3a696aab47d353ccbeac79ab21920f157b0e1af6592248
GET /data/avatars/s/3431/3431907.jpg?1614550663 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 19 Sep 2022 20:52:29 GMT
content-type: image/jpeg
content-length: 4941
last-modified: Sun, 28 Feb 2021 22:17:44 GMT
etag: "603c1688-134d"
expires: Tue, 19 Sep 2023 20:52:29 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 443151
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/data/avatars/s/2233/2233830.jpg?1646741805
200 OK 2.5 kB URL HTTP/2 f95zone.to/data/avatars/s/2233/2233830.jpg?1646741805
IP
ASN #262254 DDOS-GUARD CORP.
File type GIF image data, version 89a, 48 x 48\012- data
Hash 0ba92c38d498267d1ba3376bf532dbbe
686c8acb7823cb5e815fd8149a2af1e47decbd1f
984388e306e85e87df4685a901e98da070c022341a247ce41558ffc83a7d561c
GET /data/avatars/s/2233/2233830.jpg?1646741805 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Sep 2022 21:59:18 GMT
content-type: image/jpeg
content-length: 2532
last-modified: Tue, 08 Mar 2022 12:16:45 GMT
etag: "6227492d-9e4"
expires: Sat, 16 Sep 2023 21:59:18 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 698342
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/data/avatars/s/81/81329.jpg?1539467583
200 OK 1.6 kB URL HTTP/2 f95zone.to/data/avatars/s/81/81329.jpg?1539467583
IP
ASN #262254 DDOS-GUARD CORP.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 48x48, components 3\012- data
Hash 4a024bb11c1e9e41296a1e609aa57f51
1a8e0ab5d90fee955daaa8ece2296b2647cda462
deb41388966e71c5a007f0697f29e6ce4f16326575b360cdd4972e2d64d81daf
GET /data/avatars/s/81/81329.jpg?1539467583 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 21 Sep 2022 17:22:35 GMT
content-type: image/jpeg
content-length: 1573
last-modified: Sat, 13 Oct 2018 21:53:03 GMT
etag: "5bc2693f-625"
expires: Thu, 21 Sep 2023 17:22:35 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 282945
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/data/avatars/s/4183/4183835.jpg?1657637078
200 OK 1.1 kB URL HTTP/2 f95zone.to/data/avatars/s/4183/4183835.jpg?1657637078
IP
ASN #262254 DDOS-GUARD CORP.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 48x48, components 3\012- data
Hash 3a61c2e54d8b8aca2379c5f821f4b884
8d21125084e9a9dd2b5138c2134cfd571e6eaa23
29502d239e9fe7b8aac9bf37ab5fbaa6b2615da063cbdeaa56569905a01e5ef9
GET /data/avatars/s/4183/4183835.jpg?1657637078 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 23 Sep 2022 14:26:00 GMT
content-type: image/jpeg
content-length: 1077
last-modified: Tue, 12 Jul 2022 14:44:38 GMT
etag: "62cd88d6-435"
expires: Sat, 23 Sep 2023 14:26:00 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 120740
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f95zone.to
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 17:10:21 GMT
expires: Wed, 20 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 370080
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f95zone.to
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 17:10:21 GMT
expires: Wed, 20 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 370080
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
f95zone.to/styles/uix_dark/fonts/icons/material-icons/fonts/materialdesignicons-webfont.woff2?v=4.4.95
200 OK 256 kB URL HTTP/2 f95zone.to/styles/uix_dark/fonts/icons/material-icons/fonts/materialdesignicons-webfont.woff2?v=4.4.95
IP
ASN #262254 DDOS-GUARD CORP.
File type Web Open Font Format (Version 2), TrueType, length 256372, version 1.0\012- data
Size 256 kB (256372 bytes)
Hash 7ec5dab7e7ff250971d2ff50379778dc
7261e30211812556fd7e046cf6ea09dead829162
bc9ecde67d9898b6483204a8b2d49442b68be3b1460429b1c8d811253e577772
GET /styles/uix_dark/fonts/icons/material-icons/fonts/materialdesignicons-webfont.woff2?v=4.4.95 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f95zone.to/styles/uix_dark/fonts/icons/material-icons/css/materialdesignicons.min.css
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 24 Jan 2022 17:40:05 GMT
content-type: font/woff2
content-length: 256372
last-modified: Sat, 30 May 2020 13:26:56 GMT
etag: "5ed25f20-3e974"
expires: Tue, 24 Jan 2023 17:40:05 GMT
cache-control: max-age=31536000, max-age=31536000, public
accept-ranges: bytes
age: 21017896
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.f95zone.to/assets/fontawesome-free-5.11.2/webfonts/fa-solid-900.woff2
200 OK 76 kB URL HTTP/2 static.f95zone.to/assets/fontawesome-free-5.11.2/webfonts/fa-solid-900.woff2
IP
ASN #262254 DDOS-GUARD CORP.
File type Web Open Font Format (Version 2), TrueType, length 75728, version 330.32636\012- data
Hash 44d537ab79f921fde5a28b2c1636f397
b2879f9e1d0985a96842bf7f55a2b2cc4c636d04
3d1080625d3030e88357b3ac9aa377dcec23f1b529c4ad03f7a9a435ccae04be
GET /assets/fontawesome-free-5.11.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: static.f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f95zone.to
Connection: keep-alive
Referer: https://static.f95zone.to/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=qsn9DqiHNNIlcPdrUgfj; Domain=.f95zone.to; HttpOnly; Path=/; Expires=Sun, 24-Sep-2023 23:58:21 GMT
date: Mon, 24 Jan 2022 06:35:14 GMT
content-type: font/woff2
content-length: 75728
last-modified: Mon, 23 Sep 2019 15:53:56 GMT
strict-transport-security: max-age=15768000
access-control-allow-origin: https://f95zone.to
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
etag: "5d88ea94-127d0"
expires: Tue, 24 Jan 2023 06:35:14 GMT
cache-control: max-age=31536000, max-age=31536000, public
age: 21057787
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
f95zone.to/styles/fonts/fa/fa-duotone-900.woff2?_v=5.12.1
200 OK 313 B URL HTTP/2 f95zone.to/styles/fonts/fa/fa-duotone-900.woff2?_v=5.12.1
IP
ASN #262254 DDOS-GUARD CORP.
Hash f72c0b5d8edf9ec6784fcf70cd764788
f443711fd12d5b7910f1042b731803795a00aed7
4a60840b80fb5ec328178e27a711250e211bf65ec1e50457c2d9d200830a89ef
GET /styles/fonts/fa/fa-duotone-900.woff2?_v=5.12.1 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f95zone.to/css.php?css=public%3Anormalize.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=26&l=1&d=1659376096&k=4f19b0a5c6ac1a7f12d3c0192cd0c03183933279
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 14 Feb 2022 14:06:08 GMT
content-type: font/woff2
content-length: 184868
last-modified: Sat, 30 May 2020 13:04:32 GMT
etag: "5ed259e0-2d224"
expires: Tue, 14 Feb 2023 14:06:08 GMT
cache-control: max-age=31536000, max-age=31536000, public
accept-ranges: bytes
age: 19216333
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
static.trafficjunky.com/invocation/embeddedads/production/embeddedads.es6.min.js
200 OK 17 kB URL HTTP/2 static.trafficjunky.com/invocation/embeddedads/production/embeddedads.es6.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (53326), with no line terminators
Hash 69712bbebb48e08479d0d3f7bbb218f0
062e9866cb66f3fe028c6b6771331ea170745aa3
d9e64cc66ca674c81fdced00dd9adc16d24eaac52165d5c06f55a6f15e3decd1
GET /invocation/embeddedads/production/embeddedads.es6.min.js HTTP/1.1
Host: static.trafficjunky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 24 Sep 2022 23:58:21 GMT
etag: "1660753148"
cache-control: max-age=31536000
content-encoding: gzip
content-length: 16888
content-type: application/javascript
last-modified: Wed, 17 Aug 2022 16:19:08 GMT
accept-ranges: bytes
x-hw: 1664063901.dop223.sk1.t,1664063901.cds219.sk1.hn,1664063901.cds018.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
static.trafficjunky.com/invocation/idsync/production/idsync.min.js?v=1663977600000
200 OK 18 kB URL HTTP/2 static.trafficjunky.com/invocation/idsync/production/idsync.min.js?v=1663977600000
IP
File type Unicode text, UTF-8 text, with very long lines (46765), with no line terminators
Hash e574ed41b6a8bc07595b9bbfacdcff66
11f637b4d9e2c646b34890b8833d47500f28bbac
d4b88364e0963bc281e65edbbe7996cdd19675411071348b36902a6bc7e90f4e
GET /invocation/idsync/production/idsync.min.js?v=1663977600000 HTTP/1.1
Host: static.trafficjunky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 24 Sep 2022 23:58:21 GMT
etag: "1661799765"
cache-control: max-age=31536000
content-encoding: gzip
content-length: 17666
content-type: application/javascript
last-modified: Mon, 29 Aug 2022 19:02:45 GMT
accept-ranges: bytes
x-hw: 1664063901.dop223.sk1.t,1664063901.cds219.sk1.hn,1664063901.cds241.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sat, 24 Sep 2022 22:41:09 GMT
expires: Sun, 25 Sep 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 4632
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
a.adtng.com/get/10001817?ata=andrewf95
200 OK 26 kB URL HTTP/2 a.adtng.com/get/10001817?ata=andrewf95
IP
Hash fa01561fbaaea17ecee1bde8f97ccb5c
e4c97f5cbde2767466d09cef71edea1376651039
d5eef79e838f7657817739baccf4e5651ae15d080b6cd498a0970d2087e59edd
GET /get/10001817?ata=andrewf95 HTTP/1.1
Host: a.adtng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
content-encoding: gzip
set-cookie: adtool_guid=Ch5KJmMvmZ0gtCkdrhHiAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/; Secure; HTTPOnly; SameSite=None;
RNLBSERVERID=ded6742; path=/; HttpOnly; Secure; SameSite=None
x-request-id: 632F999D-42FE72AB01BB10D78-377FEB23
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash adda021dbebf2fd9a7c04255f531295c
e2f4f37927ea85830664bba8c026659a63591c30
daa953f9a7c6ce81267afb9e90aebe445371d0fef6a7a6b27f788255bdeaf6eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Last-Modified: Sat, 24 Sep 2022 22:10:53 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 312
hw-cdn2.ang-content.com/delivery/vortex/vortex-simple-1.0.0.js
200 OK 5.0 kB URL HTTP/1.1 hw-cdn2.ang-content.com/delivery/vortex/vortex-simple-1.0.0.js
IP
File type ASCII text, with very long lines (5027), with no line terminators
Hash 5e5817bcf4c82c7c85d1d88636d221ce
b5c32cc6c931c33c1297884016e13d3b9a5bf261
6f0e50ac39121175ca0427c4e87cdfa2520b526c8497e23cffbca726eb6ca42c
GET /delivery/vortex/vortex-simple-1.0.0.js HTTP/1.1
Host: hw-cdn2.ang-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.adtng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 23:58:21 GMT
Connection: Keep-Alive
ETag: "1541168231"
Content-Length: 5027
Content-Type: application/javascript
Last-Modified: Fri, 02 Nov 2018 14:17:11 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10427793
X-HW: 1664063901.dop215.sk1.t,1664063901.cds067.sk1.shn,1664063901.cds067.sk1.c
Access-Control-Allow-Origin: *
ocsp.digicert.com/
200 OK 312 B IP
Hash adda021dbebf2fd9a7c04255f531295c
e2f4f37927ea85830664bba8c026659a63591c30
daa953f9a7c6ce81267afb9e90aebe445371d0fef6a7a6b27f788255bdeaf6eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Last-Modified: Sat, 24 Sep 2022 22:10:53 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 312
www.google-analytics.com/j/collect?v=1&_v=j97&a=1620099449&t=pageview&_s=1&dl=https%3A%2F%2Ff95zone.to%2F&ul=en-us&de=UTF-8&dt=F95zone&sd=24-bit&sr=1280x1024&vp=1268x927&je=0&_u=YEBAAUABAAAAAC~&jid=1281115340&gjid=411089025&cid=1136235812.1664063900&tid=UA-67186250-3&_gid=224464773.1664063900&_r=1>m=2ou9l0&z=1025820626
200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j97&a=1620099449&t=pageview&_s=1&dl=https%3A%2F%2Ff95zone.to%2F&ul=en-us&de=UTF-8&dt=F95zone&sd=24-bit&sr=1280x1024&vp=1268x927&je=0&_u=YEBAAUABAAAAAC~&jid=1281115340&gjid=411089025&cid=1136235812.1664063900&tid=UA-67186250-3&_gid=224464773.1664063900&_r=1>m=2ou9l0&z=1025820626
IP
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j97&a=1620099449&t=pageview&_s=1&dl=https%3A%2F%2Ff95zone.to%2F&ul=en-us&de=UTF-8&dt=F95zone&sd=24-bit&sr=1280x1024&vp=1268x927&je=0&_u=YEBAAUABAAAAAC~&jid=1281115340&gjid=411089025&cid=1136235812.1664063900&tid=UA-67186250-3&_gid=224464773.1664063900&_r=1>m=2ou9l0&z=1025820626 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://f95zone.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://f95zone.to
date: Sat, 24 Sep 2022 23:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash adda021dbebf2fd9a7c04255f531295c
e2f4f37927ea85830664bba8c026659a63591c30
daa953f9a7c6ce81267afb9e90aebe445371d0fef6a7a6b27f788255bdeaf6eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6265
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Last-Modified: Sat, 24 Sep 2022 22:13:57 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 312
hw-cdn2.ang-content.com/a7/creatives/50/529/814851/1038724/1038724_logo.png
200 OK 5.0 kB URL HTTP/1.1 hw-cdn2.ang-content.com/a7/creatives/50/529/814851/1038724/1038724_logo.png
IP
File type PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e1cc3c88e5bdd1ceee9496a85da7f42
a5ccfc76a649ac4758942a64fe16afec379036c2
c42c062b36270f1b0260b41a019289d34e5eea6f511065b712cc107f067d56f6
GET /a7/creatives/50/529/814851/1038724/1038724_logo.png HTTP/1.1
Host: hw-cdn2.ang-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.adtng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 23:58:21 GMT
Connection: Keep-Alive
ETag: "1659056915"
Content-Length: 4996
Content-Type: image/png
Last-Modified: Fri, 29 Jul 2022 01:08:35 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10452385
X-HW: 1664063901.dop215.sk1.t,1664063901.cds067.sk1.shn,1664063901.dop215.sk1.t,1664063901.cds236.sk1.c
Access-Control-Allow-Origin: *
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7413
Expires: Sun, 25 Sep 2022 02:01:54 GMT
Date: Sat, 24 Sep 2022 23:58:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7413
Expires: Sun, 25 Sep 2022 02:01:54 GMT
Date: Sat, 24 Sep 2022 23:58:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7413
Expires: Sun, 25 Sep 2022 02:01:54 GMT
Date: Sat, 24 Sep 2022 23:58:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7413
Expires: Sun, 25 Sep 2022 02:01:54 GMT
Date: Sat, 24 Sep 2022 23:58:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7413
Expires: Sun, 25 Sep 2022 02:01:54 GMT
Date: Sat, 24 Sep 2022 23:58:21 GMT
Connection: keep-alive
hw-cdn2.ang-content.com/a7/creatives/50/529/814851/1038724/1038724_video.mp4
206 Partial Content 334 kB URL HTTP/1.1 hw-cdn2.ang-content.com/a7/creatives/50/529/814851/1038724/1038724_video.mp4
IP
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 334 kB (333810 bytes)
Hash aa5bc9c02f578eb7eea921de06505f86
fc7cf56aeb1d485c83533b8b9bd94a7510ceef8f
d815b6d12ce4740b27aeaeecdb708a56364420fc53a5983621188a56e33720f5
GET /a7/creatives/50/529/814851/1038724/1038724_video.mp4 HTTP/1.1
Host: hw-cdn2.ang-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://a.adtng.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Date: Sat, 24 Sep 2022 23:58:21 GMT
Connection: Keep-Alive
ETag: "1659057181"
Content-Length: 333810
Content-Range: bytes 0-333809/333810
Content-Type: video/mp4
Last-Modified: Fri, 29 Jul 2022 01:13:01 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10449513
X-HW: 1664063901.dop215.sk1.t,1664063901.cds067.sk1.shn,1664063901.dop215.sk1.t,1664063901.cds009.sk1.c
Access-Control-Allow-Origin: *
f95zone.to/index.php?sam-item/20/track-view
200 OK 100 B URL HTTP/2 f95zone.to/index.php?sam-item/20/track-view
IP
ASN #262254 DDOS-GUARD CORP.
File type JSON data\012- , ASCII text
Hash 94bb70f22b6c26f3882d20683dc7caf7
43f7eda22624004006ddfbdf659d62c795c8ddd7
821b28d1f43e4319114b3501e0c50834b717aeb8edca8d4712505a8aa8be9a1b
POST /index.php?sam-item/20/track-view HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 143
Origin: https://f95zone.to
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV; _ga=GA1.2.1136235812.1664063900; _gid=GA1.2.224464773.1664063900; _gat_gtag_UA_67186250_3=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: application/json; charset=utf-8
content-length: 100
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Sat, 24 Sep 2022 23:58:21 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: private, no-cache, max-age=0
content-encoding: gzip
vary: Accept-Encoding
set-cookie: xf_sam_ad_views=%7B%2220%22%3A1664063901%7D; path=/; secure; HttpOnly
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg
200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d35df1f57d0736995615b0d8f50b8a3
8324b383c89771a2b1155ec6d069bf5a47338acd
9f381d59d2e4b086d43d784d7660e27f6f7760dc2b4eb9beee4b6e94801cb6db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4723
x-amzn-requestid: 4be5e73a-e648-40a4-8566-cb3417e5843b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EKHYcoAMFgMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7880-4682134275162910149d09ec;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 67JgCuzx90IROr0JQJq0jbsntmkbD0dReobbS4G1V6pPD22qOosLrg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:15:14 GMT
age: 6187
etag: "8324b383c89771a2b1155ec6d069bf5a47338acd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c4875ff-4140-470a-943a-bc27f68957a5.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c4875ff-4140-470a-943a-bc27f68957a5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00c09f267aacde9465a329542463b9e5
1534aa8a5158dfa9592d65e6fb761b41c0852c58
276ff24598159f62fd7333992575834f901eea7c75a228b9c12d1c049f1df558
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c4875ff-4140-470a-943a-bc27f68957a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7642
x-amzn-requestid: b0fc9bea-7735-43c0-a176-eae4d5000a6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2ZPtHajIAMF8zQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632c08ca-391092bd30ae5bf9692e93ba;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 07:03:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gc7lA-XfgIAhotpUdrOaihuA2nbdMY2zNiJSHZpSN3yKPaT-k93auQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 07:07:29 GMT
age: 60652
etag: "1534aa8a5158dfa9592d65e6fb761b41c0852c58"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73844595-b7d7-4585-a846-ab38b27af847.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73844595-b7d7-4585-a846-ab38b27af847.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a9f4d93ea4a06628bc31a00a9c4e692
27f05479fd4fbe68993748fdb043850807ddebdd
31b0809297c7e8acbb46b544cf6f3f4ffaa6bda7a8896fe8678fbfc839a115ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73844595-b7d7-4585-a846-ab38b27af847.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11435
x-amzn-requestid: e1288aca-0375-4ce8-9daa-81afe23c9c5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_ETHE6oAMFqGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-01a836ab57a326356f838bfc;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X8xpMQCKuQGx46BrQ_851U0HhXIALy0k22WRO-zp8TuFhK0KaHItBw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:06 GMT
etag: "27f05479fd4fbe68993748fdb043850807ddebdd"
content-type: image/jpeg
age: 8475
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ads.trafficjunky.net/ads_batch?data=%5B%7B%22spots%22%3A%5B%7B%22zone%22%3A1757841%7D%5D%7D%5D&clientType=mobile&channel[site]=F95zone&site_id=147571&device_type=tablet&_=1664063899938
200 OK 11 kB URL HTTP/2 ads.trafficjunky.net/ads_batch?data=%5B%7B%22spots%22%3A%5B%7B%22zone%22%3A1757841%7D%5D%7D%5D&clientType=mobile&channel[site]=F95zone&site_id=147571&device_type=tablet&_=1664063899938
IP
Hash 58d1e8c062bd39716135d9a3cdfc2cd2
4f131daa9eb1890941ead86e0bf0b9ad8d1d8731
6039abdf2ea354b34e5bd00ae4bfed042304bcfb85d30fc58416a5bcaee33ce8
GET /ads_batch?data=%5B%7B%22spots%22%3A%5B%7B%22zone%22%3A1757841%7D%5D%7D%5D&clientType=mobile&channel[site]=F95zone&site_id=147571&device_type=tablet&_=1664063899938 HTTP/1.1
Host: ads.trafficjunky.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f95zone.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: application/json
cache-control: private, no-cache, proxy-revalidate, no-store, max-age=0
set-cookie: tj_UUID=03e5610b977c4b8ba2f44366780e17bc; Path=/; Domain=f95zone.com; Expires=Mon, 24 Oct 2022 23:58:21 GMT; Secure
tj_UUID_v2=03e5610b-977c-4b8b-a2f4-4366780e17bc; Path=/; Domain=f95zone.com; Expires=Mon, 24 Oct 2022 23:58:21 GMT; Secure
access-control-allow-origin: https://f95zone.to
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:19 GMT
age: 8462
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3056f6d6-1a08-46ac-94a1-eb08e1b784e1.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3056f6d6-1a08-46ac-94a1-eb08e1b784e1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9bbdad67489e993cebd23ffb04ebd02c
3a69c08b4d25d1dae1abbabd103d6d295a2f5425
ee3839246f3bada3e3190c240c8ac64d8012a87c062c5e006ed80a7edcd773a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3056f6d6-1a08-46ac-94a1-eb08e1b784e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7404
x-amzn-requestid: ef623ade-f397-40a9-b88d-0394f22a8d8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJPGYyoAMFVEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-2da73ceb54b36ade5bf4ce1a;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jqPyyJr0H9dHTBuQb9Z8bNBwMXhBz5pz09u_j1R0Qpp-iGUGFXm0VQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 02:52:44 GMT
age: 75937
etag: "3a69c08b4d25d1dae1abbabd103d6d295a2f5425"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ads.trafficjunky.net/deep_pixel?info=CiQxM2RlNjQ3OC02YzI5LTQ3MGItOGRmOS05ODJmNTVlY2MzNTEQnbO%2BmQYaIjk4ZGQwYjEyYjBlYjQ1NDhiOGRkNzk5M2IxZjA5MzNhLTEgAjCHpWs4h6VrQN%2FjBkjNw%2FjfA1IGMTQ3NTcxWNXrqd4DYNOVsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI0iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAoWGltoF4AKX9cGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ%3D%3D&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0
200 OK 35 B URL HTTP/2 ads.trafficjunky.net/deep_pixel?info=CiQxM2RlNjQ3OC02YzI5LTQ3MGItOGRmOS05ODJmNTVlY2MzNTEQnbO%2BmQYaIjk4ZGQwYjEyYjBlYjQ1NDhiOGRkNzk5M2IxZjA5MzNhLTEgAjCHpWs4h6VrQN%2FjBkjNw%2FjfA1IGMTQ3NTcxWNXrqd4DYNOVsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI0iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAoWGltoF4AKX9cGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ%3D%3D&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /deep_pixel?info=CiQxM2RlNjQ3OC02YzI5LTQ3MGItOGRmOS05ODJmNTVlY2MzNTEQnbO%2BmQYaIjk4ZGQwYjEyYjBlYjQ1NDhiOGRkNzk5M2IxZjA5MzNhLTEgAjCHpWs4h6VrQN%2FjBkjNw%2FjfA1IGMTQ3NTcxWNXrqd4DYNOVsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI0iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAoWGltoF4AKX9cGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ%3D%3D&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0 HTTP/1.1
Host: ads.trafficjunky.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: image/gif
content-length: 35
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
X-Firefox-Spdy: h2
ads.trafficjunky.net/deep_pixel?info=CiQxNTg1NTk3YS05MmE0LTQ5NDAtYTFlOS1kNjk5ZjZmOTJlYjYQnbO%2BmQYaIjc0MzJmZGE3OTM5ZDQwYWZhYjEwY2M0ZjBjMzg5ZmU2LTEgAjDXpWs416VrQK3jBkiHw%2FjfA1IGMTQ3NTcxWNXrqd4DYOWUsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI3iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAqGFltoF4ALH9MGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ%3D%3D&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0
200 OK 35 B URL HTTP/2 ads.trafficjunky.net/deep_pixel?info=CiQxNTg1NTk3YS05MmE0LTQ5NDAtYTFlOS1kNjk5ZjZmOTJlYjYQnbO%2BmQYaIjc0MzJmZGE3OTM5ZDQwYWZhYjEwY2M0ZjBjMzg5ZmU2LTEgAjDXpWs416VrQK3jBkiHw%2FjfA1IGMTQ3NTcxWNXrqd4DYOWUsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI3iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAqGFltoF4ALH9MGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ%3D%3D&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /deep_pixel?info=CiQxNTg1NTk3YS05MmE0LTQ5NDAtYTFlOS1kNjk5ZjZmOTJlYjYQnbO%2BmQYaIjc0MzJmZGE3OTM5ZDQwYWZhYjEwY2M0ZjBjMzg5ZmU2LTEgAjDXpWs416VrQK3jBkiHw%2FjfA1IGMTQ3NTcxWNXrqd4DYOWUsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI3iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAqGFltoF4ALH9MGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ%3D%3D&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0 HTTP/1.1
Host: ads.trafficjunky.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: image/gif
content-length: 35
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
X-Firefox-Spdy: h2
ads.trafficjunky.net/deep_pixel?info=CiRmZGY2ZjY4Mi1kYWIxLTQxMGItYTVkNS04YjM3NzRlYThhMzEQnbO%2BmQYaImI5ZDEzZDg4M2U0NDQyNjg5NWM3OWI2ZDg5YTRlMWRhLTEgAjCRpWs4kaVrQLHlBkjlrvnfA1IGMTQ3NTcxWNXrqd4DYPnqnvUDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NjU2iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAr250OsF4ALt7c2YBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ%3D%3D&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0
200 OK 35 B URL HTTP/2 ads.trafficjunky.net/deep_pixel?info=CiRmZGY2ZjY4Mi1kYWIxLTQxMGItYTVkNS04YjM3NzRlYThhMzEQnbO%2BmQYaImI5ZDEzZDg4M2U0NDQyNjg5NWM3OWI2ZDg5YTRlMWRhLTEgAjCRpWs4kaVrQLHlBkjlrvnfA1IGMTQ3NTcxWNXrqd4DYPnqnvUDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NjU2iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAr250OsF4ALt7c2YBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ%3D%3D&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /deep_pixel?info=CiRmZGY2ZjY4Mi1kYWIxLTQxMGItYTVkNS04YjM3NzRlYThhMzEQnbO%2BmQYaImI5ZDEzZDg4M2U0NDQyNjg5NWM3OWI2ZDg5YTRlMWRhLTEgAjCRpWs4kaVrQLHlBkjlrvnfA1IGMTQ3NTcxWNXrqd4DYPnqnvUDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NjU2iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAr250OsF4ALt7c2YBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ%3D%3D&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0 HTTP/1.1
Host: ads.trafficjunky.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: image/gif
content-length: 35
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd8e3570655a88b47a20fb93af0fc0c5
6ebbd655af47cbe0788f5ea6a7d9cd457bda2f33
12bc57afd44ddf43fc3802ecc23e743660b146acff0958093fcea30e96b02f6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hw-cdn2.ang-content.com/a7/creatives/1/49/814883/1039105/1039105_logo.png
200 OK 84 kB URL HTTP/1.1 hw-cdn2.ang-content.com/a7/creatives/1/49/814883/1039105/1039105_logo.png
IP
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash f06ceba30db52fb7742c87e5a985c0a3
3840281c3a63447a60be34489330ed019ec1f042
b79a2833e2570f08a2fd1d2b8aa4c481beda7a02d633448fbffe69908f6e7d4d
GET /a7/creatives/1/49/814883/1039105/1039105_logo.png HTTP/1.1
Host: hw-cdn2.ang-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.adtng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 23:58:21 GMT
Connection: Keep-Alive
ETag: "1659466771"
Content-Length: 84517
Content-Type: image/png
Last-Modified: Tue, 02 Aug 2022 18:59:31 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10600920
X-HW: 1664063901.dop215.sk1.t,1664063901.cds067.sk1.shn,1664063901.dop215.sk1.t,1664063901.cds260.sk1.c
Access-Control-Allow-Origin: *
ocsp.digicert.com/
200 OK 312 B IP
Hash e825fc97e4617a1a8829f8e8ea3d3480
692305e4b90a431f044897de519c8f864cb51c43
79c1415cce6023ed241490de05b0937f37da0dd2204838467e43ece9c8977c4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4759
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Last-Modified: Sat, 24 Sep 2022 22:39:02 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
200 OK 280 B IP
Hash 1884c134fd909b49617ba8e4043dc4ca
ec7eeb75dfe601d1543329b872649e000baa59bd
c9f5d4efcea9fce4214d4f462b64064c10ab6d20cf9a45c0c4d2f80ead69d706
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4906
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Last-Modified: Sat, 24 Sep 2022 22:36:35 GMT
Server: ECS (amb/6B8A)
X-Cache: HIT
Content-Length: 280
f95zone.to/styles/fonts/fa/fa-solid-900.woff2?_v=5.12.1
200 OK 155 kB URL HTTP/2 f95zone.to/styles/fonts/fa/fa-solid-900.woff2?_v=5.12.1
IP
ASN #262254 DDOS-GUARD CORP.
Size 155 kB (154893 bytes)
Hash 03578dfade6cb984f109875f8453deda
a242cf00e946f80dd7d1d4d481a3c0dd073891a6
daaa6cdc1865a5be152c0132c5181c89d5e6b63a40e088e49ef473ccbb0b5ff3
GET /styles/fonts/fa/fa-solid-900.woff2?_v=5.12.1 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 12 Feb 2022 05:49:06 GMT
content-type: font/woff2
last-modified: Sat, 30 May 2020 13:04:34 GMT
etag: W/"5ed259e2-21b08"
expires: Sun, 12 Feb 2023 05:49:06 GMT
cache-control: max-age=31536000, max-age=31536000, public
accept-ranges: bytes
age: 19418954
ddg-cache-status: HIT,HIT
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-67186250-3&cid=1136235812.1664063900&jid=1281115340&gjid=411089025&_gid=224464773.1664063900&_u=YEBAAUAAAAAAAC~&z=635106160
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-67186250-3&cid=1136235812.1664063900&jid=1281115340&gjid=411089025&_gid=224464773.1664063900&_u=YEBAAUAAAAAAAC~&z=635106160
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-67186250-3&cid=1136235812.1664063900&jid=1281115340&gjid=411089025&_gid=224464773.1664063900&_u=YEBAAUAAAAAAAC~&z=635106160 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://f95zone.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://f95zone.to
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 24 Sep 2022 23:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd8e3570655a88b47a20fb93af0fc0c5
6ebbd655af47cbe0788f5ea6a7d9cd457bda2f33
12bc57afd44ddf43fc3802ecc23e743660b146acff0958093fcea30e96b02f6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 23ba09c14e337ac70d877d2ed33dc795
175d5155889b45711d0a9050116591ad25e74891
cb117ac56fe205bfca3b512ed3d8ddb46a7115446d099739cc4d111c853696ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ea6011094da3116e1bb049caa0e491e1
5809e1f5b0beee0282601045c0a152853c977565
25bd8112864ac34144820c6aecf49dec7ff9cfb863d864ca0ebbf55dee213414
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-67186250-3&cid=1136235812.1664063900&jid=1281115340&_u=YEBAAUAAAAAAAC~&z=1308785869
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-67186250-3&cid=1136235812.1664063900&jid=1281115340&_u=YEBAAUAAAAAAAC~&z=1308785869
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-67186250-3&cid=1136235812.1664063900&jid=1281115340&_u=YEBAAUAAAAAAAC~&z=1308785869 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 24 Sep 2022 23:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-67186250-3&cid=1136235812.1664063900&jid=1281115340&_u=YEBAAUAAAAAAAC~&z=1308785869
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-67186250-3&cid=1136235812.1664063900&jid=1281115340&_u=YEBAAUAAAAAAAC~&z=1308785869
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-67186250-3&cid=1136235812.1664063900&jid=1281115340&_u=YEBAAUAAAAAAAC~&z=1308785869 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 24 Sep 2022 23:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ea6011094da3116e1bb049caa0e491e1
5809e1f5b0beee0282601045c0a152853c977565
25bd8112864ac34144820c6aecf49dec7ff9cfb863d864ca0ebbf55dee213414
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 267300d587831dda7559c30c40cc614e
d7ff0b9754e61f5d4178eddb5e63c3390ab559c8
ec7aad1a3116ce8ef5258b49de87cf3456c8c4890206fa5d46c8e510ded80ac0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 23:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
goplayhere.com/iframe/5f19b86c21931?iframe&ag_custom_domain=f95zone.to&keyword=&tjimpid=b9d13d883e44426895c79b6d89a4e1da-1&tjrequestid=b9d13d883e44426895c79b6d89a4e1da
200 OK 1.5 kB URL HTTP/2 goplayhere.com/iframe/5f19b86c21931?iframe&ag_custom_domain=f95zone.to&keyword=&tjimpid=b9d13d883e44426895c79b6d89a4e1da-1&tjrequestid=b9d13d883e44426895c79b6d89a4e1da
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2736)
Hash f205fae586d19aad1303c71de37a83de
9faa4d12124ae4ab215d8c019f34830d41f55a43
bb9b8b73b7081db7378a3d68d281be4f0fd29f9b59f24aad937e6b5db495e890
GET /iframe/5f19b86c21931?iframe&ag_custom_domain=f95zone.to&keyword=&tjimpid=b9d13d883e44426895c79b6d89a4e1da-1&tjrequestid=b9d13d883e44426895c79b6d89a4e1da HTTP/1.1
Host: goplayhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: text/html
set-cookie: f_13878_97223_86400={"t":1664150301,"v":0}; Expires=Sun, 25-Sep-22 23:58:21 GMT; Domain=goplayhere.com; Path=/; Secure; SameSite=None
c_175b3065e093443d7df2adff5a0914b3=1; Expires=Sun, 25-Sep-22 23:58:21 GMT; Domain=goplayhere.com; Path=/; Secure; SameSite=None
z_f8933ba9b503be788f6b4ec056eb1fee=1; Expires=Sun, 25-Sep-22 23:58:21 GMT; Domain=goplayhere.com; Path=/; Secure; SameSite=None
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5rnahxz2ka3eI4sKj44IZg7zwEDETZgjNNdQDKoH6fA47Yu2yeDfiAw0SO12O0F%2BYmbpxBefTIAEFOFQ5wr48GwF%2FFvuAkJXpCO7icUMknNQY3RVuLCGIw9IxUpDkZOY3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ff77ba08110b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
iadoremakingpics.com/bnr/4/c34/9aa0ea/c349aa0ea79c8d6bcc692a2a7424be17.jpg
200 OK 7.3 kB URL HTTP/2 iadoremakingpics.com/bnr/4/c34/9aa0ea/c349aa0ea79c8d6bcc692a2a7424be17.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 728x90, components 3\012- data
Hash 2c3918723289755d3391ad9f2d5bf78a
bec2538b0685d6ce61b13451ddd9dfd415774e1b
1d9edb1508417b0e2ac8f0f7ec857edcd457e4309c3268e7516a5578fac043c5
GET /bnr/4/c34/9aa0ea/c349aa0ea79c8d6bcc692a2a7424be17.jpg HTTP/1.1
Host: iadoremakingpics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: image/jpeg
content-length: 7267
last-modified: Wed, 10 Feb 2021 13:05:17 GMT
etag: "6023da0d-1c63"
expires: Sun, 25 Sep 2022 05:53:23 GMT
cache-control: max-age=1382400
cf-cache-status: HIT
age: 65098
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VuHKDqRulHB0YIjujx9KL%2Fz4z5htDvY1%2BL1U8UcSE3lCJCnNZfIRMInUmVOCTB61zx6zS9%2FBt99hjNWZSLnDUAvtDB8Rgb7CNDijvCaYqIKY7YUY3YSVpu%2BgdQAdCjXVP2LrRjs5kw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ff77bb38e30b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sync.atsptp.com/d/jsfp/9e4947f35751465411fd1a4f5c358c78
200 OK 36 B URL HTTP/2 sync.atsptp.com/d/jsfp/9e4947f35751465411fd1a4f5c358c78
IP
File type ASCII text, with no line terminators
Hash 4ea0ae30435efc6ed433d1cd9af80798
89001be476d1fa981b99976f1086fdab0c2cbe29
7ca83ad4b58fa756e2a59372bb1b46cdbd4e58e92c98e54cac088d5ddb7d5a57
GET /d/jsfp/9e4947f35751465411fd1a4f5c358c78 HTTP/1.1
Host: sync.atsptp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f95zone.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
set-cookie: d_uidb=b1e388ba-8784-a07f-0a76-3f7fcfc8b786; Max-Age=31536000; Expires=Sun, 24 Sep 2023 23:58:21 GMT; Path=/; Domain=sync.atsptp.com; SameSite=Lax
date: Sat, 24 Sep 2022 23:58:21 GMT
access-control-allow-origin: https://f95zone.to
vary: Origin
access-control-allow-credentials: true
content-type: text/plain
content-length: 36
x-trace: 2B27B5F556190320F7592743B1962A33FD85177A22000000000000000000
via: 1.1 google
x-request-id: 632F999D-42FE72DC01BBA847-4AD50C
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash ef98f977f258d728bfbf7cb11e89fe44
8dbc98c79329b51287d0f0f7394cd236125f9f9e
6695795eb32414028920e719201cba22d96ec09191b5b30c52bbd0170e6c02f1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "6695795EB32414028920E719201CBA22D96EC09191B5B30C52BBD0170E6C02F1"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3279
Expires: Sun, 25 Sep 2022 00:53:00 GMT
Date: Sat, 24 Sep 2022 23:58:21 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash ef98f977f258d728bfbf7cb11e89fe44
8dbc98c79329b51287d0f0f7394cd236125f9f9e
6695795eb32414028920e719201cba22d96ec09191b5b30c52bbd0170e6c02f1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "6695795EB32414028920E719201CBA22D96EC09191B5B30C52BBD0170E6C02F1"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3278
Expires: Sun, 25 Sep 2022 00:53:00 GMT
Date: Sat, 24 Sep 2022 23:58:22 GMT
Connection: keep-alive
main.realsrv.com/tag.php?goal=c413c2e3b989836e2023687a6fe7f55b
200 OK 20 B URL HTTP/1.1 main.realsrv.com/tag.php?goal=c413c2e3b989836e2023687a6fe7f55b
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=c413c2e3b989836e2023687a6fe7f55b HTTP/1.1
Host: main.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 24 Sep 2022 23:58:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A83755%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-09-24%22%3B%7D%7D; expires=Sun, 24 Sep 2023 23:58:22 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
tsyndicate.com/api/v1/retargeting/set/cd5a54e9-d886-4c75-af65-8b819a80f59e
200 OK 35 B URL HTTP/2 tsyndicate.com/api/v1/retargeting/set/cd5a54e9-d886-4c75-af65-8b819a80f59e
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v1/retargeting/set/cd5a54e9-d886-4c75-af65-8b819a80f59e HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 23:58:22 GMT
content-type: text/plain; charset=utf-8
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: fc25a0d5bc564cd4
set-cookie: ts_rt_cd5a54e9-d886-4c75-af65-8b819a80f59e=AAMC; expires=Sun, 24 Sep 2023 23:58:22 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
main.realsrv.com/tag.php?goal=e2bbb6c289a1f6fc299b4c365e04ea7c
200 OK 20 B URL HTTP/1.1 main.realsrv.com/tag.php?goal=e2bbb6c289a1f6fc299b4c365e04ea7c
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=e2bbb6c289a1f6fc299b4c365e04ea7c HTTP/1.1
Host: main.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 24 Sep 2022 23:58:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A45506%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-09-24%22%3B%7D%7D; expires=Sun, 24 Sep 2023 23:58:22 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
main.exdynsrv.com/tag.php?goal=c413c2e3b989836e2023687a6fe7f55b
200 OK 20 B URL HTTP/1.1 main.exdynsrv.com/tag.php?goal=c413c2e3b989836e2023687a6fe7f55b
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=c413c2e3b989836e2023687a6fe7f55b HTTP/1.1
Host: main.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 24 Sep 2022 23:58:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A83755%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-09-24%22%3B%7D%7D; expires=Sun, 24 Sep 2023 23:58:22 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
main.exdynsrv.com/tag.php?goal=e2bbb6c289a1f6fc299b4c365e04ea7c
200 OK 20 B URL HTTP/1.1 main.exdynsrv.com/tag.php?goal=e2bbb6c289a1f6fc299b4c365e04ea7c
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=e2bbb6c289a1f6fc299b4c365e04ea7c HTTP/1.1
Host: main.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 24 Sep 2022 23:58:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A45506%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-09-24%22%3B%7D%7D; expires=Sun, 24 Sep 2023 23:58:22 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
ocsp.sectigo.com/
200 OK 471 B IP
Hash af56ebb29d27fb6a049680fe85c8828b
235a3579a72192a6a1fc0366d6d8671e2630b9f5
68454f522f57ca84315459fbf178251544804533512e9bebb8a6e3f3bce12895
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 23:58:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 22 Sep 2022 18:25:22 GMT
Expires: Thu, 29 Sep 2022 18:25:21 GMT
Etag: "235a3579a72192a6a1fc0366d6d8671e2630b9f5"
Cache-Control: max-age=411418,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ff77bba8e01c02-OSL
runative-syndicate.com/api/v1/retargeting/set/dedc7df9-c920-4b4b-a9e4-2a904ca2f8ef
200 OK 35 B URL HTTP/2 runative-syndicate.com/api/v1/retargeting/set/dedc7df9-c920-4b4b-a9e4-2a904ca2f8ef
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v1/retargeting/set/dedc7df9-c920-4b4b-a9e4-2a904ca2f8ef HTTP/1.1
Host: runative-syndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 23:58:22 GMT
content-type: text/plain; charset=utf-8
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: 480ae42a3db45c7b
set-cookie: ts_rt_dedc7df9-c920-4b4b-a9e4-2a904ca2f8ef=AAMC; expires=Sun, 24 Sep 2023 23:58:22 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.runative-syndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash af56ebb29d27fb6a049680fe85c8828b
235a3579a72192a6a1fc0366d6d8671e2630b9f5
68454f522f57ca84315459fbf178251544804533512e9bebb8a6e3f3bce12895
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 23:58:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 22 Sep 2022 18:25:22 GMT
Expires: Thu, 29 Sep 2022 18:25:21 GMT
Etag: "235a3579a72192a6a1fc0366d6d8671e2630b9f5"
Cache-Control: max-age=411418,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ff77bbbb771bfe-OSL
my.rtmark.net/img.gif?f=sync&lr=1&partner=8c7c01962f4e2c3e4ed0abe5cbafc84289b3e8521c6f0b5a27c2e73ae5e07e86
200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=sync&lr=1&partner=8c7c01962f4e2c3e4ed0abe5cbafc84289b3e8521c6f0b5a27c2e73ae5e07e86
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&lr=1&partner=8c7c01962f4e2c3e4ed0abe5cbafc84289b3e8521c6f0b5a27c2e73ae5e07e86 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 23:58:22 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=080b8325e11541efb069c6a8c7298d6c; expires=Sun, 24 Sep 2023 23:58:22 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&lr=1&partner=d26374a774cb5c28ea9498cc5e83f59204fafc54b24ab360362b5a22693c66ac
200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=sync&lr=1&partner=d26374a774cb5c28ea9498cc5e83f59204fafc54b24ab360362b5a22693c66ac
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&lr=1&partner=d26374a774cb5c28ea9498cc5e83f59204fafc54b24ab360362b5a22693c66ac HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 23:58:22 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=50a2f7baceb2420ba2e66c7008011ccb; expires=Sun, 24 Sep 2023 23:58:22 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ca43595af0377af55a1e0a0e83df4be6
2d04102bc719e8e7b3cd8063e3711240008f7a12
a9bfb4c82aa9ca98f4a770404e65c591a4acedba7315a9056782b180d0f1ca19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A9BFB4C82AA9CA98F4A770404E65C591A4ACEDBA7315A9056782B180D0F1CA19"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5976
Expires: Sun, 25 Sep 2022 01:37:58 GMT
Date: Sat, 24 Sep 2022 23:58:22 GMT
Connection: keep-alive
main.exoclick.com/tag.php?goal=e2bbb6c289a1f6fc299b4c365e04ea7c
200 OK 20 B URL HTTP/1.1 main.exoclick.com/tag.php?goal=e2bbb6c289a1f6fc299b4c365e04ea7c
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=e2bbb6c289a1f6fc299b4c365e04ea7c HTTP/1.1
Host: main.exoclick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 24 Sep 2022 23:58:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A45506%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-09-24%22%3B%7D%7D; expires=Sun, 24 Sep 2023 23:58:22 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
main.exoclick.com/tag.php?goal=c413c2e3b989836e2023687a6fe7f55b
200 OK 20 B URL HTTP/1.1 main.exoclick.com/tag.php?goal=c413c2e3b989836e2023687a6fe7f55b
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=c413c2e3b989836e2023687a6fe7f55b HTTP/1.1
Host: main.exoclick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 24 Sep 2022 23:58:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A83755%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-09-24%22%3B%7D%7D; expires=Sun, 24 Sep 2023 23:58:22 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.traffichaus.com/adserve/r.php?k=GAME&adv_id=94511&exp=25920000&dh=969205b0247754250d921d8da45875fa&bh=48c011d2648afe0455d203967aa130a5&dom=&cb=1606322831553
200 OK 95 B URL HTTP/1.1 syndication.traffichaus.com/adserve/r.php?k=GAME&adv_id=94511&exp=25920000&dh=969205b0247754250d921d8da45875fa&bh=48c011d2648afe0455d203967aa130a5&dom=&cb=1606322831553
IP
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /adserve/r.php?k=GAME&adv_id=94511&exp=25920000&dh=969205b0247754250d921d8da45875fa&bh=48c011d2648afe0455d203967aa130a5&dom=&cb=1606322831553 HTTP/1.1
Host: syndication.traffichaus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: nginx
date: Sat, 24 Sep 2022 23:58:22 GMT
content-type: image/png
transfer-encoding: chunked
set-cookie: re_94511_R0FNRQ=eyJ0IjoiR0FNRSIsImEiOiI5NDUxMSIsImQiOiIiLCJkaCI6Ijk2OTIwNWIwMjQ3NzU0MjUwZDkyMWQ4ZGE0NTg3NWZhIiwiYmgiOiI0OGMwMTFkMjY0OGFmZTA0NTVkMjAzOTY3YWExMzBhNSIsImlwIjoiOTEuOTAuNDIuMTU0IiwiZSI6MTY4OTk4MzkwMn0%3D; expires=Fri, 21-Jul-2023 23:58:22 GMT; Max-Age=25920000; path=/
RNLBSERVERID=ded5930; path=/
x-request-id: 632F999E-42FE72E901BB83A8-4D1EA1CC
ads.trafficjunky.net/fla/log?action=ad_view&ad_id=1047268051&campaign_id=1006510541&initial_zone_id=1757831&member_id=1003124181&zone_id=1757831
200 OK 0 B URL HTTP/2 ads.trafficjunky.net/fla/log?action=ad_view&ad_id=1047268051&campaign_id=1006510541&initial_zone_id=1757831&member_id=1003124181&zone_id=1757831
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fla/log?action=ad_view&ad_id=1047268051&campaign_id=1006510541&initial_zone_id=1757831&member_id=1003124181&zone_id=1757831 HTTP/1.1
Host: ads.trafficjunky.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 23:58:22 GMT
content-length: 0
set-cookie: RNLBSERVERID=ded7655; path=/
X-Firefox-Spdy: h2
ads.trafficjunky.net/fla/log?action=ad_view&ad_id=1047267941&campaign_id=1006510471&initial_zone_id=1757911&member_id=1003124181&zone_id=1757911
200 OK 0 B URL HTTP/2 ads.trafficjunky.net/fla/log?action=ad_view&ad_id=1047267941&campaign_id=1006510471&initial_zone_id=1757911&member_id=1003124181&zone_id=1757911
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fla/log?action=ad_view&ad_id=1047267941&campaign_id=1006510471&initial_zone_id=1757911&member_id=1003124181&zone_id=1757911 HTTP/1.1
Host: ads.trafficjunky.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 23:58:22 GMT
content-length: 0
set-cookie: RNLBSERVERID=ded7657; path=/
X-Firefox-Spdy: h2
f95zone.to/js/siropu/am/core.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/siropu/am/core.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/siropu/am/core.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 15 Jul 2022 19:19:37 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 16 Jan 2020 13:26:31 GMT
etag: W/"5e206487-2124"
expires: Sat, 15 Jul 2023 19:19:37 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 6151123
ddg-cache-status: HIT,MISS
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
f95zone.to/js/themehouse/uix_dark/defer.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/themehouse/uix_dark/defer.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/themehouse/uix_dark/defer.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 23:58:20 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 30 May 2020 13:26:50 GMT
vary: Accept-Encoding
etag: W/"5ed25f1a-461f"
expires: Sun, 24 Sep 2023 23:58:20 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
f95zone.to/js/xf/core-compiled.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/xf/core-compiled.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/xf/core-compiled.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 23:58:20 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 30 May 2020 13:01:12 GMT
vary: Accept-Encoding
etag: W/"5ed25918-323d8"
expires: Sun, 24 Sep 2023 23:58:20 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
a.adtng.com/get/10000605?time=1595953806142&uuid=7432fda7939d40afab10cc4f0c389fe6&impid=7432fda7939d40afab10cc4f0c389fe6-1&tj_zid=1757911&tj_cid=1006510471&tj_aid=1531282081&infos=CiQxNTg1NTk3YS05MmE0LTQ5NDAtYTFlOS1kNjk5ZjZmOTJlYjYQnbO+mQYaIjc0MzJmZGE3OTM5ZDQwYWZhYjEwY2M0ZjBjMzg5ZmU2LTEgAjDXpWs416VrQK3jBkiHw/jfA1IGMTQ3NTcxWNXrqd4DYOWUsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI3iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAqGFltoF4ALH9MGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ==
200 OK 0 B URL HTTP/2 a.adtng.com/get/10000605?time=1595953806142&uuid=7432fda7939d40afab10cc4f0c389fe6&impid=7432fda7939d40afab10cc4f0c389fe6-1&tj_zid=1757911&tj_cid=1006510471&tj_aid=1531282081&infos=CiQxNTg1NTk3YS05MmE0LTQ5NDAtYTFlOS1kNjk5ZjZmOTJlYjYQnbO+mQYaIjc0MzJmZGE3OTM5ZDQwYWZhYjEwY2M0ZjBjMzg5ZmU2LTEgAjDXpWs416VrQK3jBkiHw/jfA1IGMTQ3NTcxWNXrqd4DYOWUsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI3iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAqGFltoF4ALH9MGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ==
IP
GET /get/10000605?time=1595953806142&uuid=7432fda7939d40afab10cc4f0c389fe6&impid=7432fda7939d40afab10cc4f0c389fe6-1&tj_zid=1757911&tj_cid=1006510471&tj_aid=1531282081&infos=CiQxNTg1NTk3YS05MmE0LTQ5NDAtYTFlOS1kNjk5ZjZmOTJlYjYQnbO+mQYaIjc0MzJmZGE3OTM5ZDQwYWZhYjEwY2M0ZjBjMzg5ZmU2LTEgAjDXpWs416VrQK3jBkiHw/jfA1IGMTQ3NTcxWNXrqd4DYOWUsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI3iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAqGFltoF4ALH9MGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ== HTTP/1.1
Host: a.adtng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: adtool_guid=Ch5KJmMvmZ0gtCkdrhHiAg==; RNLBSERVERID=ded6742
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
content-encoding: gzip
x-request-id: 632F999D-42FE72AB01BB10D78-377FEBC3
X-Firefox-Spdy: h2
f95zone.to/js/themehouse/uix_dark/ripple.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/themehouse/uix_dark/ripple.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/themehouse/uix_dark/ripple.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 15 Jul 2022 22:12:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 30 May 2020 13:26:50 GMT
etag: W/"5ed25f1a-58c"
expires: Sat, 15 Jul 2023 22:12:44 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 6140736
ddg-cache-status: HIT,HIT
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.f95zone.to/assets/fontawesome-free-5.11.2/css/all.min.css
200 OK 0 B URL HTTP/2 static.f95zone.to/assets/fontawesome-free-5.11.2/css/all.min.css
IP
ASN #262254 DDOS-GUARD CORP.
GET /assets/fontawesome-free-5.11.2/css/all.min.css HTTP/1.1
Host: static.f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 23:58:20 GMT
content-type: text/css
last-modified: Mon, 23 Sep 2019 15:53:56 GMT
vary: Accept-Encoding
etag: W/"5d88ea94-de0a"
expires: Sun, 24 Sep 2023 23:58:20 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
access-control-allow-origin: https://f95zone.to
access-control-allow-methods: GET, OPTIONS
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
f95zone.to/js/themehouse/reactplus/hiddenContent.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/themehouse/reactplus/hiddenContent.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/themehouse/reactplus/hiddenContent.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 15 Jul 2022 22:02:57 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 25 Jun 2019 10:51:54 GMT
etag: W/"5d11fcca-628"
expires: Sat, 15 Jul 2023 22:02:57 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 6141323
ddg-cache-status: HIT,HIT
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
f95zone.to/js/siropu/am/ads.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/siropu/am/ads.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/siropu/am/ads.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 15 Jul 2022 21:33:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 16 Jan 2020 13:26:31 GMT
etag: W/"5e206487-44"
expires: Sat, 15 Jul 2023 21:33:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 6143088
ddg-cache-status: HIT,HIT
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
f95zone.to/js/xf/preamble.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/xf/preamble.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/xf/preamble.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 15 Jul 2022 21:02:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 30 May 2020 13:01:12 GMT
etag: W/"5ed25918-d17"
expires: Sat, 15 Jul 2023 21:02:13 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 6144967
ddg-cache-status: HIT,MISS
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.trafficjunky.net/ads_batch?data=%5B%7B%22spots%22%3A%5B%7B%22zone%22%3A1757831%7D%5D%7D%5D&clientType=mobile&channel[site]=F95zone&site_id=147571&device_type=tablet&_=1664063899937
200 OK 0 B URL HTTP/2 ads.trafficjunky.net/ads_batch?data=%5B%7B%22spots%22%3A%5B%7B%22zone%22%3A1757831%7D%5D%7D%5D&clientType=mobile&channel[site]=F95zone&site_id=147571&device_type=tablet&_=1664063899937
IP
GET /ads_batch?data=%5B%7B%22spots%22%3A%5B%7B%22zone%22%3A1757831%7D%5D%7D%5D&clientType=mobile&channel[site]=F95zone&site_id=147571&device_type=tablet&_=1664063899937 HTTP/1.1
Host: ads.trafficjunky.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f95zone.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: application/json
cache-control: private, no-cache, proxy-revalidate, no-store, max-age=0
set-cookie: tj_UUID=03e5610b977c4b8ba2f44366780e17bc; Path=/; Domain=f95zone.com; Expires=Mon, 24 Oct 2022 23:58:21 GMT; Secure
tj_UUID_v2=03e5610b-977c-4b8b-a2f4-4366780e17bc; Path=/; Domain=f95zone.com; Expires=Mon, 24 Oct 2022 23:58:21 GMT; Secure
access-control-allow-origin: https://f95zone.to
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300,400,700,900|Roboto:300,400,500,600,700|Ubuntu:300,400
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:300,400,700,900|Roboto:300,400,500,600,700|Ubuntu:300,400
IP
GET /css?family=Lato:300,400,700,900|Roboto:300,400,500,600,700|Ubuntu:300,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 23:58:20 GMT
date: Sat, 24 Sep 2022 23:58:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
a.adtng.com/get/10000602?time=1595953698683&uuid=98dd0b12b0eb4548b8dd7993b1f0933a&impid=98dd0b12b0eb4548b8dd7993b1f0933a-1&tj_zid=1757831&tj_cid=1006510541&tj_aid=1531282181&infos=CiQxM2RlNjQ3OC02YzI5LTQ3MGItOGRmOS05ODJmNTVlY2MzNTEQnbO+mQYaIjk4ZGQwYjEyYjBlYjQ1NDhiOGRkNzk5M2IxZjA5MzNhLTEgAjCHpWs4h6VrQN/jBkjNw/jfA1IGMTQ3NTcxWNXrqd4DYNOVsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI0iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAoWGltoF4AKX9cGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ==
200 OK 0 B URL HTTP/2 a.adtng.com/get/10000602?time=1595953698683&uuid=98dd0b12b0eb4548b8dd7993b1f0933a&impid=98dd0b12b0eb4548b8dd7993b1f0933a-1&tj_zid=1757831&tj_cid=1006510541&tj_aid=1531282181&infos=CiQxM2RlNjQ3OC02YzI5LTQ3MGItOGRmOS05ODJmNTVlY2MzNTEQnbO+mQYaIjk4ZGQwYjEyYjBlYjQ1NDhiOGRkNzk5M2IxZjA5MzNhLTEgAjCHpWs4h6VrQN/jBkjNw/jfA1IGMTQ3NTcxWNXrqd4DYNOVsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI0iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAoWGltoF4AKX9cGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ==
IP
GET /get/10000602?time=1595953698683&uuid=98dd0b12b0eb4548b8dd7993b1f0933a&impid=98dd0b12b0eb4548b8dd7993b1f0933a-1&tj_zid=1757831&tj_cid=1006510541&tj_aid=1531282181&infos=CiQxM2RlNjQ3OC02YzI5LTQ3MGItOGRmOS05ODJmNTVlY2MzNTEQnbO+mQYaIjk4ZGQwYjEyYjBlYjQ1NDhiOGRkNzk5M2IxZjA5MzNhLTEgAjCHpWs4h6VrQN/jBkjNw/jfA1IGMTQ3NTcxWNXrqd4DYNOVsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI0iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAoWGltoF4AKX9cGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ== HTTP/1.1
Host: a.adtng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: adtool_guid=Ch5KJmMvmZ0gtCkdrhHiAg==; RNLBSERVERID=ded6742
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
content-encoding: gzip
x-request-id: 632F999D-42FE72AB01BB10D78-377FEBBB
X-Firefox-Spdy: h2
f95zone.com/
301 Moved Permanently 0 B IP
GET / HTTP/1.1
Host: f95zone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Sat, 24 Sep 2022 23:58:19 GMT
location: https://f95zone.to/
cache-control: max-age=3600
expires: Sun, 25 Sep 2022 00:58:19 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oxF5dYMf9mk0Ze7ZBtd%2FX%2FkOYriL7oaPuVMrzcbNcJCBuqtQjWM1TgwddUpw6hu7OxuTExsw%2Fb9ffEQMz8Sf8nNW9l2MsS5UoyFZs4vpVW4JZc2ycyy7pVdmLpuzgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ff77ab5db3b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
f95zone.to/js/themehouse/uix_dark/index.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/themehouse/uix_dark/index.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/themehouse/uix_dark/index.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 15 Jul 2022 21:15:35 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 30 May 2020 13:26:50 GMT
etag: W/"5ed25f1a-1fe7"
expires: Sat, 15 Jul 2023 21:15:35 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 6144165
ddg-cache-status: HIT,MISS
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
f95zone.to/js/themehouse/uix_dark/deferFab.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/themehouse/uix_dark/deferFab.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/themehouse/uix_dark/deferFab.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 15 Jul 2022 21:19:04 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 30 May 2020 13:26:50 GMT
etag: W/"5ed25f1a-cec"
expires: Sat, 15 Jul 2023 21:19:04 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 6143956
ddg-cache-status: HIT,MISS
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.f95zone.to/assets/SamF95/Latest/vendor/jquery-loadmask-plus/jquery.loadmask-plus.min.css
200 OK 0 B URL HTTP/2 static.f95zone.to/assets/SamF95/Latest/vendor/jquery-loadmask-plus/jquery.loadmask-plus.min.css
IP
ASN #262254 DDOS-GUARD CORP.
GET /assets/SamF95/Latest/vendor/jquery-loadmask-plus/jquery.loadmask-plus.min.css HTTP/1.1
Host: static.f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 23 Jun 2022 17:21:56 GMT
content-type: text/css
last-modified: Tue, 13 Nov 2018 21:10:28 GMT
etag: W/"5beb3dc4-326"
expires: Fri, 23 Jun 2023 17:21:56 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
access-control-allow-origin: https://f95zone.to
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
age: 8058984
ddg-cache-status: HIT,HIT
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
f95zone.to/js/themehouse/reactplus/defaultReaction.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/themehouse/reactplus/defaultReaction.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/themehouse/reactplus/defaultReaction.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 15 Jul 2022 22:18:50 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 25 Jun 2019 10:51:54 GMT
etag: W/"5d11fcca-526"
expires: Sat, 15 Jul 2023 22:18:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 6140370
ddg-cache-status: HIT,MISS
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
f95zone.to/js/themehouse/uix_dark/deferNodesCollapse.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/themehouse/uix_dark/deferNodesCollapse.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/themehouse/uix_dark/deferNodesCollapse.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 15 Jul 2022 20:11:41 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 30 May 2020 13:26:50 GMT
etag: W/"5ed25f1a-b62"
expires: Sat, 15 Jul 2023 20:11:41 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 6147999
ddg-cache-status: HIT,MISS
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.f95zone.to/assets/SamF95/Latest/vendor/selectize.js/css/selectize.default.css
200 OK 0 B URL HTTP/2 static.f95zone.to/assets/SamF95/Latest/vendor/selectize.js/css/selectize.default.css
IP
ASN #262254 DDOS-GUARD CORP.
GET /assets/SamF95/Latest/vendor/selectize.js/css/selectize.default.css HTTP/1.1
Host: static.f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 23:58:20 GMT
content-type: text/css
last-modified: Tue, 13 Nov 2018 21:10:28 GMT
vary: Accept-Encoding
etag: W/"5beb3dc4-2e6a"
expires: Sun, 24 Sep 2023 23:58:20 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
access-control-allow-origin: https://f95zone.to
access-control-allow-methods: GET, OPTIONS
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
f95zone.to/js/themehouse/uix_dark/deferWidthToggle.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/themehouse/uix_dark/deferWidthToggle.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/themehouse/uix_dark/deferWidthToggle.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 15 Jul 2022 21:29:06 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 30 May 2020 13:26:50 GMT
etag: W/"5ed25f1a-94c"
expires: Sat, 15 Jul 2023 21:29:06 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 6143413
ddg-cache-status: HIT,HIT
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
a.adtng.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?unique_view=1
200 OK 0 B URL HTTP/2 a.adtng.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?unique_view=1
IP
GET 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?unique_view=1 HTTP/1.1
Host: a.adtng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.adtng.com/get/10000602?time=1595953698683&uuid=98dd0b12b0eb4548b8dd7993b1f0933a&impid=98dd0b12b0eb4548b8dd7993b1f0933a-1&tj_zid=1757831&tj_cid=1006510541&tj_aid=1531282181&infos=CiQxM2RlNjQ3OC02YzI5LTQ3MGItOGRmOS05ODJmNTVlY2MzNTEQnbO+mQYaIjk4ZGQwYjEyYjBlYjQ1NDhiOGRkNzk5M2IxZjA5MzNhLTEgAjCHpWs4h6VrQN/jBkjNw/jfA1IGMTQ3NTcxWNXrqd4DYNOVsPMDciAwM2U1NjEwYjk3N2M0YjhiYTJmNDQzNjY3ODBlMTdiY5IBAk5PmgECMDOiAQRPc2xvygEOYmxpeCBzb2x1dGlvbnPSAQR3aWZp2gEFbGludXjiAQw5MS45MC40Mi4xNTT6AQw5MS45MC40Mi4xNTSCAgdkZWQ3NTI0iAIFkgIHZmlyZWZveJoCBDAwMjiqAgVsaW51eLICBDk2LjDYAoWGltoF4AKX9cGYBPoCATGCAwJ7fZIDB2Rlc2t0b3CaAwJlbqgDAQ==
Cookie: adtool_guid=Ch5KJmMvmZ0gtCkdrhHiAg==; RNLBSERVERID=ded6742
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 24 Sep 2022 23:58:21 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
content-encoding: gzip
x-request-id: 632F999D-42FE72AB01BB10D78-377FEBEA
X-Firefox-Spdy: h2
f95zone.to/js/vendor/vendor-compiled.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/vendor/vendor-compiled.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/vendor/vendor-compiled.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 23:58:20 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 30 May 2020 13:01:09 GMT
vary: Accept-Encoding
etag: W/"5ed25915-11b76"
expires: Sun, 24 Sep 2023 23:58:20 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
f95zone.to/js/themehouse/global/20180112.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/themehouse/global/20180112.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/themehouse/global/20180112.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 23:58:20 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Jul 2020 17:05:56 GMT
vary: Accept-Encoding
etag: W/"5f0c9474-2ca6"
expires: Sun, 24 Sep 2023 23:58:20 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
f95zone.to/js/vendor/jquery/jquery-3.4.1.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/vendor/jquery/jquery-3.4.1.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/vendor/jquery/jquery-3.4.1.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 23:58:20 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 30 May 2020 13:01:17 GMT
vary: Accept-Encoding
etag: W/"5ed2591d-15851"
expires: Sun, 24 Sep 2023 23:58:20 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
static.f95zone.to/assets/fontawesome-free-5.11.2/css/v4-shims.min.css
200 OK 0 B URL HTTP/2 static.f95zone.to/assets/fontawesome-free-5.11.2/css/v4-shims.min.css
IP
ASN #262254 DDOS-GUARD CORP.
GET /assets/fontawesome-free-5.11.2/css/v4-shims.min.css HTTP/1.1
Host: static.f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 24 Sep 2022 23:58:20 GMT
content-type: text/css
last-modified: Mon, 23 Sep 2019 15:53:56 GMT
vary: Accept-Encoding
etag: W/"5d88ea94-6802"
expires: Sun, 24 Sep 2023 23:58:20 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
access-control-allow-origin: https://f95zone.to
access-control-allow-methods: GET, OPTIONS
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
f95zone.to/styles/fonts/fa/fa-brands-400.woff2?_v=5.12.1
200 OK 0 B URL HTTP/2 f95zone.to/styles/fonts/fa/fa-brands-400.woff2?_v=5.12.1
IP
ASN #262254 DDOS-GUARD CORP.
GET /styles/fonts/fa/fa-brands-400.woff2?_v=5.12.1 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 24 Jan 2022 06:30:26 GMT
content-type: font/woff2
last-modified: Sat, 30 May 2020 13:04:34 GMT
strict-transport-security: max-age=15768000
accept-ranges: bytes
etag: W/"5ed259e2-12ad4"
expires: Tue, 24 Jan 2023 06:30:26 GMT
cache-control: max-age=31536000, max-age=31536000, public
age: 21058074
ddg-cache-status: HIT,HIT
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
f95zone.to/js/themehouse/uix_dark/vendor/hover-intent/jquery.hoverIntent.min.js?_v=693939b5
200 OK 0 B URL HTTP/2 f95zone.to/js/themehouse/uix_dark/vendor/hover-intent/jquery.hoverIntent.min.js?_v=693939b5
IP
ASN #262254 DDOS-GUARD CORP.
GET /js/themehouse/uix_dark/vendor/hover-intent/jquery.hoverIntent.min.js?_v=693939b5 HTTP/1.1
Host: f95zone.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=22yf4BGvT203VyFkkhs3; xf_csrf=Y1D0-fmwpBsoPSMV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 15 Jul 2022 20:21:04 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 30 May 2020 13:26:51 GMT
etag: W/"5ed25f1b-654"
expires: Sat, 15 Jul 2023 20:21:04 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
accept-ranges: bytes
age: 6147436
ddg-cache-status: HIT,HIT
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
172.67.210.199
95.211.229.245
93.184.220.29
190.115.31.182
104.18.32.68
23.36.76.226
136.243.51.205